Facebook, tech firms meet with U.S. intelligence on 2020 election security

Reuters | September 05, 2019

Facebook, tech firms meet with U.S. intelligence on 2020 election security
U.S. technology companies including Facebook Inc (FB.O), Alphabet’s Google (GOOGL.O), Microsoft Corp (MSFT.O) and Twitter Inc (TWTR.N) met with U.S. intelligence agencies on Wednesday to discuss security strategies ahead of the November 2020 election. The companies’ security teams met representatives from the Federal Bureau of Investigation, the Office of the Director of National Intelligence, and the Department of Homeland Security at Facebook’s headquarters in Menlo Park. “The purpose was to build on previous discussions and further strengthen strategic collaboration regarding the security of the 2020 U.S. state, federal, and presidential elections,” Nathaniel Gleicher, Facebook’s head of cybersecurity policy, said in a statement. “Specifically, attendees talked about how industry and government could improve how we share information and coordinate our response to better detect and deter threats.” Social media companies are under pressure to ramp up security after what U.S. intelligence agencies have called an extensive Russian cyber-influence operation aimed at helping President Donald Trump get elected in 2016. Russia has repeatedly denied the allegations.

Spotlight

In this day and age when software is rife with vulnerabilities, as is evident in full disclosure lists and hacking incidence reports, security in the software lifecycle can simply no longer remain on the sidelines. Software security breaches and data loss have resulted in devastating fines, irreparable reputation damage, and in some cases have jeopardized the very survival of many companies and organizations. And while writing secure code and passing hack-resilient tests are important elements of software assurance, they represent only a starting point, a subset of the holistic umbrella term “Software Assurance”

Spotlight

In this day and age when software is rife with vulnerabilities, as is evident in full disclosure lists and hacking incidence reports, security in the software lifecycle can simply no longer remain on the sidelines. Software security breaches and data loss have resulted in devastating fines, irreparable reputation damage, and in some cases have jeopardized the very survival of many companies and organizations. And while writing secure code and passing hack-resilient tests are important elements of software assurance, they represent only a starting point, a subset of the holistic umbrella term “Software Assurance”

Related News

PLATFORM SECURITY

BT launches transformational new security platform, Eagle-i, to predict and prevent cyber attacks

BT Group | October 18, 2021

Relentless growth and ever-changing nature of the threat landscape dictates a new, proactive approach to cyber security Customers to benefit from advances in AI and automation, combined with BT's networking expertise, in transformational cyber defence platform Eagle-i builds on BT's recent security investment and partner ecosystem to address issues such as a more than 50 per cent increase in malware traffic over the last 6 months Business and public sector bodies continue to face an exponential growth in the volume and complexity of cyber attacks, with new research from BT identifying a more than 50 per cent increase in malware traffic over the last six months. Alongside a global shortage of skilled security professionals, organisations around the world are struggling to keep a lid on evolving cyber threats and maintain their defences. In response, BT is launching its most sophisticated cyber defence platform yet — Eagle-i. It combines BT's industry-leading network insight with advances in AI and automation to predict, detect and neutralise security threats before they get a chance to inflict damage. The platform has been designed to self-learn from the intelligence provided by each intervention, so that it constantly improves its threat knowledge and dynamically refines how it protects customers across a multi-cloud environment. Eagle-i will utilise an AI layer to provide real-time detection of issues and intelligent automated responses, enabling users to significantly speed up their reaction to security issues and outpace their cyber threats. It is also uniquely able to integrate with technologies from across the security ecosystem so that organisations can both optimise their capabilities and spot any holes in their defences without having to replace existing investments. The platform will underpin how BT protects its global operations and provide phased enhancements and increased functionalities for all BT's managed security services. Security is now at the top of the boardroom and government agenda yet many organisations are seeing their cyber risks increase to unmanageable levels. This situation demands a new, proactive approach. Eagle-i leverages the latest advances in AI and automation to continually monitor, learn and evolve so customers can stay a step ahead of cyber criminals. Kevin Brown, managing director, BT Security About BT BT Group is the UK's leading telecommunications and network provider and a leading provider of global communications services and solutions, serving customers in 180 countries. Its principal activities in the UK include the provision of fixed voice, mobile, broadband and TV (including Sport) and a range of products and services over converged fixed and mobile networks to consumer, business and public sector customers. For its global customers, BT provides managed services, security and network and IT infrastructure services to support their operations all over the world. BT consists of four customer-facing units: Consumer, Enterprise, Global and its wholly-owned subsidiary, Openreach, which provides access network services to over 650 communications provider customers who sell phone, broadband and Ethernet services to homes and businesses across the UK.

