AWS Launches New Incident Response Service

December 3, 2024 at 06:55AM Amazon Web Services (AWS) launched a new incident response service that aids security teams in faster threat response and recovery using machine learning. It automates triage and analysis of security signals, offers preconfigured notifications, and allows collaboration with third-party vendors. The service is available in 12 AWS regions globally. ### … Read more

Simplifying endpoint security

November 15, 2024 at 10:59AM Kaseya’s webinar on November 20th at 11am GMT/8AM ET will address the challenges of managing diverse endpoints as digital footprints expand. Experts will discuss the benefits of consolidating security tools into a single platform to streamline management, automate processes, and enhance endpoint protection. Register to learn more. **Meeting Takeaways: Webinar … Read more

Criminals open DocuSign’s Envelope API to make BEC special delivery

November 5, 2024 at 01:43PM Business email compromise scammers are leveraging the DocuSign API to create seemingly legitimate e-signature requests, leading to fraud. These attackers use custom templates to send invoices, bypassing spam filters. In 2023, BEC scams have cost US businesses $2.9 billion, highlighting the need for vigilance and sender verification. **Meeting Takeaways:** 1. … Read more

A Comprehensive Guide to Finding Service Accounts in Active Directory

October 22, 2024 at 07:30AM Service accounts in Active Directory are essential yet pose security risks due to their elevated privileges if unmanaged. This guide details methods for locating and securing these accounts, highlighting Silverfort’s automated solutions for discovery, monitoring, and access protection, ultimately enhancing an organization’s security posture against potential breaches. ### Meeting Takeaways: … Read more

Top 5 Cloud Security Automations for SecOps Teams

October 17, 2024 at 10:39AM Blink Ops automates security operations, transforming tedious tasks into efficient workflows. By integrating with platforms like AWS and Wiz, it allows users to monitor vulnerabilities, detect incidents, and enforce S3 encryption easily. This automation helps security teams save time and minimize human error while focusing on critical security initiatives. ### … Read more

Torq Secures $70M Series C for HyperSOC

September 27, 2024 at 01:46PM Torq, a startup specializing in AI-powered security automation, has secured $70 million in a Series C funding round led by Evolution Equity Partners. This brings their total raised to $192 million. The funding will be used to further advance their AI-driven security operations platform and expand their client base, which … Read more

Agentic AI in SOCs: A Solution to SOAR’s Unfulfilled Promises

September 25, 2024 at 06:27AM Security Orchestration, Automation, and Response (SOAR) was introduced to revolutionize Security Operations Centers (SOCs) through automation, reducing manual workloads and enhancing efficiency. However, despite three generations of technology and 10 years of advancements, SOAR hasn’t fully delivered on its potential. Agentic AI emerges as an alternative to effectively automate SOC … Read more

4 Top Security Automation Use Cases: A Detailed Guide

September 18, 2024 at 11:50AM Gartner has reported the phasing out of SOAR in favor of AI-based solutions. This article details four key security automation use cases: enriching Indicators of Compromise, monitoring the external attack surface, scanning for web application vulnerabilities, and monitoring email addresses for stolen credentials. Each use case includes an automation workflow … Read more

Hydden Raises $4.4M in Seed Funding for Identity Security Platform

September 17, 2024 at 09:15AM Hydden, an identity security management company, raised $4.4 million in a seed funding round led by Access Venture Partners. Other contributors include Lockstep, Service Provider Capital, and angel investors. The company’s platform offers complete visibility into identities, accounts, and privileges, connecting to IAM tools and cloud applications while providing intelligent … Read more

Compliance Automation Pays Off for a Growing Company

September 13, 2024 at 02:35PM Metadata.io, a tech company, initially focused on building its B2B marketing automation business, complying with standards like SOC 2 Type II and ISO 27001. However, manual compliance processes became unsustainable as the company grew. To address this, CISO Raymond Taft implemented Drata for automated compliance, resulting in significant cost and … Read more