Data Security

AdvIntel & KPMG LLP announce alliance around cyber threat detection and ransomware response

AdvIntel, a leading cybersecurity threat prevention and loss avoidance company with a unique and unparalleled ability to detect and disrupt ransomware and KPMG LLP, the global audit, tax and advisory firm, today announced an alliance around AdvIntel's "Andariel" Threat Prevention & Loss Avoidance Platform.

The profile of ransomware victims has moved upmarket over the past year as the adversaries have enhanced their capabilities faster than cyber defenses at an alarming trend.

 The state of the current cyber security market is full of uncertainties. The current breach response is traditionally reactive, leading to a breach after a breach. Now, with the unique alliance, we are effectively reversing the traditional breach paradigm with the vision to disrupt breaches before they turn into ransomware. Our goal is to bring the world closer to a ransomware-free future via the proactive and preventative breach response.

According to AdvIntel CEO, Vitali Kremez

Andariel' s ability to track botnet initial compromises enables AdvIntel' s customers to take action before data and personally identifiable information is leaked, which could prevent regulatory, reputational, and legal losses related to data breach legal liability.

Ed Goings, KPMG National Lead for Cyber Response Services stated "Intelligence of this level is a complete game changer. Many companies state they provide threat intelligence, but this is the first time I have seen actionable intelligence that can be used to potentially identify corporate ransomware attacks before they happen."

Moreover, some of the tracked botnets have a unique relationship with some of the monitored ransomware families. Therefore, by timely identifying botnet activity in their systems, AdvIntel's clients can identify and potentially avert tremendous losses from ransomware attacks.

Incident response case support through Andariel enables a corporate cyber investigation team by providing immediate information on the "patient zero", the way cyber infection spreads through the system, as well as the vulnerabilities which lead to the compromise. Andariel aims to significantly decrease the time and resources spent on investigations, as well as to decrease the insurance claims and coverage of the remediation effort.

AdvIntel and KPMG will jointly go to market to combat cyber incidents, by providing early-warning alerting, applied threat detection, and long-term strategic threat intelligence. AdvIntel and KPMG are already working jointly with several cyber insurance providers around the threat prevention and loss avoidance needs of their customer base.

About AdvIntel
AdvIntel is the world's first and only cybercrime and adversarial disruption firm which leverages Andariel, a next-generation threat prevention and loss avoidance platform which has visibility beyond a company's own internal network. Andariel sheds light on the botnet and breach ecosystem in order to spot threats and compromises preemptively and proactively. Whether prolific botnets, ransomware syndicates, cyber extortionists, carders, advanced persistent threat groups, or crimeware operators, Andariel ensures ultimate visibility into these threats before they actualize and do harm.

About KPMG LLP
KPMG LLP is the U.S. firm of the KPMG global organization of independent professional services firms providing audit, tax and advisory services. The KPMG global organization operates in 146 countries and territories and has close to 227,000 people working in member firms around the world. Each KPMG firm is a legally distinct and separate entity and describes itself as such. KPMG International Limited is a private English company limited by guarantee. KPMG International Limited and its related entities do not provide services to clients. Some or all of the services described herein may not be permissible for KPMG audit clients and their affiliates or related entities.

Spotlight

Spotlight

Related News

Security Audit and Compliance

Lumen Enhances its SASE Solution with New Security Features Addition

Lumen Technologies | September 13, 2023

Lumen Technologies announces the launch of key security enhancements to its industry-leading secure access service edge product. The company’s SASE Solutions represents a first-of-its-kind, fully digital experience for purchasing, configuring, and overseeing enterprise SASE. The latest features incorporated into Lumen SASE Solutions are security service edge and cloud-hosted gateways. On September 12, 2023, Lumen Technologies, a leading provider of Secure Access Service Edge (SASE) solutions, committed to advancing human progress through technology facilitating the connection of people, data, and applications, announced the addition of key enhancements to its landmark SASE product. The addition of new features makes lumen SASE solutions even more simplified and flexible for customers. Lumen SASE Solutions represents a pioneering, entirely digital experience for purchasing, configuring, and managing enterprise SASE. This is a significant step in Lumen's ongoing efforts to drive innovation and foster growth. Notably, the SASE product improvements launch are a direct outcome of valuable customer feedback. The Lumen SASE approach focuses on simplification in order to deliver flexible, secure, and scalable SASE solutions to organizations of all sizes and industries. Senior Director of SASE Product Management at Lumen, Darren Wolner, said, There has been a rapid adoption of cloud-based services as more organizations implement hybrid work, but security is paramount to any cloud-based experience. This means savvy organizations soon realized a whole new set of requirements and challenges. We quickly enhanced the product to fit their requirements. [Source – Cision PR Newswire] Darren mentioned that Lumen has a strong focus on meeting customer wants and needs. He cited the latest SASE updates as a prime illustration of this commitment. The new capabilities added to Lumen SASE Solutions include: Security Service Edge (SSE) SSE encompasses a suite of integrated, cloud-centric security capabilities, which feature cloud-hosted gateways. These capabilities are designed to ensure secure access to websites, facilitate the safe sharing of sensitive data, and manage user permissions for software-as-a-service (SaaS) applications. These solutions are delivered in partnership with prominent SD-WAN and security providers. Cloud-hosted Gateways Cloud-hosted gateways offer organizations the flexibility to adopt 'grow as they go' network and security management features as they scale without the necessity of on-premises equipment. In addition to the global expansion of Lumen technologies, customers based in the US can now deploy premise-based SASE services to locations in EMEA and Canada. Pete Finalle, Research Manager with IDC, stated, The new, hybrid perimeter – encompassing the main office down to the remote workforce – has collided with multi-cloud resources. This has created numerous networking and security complexities that are difficult to solve without a customer outcomes-based approach, which few companies can provide. [Source – Cision PR Newswire] Finalle pointed out that Lumen has a distinctive position to deliver real business outcomes through a comprehensive, cloud-based network security stack. This stack significantly benefits from Lumen's presence in both network and cloud infrastructure. Additionally, he mentioned that the company's digital customer experience and managed approach to resolving the intricate security and networking challenges allow them to mitigate the deployment and management difficulties that frequently hinder the adoption of SASE.

