Threat Intelligence & Incident Response - AI-Tech Park https://ai-techpark.com AI, ML, IoT, Cybersecurity News & Trend Analysis, Interviews Wed, 03 Jul 2024 05:19:44 +0000 en-US hourly 1 https://wordpress.org/?v=5.4.16 https://ai-techpark.com/wp-content/uploads/2017/11/cropped-ai_fav-32x32.png Threat Intelligence & Incident Response - AI-Tech Park https://ai-techpark.com 32 32 Binary Defense named in 2024 Gartner® Market Guide for MDR for 6th Year https://ai-techpark.com/binary-defense-named-in-2024-gartner-market-guide-for-mdr-for-6th-year/ Tue, 02 Jul 2024 09:15:00 +0000 https://ai-techpark.com/?p=171625 This is the sixth year that Binary Defense has been recognized in the Gartner report. Binary Defense, the trusted Managed Detection and Response (MDR) and enterprise defense provider, is pleased to announce that the company has been recognized for the sixth year as a Representative Vendor in the 2024 Gartner...

The post Binary Defense named in 2024 Gartner® Market Guide for MDR for 6th Year first appeared on AI-Tech Park.

]]>
This is the sixth year that Binary Defense has been recognized in the Gartner report.

Binary Defense, the trusted Managed Detection and Response (MDR) and enterprise defense provider, is pleased to announce that the company has been recognized for the sixth year as a Representative Vendor in the 2024 Gartner Market Guide for Managed Detection and Response report (available to Gartner subscribers).

“We are deeply pleased to be recognized again by one of the world’s leading analyst firms,” said Bob Meindl, Chief Executive Officer of Binary Defense. “Our dedication to delivering top-tier services to our customers is unwavering. We believe the distinct advantages of our highly skilled and experienced SOC, threat hunting, counterintelligence and incident response team, coupled with our Open XDR strategy, continue to distinguish us in a crowded MDR market. We work closely with our customers to create tailored solutions that provide the insights, confidence and security program maturity needed in today’s threat landscape.”

“Successful MDR service providers offer a focus on high-fidelity threat detection, investigation and mitigative response with meaningful and human interpretable reporting aligned to business-focused risks,” according to the Gartner report. Likewise, “By 2028, 50% of findings from managed detection and response providers will be focused on, or include detail on, threat exposures, up from 10% today.”

Through a consultative and collaborative approach, Binary Defense takes the time to gain a deep understanding of each client’s current security needs, risk profile, existing skills and capabilities, and vulnerabilities. This allows them to meet organizations where they are in their journey to mature their security program and posture. Unlike other vendors, which think like defenders, Binary Defense applies an attacker’s mindset to guide its security strategy, developing a personalized, human-driven, tech-enabled approach for each client. The company has built its reputation on a team of experienced and passionate professionals dedicated to innovating in cybersecurity.

For more information about Binary Defense’s MDR solution, visit https://www.binarydefense.com/cybersecurity-solutions/managed-detection-and-response/.

Source: Gartner, Market Guide for Managed Detection and Response, Pete Shoard, Andrew Davies, Mitchell Schneider, Angel Berrios, Craig Lawson, June 24, 2024.

Gartner Disclaimer: GARTNER is registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved. Gartner does not endorse any vendor, product or service depicted in our research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Binary Defense named in 2024 Gartner® Market Guide for MDR for 6th Year first appeared on AI-Tech Park.

]]>
Ransomware and Data Extortion Business Risk Report: Halcyon https://ai-techpark.com/ransomware-and-data-extortion-business-risk-report-halcyon/ Mon, 01 Jul 2024 09:30:00 +0000 https://ai-techpark.com/?p=171513 Halcyon Releases Report Exploring the Business Risks of Ransomware & Data Exfiltration Halcyon, the leading platform designed from day one to defeat ransomware, today released new research detailing the significant impact on businesses from ransomware attacks and data exfiltration over the past 24 months. According to the Ransomware and Data Extortion...

The post Ransomware and Data Extortion Business Risk Report: Halcyon first appeared on AI-Tech Park.

]]>
Halcyon Releases Report Exploring the Business Risks of Ransomware & Data Exfiltration

Halcyon, the leading platform designed from day one to defeat ransomware, today released new research detailing the significant impact on businesses from ransomware attacks and data exfiltration over the past 24 months. According to the Ransomware and Data Extortion Business Risk Report, one-in-five (18%) suffered a ransomware infection 10 or more times in a 24-month period, one-in-five (18%) were infected 5-9 times, and 30% were infected 2-4 times.

