DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

Radware Launches New Cloud Security Center in the United Arab Emirates

Radware | September 14, 2022 | Read time : 02:50 min

Radware
Radware® , a leading provider of cyber security and application delivery solutions, announced the launch of a new cloud security center in the United Arab Emirates. Located in Dubai, the facility will reduce latency for in-region traffic and offer customers faster mitigation response times against denial-of-service attacks, web application attacks, malicious bot traffic, and attacks on APIs. It will also mitigate compliance processes involved in offshore routing.

The Dubai addition complements Radware’s existing cloud security network. Today, the network includes over 10Tbps of mitigation capacity across more than 50 security centers located around the globe.

“As part of our strategic cloud services initiative, we continue to accelerate cloud innovation to provide our customers with the highest level of cyber security services. “This includes increasing the fighting capacity of our cloud infrastructure to help our customers manage the increasing complexity and sheer volume of cyberattacks with as little disruption as possible.”

Haim Zelikovsky, vice president of cloud security services for Radware

According to Radware’s First Half 2022 Global Threat Analysis Report, the first six months of 2022 saw a dramatic increase in cyberattacks across the globe. The number of DDoS attacks climbed 203% and malicious web application transactions grew by 38% compared to the same period last year.

“The new site in Dubai fills a growing demand for a local security presence that can deliver rapid response times with accuracy for organizations in the public and private sector,” said Nikhil Karan Taneja, Radware’s vice president and managing director for India, the Middle East, and South Asia. “The launch of the center underscores our ongoing commitment to delivering state-of-the-art cyber protection and scaling our capacity in a way that will benefit the whole region.”

About Radware
Radware® is a global leader of cyber security and application delivery solutions for physical, cloud, and software defined data centers. Its award-winning solutions portfolio secures the digital experience by providing infrastructure, application, and corporate IT protection, and availability services to enterprises globally. Radware’s solutions empower enterprise and carrier customers worldwide to adapt to market challenges quickly, maintain business continuity, and achieve maximum productivity while keeping costs down. For more information, please visit the Radware website.

Radware encourages you to join our community and follow us on: Facebook, LinkedIn, Radware Blog, Twitter, YouTube, and Radware Mobile for iOS and Android.

©2022 Radware Ltd. All rights reserved. Any Radware products and solutions mentioned in this press release are protected by trademarks, patents, and pending patent applications of Radware in the U.S. and other countries.

Radware believes the information in this document is accurate in all material respects as of its publication date. However, the information is provided without any express, statutory, or implied warranties and is subject to change without notice.

Spotlight

Meeting compliance regulations is important, but even the strictest compliance requirements still can leave sensitive data vulnerable to malicious parties capable of breaking into encrypted USB storage devices and extracting confidential data from them. This paper from Imation Mobile Security explains when compliance alone may not offer the protection companies need.


