DATA SECURITY

XM Cyber Confirms Cortex XSOAR Integration with Palo Alto Networks

XM Cyber | May 05, 2021

XM Cyber, the multi-award-winning leader in Attack-Centric Exposure Prioritization, revealed today's integration with Palo Alto Network's Cortex XSOAR security orchestration automation and response (SOAR) platform. This new integration adds one-click access to risk-free attack simulation inside the Cortex XSOAR Marketplace, allowing security teams to see the entire path of a possible attack.

Security and network teams are constantly debating whether a specific alert is a high risk, low risk, impacts mission-critical assets or should wait for the next patch. When it comes to securing an organization's critical assets, the joint strength of XM Cyber and Cortex XSOAR provides teams with the contextual data they need to make the right choices possible.

The integration enriches events and incidents in Cortex XSOAR with critical information, including:

• The ability to determine whether business-critical assets are at risk

• The name and a description of the attack technique

• Detailed information on all impacted assets, including those deemed mission-critical

• Identification of choke points, i.e. whether the asset resides in line with multiple attack paths

• Context-sensitive recommendations for remediation ranked in order of importance

• A link to the XM Cyber platform for running attack simulations

This data assists security analysts in properly understanding their network environment and identifying user errors, bad IT hygiene, misconfigurations, and misplaced credentials, which can also go unnoticed. Cortex XSOAR's industry-leading automation and orchestration tools and features, combined with an attack-centric exposure approach to threat simulation, will help companies avoid 99% of real threats to their network while only addressing the 1% that matters.

About XM Cyber

XM Cyber is the world's leading provider of attack path management solutions. The XM Cyber platform allows companies to respond rapidly to cyber threats impacting their business-critical systems by actively identifying new exposures such as exploitable vulnerabilities and credentials, misconfigurations, and user activities. XM Cyber actively simulates and needs to prioritize attack paths that threaten mission-critical systems, including context-sensitive remediation options. XM Cyber assists in eliminating 99% of the risk by allowing IT and Security Operations to concentrate on the remaining 1% of exposures before they are exploited to compromise the organization's "crown jewels" – its sensitive properties. XM Cyber was founded by top executives from the Israeli cyber intelligence community and has offices in North America, Europe, and Israel.


About Palo Alto Networks


Palo Alto Networks, the global cybersecurity leader, is defining the cloud-centric future of technology that is changing the way individuals and companies work. Their goal is to be the go-to cybersecurity partner for protecting digital lives. They contribute to addressing the world's most pressing security issues through constant innovation that focuses on the most recent breakthroughs in artificial intelligence, analytics, automation, and orchestration. They are at the forefront of protecting tens of thousands of organizations through clouds, networks, and mobile devices by providing an open platform and empowering a growing ecosystem of partners.

Spotlight

While the IoT can bring new data and helpful insights, it can also introduce new vulnerabilities into your organization. The size of the IoT market was 15.8 billion in 2021.  IoT security market is projected to grow to  18.6 billion in 2022.  The market is predicted to nearly double in size  by 2025.  There were more than 1.5 billion IoT breaches  from January to June 2021

Spotlight

While the IoT can bring new data and helpful insights, it can also introduce new vulnerabilities into your organization. The size of the IoT market was 15.8 billion in 2021.  IoT security market is projected to grow to  18.6 billion in 2022.  The market is predicted to nearly double in size  by 2025.  There were more than 1.5 billion IoT breaches  from January to June 2021

Related News

DATA SECURITY

Exclusive Networks Signs Global Deal with Infinipoint to Extend Zero-Trust Security to Device Identity