Data exfiltration occurs in nearly every major ransomware attack today, and nearly two-thirds (60%) of respondents said that sensitive or regulated data was exfiltrated from their organization, with more than half (55%) reporting the attackers issued an additional ransom demand to protect the exfiltrated data. As well, 58% of victims reported that the loss of sensitive data put their organizations at additional risk of regulatory action and lawsuits.

“The C-suite and BoD need to recognize that most of these attacks today are basically data exfiltration attacks with some ransomware sprinkled in, and once the data is exfiltrated the damage is done,” said Jon Miller, CEO & Co-founder, Halcyon. “Data exfiltration, in many cases, is a bigger problem for the victim organization than the disruption to operations because, as the report highlights, even if an organization pays the ransomware demand, these criminals still have that data, putting victim organizations and their leadership at heightened risk of lawsuits and regulatory actions.”

The report also revealed a strong disconnect between perception and reality when it comes to prevention and resilience against ransomware and data extortion attacks. Fully 88% of respondents indicated they were somewhat or very confident their organizations’ current security deployments could disrupt an attack before a ransomware payload is delivered, and 85% were somewhat or very confident their organizations could quickly resume regular operations following a successful attack. Yet more than one-in-three (36%) were Infected 5 times or more over the two-year period.

Furthermore, 62% of organizations hit by ransomware reported a major disruption in operations, with 38% saying operations were disrupted for at least two months to more than six months. These findings clearly show that organizations are overly confident in their ability to defend against and quickly recover from ransomware attacks.

“The disconnect between perceived and actual risk is not helping organizations be more resilient to ransomware attacks,” said Anthony M. Freed, Director of Research and Communications, Halcyon. “While most respondents feel confident their current security deployments are adequate for both prevention and recovery, the data shows that the majority of attacks are nonetheless successful and victim organizations are struggling to get operations back up and running, which is what is driving up these post-attack recovery costs.”

Other key findings in the report include:

  • In all cases, ransomware attackers successfully bypassed security prevention controls;
  • Of the organizations that opted to pay a ransom demand, the majority (78%) said the attackers failed to provide a working decryptor or data was corrupted upon decryption;
  • Fifty-nine percent of participants indicated incident response costs were more than $1 million;
  • More than half (57%) said the attacks will have a negative impact long-term on their organization’s operations, competitiveness, profitability or overall viability;
  • Of the organizations that have cyber insurance, two-in-five (39%) said their premiums increased significantly following a ransomware attack, while more than one-quarter (28%) said premiums increased slightly.

Research was conducted through an independent survey with responses from 913 directors-level or above and members of the security or IT teams that were targeted by a ransomware attack in the past 24 months.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Ransomware and Data Extortion Business Risk Report: Halcyon first appeared on AI-Tech Park.

]]>
Darktrace wins 2024 Microsoft UK Partner of the Year https://ai-techpark.com/darktrace-wins-2024-microsoft-uk-partner-of-the-year/ Fri, 28 Jun 2024 16:15:00 +0000 https://ai-techpark.com/?p=171435 Darktrace today announced it has won the UK 2024 Microsoft Partner of the Year Award. The company was honored among a global field of top Microsoft partners for demonstrating excellence in innovation and implementation of customer solutions based on Microsoft technology. “It is an amazing accolade to be recognized in...

The post Darktrace wins 2024 Microsoft UK Partner of the Year first appeared on AI-Tech Park.

]]>
Darktrace today announced it has won the UK 2024 Microsoft Partner of the Year Award.

The company was honored among a global field of top Microsoft partners for demonstrating excellence in innovation and implementation of customer solutions based on Microsoft technology.

“It is an amazing accolade to be recognized in this way by a company we admire and work with closely,” said Nicole Eagan, Darktrace Chief Strategy & AI Officer, “Microsoft and Darktrace are a powerful combination, delivering proactive cyber protection tailored to organizations by combining large scale threat intelligence with security insights unique to each customer’s digital footprint. Our ambition is to continuously extend and elevate the Microsoft security suite including email, Azure and Copilot.”

The Microsoft Partner of the Year Awards recognize Microsoft partners that have developed and delivered outstanding Microsoft Cloud applications, services, devices, and AI innovation during the past year. 

