Check Point CloudGuard Log.ic Provides Threat Protection and Context-Rich Security Intelligence in the Public Cloud

Microwire info | June 12, 2019

Check Point CloudGuard Log.ic Provides Threat Protection and Context-Rich Security Intelligence in the Public Cloud
Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a leading provider of cyber security solutions globally, today announced the release of CloudGuard Log.ic, a solution which delivers cloud-native threat protection and security intelligence. Using CloudGuard Log.ic, customers can now see every data flow and audit trail in today’s elastic cloud environments, and make sense of cloud data and activities to expedite forensic investigation processes. CloudGuard Log.ic effectively detects cloud anomalies, blocks threats and intrusions, and delivers context-rich visualisation to enable thorough investigations into security incidents in public cloud infrastructures such as AWS. Log.ic joins Check Point’s CloudGuard family of cloud security products. An upcoming cloud security survey conducted for Check Point by CyberSecurity Insiders found that the biggest operational cloud security headaches IT organisations struggle with are compliance (34%) and lack of visibility into infrastructure security (33%).  While a majority of organisations say their cloud instances have not been hacked (54%), an alarming 25% did not know whether they had been breached or not. Fifteen percent of organizations confirmed they had experienced at least one cloud security incident.

Spotlight

Fraudsters use ever-morphing cyber fraud methods over the holidays. NuData’s intelligence supports industry trends that e-commerce is increasingly mobile and high-risk. NuData Security analyzed over 80 billion behavioral events annually. Increased fraud & risk across the board.

Related News

DATA SECURITY

Cybersecurity Startup ActZero Announces MDR for Cloud Services

ActZero | October 06, 2021

ActZero, the cybersecurity startup making best-in-class security accessible for businesses of all sizes, today announced the launch of its managed detection and response for cloud-based services. I'm thrilled to debut our MDR for Cloud Services solution to deliver more comprehensive threat detection to our customers,The reality is most cybersecurity solutions haven't kept pace with the dynamic nature of how we live and work. Businesses are being impacted by attacks that not only shut down and compromise physical devices and networks, but also affect their cloud environments — cloud applications and infrastructures are often vulnerable due to low security maturity. Our MDR service offers the industry's most impactful set of detections and response actions for Cloud software-as-a-Service (SaaS) and infrastructure-as-a-service (IaaS) solutions, and plays to our particular strengths as a comprehensive, integrated data analysis and threat hunting solution. We believe this is the future of cybersecurity and the key to business continuity in the virtual era. Chris Finan, Chief Operating Officer of ActZero An estimated 90 percent of businesses use some type of cloud-based service, the strongest signal yet that the virtual era has officially arrived. At the same time, the very flexibility that makes cloud offerings appealing also makes them vulnerable to cyberthreats, such as unauthorized access and insecure APIs. Cloud-based services are often a blind spot in a company's security posture — especially because threat actors can easily take advantage of over-privileged accounts and misconfigured controls to access broad corporate data sets and critical business systems. ActZero's data-driven MDR platform provides businesses with holistic, broad threat detection and comprehensive response across endpoints, network, and a wide range of cloud SaaS and IaaS solutions. ActZero's continuously-tuned machine learning models can unravel an entire attack more quickly than traditional detection and response solutions, precisely detecting threats earlier, wherever they may appear in a customer's environment. ActZero's out-of-the-box MDR offering includes support for Microsoft 365, Microsoft Azure, AWS, and Google Workspace, with more coverage in development. The new offering not only detects threats and alerts customers, but also provides rapid response to contain and remediate immediate cloud threats at machine speed. ActZero's MDR service is powered by both supervised and unsupervised machine-learning models and expert threat hunters. 'In-environment' models learn from all customers' data, unlocking powerful network effects, but are tailored for each customer. These models also take advantage of 'human-in-the-loop' feedback to learn continuously. ABOUT ACTZERO ActZero is a cybersecurity startup that makes small- and mid-size businesses more secure by empowering teams to cover more ground with fewer internal resources. Our intelligent managed detection and response service provides 24/7 monitoring, protection and response support that goes well beyond other third-party software solutions. Our teams of data scientists leverage cutting-edge technologies like AI and ML to scale resources, identify vulnerabilities and eliminate more threats in less time. We actively partner with our customers to drive security engineering, increase internal efficiencies and effectiveness and, ultimately, build a mature cybersecurity posture. Whether shoring up an existing security strategy or serving as the primary line of defense, ActZero enables business growth by empowering customers to cover more ground.

