Cutting Business Expenses Shouldn’t Include Cybersecurity
…reduce security spend,” he said. “Look at your systems, assets and other connections, and understand all your organization’s use cases when it comes to security. Taking the time to start or update that matrix will go a long way in ensuring you’ve got the right level of security in place and a realistic budget that makes sense.”
Security risks are increasing as the attack surface expands to home offices, Layton said.
“Most corporate IT users are not road warriors and their desktops, laptops, mobile devices, applications and network access was not designed to securely operate outside the corporate office,” he said. “What is the biggest risk? Ungoverned personal device use and lack of corporate use policy being enforced. The rush to get users online without a rigorous IT use policy or plan for security is opening lots of back doors to corporate networks. Keeping everyone working at any cost has the potential to push security aside — hopefully only briefly. Got security? You sure? Be careful.”
KnowBe4 Adds Email Quarantine Feature
KnowBe4 has launched PhishRIP, a new feature to its PhishER product to help security professionals remove, inoculate and protect against email threats faster.
Technical controls do not filter out all of the malicious emails that come into a user’s inbox, the company said. Research shows phishing, spam and malware attachments still make it through email filters.
An organization’s users report suspicious emails using the KnowBe4 phish alert button (PAB). PhishER categorizes the emails as clean, spam or threat based on configuration settings.
From there, PhishRIP looks at any user-reported message in PhishER. It searches and optionally quarantines similar messages across all the users’ inboxes within an organization.
Any messages found then are ready for further analysis, quarantine or permanent deletion by the incident response team.
Tony Jennings is KnowBe4’s senior vice president of global channel sales. He tells us partners are looking to demonstrate additional value to their customers and “need to offer affordable products to help customers manage increased security risks from users working remote, plus increased phishing attacks they are experiencing.”
“With PhishRIP offered as an added functionality provided at no additional cost in the PhishER platform, this gives partners an opportunity to help their current customers take advantage of new features and allows them to expand their offering to new customers looking for a way to quickly identify and remove suspicious emails from users’ inboxes,” he said.
“No matter what percentage of malicious emails get through to users’ inboxes, you have to remember that it only takes one wrong click to potentially compromise an entire organization,” said Stu Sjouwerman, KnowBe4’s CEO. “Especially during a time when IT departments are being overwhelmed with extra work and risks due to users working from home, it’s critical to help security professionals to automate some of their processes and identify threats faster.”
Respond Software Rolls Out EDR Data Analysis Support
Respond Software unveils analysis support of endpoint detection and response (EDR) data from Carbon Black, CrowdStrike and SentinelOne via Respond Analyst, a virtual cybersecurity analyst for security operations.
The software uses integrated reasoning to monitor and triage security events in near real-time. Respond Software is applying this approach to EDR data to reduce the number of false positives and create security insights.
Matt Eberhart is Respond Software’s vice president of global sales. He said Respond Analyst is a “great opportunity” for VARs to engage with existing customers.
“Security point solutions all create high volumes of alerts, and to unlock the value of these solutions, the customer must be able to understand and take action on the alerts,” he said. “This is difficult on a good day, and even more challenging when security teams are overloaded with work or working from home like they are today. We automatically investigate alerts from security solutions and then escalate a small number of incidents with all the situational awareness needed to take immediate action. The Respond Analyst works 24×7 to identify and investigate security incidents, freeing up your team from time-consuming and repetitive tasks so they can focus on protecting your business.”
Most security tools and services require complex implementations and ongoing tuning before delivering value, Eberhart said. They’re also expensive, he said.
“The Respond Analyst installs in under a day and doesn’t require complex tuning, rules or playbooks,” he said. “Our analyst immediately…