Awards were classified in various categories, with honorees chosen from more than 4,700 nominations from more than 100 countries. Darktrace was recognized for providing outstanding solutions and services in the UK.

“Congratulations to the winners and finalists of the 2024 Microsoft Partner of the Year Awards!” said Nicole Dezen, Chief Partner Officer and Corporate Vice President at Microsoft. “The momentum generated by numerous AI & Copilot announcements this year fueled innovation from our partners, enabling groundbreaking services and solutions to customers. I am inspired by the capability and creativity in our partner ecosystem and this year’s winners beautifully demonstrate the best of what’s possible with AI and the Microsoft Cloud.” 

The 2024 Microsoft Partner of the Year Awards are announced ahead of the MCAPS Start 2024 Microsoft Partner of the Year Awards digital event on July 10th and 11th. Partners will receive recognition at MCAPS Start for Partners ahead of in person celebrations during the week of Microsoft Ignite in November. 

Additional details on the 2024 awards are available on the Microsoft Partner blog: https://aka.ms/POTYA2024_announcement. The complete list of categories, winners and finalists can be found at https://aka.ms/2024POTYAWinnersFinalists. 

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Darktrace wins 2024 Microsoft UK Partner of the Year first appeared on AI-Tech Park.

]]>
PagerDuty reveals results from a new survey https://ai-techpark.com/pagerduty-reveals-results-from-a-new-survey/ Thu, 27 Jun 2024 16:45:00 +0000 https://ai-techpark.com/?p=171215 The average incident takes nearly three hours to resolve and rising costs of incidents are largely compounded by lack of automation 90% of IT leaders reported that outages or disruptions have reduced customer trust in their organization PagerDuty On Tour – PagerDuty, Inc. (NYSE:PD), a global leader in digital operations management,...

The post PagerDuty reveals results from a new survey first appeared on AI-Tech Park.

]]>
The average incident takes nearly three hours to resolve and rising costs of incidents are largely compounded by lack of automation

90% of IT leaders reported that outages or disruptions have reduced customer trust in their organization

PagerDuty On Tour – PagerDuty, Inc. (NYSE:PD), a global leader in digital operations management, today released a study of 500 IT leaders and decision-makers of companies with more than 1,000 employees responsible for IT operations from the United States, the United Kingdom and Australia, that highlights the growing impacts of customer-facing incidents and the ways automation can help mitigate. The findings illustrate the significant length and cost of incidents: the average incident takes nearly three hours to resolve (175 minutes) while the estimated cost of downtime is $4,537 per minute, meaning each incident can cost nearly $794,000. As respondents’ organizations saw an average of 25 high-priority/priority incidents in the last 12 months, the cumulative costs add up to just under $20 million per year, per organization.

“PagerDuty’s global survey found that incidents have been driven by increased complexity, rapid expansion of digital services and insufficient investment in IT infrastructure maintenance,” said Eric Johnson, chief information officer at PagerDuty. “The costs of these incidents are significant both financially and in lost consumer trust, which is why companies need to invest in automation to mitigate the risk and shorten the time an incident lasts. Investing in automation needs to be at the top of IT leaders’ priority lists.”

Other key findings of the data include:

  • Over half (59%) of IT leaders say that customer-impacting incidents have increased, growing by an average of 43% in the last 12 months.
    • 78% of IT leaders in travel say customer-impacting incidents have increased.
    • 68% of IT leaders in finance say customer-impacting incidents have increased.
  • Organizations with at least five manual processes in incident response incurred $30.4M in annual costs of customer-facing outages vs. $16.8M for those with at least five processes fully automated.
  • 69% of IT leaders say the board and management are failing to invest in protecting customer trust when outages occur.
  • Nearly a quarter (24%) of IT leaders reported outages negatively impacting share prices.
  • More than ⅓ (35%) of IT leaders have seen higher levels of employee burnout.
  • More than 70% of IT leaders report that remediation, mobilizing responders, collaboration between teams and internal communications with stakeholders are yet to be fully automated.

Digital incidents continue to rise in number, last longer and cost more, but organizations are also understanding the critical role automation can play. 86% of IT leaders surveyed say that their organization is making strides towards fully automating the end-to-end incident response process.

