📡 Cybersecurity Innovation Pulse #37: DEF CON Is Canceled; Security Vendors Eat AI; Cisco Integrates Oort; Detecting ML Data Poisoning; and More!
Covering Feb. 1st - 8th
Welcome to Issue 37 of the Cybersecurity Innovation Pulse! I'm Darwin Salazar, Product Manager at Monad and a former Detection Engineer. Each week, I distill the latest and most exciting developments in cybersecurity innovation into digestible, bite-sized updates. If you’re serious about staying at the forefront of the latest in security products, attacker techniques, and industry news make sure to hit the “Subscribe” button below to get my insights delivered straight to your inbox every week 📩 🚀
Industry🛰
DEF CON Is Canceled
… JK. Not even COVID-19 was able to stop DEF CON so what’s an unexpected venue change to do? Caesars Entertainment which has hosted DEF CON for the past several years recently cut DEF CON’s contract due to a "strategy change.".. No further explanation according to Dark Tangent. You can see his full post here.
The conference will relocate to Las Vegas Convention Center and Sahara Hotel for this summer’s edition which will take place August 8th - 11th.
Source: DEF CON
Introducing The Post-Quantum Cryptography Alliance (PQCA)
The Linux Foundation recently announced launched the PQCA, a working group of industry leaders, to drive the advancement + adoption of post-quantum cryptography. Founding members include AWS, Cisco, Google, SandboxAQ, NVIDIA and several others. Very surprised not to Microsoft included in the list.
This is the 3rd week in a row that we’ve covered post-quantum cryptography in some form or fashion. With the public sector working on this for a while and with industry leaders collaborating, it seems that we’re not that far away from quantum hitting the general public. Glad to see we’re working collaboratively and getting ahead of the curve.
Source: The Linux Foundation
Product🛸
Cisco Launches Identity Intelligence + AI NLP For Secure Access
Earlier this week, Cisco announced the release of their Identity Intelligence solution which aims to be an identity graph that can:
Surface and eliminate overly-permissive + unused permissions
Block high-risk access attempts
Clean up vulnerable accounts
The solution is part of their ‘Cisco Security Cloud’ offering and integrates with other tools in their suite like Duo, Secure Access and their XDR. Cisco acquired Oort, an ITDR vendor, last July and this is most likely their integration of the Oort product.
Cisco also expanded support for its AI assistant to Secure Access, their security service edge (SSE) offering.
Cisco gets a lot of flack for their security product strategy and lack of strategic direction, but this is definitely a step in the right direction.
Source: SiliconANGLE
Securework’s AI ThreatScore
Secureworks has introduced an AI-powered feature called ThreatScore to their XDR offering aimed at reducing alert noise by providing a 0-10 score to indicate the level of risk that anomalous activity may pose.
Source: SiliconANGLE
Check Point Introduces Their Copilot
Check Point introduces their copilot in preview mode. NLP, threat hunting + investigation helper. All the things that most copilots we cover on TCP have.
I’ve said it before and I’ll say it again, Copilot’s are becoming a table-stakes feature for security products. Especially for companies that have multiple security offerings and can correlate findings and telemetry across solutions.
If used correctly, copilots introduce a ton of operational efficiency to security practitioner’s workflows.
Source: The Fast Mode
F5 API Security + AI Data Fabric
F5 has released their API Security offering which they inherited through their acquisition of Wib. Think shadow API discovery and API posture management.
F5 also unveiled their “AI Data Fabric” capabilities which aggregates telemetry from across their different offerings to feed into their AI chatbot. This further validates the importance of chatbots and the ability to aggregate telemetry from disparate sources to surface the most pressing risks.
Source: SiliconANGLE
Wiz Non-Human Identities Dashboard and Expanded AISPM Coverage
Seems like every week Wiz releases at least one new product feature. Kudos to their product teams. Since the last TCP issue, they’ve introduced:
Non-Human Identities Dashboard
AI-SPM support for Amazon Bedrock + Azure’s OpenAI service models
Source: Wiz
LightBeam.ai $17.8m Series A
LightBeam.ai secured $17.8 million in a Series A round led by Vertex Ventures and joined by Dropbox Ventures, 8VC and Village Global. LightBeam focuses on data protection, privacy and governance.
Source: SiliconANGLE
Tradecraft🤺
Detecting Poisoned ML Datasets
This post goes over common ML dataset poisoning techniques and how to detect them.
Source: VentureBeat
Extras
Palo Alto Networks CFO on AI, cybersecurity, and the finance leader’s mandate - McKinsey’s Inside The Strategy Room podcast
Why the Right Metrics Matter When it Comes to Vulnerability Management - The Hacker News
How SEC’s Rules on Cybersecurity Incident Disclosure are Exploited - Dark Reading
Six Cloud Security Trends to Watch in 2024 - Silicon Angle
The Power of AI in Cybersecurity - Palo Alto Networks
Impacts of AI in Cybersecurity - Palo Alto Networks
Bye For Now!
Nos vemos la próxima semana! 🚀