Other News
DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

GreyNoise Intelligence Partner Network Launches in the Cybersecurity Arena

GreyNoise Intelligence | November 07, 2022

GreyNoise Intelligence, the cybersecurity company analyzing internet scanning traffic to separate threats from background noise, today announced the official launch of a mulit-faceted partner program to help customers defend against mass exploitation attacks. As an ecosystem for cybersecurity solution providers, the program offers an array of opportunities for technical alliances, channel resale and OEM partners. "Mass exploitation attacks like Log4j have become the attack vector of choice for cyber criminals and state actors. "Security teams are struggling to defend themselves against these kinds of attacks with tools and threat intelligence designed for last year's threats. By building partnerships with other leading cyber solution providers, we can help customers implement new security strategies to end mass exploitation attacks." Andrew Morris, Founder and CEO of GreyNoise Mass exploitation attacks leverage internet-wide scanning technologies to find and exploit vulnerable computer systems around the world in minutes. When a new internet-exploitable vulnerability like Log4j is announced, these attacks can start in a matter of hours, before security teams have a chance to put their defenses in place. The GreyNoise Intelligence Partner Network enables other cybersecurity solution providers to expand their reach, increase revenues and deepen customer relationships. The network has three primary components: 1) GreyNoise Technical Alliance Program. GreyNoise provides contextual data on noisy IP addresses that scan the Internet. Technical Alliance partners collaborate with GreyNoise to ensure that mutual customers can seamlessly leverage inter scanner intelligence in their existing workflows, tools and processes. Customers use this data to reduce their alert volumes by 25% and minimize alert fatigue. GreyNoise also sharpens threat detection fidelity for mutual customers by providing valuable context on known malicious internet-wide scanners, speeding up the triage process. With GreyNoise data, technical partners have real time visibility into mass exploitation IPs targeting specific vulnerability, which provides critical actionable data during an active emergent attack. “Whenever a vulnerability is disclosed the dinner bell sounds for good and bad actors alike, meaning organizations are already on their back foot,” explains Robert Huber, chief security officer and head of research, Tenable. “We know threat actors are monitoring disclosure programs in the same way we are, looking for newly announced vulnerabilities, studying all available information such as proof of concepts, but they’re looking to utilize the flaw. OUr partnership with GreyNoise gives our customers the tools to address these weaknesses when they’re publicly announced. In doing so, we reduce that intelligence gap and hand the advantage back to the good guys.” 2) GreyNoise OEM Partnership Program. GreyNoise provides an integrated out-of-the-box threat intelligence solution for security vendors, ISPs and technology firms to embed in their product and service offerings. Unlike other threat intelligence vendors, GreyNoise is solely focused on providing high fidelity data on IPs that are actively mass scanning, crawling and attacking the internet. Integrating GreyNoise data directly into the platform of OEM partners enables customers to intelligently rule out internet background noise, and helps them to prioritize emerging threats and targeted activity more effectively. “Modern security teams need a fast, flexible and scalable platform for threat detection capable of analyzing terabytes of data per day, with built-in threat intelligence to rule out activity from trusted sources, and immediately flag activity from known bad actors,” said Jack Naglieri, CEO and founder, Panther Labs. “With Panther and GreyNoise, security teams can cut through background noise, improve alert fidelity, speed up analyst workflows and ensure prioritization of the most critical alerts. By making detection and response faster and more accurate, security teams can better protect their organizations from disruptive cyberattacks.” 3) GreyNoise Channel Resale Program. GreyNoise is committed to developing partnerships with highly focused, security-dedicated channel partners to deliver the best results to mutual customers. Value-added resellers and distributors offer GreyNoise protection and intelligence solutions to meet the IT security needs of their enterprise customers. In addition to providing a unique data and automation security solution that is relevant to Incident Response, SOC and Threat Intel teams, GreyNoise has a transparent, simple and profitable, channel sales program with a generous deal registration and rebate structure. GreyNoise sales teams provide materials for channel partners to explain the value GreyNoise offers in improving analyst efficiency, leveraging customer investment in existing technologies, and reducing the overall risk landscape. About GreyNoise Intelligence GreyNoise is THE source for understanding internet noise. We collect, analyze and label data on IPs that saturate security tools with noise. This unique perspective helps analysts waste less time on irrelevant or harmless activity, and spend more time focused on targeted and emerging threats. GreyNoise is trusted by Global 2000 enterprises, government organizations, top security vendors and tens of thousands of threat researchers.

Read More

DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

Next DLP Announces Cybersecurity Industry Veteran, Constance Stack, as New CEO

Next DLP | November 03, 2022

Next DLP (“Next”), formerly Qush Security, today announced the appointment of Constance (“Connie”) Stack as its new chief executive officer. With Stack leading the way, Next expects to aggressively grow its market share and disrupt the legacy Data Loss Prevention (DLP) category. The DLP market is projected to reach 3.5 Billion USD by 2025 with the SaaS deployment model expected to dominate during the forecast period. Next’s “Reveal Cloud”, which was included in Gartner’s 2022 Market Guide for Data Loss Prevention, is an industry leading, user-centric, DLP solution, that uncovers risk, educates employees and fulfills security, compliance and regulatory needs. “This is an exciting time for all of us at Next DLP,. “We are pleased to have Connie lead Next and believe her leadership will further accelerate the company’s growth and deliver on our mission of reinventing data protection for today's distributed organization.” Fredrik Halvorsen, Chairman of Next’s board of directors and co-founder of Ubon Partners Most recently, Stack served as Managing Director/GM of the Data Protection Business Unit for HelpSystems, which included the Digital Guardian, Titus, Boldon James and Vera brands. Prior to acquisition by HelpSystems, Stack served as chief strategy officer and chief marketing officer of Digital Guardian. Earlier in her career, Stack was vice president of marketing at Veracode (acquired by CA Technologies) and chief revenue officer at WordStream (acquired by the Gannett Company). “Today’s most used DLP solutions came to market over twenty years ago; before the shift to cloud and SaaS really took off and well before the COVID-19 pandemic drove global knowledge workers to a remote working model. Put plainly, legacy DLP approaches are outdated and prone to failure,” said Constance Stack, Chief Executive Officer, Next DLP. “Next DLP offers a new and flexible approach to protecting data where it is most at risk. Its patent-pending endpoint agent and cloud platform were purpose-built for today’s IT environment and threat landscape. I look forward to this opportunity to work with Next’s incredibly talented team and to deliver DLP that works to our customers.” About Next DLP Next DLP (“Next”) is a leading provider of data protection solutions for organizations with valuable data who need to uncover risk, educate employees and fulfill security, compliance and regulatory needs. Next's mission is to reinvent data protection for today's distributed organization and it is disrupting the legacy data loss prevention market with a user-centric, flexible, cloud-native, AI/ML powered solution built for today’s threat landscape. The company's leadership brings decades of cyber and technology experience from HelpSystems, DigitalGuardian, Forcepoint, Mimecast, IBM, Cisco and Shopify. Next is trusted by organizations big and small, from Fortune 100 finance and retailers to fast growing healthcare and technology companies.