“Digital incidents occur, and front-line responders are too often hindered in their ability to resolve incidents quickly due to fragmented IT environments, inadequate processes and inability to identify the right responders,” said Jeffrey Hausman, chief product development officer at PagerDuty. “Automation can be a key enabler in achieving resilience in these increasingly complex environments. With automation built into the PagerDuty Operations Cloud, businesses can streamline repeatable, critical work across incident response and service management to reduce the staggering financial costs of incidents.”

The survey was conducted online between May 31, 2024 and June 6, 2024 by Censuswide on behalf of PagerDuty. All survey findings and methodology are available here.

PagerDuty on Tour 2024

PagerDuty on Tour is a series of global events convening business leaders, technologists, DevOps practitioners, site reliability engineers and more. PagerDuty on Tour London will take place today, June 27 at The Ned, and in Sydney on July 31, and Tokyo on August 6. You can register for the event here: https://www.pagerduty.com/ontour/

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post PagerDuty reveals results from a new survey first appeared on AI-Tech Park.

]]>
eSentire announced Launch of First MDR Solution for GenAI Visibility https://ai-techpark.com/esentire-announced-launch-of-first-mdr-solution-for-genai-visibility/ Wed, 26 Jun 2024 12:30:00 +0000 https://ai-techpark.com/?p=170934 New SaaS offering, available for new and existing eSentire customers, is the first market solution to broadly capture workforce use of Generative AI applications, enabling visibility, policy adherence and risk reduction across corporate environments eSentire, Inc., the Authority in Managed Detection and Response (MDR), today announced its continued leadership in...

The post eSentire announced Launch of First MDR Solution for GenAI Visibility first appeared on AI-Tech Park.

]]>
New SaaS offering, available for new and existing eSentire customers, is the first market solution to broadly capture workforce use of Generative AI applications, enabling visibility, policy adherence and risk reduction across corporate environments

eSentire, Inc., the Authority in Managed Detection and Response (MDR), today announced its continued leadership in Generative AI cybersecurity services with the introduction of the MDR industry’s first solution providing complete Generative AI visibility. Leveraging security telemetry across an organization’s log and network data sources, eSentire’s MDR for GenAI Visibility solution provides daily insights into an organization’s use of GenAI technology, including the most frequently used AI applications, the users of the technology, the prompts, and the files shared. With this intelligence, security leaders can measure the organizational risks presented by Generative AI and Large Language Model (LLM) usage, while ensuring adherence to their corporate Generative AI policies.

By 2025, Gartner expects Generative AI will play a role in 70% of text and data-heavy tasks, up from less than 10% in 2023 (Gartner, 2024). Consumption of GenAI applications, including LLMs, has created a new attack surface for security leaders to manage, presenting exponential risks for individual privacy, sensitive data and organizational intellectual property. eSentire’s MDR for GenAI Visibility provides a daily reporting dashboard that builds the association between workplace AI usage, productivity gains and risks by:

  • Improving visibility into corporate Generative AI usage
  • Strengthening policy adherence and control
  • Identifying risks in user and application interaction
  • Helping security leaders understand emerging GenAI news and trends with curated threat intelligence

This pioneering MDR solution is the latest innovation in Generative AI from eSentire, who has also optimized AI-powered Security Operations Center (SOC) and customer use cases to improve security outcomes, leveraging its eSentire AI Investigator, which launched in June 2023. eSentire’s leadership in Generative AI is made possible by Atlas, its open, Extended Detection and Response(XDR) low-code orchestration platform. By leveraging proprietary GenAI frameworks, powered by over two decades of security investigation experience and eSentire’s normalized security data mesh, the company can scale expert annotations, from its elite SOC cyber analysts and Threat Response Unit (TRU) researchers, to generate automated actions across the Atlas platform, hardening customer protections efficiently at scale.

“This exciting launch perfectly demonstrates the innovation cycle here at eSentire,” says Dustin Hillard, CTO, eSentire. “The vision for this offering originated in eSentire Labs and was made possible by the normalized data mesh, which is foundational to eSentire’s Atlas XDR platform. Our security experts can rapidly build security analytics with our low-code platform, to mine normalized network and log data. We have commercialized eSentire MDR for GenAI Visibility in less than three months, providing unmatched value to security leaders looking to understand and reduce GenAI risk across their corporate environments.”