Infinipoint | November 23, 2021

Exclusive Networks, a global trusted cybersecurity specialist for digital infrastructure, today announced its worldwide distribution agreement with Infinipoint, a provider of a pioneering Device-Identity-as-a-Service (DIaaS) security solution that uniquely enables the critical device pillar of the zero-trust cybersecurity approach. Focusing on mid-market aligned partners – initially in Europe covering France, Germany and the UK with a view to extending across global territories from early 2022 – Exclusive will be supporting Infinipoint growth targets both through net new opportunities and by capitalising on technology integrations (i.e. SASE, MFA, ZTNA, etc.) and alliances from within its vendor portfolio. Commenting on the announcement, Denis Ferrand, VP Global Vendor's Alliances & Business Development at Exclusive Networks said, "Of the seven pillars propping up the concept of zero-trust architecture (ZTA), partners have struggled most to position a strong story around zero-trust for device access because specialist solutions simply haven't existed. That's all changed with Infinipoint and DIaaS. Enterprises know that implementing the zero-trust for devices piece right is essential – and with Infinipoint we're breaking down that barrier. It's a great solution and fits perfectly into our cyber ecosystem. DIaaS also naturally supports a multitude of consumption models which makes it readymade for scaling out globally via our X-OD on-demand platform." Launched in July this year, DIaaS has been gaining significant market traction. Exclusive will build on this demand to accelerate and scale globally through its specialist go-to-market services and ecosystem of over 18,000 channel partners. "Infinipoint is pioneering the Device-Identity-as-a-Service security category and is the first and only solution to provide Single Sign-On (SSO) authorisation integrated with risk-based policies and self service one-click remediation for non-compliant and vulnerable devices. Ariel Kriger, VP Global Sales & Business Development at Infinipoint. "Exclusive Networks was the natural choice to support our market acceleration, possessing the necessary specialist cyber expertise and global scale to enthuse, educate and serve pent-up partner demand for this gap in the zero-trust market. Extending a zero-trust security posture to devices remains an essential and urgent requirement for every work-from-anywhere workforce. And to do it properly you have to do it by design, with adaptive access controls acting on device context, continuously checking device posture not just at the point of access – all the while not burdening the IT department or negatively impacting end user productivity. None of this is easy to do, but we've done it and now partners and their customers can reap the benefit." About Exclusive Networks Exclusive Networks is a global trusted cybersecurity specialist for digital infrastructure helping to drive the transition to a totally trusted digital future for all people and organisations. Our distinctive approach to distribution gives partners more opportunity and more customer relevance. Our specialism is their strength – equipping them to capitalise on rapidly evolving technologies and transformative business models. The Exclusive Networks story is a global one with a services-first ideology at its core, harnessing innovation and disruption to deliver partner value. With offices in 40 countries and the ability to service customers in over 150 countries across five continents, Exclusive Networks has a unique 'local sale, global scale' model, combining the extreme focus and value of local independents with the scale and service delivery of a single worldwide distribution powerhouse. More at www.exclusive-networks.com. About Infinipoint Infinipoint is a pioneer in the Device-Identity-as-as-Service security category to extend a true zero-trust security posture to devices. Infinipoint is the only solution that provides Single Sign-On (SSO) authorization integrated with risk-based policies and one-click remediation for non-compliant and vulnerable devices. This reduces risk by protecting access to an organization's data and services while transforming devices to support a world-class security posture. Infinipoint is able to do all this in a productive way that maintains business continuity with no disruption to the workforce.

Read More

Midstream Oil and Gas Field Cybersecurity Preparedness Overconfident

prnewswire | October 01, 2020

Jones Walker LLP today publicly released the findings of its 2020 Midstream Oil and Gas Cybersecurity Survey, examining cybersecurity preparedness in North America-based independent midstream oil and gas companies. The findings will be presented during a webinar hosted by the Institute for Energy Law at the Center for American and International Law today at 12:30 p.m. CT. The results reflect the responses of 125 key executives, security and compliance officers, and general counsel, and confirm that cybersecurity remains a top concern for the midstream sector of the oil and gas industry — especially as companies grapple with the worldwide economic downturn, the reduction in commodity prices, and the increased dependence on remote work and autonomous systems due to the global COVID-19 pandemic.

Read More

DATA SECURITY

NETSCOUT Omnis Cyber Intelligence Integrates with AWS Security Hub

NETSCOUT | November 11, 2021

NETSCOUT SYSTEMS, INC. a leading provider of cybersecurity, service assurance, and business analytics solutions, today announced that Amazon Web Services, Inc. (AWS) customers will now have added visibility and security when migrating workloads to AWS using NETSCOUT's Omnis® Cyber Intelligence (OCI) integration with AWS Security Hub. NETSCOUT OCI is the industry's fastest and most scalable network security software solution, built on the foundation of the industry's most prominent network monitoring and packet recording and analysis technology. It uniquely detects and investigates suspicious activities in real-time and retrospectively, identifies threats early in the attack life cycle to prevent infections from spreading, stops future attacks, and identifies compromised assets. As a cloud security posture management service, AWS Security Hub performs automated, continuous security best practice checks against AWS resources, aggregates alerts, and enables automated remediation. The integration between NETSCOUT OCI and AWS Security Hub enhances the corporate security posture by extending the breadth and depth of cyberthreat visibility and intelligence. The integration is seamless since NETSCOUT OCI automatically formats violations in the Amazon Security Findings Format (ASFF) with built-in intelligence to suppress duplicate alerts and group them as needed. NETSCOUT OCI, through its integration with AWS Security Hub, helps detect, investigate, and respond to potentially malicious activity exposing risks that exist in hybrid cloud interdependencies. "As organizations migrate workloads to the cloud, their infrastructure becomes increasingly complex, making end-through-end visibility a necessity to uncover increased attack surfaces and combat threat exposure,As an AWS Validated Technology and Public Sector Partner with Network and Migration competencies, we've been in lock-step development with AWS. We're excited that customers can realize the benefits of NETSCOUT OCI, which is now fully integrated onto AWS Security Hub." Russ Currie, vice president, enterprise strategy, NETSCOUT About NETSCOUT NETSCOUT SYSTEMS, INC. helps assure digital business services against security, availability, and performance disruptions. Our market and technology leadership stems from combining our patented smart data technology with smart analytics. We provide real-time, pervasive visibility and insights customers need to accelerate and secure their digital transformation. Omnis Cyber Intelligence delivers the fastest and most scalable network security solution available on the market. NETSCOUT nGenius service assurance solutions provide real-time, contextual analysis of service, network, and application performance. And Arbor® Smart DDoS Protection by NETSCOUT products help protect against attacks that threaten availability and advanced threats that infiltrate networks to steal critical business assets. To learn more about improving service, network, and application performance in physical or virtual data centers or in the cloud, and how NETSCOUT's security and performance solutions can help you move forward with confidence.

Read More