IBM Acquires Randori, Quantum Devices, Microsoft Defender, & RapidFort – ESW #278
Then, in the enterprise security news, CyberInt raises $28M for attack surface detection, RapidFort raises $8.5M for… pre-attack surface detection? Managing and monitoring your quantum devices? Making sure you don’t lose access to your crypto wallets, IBM acquires Randori, Contrast Security makes some of their tools free, Rumble adds more interesting new features, Microsoft Defender for everyone, and more!
Announcements
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
Hosts
Adrian Sanabria
Principal Researcher at The Defenders Initiative
- 1. FUNDING: Cyberint raises $28 million to help organizations gain visibility into external risk exposure
- 2. FUNDING: RevealSecurity Raises $23M
Sounding a lot like CASBv2 from the descriptions - detecting insider threat in SaaS, etc.
- 3. FUNDING: Attack surface management platform RapidFort raises $8.5M – TechCrunchRapidFort is NOT an attack surface management platform. At least, not according to the current definition of this term. When you say "ASM" these days, the term invokes thoughts of scanners that discover abandoned, vulnerable assets exposed to the public Internet. But instead of finding existing security/tech debt, Rapidfort interestingly attempts to avoid sending it out there in the first place, by filtering out unnecessary and vulnerable components BEFORE they're put into production.
- 4. FUNDING: Quickpass Cybersecurity Raises $7 Million to Secure MSPs and Automate Helpdesk Security
- 5. FUNDING: evolutionQ News Release June 13, 2022 – evolutionQ Secures US$5.5 Million in Series A Funding for Global Expansion"The quantum-safe software allows organizations building a network based on Quantum Key Distribution devices to easily deploy and cost-effectively manage quantum technologies throughout their network." Huh?
- 6. FUNDING: Firmware Supply Chain Company Binarly Raises $3.6 Million from WestWave Capital, Acrobator VenturesDoes Eclypsium have competition??
- 7. FUNDING: Kriptos Raises US$3.1 Million To Address Sensitive Data BreachI don't think this translated well. Bi-lingual California-based Kriptos discovers and classifies data, but from this title, it sounds like they just needed money to pay for a breach! Data security is definitely back, and it will be interesting to see what early adopters say - is Data Security 2.0 better at DLP/classification than the original round of products in this space?
- 8. FUNDING: Bunkyr raises over $1M to bring frictionless security to developers and end users • BunkyrTwo things caught my attention here: 1. As I've previously mentioned, cryptocurrency and especially hardware (cold) wallets are a challenge for the average consumer and it's painful to see all the folks losing thousands or tens of thousands of dollars to a forgotten pin or passphrase. Even Joe Grand is running a company that attempts to recover wallets now. 2. Though this company's primary focus is ensuring cold wallet owners never lose access, they manage to completely avoid mentioning cryptocurrency or wallets in the press release. I don't think it's a coincidence, but it still leaves me wondering what they're worried about.
- 9. ACQUISITIONS: IBM bolsters cyber security offerings with Randori acquisition
- 10. ACQUIHIRE: Darkbit Founders Join Aqua Security to Bolster Cloud Native Security ExpertiseBoth of Darkbit's founders join Aqua. They're not calling it an acquisition, so we won't either.
- 11. PARTNERSHIPS: We’ve joined the FIDO Alliance to build a better future for authentication
- 12. NEW PRODUCTS: Jit aims to simplify product security for developersNot to be confused with git
- 13. NEW PRODUCTS: Contrast Security Makes Enterprise-Class Code Security Testing Tools Available to All Developers for Free
Free code scanning!
- 14. NEW PRODUCTS: SafeBreach Unveils SafeBreach Studio
- 15. NEW FEATURES: Noname Security Launches Most Advanced Global API Security Solution on the Market Delivering Greater Scalability and Performance
- 16. NEW FEATURES: Rumble 2.14: Sync assets, software, and vulnerability data from Tenable, run external discovery from our cloud, and extend your Microsoft Azure coverageRumble continues to impress and now has a large number of integrations that pull additional asset data and enrichment data into Rumble. List of integrations here: https://www.rumble.run/docs/integrations/
- 17. NEW PRODUCT: AnoMarkAn interesting open source product that baselines (trains a model) on what's normal in your environment and can then alert when abnormal command-line parameters are used.
- 18. NEW PRODUCT: Microsoft Defender launches on Windows, macOS, iOS, and AndroidDefender is now cross platform!
- 19. RECOMMENDED READING: The Tar Pit of CSPM – Chris Farris
- 20. RECOMMENDED READING: The Philosphy of Prevention – Chris Farris
- 21. TRENDS: Israel’s most overvalued cybersecurity startups exposed – reportThe market correction heats up in InfoSec as Globes spills the tea on valuation multiples for some of the largest unicorns in security.
- 22. RESEARCH: Password policies of most top websites fail to follow best practicesCould it be that MFA has made password requirements complacent, or are tech companies neglecting security and their customers?
- 23. SQUIRREL: How Git Came to Behttps://twitter.com/swyx/status/1536832603411451905?t=NQ5XXCXUvYC9a5bC04cbyQ&s=09
Tyler Shields
VP Traceable.ai, Cyber Angel Investor and Advisor at 90 Degree Ventures