This first introduction to eSentire’s MDR for GenAI portfolio is available now as an exclusive preview for no charge, for a limited time, until October 31, 2024. It is available to new and existing customers leveraging eSentire’s MDR services, including log and network data sources. eSentire will be complementing its Visibility solution with additional threat hunting, investigation and complete response offerings throughout 2024. For a video demonstration and to learn more about eSentire MDR for GenAI Visibility visit eSentire | MDR for GenAI.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post eSentire announced Launch of First MDR Solution for GenAI Visibility first appeared on AI-Tech Park.

]]>
Data443 Releases Updated Open Source Offering https://ai-techpark.com/data443-releases-updated-open-source-offering/ Mon, 17 Jun 2024 13:30:00 +0000 https://ai-techpark.com/?p=169574 Data443 Risk Mitigation, Inc. (OTCPK: ATDS) (“Data443” or the “Company”), a data security and privacy software company for “All Things Data Security,” today announced its latest offering in the open source threat intelligence marketplace. Data443 will provide threat intelligence data to the Spam and Open Relay Blocking System (SORBS) community free...

The post Data443 Releases Updated Open Source Offering first appeared on AI-Tech Park.

]]>
Data443 Risk Mitigation, Inc. (OTCPK: ATDS) (“Data443” or the “Company”), a data security and privacy software company for “All Things Data Security,” today announced its latest offering in the open source threat intelligence marketplace.

Data443 will provide threat intelligence data to the Spam and Open Relay Blocking System (SORBS) community free of charge.

Recently, it was announced by The Register that the Spam and Open Relay Blocking System (SORBS) – a longstanding source of information on known spam sources widely used to create blocklists, is being shut down. SORBS provided free access to a DNS-based Block List that lists over 12 million host servers known to disseminate spam, phishing attacks, and other email annoyances.

It is reported that thousands of users of the SORB service now do not have this capability, which is important to their organizations.

“Our commitment to open source continues to grow not only in privacy and user experience capabilities but now in our advanced threat intelligence services,” commented Jason Remillard, CEO of Data443. “The SORBs offering has been around since 2001, perhaps one of the most mature offerings in the email security and compliance space. Data443 and its offerings in the email security and protection marketplace, Cyren – are more than pleased to replace or augment the previous services for SORBs customers.

“As this change in services was quite sudden, we are providing a signup capability that our team will respond to as soon as possible. When you are a security practitioner, email security is one of the most dynamic and hostile locations for all threat data. We regularly process vast amounts of data and threat information on an hourly basis, providing us the capabilities and know-how to deliver a superior offering for the community.”

New clients can sign up directly at this link: https://data443.com/sorbs-new-customers-survey/

Administrators will be able to test the whole product line related to email and threat information as part of their free trial signup of Cyren by Data443.

Cyren by Data443 is a proprietary technology and intellectual property that delivers threat intelligence, URL categorization, and email security services to the world’s largest providers. The technology leverages its growing AI & ML capabilities with significant raw data that accelerates the development of next-generation solutions.

Data443 also recently announced:

– Record financial results for 2023 in April, 2024
– Its participation in the Microsoft Security Copilot Partner Program

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Data443 Releases Updated Open Source Offering first appeared on AI-Tech Park.

]]>
Cogility TacitRed Named in Digital Threat Intelligence MR https://ai-techpark.com/cogility-tacitred-named-in-digital-threat-intelligence-mr/ Mon, 10 Jun 2024 08:30:00 +0000 https://ai-techpark.com/?p=168824 TacitRed tactical attack surface management ranked as a leading vendor with distinguished technology excellence Cogility, a leader in continuous intelligence software, today announced that global advisory firm Quadrant Knowledge Solutions has recognized the company’s TacitRed tactical attack surface intelligence solution as a top technology leader in the new 2024 SPARK™...

The post Cogility TacitRed Named in Digital Threat Intelligence MR first appeared on AI-Tech Park.

]]>
TacitRed tactical attack surface management ranked as a leading vendor with distinguished technology excellence

Cogility, a leader in continuous intelligence software, today announced that global advisory firm Quadrant Knowledge Solutions has recognized the company’s TacitRed tactical attack surface intelligence solution as a top technology leader in the new 2024 SPARK™ Matrix for digital threat intelligence management solutions. Cogility TacitRed delivers fully curated, prioritized, and detailed active threat intelligence that empowers security teams to take decisive actions on compromised and at-imminent-risk assets.

