New infosec products of the week: May 1, 2020

Guardicore Infection Monkey now maps its actions to MITRE ATT&CK knowledge base

The latest version of Guardicore Infection Monkey now maps its actions to the MITRE ATT&CK knowledge base, providing a new report with the utilized techniques and recommended mitigations, to help security and network infrastructure teams simulate APT attacks and mitigate real attack paths intelligently.

infosec products May 2020

Datadog Security Monitoring: Detect threats in real time, investigate security alerts

Datadog Security Monitoring combines and analyzes traditional security signals with performance and environment data from applications to provide unique real-time insights. This allows the security, dev and ops teams to rapidly identify security issues, pinpoint the affected system and perform remediation quickly.

infosec products May 2020

Moogsoft Enterprise 8.0: Enabling Ops teams to accelerate incident detection and resolution

Moogsoft Enterprise 8.0 consolidates visibility and control of monitoring tools to help entire IT Ops and DevOps teams reduce noise, prioritize incidents, reduce escalations and ensure uptime. Working from anywhere, the IT operator can now analyze alerts, logs, metrics and traces to find and resolve the root cause of incidents before they become outages.

infosec products May 2020

Bugcrowd Classic Pen Test: Increase pen testing speed, scale and quality

Leveraging Bugcrowd’s global network of uniquely-skilled and proven pen testers, Bugcrowd Classic Pen Test adds to the company’s Pen Test Portfolio, helping organizations reduce testing timelines while meeting critical compliance requirements and adhering to security best practices.

infosec products May 2020

Guardsquare ThreatCast: Protecting mobile apps against suspicious activities and malicious users

With a multi-layered approach to application protection and a mobile security console, Guardsquare ThreatCast provides all the tools needed to assess threats in real time and the intelligence to protect mobile applications against suspicious activities and malicious users.

infosec products May 2020

Obsidian Security lets security teams monitor Zoom usage

Using Obsidian, Zoom customers have enterprise-level monitoring, detection, and response capabilities from a security, compliance, and risk perspective. Obsidian generates insights and alerts related to a variety of risks and threats.

infosec products May 2020

Cygilant Endpoint Security: Detecting malware and critical threats

Cygilant Endpoint Security is an agent-based solution that collects real-time security data from a company’s critical assets, detects suspicious files, services and other activity – and then streams alerts to the 24×7 Cygilant SOC for further investigation and action.

infosec products May 2020

Obsidian Security lets security teams monitor Zoom usage

Obsidian Security announced protection for Zoom, enabling organizations to safely embrace the leading video communications service as a business-critical application.

safely embrace Zoom

Using Obsidian, Zoom customers have enterprise-level monitoring, detection, and response capabilities from a security, compliance, and risk perspective. This is the latest addition to a set of rich integrations that Obsidian has built with SaaS-based collaboration products such as G Suite, Office 365, Salesforce, Slack, Box, Dropbox, and GitHub to enable secure collaboration in a cloud-first world.

“Board meetings, medical appointments, and critical customer calls are all occurring over Zoom. Security teams are grappling with how to prevent account misuse and ensure that only the right people are in these meetings,” said Glenn Chisholm, CEO of Obsidian. “Understanding who joined the meeting, from where and when, as well as whether they recorded the meeting is critical. Obsidian helps customers tackle this challenge with continuous monitoring and automated detection.”

The Obsidian cloud detection and response platform aggregates, normalizes, and enriches data around user access and activity from an organization’s SaaS applications. Obsidian has built deep integrations with leading SaaS-based communication and collaboration platforms that organizations are increasingly relying on to get remote work done.

Security teams can monitor user activity and get timely alerts to protect against accidental oversharing and insider threat, and to detect and respond to account compromise and data breaches.

Obsidian’s Zoom integration lets security teams not only monitor who is using the service, but how they are using it. Obsidian generates insights and alerts related to a variety of risks and threats:

  • Application misconfigurations that violate security best practices
  • Risky user behavior that exposes accounts to takeover and misuse
  • Account compromise, data breaches, and insider threat

Support for Zoom in the Obsidian platform is available today to customers. Zoom customers can get started in minutes by connecting their organization’s Zoom account to the Obsidian service. Obsidian offers a free, no-obligation two-week trial.