Read More

DATA SECURITY,ENTERPRISE IDENTITY,SOFTWARE SECURITY

Wib Raises $16 Million Investment to Accelerate Growth and Tackle Rising API Security Problem

Wib | November 08, 2022

Wib, the fast-growth cybersecurity startup pioneering a new era in API security, today announced a $16 million investment led by Koch Disruptive Technologies (KDT), the growth and venture arm of Koch Industries, Inc, with participation from Kmehin Ventures, Venture Israel, Techstars and existing investors. The investment will be used to enhance Wib's pioneering holistic API security platform and accelerate international growth as it expands operations across the Americas, UK and EMEA. API security is one of the biggest challenges facing CIOs today. Traditional API security solutions are siloed and fragmented, leaving CIOs with a choice of multiple point products or bolt-on integrations to create a patchworked solution. This results in increased cost and complexity, reduced visibility and control, and greater exposure to risk. Wib's holistic API security platform is the only solution to provide complete visibility across the entire API landscape, from code to production, helping unify software developers, cyber defenders, and CIOs around a single holistic view of their complete API domain. By delivering rigorous real-time inspection, management, and control at every stage of the API lifecycle, Wib can automate inventory and API change management; identify rogue, zombie and shadow APIs and analyse business risk and impact, helping organisations to reduce and harden their API attack surface. "APIs have become the Achilles heel of cyber defenses and the number one threat vector for cyber-attacks. "APIs account for 91% of today's internet traffic with over 50% being invisible to business IT and security teams. These unknown, unmanaged, and unsecured APIs are creating massive blind spots for CIOs that expose critical business logic vulnerabilities and increase risk. Gil Don, CEO and Co-Founder of Wib "What's more, traditional and legacy web security approaches, like WAFs and API Gateways, were never designed to protect against modern logic-based vulnerabilities. The Wib platform has been purposely built for an API driven world creating a new category of API native security." A recent report by industry research firm GigaOm, placed Wib as a "fast mover" in the "leaders" category, stating, "Wib is a new company but brings a strong enough offering to jump straight into the leaders category" and "Wib is a new entrant in this space, but it offers a comprehensive solution." Wib was also called out for its capability in "source code analysis with an eye toward API weaknesses is Wib's greatest strength." The report ranks Wib's API Runtime Protection, Monitoring and Reporting as exceptional in its focus and execution. This is a real testament to the Wib's innovative API security platform and approach. About Wib Wib is pioneering a new era in API security with its industry first holistic API security platform. Providing continuous and complete visibility and control across the entire API ecosystem, Wib enables developers to code with confidence and security teams to secure with surety.

Read More

DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

Fordefi Raises $18M Seed Round to Launch Institutional DeFi Wallet and Security Platform