The SPARK Matrix provides a detailed analysis of the global Digital Threat Intelligence market, including market overview, key capabilities, competitive analysis and differentiators, and vendor profiles for users to evaluate different providers. Customers can see the full competitive ratings and obtain the report by visiting https://tacitred.com/dtim2024/.  

Cogility TacitRed was ranked among the highest in technology excellence for its usability, fully-curated findings, ability to identify and prioritize active threats, and actionable contextualization. The SPARK Matrix report surveyed customers who shared how TacitRed has significantly enhanced their cyber threat response and risk assessment processes – praising the SaaS solution for its comprehensive, real-time threat intelligence, which eliminated the need for additional tools. Customers also acknowledged how TacitRed improved their ability to identify and mitigate serious threats and facilitated better data sharing across teams.

“TacitRed placed among overall market leaders owing to factors such as its distinguished use of Expert AI and multi-source event stream processing to produce curated findings of active compromised and imminent threats, and its comprehensive attack details and available API enabling security teams to make faster, informed response decisions,” said Riya Tomar, analyst at Quadrant Knowledge Solutions. “Beyond TacitRed’s on-demand coverage and intuitive interface, customers highlighted the quality, depth, and speed of TacitRed’s curated threat intelligence findings. They observed its effective ability to identify serious issues when compared to other vendors.”

Quadrant Knowledge Solutions highlighted Cogility TacitRed’s key capabilities:

  • Integrated threat intelligence, external attack surface management, and third-party risk features
  • Continuous external attack surface discovery, analysis, mapping, and monitoring
  • Curated active threat findings with evidence by applying advanced Expert AI threat modeling and stateful event stream processing
  • Intelligence synthesis that dynamically analyzes terabytes of proprietary and public internet, threat traffic signal, and intelligence data sources
  • Enumerated threats and attacks across command and control, malware, and persistent threats, compromised credential and session use, and more

“Organizations need tools that readily enable their security teams to assess risk, prevent exposures, and contain issues faster and more efficiently. TacitRed does just that – it’s easy to start, see immediate, impactful results, and fully integrate,” said Jeremy Turner, head of cyber and risk at Cogility. “Being recognized as a Leader in the 2024 SPARK Matrix™ for Digital Threat Intelligence Management Solutions is a significant achievement, and it underscores the importance of modernizing security analysts’ capability and capacity—beginning with curated, validated, and prioritized high-impact threat data rather than sifting through massive threat noise and intelligence data that is often irrelevant, outdated, and inaccurate.”

Security operations, threat analysts, and cyber risk analysts can try TacitRed for a free 30-day evaluation by visiting https://www.tacitred.com/trynow.

Tweet This: Cogility TacitRed recognized as a technology leader in new Digital Threat Intelligence Management Solutions – see the competitive ranking and download the report at https://tacitred.com/dtim2024/. #cybersecurity #tacticred #attacksurfacemanagement #cyberthreatintelligence #threatresponse

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Cogility TacitRed Named in Digital Threat Intelligence MR first appeared on AI-Tech Park.

]]>
Ontinue Introduces Microsoft Copilot for Security Readiness Workshop https://ai-techpark.com/ontinue-introduces-microsoft-copilot-for-security-readiness-workshop/ Fri, 07 Jun 2024 07:30:00 +0000 https://ai-techpark.com/?p=168673 New Workshop Designed to Help Organizations Understand How to Best Leverage AI and Maximize their Microsoft Security Investment Ontinue, a leading provider of AI-powered managed extended detection and response (MXDR) services and winner of the 2023 Microsoft Security Services Innovator of the Year award, today announced it now offers Microsoft...

The post Ontinue Introduces Microsoft Copilot for Security Readiness Workshop first appeared on AI-Tech Park.

]]>
New Workshop Designed to Help Organizations Understand How to Best Leverage AI and Maximize their Microsoft Security Investment

Ontinue, a leading provider of AI-powered managed extended detection and response (MXDR) services and winner of the 2023 Microsoft Security Services Innovator of the Year award, today announced it now offers Microsoft Copilot for Security Readiness workshops to help organizations understand how they can unlock the power of AI and get the most value from their Microsoft Security investments.

CISOs and their teams are inundated with claims about how artificial intelligence will change the cybersecurity landscape, and there is certainly a lot of potential. Recent reports found that 95% of respondents view AI models as vital for the success of their business, and 55% of organizations plan to adopt GenAI solutions within the next year.