Read More

DATA SECURITY

Google Announces Cybersecurity Action Team to Support the Security Transformations of Public and Private Sector Organizations

Cybersecurity Action Team | October 13, 2021

Google announced the Google Cybersecurity Action Team. Made up of experts from across the company, the Google Cybersecurity Action Team will be the world's premier security advisory team with the singular mission of supporting the security and digital transformation of governments, critical infrastructure, enterprises and small businesses. To deliver on this mission, the Google Cybersecurity Action Team will provide: Strategic advisory services for customers' security strategies, including transformation workshops and educational content. This function will advise customers on the structure of their digital security transformation and provide program management and professional services support. Trust and compliance services that map our global compliance certifications to industry control frameworks, enabling customers to simplify their compliance journey. Security customer and solutions engineering that deliver proven blueprints and architectures for deploying Google Cloud products and services securely and in accordance with regulatory requirements, as well as comprehensive solutions for autonomic security operations, cyber resilience and more. Threat intelligence and incident response services, which include threat briefings, preparedness drills, incident support and rapid response engagements to stay on top of the evolving security landscape. The vision of this team is to guide customers through the cycle of security transformation - from their first transformation roadmap and implementation, through increasing their cyber-resilience preparedness for potential events and incidents, and engineering new solutions as requirements change. This effort will begin within Google Cloud, building on our close partnerships with organizations of all sizes, and will evolve to bring Google security to more organizations as it progresses. "Cybersecurity is at the top of every C-level and board agenda, given the increasing prominence of software supply chain exploits, ransomware, and other attacks. To address these unprecedented security challenges facing organizations in every industry today, we are announcing the creation of the Google Cybersecurity Action Team," said Thomas Kurian, CEO of Google Cloud. "The Google Cybersecurity Action Team is part of our ongoing commitment to be the best partner for our enterprise and government customers along their security transformation journey." Recent attacks like USAID, Colonial Pipeline, and Solarwinds all speak to a major shift in the needs of threat protection. In August, Google dedicated $10 billion over the next five years to strengthen cybersecurity, including expanding zero trust programs, securing software supply chain frameworks, enhancing open-source security and strengthening the digital security skills of the American workforce. The Google Cybersecurity Action team is one of our efforts under these commitments. "The Cybersecurity and Infrastructure Security Agency (CISA) recently established the Joint Cyber Defense Collaborative (JCDC). This initiative will unite government and private sector entities to enhance efforts to prevent and respond to malicious cyber activity against the nation's critical infrastructure," said CISA Director Jen Easterly. "It's great to see a large company like Google Cloud orient itself to support the cybersecurity of all organizations large and small through its Cybersecurity Action Team, and as part of the JCDC and other initiatives, we look forward to partnering with them and other tech companies in this vital effort." "Google Cloud has been a critical partner in the BBVA security journey, helping us protect our customers' sensitive and proprietary data with modern frameworks like zero trust and secure-by-default products like Google Workspace," said Alvaro Garrido, Chief Security Officer at BBVA. "We look forward to the strategic services and guidance the Google Cybersecurity Action Team will deliver as we continue on our security transformation." Under the Google Cybersecurity Action Team, Google Cloud will deliver full spectrum security and customer engineering solutions that will help organizations address business and security challenges. These will build on existing offerings like Autonomic Security Operations, which helps businesses transform their organization's Security Operations Center (SOC) and Web App and API Protection, which provides customers a comprehensive solution for protecting against modern internet threats. Today, Google Cloud announced a new security and resiliency framework that delivers customers a comprehensive security management program with cloud technologies that are aligned to the National Institute of Standards and Technology's Cybersecurity Framework. Additionally, Google also announced its new Work Safer offering, designed to help organizations, their employees, and partners collaborate and communicate securely and privately in today's hybrid work environment. It uniquely brings together the cloud-native, zero-trust solutions of Google Workspace with industry-leading solutions from across Google and its cybersecurity partners, CrowdStrike and Palo Alto Networks. Customers need a consistent approach to preparing for and defending against cybersecurity threats,Our comprehensive suite of security solutions delivered through our platform and amplified by the Google Cybersecurity Action Team will help protect organizations against adverse cyber events with capabilities that address industry frameworks and standards. Phil Venables, Vice President and Chief Information Security Officer at Google Cloud and founder of the Google Cybersecurity Action Team About Google Cloud Google Cloud accelerates organizations' ability to digitally transform their business with the best infrastructure, platform, industry solutions and expertise. We deliver enterprise-grade solutions that leverage Google's cutting-edge technology – all on the cleanest cloud in the industry. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

Read More

Bugcrowd #1 Crowdsourced Security Company Announces Launch of Bugcrowd M&A Assessment

Bugcrowd | August 20, 2020

Bugcrowd, the #1 crowdsourced security company, today announced the launch of Bugcrowd M&A Assessment (Mergers and Acquisitions), a pre-packaged bundle of security tests that combine remotely-deployed penetration testing with the advanced asset discovery, alerting, attribution, prioritization, and management capabilities of the Bugcrowd platform. Organizations can initiate these tests in 72 hours or less—record time for the industry—and access results in real-time, expediting an evidence-based evaluation of a merger target’s cybersecurity posture. “By 2022 60% of organizations engaging in M&A activity will consider cybersecurity posture as a critical factor in their due diligence process, up from less than 5% today,” states Gartner in their report, Cybersecurity is Critical to the M&A Due Diligence Process. Gartner also notes that, “the inability to manage the integration of cybersecurity practices poses its own risks.”

Read More

Spotlight

Fraudsters use ever-morphing cyber fraud methods over the holidays. NuData’s intelligence supports industry trends that e-commerce is increasingly mobile and high-risk. NuData Security analyzed over 80 billion behavioral events annually. Increased fraud & risk across the board.