Welcome to Issue 49 of the Cybersecurity Innovation Pulse! I'm Darwin Salazar, Product Manager at Monad and a former Detection Engineer. Each week, I distill the latest and most exciting developments in cybersecurity innovation into digestible, bite-sized updates. If you’re serious about staying at the forefront of the latest in security products and industry news make sure to hit the “Subscribe” button below to get my insights delivered straight to your inbox every week 📩 🚀
Recall. The entire Microsoft Recall saga has been a complete dumpster fire. Truly exhausting to see a multi-trillion dollar company continually throw security out the window to launch shitty new capabilities they think people want.
At first, the ‘Recall’ feature seemed like a joke, especially on the heels of the CSRB report findings and Satya’s response to it. But after continuously seeing it pop up in my newsfeeds, I’m actually appalled it’s a thing lol. The security community has been tearing it apart and multiple tools have been open-sourced to exploit Recall weaknesses including this tool, TotalRecall.
Anyways, they recently announced that:
Recall won’t come enabled by default
Users will need to enroll in Windows Hello to enable it
Recall data will be encrypted and only decrypted once a user authenticates via Windows Hello
This is still a privacy nightmare and a race to the bottom. Every passing day feels more like an episode of Black Mirror. Bananas🍌
Product News 📰
Cloud Security
Fortinet Acquires Lacework for $150m-200m
Fortinet which is a publicly traded company and has made a name for itself in the network security space, has acquired Lacework for $150m-200m. Lacework was valued at $8.3b in 2021 and has had a rough go in the M&A market over the past couple of months. Where do you think they went wrong? Is it the Wiz effect?
One thing that stood out to me from the press release is that Fortinet’s CMO states:
“There are many CNAPP vendors out there today. Some have taken the approach of acquiring and cobbling together individual pieces of CNAPP into a ‘platform’ that isn’t truly integrated and is expensive and inefficient for customers..” - John Maddison, Fortinet CMO
This does not bode well for the CNAPP market and confirms what many of us have known for a while: integrating products into a seamless, unified user experience is hard af.
Source: SiliconAngle
Data Security
Tenable acquires Eureka Security
Tenable can now add “Data Security” to the diagram above with their acquisition of Eureka Security, a DSPM startup. The DSPM space has been hot over the past couple of years with PANW scooping up Dig Security, CRWD scooping up Flow, Rubrik acquiring Laminar, IBM acquiring Polar Security, and now this.
With the recent GenAI push across enterprises + data security capabilities being so hard to build in-house this much activity does not surprise me at all.
Financial details of the transaction undisclosed. Kudos to Tenable and Eureka.
Source: SecurityWeek
Rest of Data Security product news ⬇️
Identity and Access Management (IAM)
Sailpoint introduces “Risk Connectors”
The offering basically integrates with 3rd-party risk information providers like Crowdstrike and Proofpoint to provide risk scores on 3rd-party identities.
Source: HelpNet Security
Internet of Things (IoT) Security
DARPA and Slingshot build system to detect ‘wolf in sheep’s clothing’ adversary satellites - TechCrunch
Offensive Security
Kali Linux 2024.2 released
The release includes 18 new tools including autorecon, getsploit, mitm6, and sharpshooter. Also addresses a funky time collision that would happen in year 2038… similar to the Y2K bug.
Source: BleepingComputer
SaaS Security
Netskope introduces upgrades to its CASB
Updates include:
GenAI assisted risk scoring for SaaS security findings
Introduction of contextual awareness from their SSPM, API Sec and CASB tools to their DLP solution
Unified dashboard + policy framework for the solutions mentioned above
Source: Netskope
Security Operations
Tines releases their first native AI features
Pretty dope that they took their time to assess the GenAI landscape, the value it was bringing to security tools, and how they could best implement the capabilities into their platform. They did not jump the gun which is commendable.
The two new features are:
Automatic Mode
Data transformation + manipulation via Natural Language Processing (NLP)
AI Action
Allows users to access LLMs at any point within their workflow 🔥
Source: HelpNet Security
Rest of Security Operations product news ⬇️
New ‘TacitRed’ solution from Cogility offers AI-driven threat intelligence monitoring - SiliconAngle
Trend Micro launches Inline Network Detection and Response (NDR) - HelpNet Security
Darktrace launches Managed Detection & Response (MDR) service offering - HelpNet Security
Extras🎬
Ron Gula: Bootstrapping Tenable to $100M revenue and becoming an influencer - Inside The Network podcast 🔥
If you’re building a security product or company, subscribe to this pod. Unreal amounts of value from industry 🐐s
How AI-driven identity attacks are defining the new threatscape - VentureBeat
AI-driven compliance: The key to cloud security - Security Intelligence
Understanding Security's New Blind Spot: Shadow Engineering - Dark Reading
The four stages of creating a trust fabric with identity and network security - Microsoft Security
Ep. 364 of Enterprise Security Weekly with myself,
and !! 🔥
Rapid7 security breach poll 👀
Makes sense. Poll was just recently published but I’m almost certain that social engineering wins by wide margins. What are your thoughts?
Go answer the poll! Still open for another week.
Bye For Now!
That’s all for this week. Nos vemos la próxima semana! 🚀