Ontinue specializes in managed security operations tailored for Microsoft customers and its AI-powered MXDR service, ION, was built on the backbone of the Microsoft security and collaboration product portfolio. Ontinue aims to instill confidence in every organization by serving as an extension of their team, enhancing efficiencies, optimizing their investments, while strengthening their security postures. Earlier this year, Microsoft launched Microsoft Copilot for Security, a generative AI-powered assistant that empowers in-house security and IT teams to respond quickly to threats and upskill security practitioners. To help Microsoft Security customers understand how to get the most value out of Copilot for Security, Ontinue is offering a Microsoft Copilot for Security Readiness workshop.

“When an organization decides to implement AI-based technologies and services, most lack the expertise and therefore struggle to develop strategies and governance for the effective, safe implementation and usage of these offerings,” said Dave Gruber, Principal Analyst at ESG. “This is why finding the right Managed Security partner is so important, as they can help accelerate development and implementation of governance and security controls needed to ensure AI investments are secured and operationalized effectively.” 

The Microsoft Copilot for Security Readiness workshop is designed for Security Operations teams who are looking for guidance on implementing Copilot for Security securely and responsibly within their organization. The workshop offers:

  • A definitive understanding of whether Copilot for Security is right for your organization;
  • A solid understanding of how to use Copilot for Security to address your core use cases;
  • Copilot for Security Ninja certification preparation for all workshop attendees; and  
  • A best-practice blueprint for the secure and responsible implementation of Copilot for Security.

“Gen-AI is a key consideration for many organizations, and those already invested in Microsoft security are naturally intrigued by the potential benefits of Copilot for Security. At Ontinue, we see ourselves as an extension of our customers’ teams, and we’re happy to now offer this new workshop to help organizations maximize their security investments,” said Daniel Morris, Director of Consulting Services at Ontinue. “Copilot for Security makes in-house security teams faster and more efficient, and in conjunction with Ontinue’s ION MXDR service, we help organizations ensure around-the-clock protection while also increasing overall security program maturity, efficacy and scalability.”

For more information about Ontinue’s Microsoft Copilot for Security Readiness workshop, including dates and registration information please visit Microsoft Copilot for Security Workshop.

Are you attending Gartner Security & Risk Management of Infosecurity Europe this week?

If attending Gartner Security and Risk Management Summit, visit booth 316 to discuss the latest in cybersecurity, from GenAI threats to the impact of Copilot for Security.

If attending Infosecurity Europe, visit booth C169.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Ontinue Introduces Microsoft Copilot for Security Readiness Workshop first appeared on AI-Tech Park.

]]>
MedISAO Launches AI-Powered Vulnerability Analysis https://ai-techpark.com/medisao-launches-ai-powered-vulnerability-analysis/ Wed, 05 Jun 2024 10:20:48 +0000 https://ai-techpark.com/?p=168436 MedISAO’s Large Language Model-based approach will allow organizations to maintain the ability to manage and respond to vulnerabilities as the National Vulnerability Database works on a solution MedISAO, an organization composed of members of the medical device manufacturer community dedicated to improving medical device security through education, awareness, and advocacy,...

The post MedISAO Launches AI-Powered Vulnerability Analysis first appeared on AI-Tech Park.

]]>
MedISAO’s Large Language Model-based approach will allow organizations to maintain the ability to manage and respond to vulnerabilities as the National Vulnerability Database works on a solution

MedISAO, an organization composed of members of the medical device manufacturer community dedicated to improving medical device security through education, awareness, and advocacy, today announced a Large Language Model (LLM)-approach to analyze medical device vulnerabilities. Microsoft OpenAI Azure Service is being used as mitigation for the recent disruptions in the National Institute of Standards’ (NIST) National Vulnerability Database (NVD) updates, which have raised significant concerns in the cybersecurity community.

A recent report from VulnCheck found that NIST has analyzed less than 1 out of 10 vulnerabilities published in the NVD since mid-February of this year. According to the report, since February 12, 2024, 12,720 new vulnerabilities were added to NVD. However, over 11,000 of these vulnerabilities have not been analyzed, making it challenging for security professionals to determine vulnerabilities within their software. In response, MedISAO is leveraging advanced AI to maintain the flow and quality of vulnerability data to ensure that organizations can still access crucial vulnerability data.