Read More

Software Security

Fortinet Unveils High-Performance Switches for Modern Campus Security

Fortinet | October 11, 2023

Fortinet has announced the introduction of two new campus switches, the FortiSwitch 2000 and 600. These systems are designed with high performance and port density, ensuring they meet the requirements of modern campuses and can easily scale as connectivity demands increase. Organizations require high-performance switches that smartly manage AP traffic and prevent bottlenecks to ensure network availability and a favorable user experience. Fortinet, a leading global cybersecurity provider pioneering the integration of networking and security, has unveiled two new campus switches, the FortiSwitch 600 and 2000. These switches cater to the expanding connectivity and security requirements of campus, offering embedded intelligence, high performance, and seamless integration with FortiGuard AI-Powered Security Services and Fortinet’s AIOps management tools. The FortiSwitch 600 series is an innovative multi-gigabit secure campus access switch featuring up to 5GE access and 25GE uplinks. This switch optimizes network performance by smartly managing traffic from next-generation APs to crucial business destinations. On the other hand, the FortiSwitch 2000 series is a robust campus core switch specifically designed for larger, intricate campus setups. It aggregates high-performance access switches such as the FortiSwitch 600. Both series come with a dual power supply, ensuring the redundancy essential for today's high-performance campuses. Chief Marketing Officer and EVP of Product Strategy at Fortinet, John Maddison, stated, Fortinet has delivered secure switching solutions for 20 years, making it uniquely positioned to enable customers with a robust secure connectivity solution for the entire LAN. We’re the only vendor providing fully converged wireless and wired AI-powered security and networking through a single platform, providing security and visibility from the moment a user or device connects to the network. [Source – Globe Newswire] Numerous organizations are investing in next-gen wireless access points (APs) to offer increased connectivity as users demand more bandwidth than ever before. However, legacy switching solutions often cannot keep up. To ensure positive user experience and network availability, organizations require high-performance switches that intelligently coordinate AP traffic and prevent bottlenecks in order. Jeff Howlett, Chief Information Officer at Meredith College, said, Our campus environment supports thousands of faculty and students, and Fortinet switches assisted us modernize our infrastructure to provide the consistent connectivity and Power-over-Ethernet they require. And by managing all of our switches through FortiGate NGFWs, we consolidated point products into a unified platform that provides more visibility into potential security risks than we have ever had before. [Source – Globe Newswire] For the past two decades, Fortinet has been at the forefront of integrating networking and security in both wired and wireless LAN solutions. The newly introduced switches are the latest enhancements to its secure connectivity platform, offering complete access control, security, and unified management across the entire LAN infrastructure.

Read More

Software Security

BlackBerry Announces Generative AI Powered Cybersecurity Assistant

PR Newswire | October 23, 2023

BlackBerry Limited (NYSE: BB; TSX: BB) today announced its new Generative AI powered assistant for Security Operations Center (SOC) teams. The enterprise-grade solution acts as a SOC Analyst providing Generative AI based cyberthreat analysis and support to enhance CISO operations. It leverages private large language models (LLMs) for greater accuracy and data privacy. The solution, which will be available to BlackBerry's Cylance AI customers, predicts customer needs to proactively provide information rather than requiring users to manually ask questions and compresses research hours into seconds. Fully integrated in the Cylance Console, it produces a natural workflow instead of an inefficient chatbot experience. Cylance launched as the industry's first AI cybersecurity solution and the industry's first predictive cybersecurity solution. Predictive cybersecurity is a must for emerging cyber risks and seen as the future of cybersecurity. BlackBerry pioneered the AI cybersecurity market and our commitment to innovation means we are once again at the forefront of the industry as we unveil our Generative AI powered cybersecurity assistant, said Nathan Jenniges, SVP & GM Spark, Cybersecurity Business Unit, BlackBerry. This new solution will enable our customers to modernize their SOC operations helping them to stay a step ahead of the adversary. It will be invaluable to CISOs in overcoming the challenges they face, including an evolving threat landscape and resource constraints. BlackBerry has delivered transformative innovation for almost forty years and continues to set a standard in the technology industry. In the field of AI this is evidenced by the company today having more than five times the AI/ML patents than competitors and AI being integrated across the company's product portfolio. Furthermore, BlackBerry earlier this month was one of the first signatories of Canada's voluntary Code of Conduct on the responsible development and management of advanced Generative AI systems. "Generative AI has the potential to deliver tremendous economic value, making it an area of focus for BlackBerry. Our patent portfolio already includes Generative AI," said Charles Eagan, Chief Technology Officer, BlackBerry. "Throughout our innovations we take our commitment to delivering enterprise-grade solutions seriously – innovations that deliver value rather than react to hype – as demonstrated by today's announcement and our being one of the first signatories of Canada's voluntary Generative AI Code of Conduct." BlackBerry's Generative AI powered cybersecurity assistant will initially be made available to a select group of customers. For more information register for BlackBerry Summit, taking place on October 17, where leaders from government, enterprise and BlackBerry will reveal the future of IoT, IT and Cybersecurity and showcase the latest BlackBerry innovations.

Read More