Latest

Cloud Access Security Brokers (CASB)

Cato Networks Raises $238M on $3B Valuation to Move Upmarket

Michael Novinson  •  September 22, 2023

A late-stage SASE startup led by a serial entrepreneur hauled in a massive equity investment to address the feature and capability needs of large enterprises. The $238 million in funding will allow Cato Networks to more tightly align CASB and DLP with SASE to safeguard cloud apps and sensitive data.

►

Leadership & Executive Communication

Google CISO Phil Venables on Building Strong CIO-CISO Bonds

Michael Novinson  •  September 22, 2023

Increased engagement from boards on digital transformation initiatives around cloud and AI adoption has spurred greater investment in cybersecurity, said Google Cloud CISO Phil Venables. Systems built and designed decades ago have become increasingly difficult to secure, he said.

Cyberwarfare / Nation-State Attacks

Chinese, North Korean Nation-State Groups Target Health Data

Marianne Kolbasuk McGee  •  September 22, 2023

Chinese and North Korean nation-state groups continue to pose significant "unique threats" to the U.S. healthcare and public health sector, including data exfiltration attacks involving espionage and intellectual property theft, federal authorities warned Thursday in a brief naming the top groups.

Fraud Management & Cybercrime

Hong Kong Consumer Watchdog Suffers Major Ransomware Attack

Jayant Chakravarti  •  September 22, 2023

The Hong Kong Consumer Council said it had detected a severe ransomware attack on Wednesday that compromised 65 gigabytes of data, including employee and client information, internal records and possibly the data of current and former staff and their family members.

Cybercrime

Nation-State Actors Unleash Stealthy, LuaJIT-Based Malware

Jayant Chakravarti  •  September 22, 2023

SentinelOne observed suspected cyberespionage actors of unknown origin using modular backdoors and highly stealthy tactics in August to target telecommunication companies in the Middle East, Western Europe and South Asia. The group, tracked as Sandman, is using the novel backdoor LuaJIT.

Fraud Management & Cybercrime

Ohio Community College Data Theft Breach Affects Nearly 300K

Marianne Kolbasuk McGee  •  September 21, 2023

An Ohio community college is notifying 290,000 people of a data theft breach this spring that may have compromised their personal and health information. Security researchers say small schools such as this are now favored targets. Some 80% of schools have reported hacking incidents in the past year.

Open XDR

Cisco to Bring XDR, SIEM Together With $28B Splunk Purchase

Michael Novinson  •  September 21, 2023

Cisco's proposed $28 billion buy of Splunk allows businesses to move from threat detection and response to threat prediction and prevention by combining XDR and SIEM. The deal brings together Cisco's newly released XDR platform with Splunk's long-standing SIEM technology.

Open XDR

Forecasts of SIEM Death Premature - Just Ask Cisco, Splunk

Michael Novinson  •  September 21, 2023

It turns out SIEM isn't on life support after all. Cisco is providing 28 billion reasons to believe enterprises aren't scrapping the security operations center staple anytime soon, even though rivals with other types of security technology have attempted to write SIEM's obituary for years.

Network Detection & Response

WatchGuard Buys CyGlass to Bring NDR to Midmarket Customers

Michael Novinson  •  September 20, 2023

WatchGuard purchased a Massachusetts company to extend network detection and response capabilities traditionally reserved for high-end enterprises to the midmarket through MSPs. The deal gives WatchGuard clients more visibility into east-west network traffic and activity taking place on the cloud.

Cybercrime

Feds Warn Health Sector of Lazarus Group Attacks

Marianne Kolbasuk McGee  •  September 20, 2023

Federal authorities are warning of "significant risk" for potential attacks on healthcare and public health sector entities by the North Korean state-sponsored Lazarus Group involving exploitation of a critical vulnerability in 24 Zoho ManageEngine products.

Critical Infrastructure Security

Microsoft: China Group Hacking Asian Telecom Phone Records

Jayant Chakravarti  •  September 20, 2023

Microsoft said Chinese state-affiliated groups have stepped up cyberattacks in 2023 against countries in the South China Sea region - even hacking telecom firms to steal call records for cyberespionage. The most active group, Raspberry Typhoon, targets governments, militaries and infrastructure.

►

Cyberwarfare / Nation-State Attacks

Is the Private Sector Prepared for Cyberwarfare?

Suparna Goswami  •  September 20, 2023

The Ukraine war underscores the threats posed by cyberwarfare. India faces its own threats, which means public and private sectors need to work together to defend against nation-state attacks, according to retired Lt. Cdr. Antony KM, vice president of internal audit and cybersecurity at NAB India.