By using an LLM agent, MedISAO’s system processes vulnerability information from NVD, MITRE, and other external sources, constructing CPE product and version match data to ensure continuous vulnerability enrichment, crucial for maintaining robust cybersecurity practices. This AI-driven approach is supported by Medcrypt’s Software Bill of Materials (SBOM) and vulnerability management tool, Helm. Historical data and a custom grammar parser are used to reduce inaccuracies and improve reliability. Daily updates enhance speed and efficiency in managing newly released vulnerabilities.

“Without NVD’s timely processing, managing and responding to newly disclosed vulnerabilities becomes severely hampered. Our approach is a crucial interim measure to ensure continuity and resilience in cybersecurity practices,” said Daniel Beard, MedISAO. “MedISAO remains committed to supporting the cybersecurity community by providing innovative solutions that address current challenges. As the industry awaits the full resumption of NVD operations, MedISAO’s AI-powered service stands as a vital resource for maintaining robust cybersecurity defenses.”

In May 2024, MedISAO announced its endorsement by the Food and Drug Administration (FDA) through a renewed Memorandum of Understanding (MOU) signed on April 18, 2024, marking a continued collaboration and highlighting the importance of improving the security posture of the medical device ecosystem and the healthcare industry at large. For more information, please visit www.medisao.com.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post MedISAO Launches AI-Powered Vulnerability Analysis first appeared on AI-Tech Park.

]]>
Resecurity Recognized As A Leader in Frost & Sullivan’s 2023 https://ai-techpark.com/resecurity-recognized-as-a-leader-in-frost-sullivans-2023/ Fri, 31 May 2024 11:15:00 +0000 https://ai-techpark.com/?p=168085 Resecurity, Inc. (USA), a leader in global cybersecurity services headquartered in Los Angeles, proudly announces its recognition in the prestigious Frost & Sullivan’s Global External Risk Mitigation and Management Market 2023 report. This annual report is an essential indicator of market trends and highlights the most influential vendors and tools shaping the cybersecurity...

The post Resecurity Recognized As A Leader in Frost & Sullivan’s 2023 first appeared on AI-Tech Park.

]]>
Resecurity, Inc. (USA), a leader in global cybersecurity services headquartered in Los Angeles, proudly announces its recognition in the prestigious Frost & Sullivan’s Global External Risk Mitigation and Management Market 2023 report. This annual report is an essential indicator of market trends and highlights the most influential vendors and tools shaping the cybersecurity and risk management landscape. Being featured validates Resecurity’s innovative approaches and its pivotal role in the sector.

Frost & Sullivan’s report commends Resecurity’s HUNTER team for its relentless pursuit of cutting-edge research and intelligence, which ensures that clients receive up-to-date and actionable cyber threat intelligence. This dedication has secured Resecurity consistent accolades for growth and an impressive customer retention rate of 100% year-over-year.

Martin Naydenov, senior industry analyst at Frost & Sullivan, notes, “Resecurity’s strategy of expanding access to robust threat intelligence and enhancing visibility into critical areas is a testament to its commitment to redefining the cybersecurity paradigm. This approach not only supports sustained growth but also solidifies its reputation as a leader in the field.”

Resecurity serves an extensive array of industries globally, providing clients with a cyber threat intelligence platform that integrates the latest threat data with their unique risk profiles and environments. Coupled with its digital risk protection (DRP) and other services, Resecurity offers a comprehensive suite of solutions that address the complexities of modern cyber threats.

Gene Yoo, CEO of Resecurity, comments, “We are honored by our inclusion in the Frost & Sullivan External Risk Mitigation and Management Market report for 2023. This recognition from such a respected industry authority confirms our status as a foremost provider of sophisticated risk management and threat intelligence solutions.”

The exposure in the Frost & Sullivan report is expected to further extend Resecurity’s influence in the cybersecurity industry, as many organizations rely on Frost & Sullivan for credible market research and intelligence. With strategic partnerships and a broad global presence, Resecurity is well-positioned to continue its expansion and promote its state-of-the-art threat intelligence and risk management solutions for Fortune 100 and government agencies.

The cybersecurity market is increasingly vital as the threat landscape evolves with more sophisticated cyber-attacks and new security challenges. Organizations must navigate challenges posed by both legacy and emerging threats. In this environment, having access to comprehensive, actionable intelligence is critical for staying ahead of threat actors and securing digital assets effectively.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Resecurity Recognized As A Leader in Frost & Sullivan’s 2023 first appeared on AI-Tech Park.

]]>