Read More

DATA SECURITY

Exclusive Networks Signs Global Deal with Infinipoint to Extend Zero-Trust Security to Device Identity

Infinipoint | November 23, 2021

Exclusive Networks, a global trusted cybersecurity specialist for digital infrastructure, today announced its worldwide distribution agreement with Infinipoint, a provider of a pioneering Device-Identity-as-a-Service (DIaaS) security solution that uniquely enables the critical device pillar of the zero-trust cybersecurity approach. Focusing on mid-market aligned partners – initially in Europe covering France, Germany and the UK with a view to extending across global territories from early 2022 – Exclusive will be supporting Infinipoint growth targets both through net new opportunities and by capitalising on technology integrations (i.e. SASE, MFA, ZTNA, etc.) and alliances from within its vendor portfolio. Commenting on the announcement, Denis Ferrand, VP Global Vendor's Alliances & Business Development at Exclusive Networks said, "Of the seven pillars propping up the concept of zero-trust architecture (ZTA), partners have struggled most to position a strong story around zero-trust for device access because specialist solutions simply haven't existed. That's all changed with Infinipoint and DIaaS. Enterprises know that implementing the zero-trust for devices piece right is essential – and with Infinipoint we're breaking down that barrier. It's a great solution and fits perfectly into our cyber ecosystem. DIaaS also naturally supports a multitude of consumption models which makes it readymade for scaling out globally via our X-OD on-demand platform." Launched in July this year, DIaaS has been gaining significant market traction. Exclusive will build on this demand to accelerate and scale globally through its specialist go-to-market services and ecosystem of over 18,000 channel partners. "Infinipoint is pioneering the Device-Identity-as-a-Service security category and is the first and only solution to provide Single Sign-On (SSO) authorisation integrated with risk-based policies and self service one-click remediation for non-compliant and vulnerable devices. Ariel Kriger, VP Global Sales & Business Development at Infinipoint. "Exclusive Networks was the natural choice to support our market acceleration, possessing the necessary specialist cyber expertise and global scale to enthuse, educate and serve pent-up partner demand for this gap in the zero-trust market. Extending a zero-trust security posture to devices remains an essential and urgent requirement for every work-from-anywhere workforce. And to do it properly you have to do it by design, with adaptive access controls acting on device context, continuously checking device posture not just at the point of access – all the while not burdening the IT department or negatively impacting end user productivity. None of this is easy to do, but we've done it and now partners and their customers can reap the benefit." About Exclusive Networks Exclusive Networks is a global trusted cybersecurity specialist for digital infrastructure helping to drive the transition to a totally trusted digital future for all people and organisations. Our distinctive approach to distribution gives partners more opportunity and more customer relevance. Our specialism is their strength – equipping them to capitalise on rapidly evolving technologies and transformative business models. The Exclusive Networks story is a global one with a services-first ideology at its core, harnessing innovation and disruption to deliver partner value. With offices in 40 countries and the ability to service customers in over 150 countries across five continents, Exclusive Networks has a unique 'local sale, global scale' model, combining the extreme focus and value of local independents with the scale and service delivery of a single worldwide distribution powerhouse. More at www.exclusive-networks.com. About Infinipoint Infinipoint is a pioneer in the Device-Identity-as-as-Service security category to extend a true zero-trust security posture to devices. Infinipoint is the only solution that provides Single Sign-On (SSO) authorization integrated with risk-based policies and one-click remediation for non-compliant and vulnerable devices. This reduces risk by protecting access to an organization's data and services while transforming devices to support a world-class security posture. Infinipoint is able to do all this in a productive way that maintains business continuity with no disruption to the workforce.

Read More

SOFTWARE SECURITY

midmarket businesses, NormCyber has launched Cyber Security and Data Protection as a Service offerings.

NormCyber | March 10, 2021

NormCyber, a main supplier of oversaw network safety and information insurance administrations, today reported the presentation of its Cyber Security and Data Protection as a Service arrangements. Planned explicitly to address the security and individual information difficulties of midmarket associations, the two administrations offer degrees of insurance and ability which are generally simply available to endeavors, for around 33% of the expense of an in-house arrangement. Digital protection as a Service from standard. unites the three mainstays of a powerful digital safeguard technique – individuals, interaction and innovation – and gives clients close to ongoing perceivability of their digital related danger through its online client entry. The help consolidates innovation from worldwide network protection pioneers like FireEye, Fortinet and Qualys, digital mindfulness and phishing preparing from CybSafe, and accreditation to Cyber Essentials or Cyber Essentials Plus. CSaaS can be conveyed inside merely days, and is offered for one month to month membership expense. Information Protection as a Service is a virtual DPO offering driven by a completely qualified information insurance legal advisor. Accessible as either a Basic or Premium assistance, it underpins clients in accomplishing consistence with the GDPR and other information assurance laws, just as assisting them with cultivating believed, reasonable associations with clients and partners by showing their obligation to ensuring singular security rights. "Midmarket organisations have traditionally been underserved and underrepresented when it comes to both cyber security and data protection," said Pete Bowers, COO at NormCyber. "Regarded as too complex and expensive for many, these companies have had to either make do with a limited selection of point products, or simply hope that a breach will never happen to them. We don't think it should be that way, which is why we developed both of these services to deliver the levels of protection they need, without the cost, resource and stress burden that they would rather do without"

Read More