Fordefi | November 09, 2022

Fordefi, a financial technology and software company, today announced an $18 million seed round and the public launch of its institutional MPC wallet built for transacting on decentralized applications (dApps). Led by Lightspeed Venture Partners, the investors of the firm's initial capital raise also include Electric Capital, Alameda Research, Jump Crypto, Castle Island, Pantera Capital, Illuminate Financial, PayPal Alumni Fund, Nima Capital, Digital Currency Group, Defiance Capital and StarkWare. "The Fordefi team is bringing to market a solution that addresses two of the biggest challenges in DeFi today: institutional-grade security and smart contract transparency," said Sam Harrison, Senior Advisor at Lightspeed Venture Partners and Managing Partner at Faction. "We are excited to support an experienced team bringing a powerful solution to market that directly solves pain points that have held institutions back from achieving the full potential of decentralized finance." "Wallet hacks made major headlines this year. Until now, decentralized finance was missing a secure, stable, and seamless way to connect to dApps," said Ken Deeter, Partner at Electric Capital. "Fordefi's single-browser extension paired with a top-notch institutional grade MPC wallet platform will unlock opportunities across DeFi for all crypto-native institutions. We're excited to be part of Fordefi's journey, as an investor, design partner and customer." Introducing the Fordefi Platform Co-founders Josh Schwartz, CEO, Dima Kogan, CTO, and Michael Volfman, Vice President of Research and Development, began developing the Fordefi platform in 2021, an unprecedented year for crypto adoption, as institutions took notice of the explosive growth and massive volumes of digital assets moved into the markets. A boom in the development of new blockchains and decentralized applications created opportunities for investing that institutions could not safely participate in, as available wallets had been designed years before and lacked the technology to securely and confidently connect them. "Decentralized finance is evolving quickly and its complexities require a dynamic solution," said Schwartz. "Legacy wallet providers are unable to meet the needs of institutions that want to access the new opportunities DeFi has created while ensuring their assets are protected. Fordefi has taken a DeFi-first approach and has built a solution engineered for how clients interact with dApps." "DeFi transactions are much more complex than simple asset transfers, and that's the key to DeFi's exciting new opportunities," said Kogan. "Unfortunately, this complexity also brings with it many new security risks. Fordefi enables institutions to interact with DeFi applications with increased operational efficiency and security through in-depth visibility into each transaction and the ability to set the right controls." A first of its kind wallet and security platform, Fordefi enables market participants to easily and securely connect to decentralized applications. Fordefi's platform is the only institutional MPC wallet on the market built for firms transacting on decentralized applications across blockchains. The solution delivers a previously unavailable degree of insight into transactions, translating smart contracts into language that users can understand, simulating every transaction in advance and independently verifying dApp names. Its advanced MPC key management capabilities are built to protect against any single point of failure, and the platform's unique policy management capabilities offer users the ability to create and define their own workflows, proactively protecting themselves from both internal and external vulnerabilities. "Fordefi has been a tremendous addition to our DeFi workflow. We've seen accelerated deployment efficiency across a comprehensive set of on-chain opportunities, alongside enhanced user intuitiveness and without compromising security." Shane Al, Head of Investments at Arc Capital and Fordefi design partner. "The Fordefi platform provides robust solutions for institutions to access thousands of DeFi opportunities with the highest levels of security. The platform is extremely customizable and allows us to manage our own policies and controls, ensuring a balance between flexibility and security - crucial for liquid fund strategies." Jacob Goh, Head of Operations & Investor Relations at DeFiance Capital, Fordefi investor and design partner. About Fordefi Fordefi's MPC wallet platform and Web3 gateway enables institutions to seamlessly connect to dApps across a wide range of chains while keeping digital assets secure. Fordefi is the first institutional MPC wallet and security platform built for decentralized finance (DeFi), offering MPC key management, self-serve DeFi policy controls, time-of-transaction smart contract insights, transaction simulation and risk alerts. Fordefi was founded in 2021 by crypto custody and cybersecurity experts, and designed in close collaboration with industry-leading trading firms, funds and custodians. Fordefi is a financial technology and software company with offices in New York and Tel Aviv. About Fordefi's Founders Josh Schwartz, Dima Kogan and Michael Volfman founded Fordefi after establishing themselves with decades of experience as leaders in crypto, cybersecurity, and financial services. Schwartz served as Chief Operating Officer at Curv, an institutional MPC wallet acquired by PayPal in 2021, and was Vice President of Sales at digital custody platform BitGo. Dr. Kogan's career spans more than 15 years in academia, industry and government. He received his PhD from Stanford with a specialization in applied cryptography and was awarded the "Best Young Researcher" prize at Eurocrypt 2018, the Theory of Cryptography Conference 2019, and Eurocrypt 2020. Volfman is an engineering manager with 20 years of experience in cybersecurity, serving as Vice President of R&D at Toka, was Chief Technology Officer and co-founder of an edtech startup, and a Director at Guardicore.

Read More

Spotlight

Meeting compliance regulations is important, but even the strictest compliance requirements still can leave sensitive data vulnerable to malicious parties capable of breaking into encrypted USB storage devices and extracting confidential data from them. This paper from Imation Mobile Security explains when compliance alone may not offer the protection companies need.

Resources