TCP #47: Don't AI My Firewall π¨π½βπ
Security Product News | May 20th - May 28th, 2024
Welcome to Issue 47 of theΒ Cybersecurity Innovation Pulse! I'm Darwin Salazar, Product Manager at Monad and a former Detection Engineer. Each week, I distill the latest and most exciting developments in cybersecurity innovation into digestible, bite-sized updates. If youβre serious about staying at the forefront of the latest in security products and industry news make sure to hit the βSubscribeβ button below to get my insights delivered straight to your inbox every week π© π
Just getting back from some much needed time away from computer screens and feeling a bit jetlagged and now I understand the vibe in this meme lol
Anyhow, letβs get into this past weekβs product news!
Product News π°
AI Security
Nightfall AI introduces βFirewall for AIβ
Nightfall AI recently released its βFirewall for AIβ product. The name is a bit misleading because it is more of an AI-focused DLP solution than anything else. Core capabilities include:
Sensitive data exposure prevention + ensure data quality
Scans automation workflows and data pipelines to remove sensitive, proprietary, or potentially malicious data.
Prompt Injection Protection
Detects + mitigates prompt injection attacks through guardrails that monitor language use, response relevancy, and perform sentiment analysis to maintain interaction integrity.
In the most traditional sense, this is not a firewall for AI because it does not monitor or block unauthorized network traffic; it does not enable applying network rules to allow/deny certain network traffic etc.
If I were a security product buyer and came across this, I would be confused by the naming decision behind this. Maybe the team has bigger plans for the product? Either way, my point is that vendors should be working to make things as straightforward for their prospects.
Source: SiliconAngle
Rest of AI Security product news β¬οΈ
WitnessAI emerges from stealth (Ballistic + GV-backedπ₯) to productize guardrails for AI. - DarkReading
Lasso Security launches contextual policy wizard to prevent GenAI-related data leaks. - SiliconAngle
Application Security
Deepfence adds runtime protection and API Security for GenAI apps
Deepfence is one startup Iβve been hearing more about, particularly because of its AppSec capabilities. This latest release hints at why.
The Deepfence team recently added new capabilities to their ThreatStryker CNAPP, leveraging eBPF technology to provide visibility into the traffic and app layers, even enabling inspection of fully encrypted payloads. These additions integrate with their detection and response capabilities and are also mapped to the OWASP Top 10 for LLMs.
Pretty dope.
Source: Deepfence
Cloud Security
Averlon emerges from stealth
Averlon recently emerged from stealth with $10.5M in total funding. Their offerings include CNAPP and a βUnified Risk Platformβ which aims to hook into all customerβs existing tools to provide a centralized operational view of security risk.
While there probably isnβt a need for any more CNAPPs on the market, Averlon differentiates itself with its risk + remediation capabilities and it sounds like they are doing cool things with AI and a purple team approach.
All jokes aside, itβd be tough to raise $10M+ if they werenβt bringing something different to the market so Iβm excited to see how the product matures.
Source: SiliconAngle
Rest of Cloud Security product news β¬οΈ
Picus Security adds security validation for Kubernetes - HelpNet Security
Data Security
Zoom adding post-quantum end-to-end encryption to products
With the recent post-quantum encryption push from NIST, CISA, NSA, and tech giants, weβll definitely see more announcements like this. Many are concerned that AI has accelerated quantum advancements leading to a heightened risk of a scenario where traditional cryptography is rendered obsolete through quantum-powered attacks. Luckily, there are ppl smarter than me working on this stuff and hopefully, that day never comesβ¦ but if it does, itβs better to be prepared so kudos to Zoom and all other first-movers.
For those interested, theyβve gone with Kyber 768 encryption algorithm.
Source: Security Week
BigID announces new AI data security features for Microsoft Copilot
Much needed. Kudos to BigID.
Source: ZDNet
Identity and Access Management (IAM)
Explaining the explosion of Non-Human Identity (NHI) products
Weβve recently seen an explosion of NHI products, evident by this meme here. This post by Chris Hughes from
does a great job breaking down why NHIs are atop of CISOs minds and why weβve seen an explosion in security products solely focused on tackling the rising NHI challenge.Source: Resilient Cyber
Rest of IAM product news β¬οΈ
Userfront raises $5.3M seed for IAM solution for SaaS providers - MarTech Series
CyberArk Goes All In on Machine Identity With Venafi Deal - DarkReading
LastPass is now encrypting URLs in password vaults for better security - BleepingComputer
Security Operations
PagerDuty adds slew of AI and automation capabilities
PagerDuty is THE tool for SREs and incident responders. They recently added a GenAI-powered copilot and a few other features to help streamline incident management. Nice.
Source: SiliconAngle
Rest of SecOps product news β¬οΈ
Huntress adds Active Remediation and macOS coverage to its EDR solution - HelpNet Security
Bugcrowd expands security services with the acquisition of ASM provider Informer - SiliconAngle
Zero Trust Security
Illumio and Netskope join forces to strengthen enterprise resilience against cyberattacks - HelpNet Security
Extrasπ¬
Automated role mining in Azure (π₯) - Christophe Parisel
API Security Best Practices - Byte Byte Go
Snowflake's Anvilogic Investment Signals Changes in SIEM Market - DarkReading
DevOps Dilemma: How Can CISOs Regain Control in the Age of Speed? - The Hacker News
Microsoftβs New Recall AI Tool May Be a βPrivacy Nightmareβ - BBC
Why Microsoft's Recall is an attacker's best friend - Risky Business #750
Bye For Now!
Nos vemos la prΓ³xima semana! π
"TCP #47: Don't AI My Firewall " This is the best Cybersecurity AI Clickbait I've seen so far. There was NO WAY I was not going to click to find out WHY to not AI My Firewall. Great job, Darwin Salazar.
Steven Palange, SoverAIgn Solutions.
100% agree. We need to cut the BS from AI & Cyber.. to make people get what value they can get. This is a perfect example of marketing claim without market proof nor differentiated tech