RSA Conference announces finalists for Innovation Sandbox Contest 2020

RSA Conference announced the 10 finalists for its Innovation Sandbox Contest 2020. The competition calls on the most promising young companies in cybersecurity to showcase their transformative technologies to a panel of judges and live audience at RSA Conference 2020 in San Francisco. Past winners include Imperva, Phantom, and most recently, Axonius.

Innovation Sandbox Contest 2020

Dr. Herbert (Hugh) Thompson

On Monday, February 24, the finalists will present a three-minute pitch followed by a question-and-answer round as they battle on stage for the title of “Most Innovative Startup.” The renowned panel of expert judges includes:

  • Asheem Chandna, Partner, Greylock Partners
  • Scott Darling, President, Dell Technologies Capital
  • Dorit Dor, VP Products, Check Point Software Technologies
  • Patrick Heim, Partner and CISO ClearSky
  • Paul Kocher, Researcher and Entrepreneur.

Dr. Herbert (Hugh) Thompson, Program Committee Chair of RSA Conference, will return to host the contest.

The Innovation Sandbox Contest 2020 finalists (in alphabetical order) are:

AppOmni

AppOmni is a leading software-as-a-service (SaaS) security and management platform providing data access visibility, management, and security of SaaS solutions. AppOmni’s patent-pending technology deeply scans APIs, security controls, and configuration settings to secure mission-critical and sensitive data.

Blu Bracket

BluBracket is an enterprise security solution for code in a software-driven world. BluBracket gives companies visibility into where source code introduces security risk while also enabling them to fully secure their code—without altering developer workflows or productivity.

Elevate Security

Elevate Security solves for the human element. Using data companies already have, Elevate Security scores employee risk based on their security actions, showing actionable trends while delivering personalized communications that nudge employees to better security habits.

ForAllSecure

ForAllSecure aims to secure the world’s software. Using patented technology from CMU research, ForAllSecure delivers a next generation fuzzing solution to Fortune 1000 companies in telecom, aerospace, automotive and more. DARPA named ForAllSecure a Cyber Grand Challenge winner and MIT Tech Review named it one of the 50 Smartest Companies.

INKY Technology

INKY is an industry leader in mail protection powered by unique computer vision, artificial intelligence, and machine learning. The company’s flagship product, INKY Phish Fence, uses these novel techniques to “see” each email much like a human does, to block phishing attacks that get through every other system.

Obsidian Security

Obsidian Cloud Detection and Response delivers frictionless security for SaaS. Using a unique identity graph and machine learning, Obsidian stops the most advanced attacks in the cloud. Unified visibility across applications, users, and data provides threat detection, breach remediation, and security hardening with no production impact.

SECURITI.ai

SECURITI.ai is a leader in AI-powered PrivacyOps. Its PRIVACI.ai solution automates privacy compliance with patent-pending People Data Graphs and robotic automation. It enables enterprises to give rights to people on their data, comply with global privacy regulations and build trust with customers.

Sqreen

Sqreen is the application security platform for the modern enterprise. Organizations of all sizes trust Sqreen to protect, observe and test their software. As opposed to pattern-based approaches, Sqreen analyses in-app execution in real time to deliver more robust security without compromising performance.

Tala Security

Tala safeguards the modern web against client-side risk. Tala’s AI-driven analytics engine continuously interrogates site architecture to work in concert with an advanced automation engine that activates standards-based security to prevent a broad range of client-side attacks like magecart, XSS, session re-directs, and client-side malware.

Vulcan Cyber

Vulcan is a vulnerability remediation and orchestration platform that is modernizing the way enterprises reduce cyber risk. With its remediation-driven approach, Vulcan automates and orchestrates the vulnerability remediation lifecycle, enabling security, operational and business teams to effectively remediate cyber risks at scale.

“The RSAC Innovation Sandbox has catapulted young companies to success for well over a decade. In fact, the top 10 finalists have collectively seen 48 acquisitions and raised $5.2 billion in investments to-date,” said Linda Gray Martin, Senior Director and General Manager, RSA Conference. “But what’s really exciting is how the competition has propelled the entire cybersecurity community forward by encouraging much-needed innovation and collaboration in an industry that faces new changes, threats and challenges every day. This year’s finalists will undoubtedly make for a tough decision for the judges and a must-see event for RSA Conference attendees.”

The contest kicks off at 1:30 PM PT on February 24 at the Moscone Center and winners will be announced at 4:30 PM that same day.