MSSP Alert delivers rapid-fire news, analysis and chatter from the world of MSSPs, MSPs and cybersecurity every business day.
What you'll receive in your inbox:
Send your news, tips and rumors to Editor-in-Chief Jim Masters at: [email protected]
Today's MSSP Alerts Market News:
1. XDR solution debuts: USX Cyber has launched GUARDIENT, an extended detection and response (XDR) platform designed for enterprises and MSPs. USX Cyber's GUARDIENT XDR platform provides a unified, single-interface approach to cybersecurity, eliminating the need for multiple cyber tools by consolidating numerous security tools into one manageable interface. The company says the solution enables advanced threat detection, automated response capabilities, and streamlined compliance management.
2. Enhancements to EDR: Huntress announced that its managed endpoint detection and response (EDR) product now includes active remediation and macOS support. With the addition of active remediation, security administrators can pre-authorize Huntress to take action on their behalf without any manual review or approval. The company says this added convenience speeds up the remediation process and reduces the workload for IT and security teams.
3. Publication of Cybersecurity Trends Report: Arctic Wolf has released findings from its annual “State of Cybersecurity: Trends 2024 Report,” which found that 70% of organizations were targeted by a Business Email Compromise (BEC) attack in the past year, with 29% of these targets falling victim to at least one attack. Additionally, 45% of respondents claim their organization was hit by a ransomware attack in the past 12 months, with 86% of these attacks successfully resulting in data exfiltration.
4. Funding round: Cloud security company Averlon has emerged from stealth mode with an $8 million seed round aimed at transforming how organizations stay ahead of emerging cyber threats. The round brings the company's total funding to $10.5 million, led by Voyager Capital, with participation from Salesforce Ventures and Outpost Ventures, as well as several prominent CISOs and industry leaders, the company said.
5. Publish a report on the state of cybersecurity: Ivanti released the results of its State of Cybersecurity in 2024 report. Although the goals and challenges of IT and security professionals overlap, 72% report that security and IT data are siloed within their organizations, leading to business disparity and increased security risk, Ivanti reported. Additionally, 63% report that siloed data slows security response times, 54% report that siloed data weakens their organization's security posture, and 41% report they struggle to collaboratively manage cybersecurity.
6. US Cyber Summit: This week, White House National Cyber Director Harry Corker Jr. joined McCrary Institute for Cyber & Critical Infrastructure Security Director Frank Siluffo to discuss progress and future efforts in implementing President Biden's National Cybersecurity Strategy. The recently released Second Implementation Plan encompasses 100 high-impact actions coordinated across federal agencies, with clear timelines and accountable agencies to ensure the plan's objectives are met.
7. Reporting Data Theft: US pharmaceutical distributor Sencora has notified affected individuals that it suffered a cyberattack and data breach earlier this year, resulting in the theft of personal and sensitive medical information. The company disclosed a cybersecurity incident in February in which data, some of which may have contained personal information, was stolen from its information systems. (Source: Reuters)
8. Google releases security updates: Google has released a new emergency security update to address the eighth zero-day vulnerability in the Chrome browser that has been seen exploited in the wild. The security issue was discovered internally by Google's Clément Lecigne and is tracked as CVE-2024-5274. According to the alert, it's a high severity “type confusion” in V8, Chrome's JavaScript engine responsible for executing JS code. (Source: Bleeping Computer)
9. Malware Alert: Threat actors have been observed using fake websites posing as legitimate antivirus solutions from Avast, Bitdefender and Malwarebytes to spread malware that steals sensitive information from Android and Windows devices. The websites listed are:
- avast-secure download[.]Avast.com is used to deliver the SpyNote Trojan in the form of an Android package file (“Avast.apk”), which once installed requests intrusive permissions such as reading SMS messages and call history, installing and removing apps, taking screenshots, tracking location, and even mining cryptocurrency.
- Bitdefender app[.]com is used to deliver a ZIP archive file (“setup-win-x86-x64.exe.zip”) which deploys the Lumma information stealing malware.
- Malwarebytes[.]pro is used to deliver a RAR archive file (“MBSetup.rar”) that deploys the StealC information stealing malware.
(Source: The Hacker News)
