Cybersecurity Roundup: McAfee, Mimecast, SolarWinds, Palo Alto Networks
… uncovered through attempted sale on the dark web.
Identity Monitor allows IT to take steps to mitigate the risk posed by compromised credentials, and the customer gets notified to reset their password proactively, thereby reducing the opportunity for an ATO attempt, according to SolarWinds. It also helps IT and security professionals encourage employees to set passwords in accordance with the National Institutes of Standards and Technology (NIST) guidelines for strong passwords.
Brandon Shopp, SolarWinds’ vice president of product strategy for security, tells us Identity Monitor should give partners additional opportunities to help their customers adopt stronger security in their businesses.
“This is a very simple product to use and consume, as the complexity sits in actually gathering the data and adding it into our breach database,” he said. “Once end users define domains and email addresses in the product, Identity Monitor will immediately provide them with the information we already know about them. Identity Monitor executes this process over time, as well, as our breach database grows and more data is available to match to their organization; we’ll notify customers so they can then take appropriate action, such as forcing a password reset or enabling two factor authentication, if applicable.”
Identity Monitor will give partners a competitive advantage because all organizations – no matter the size – are targets for attacks and breaches, Shopp said. It allows organizations to make the transition from being reactive to more proactive, addressing potential security issues before they become a fire drill, he said.
“Imagine, as an MSSP, wanting to either win an organization’s business or continue to show value to an existing customer,” he said. “The ability to show those prospective customers what the dark web knows about their organization’s employees and demonstrate how the MSSP can not only help address those known issues, but also notify customers any time their employee data shows up in a new breach – sometimes even before that breach is public – will be a significant differentiating benefit to partners.”
Palo Alto Networks Debuts Latest SOAR Platform
Palo Alto Networks has beefed up its Demisto security orchestration, automation and response (SOAR) platform, which allows security teams to automate repetitive tasks and reduce the volume of alerts they receive — allowing them to prioritize based on severity and risk.
Demisto 5.0 allows security analysts to tailor the way they visualize incidents while making it easier for security teams to manage and automate incident response, according to Palo Alto.
Demisto 5.0 includes new features suggested by customers, partners and independent users. A reimagined user interface (UI) can be customized to fit different incident types and security personas. The UI also feeds into threat intelligence enhancements that enable users to visualize indicator intelligence from integrated sources and act on them in a scalable manner.
Karl Soderlund, Palo Alto Networks’ senior vice president of worldwide channel sales, tells us Demisto 5.0 makes it easier than ever for partners to scale and expand their cybersecurity services.
“Several factors contribute to the growing need for cybersecurity services: cloud adoption, the IT talent shortage, and compliance and regulations just to name a few,” he said. “This opens up huge opportunities for partners to deliver the services expertise our customers need for effective threat hunting and incident response. We are also seeing rapid expansion into managed services to monitor network, endpoint and cloud environments around the clock. Examples of these services include: managed prevention, risk assessment and incident response.”
This is what companies say when they don’t have a prevention first philosophy or the platform to enable prevention across the entire attack lifecycle.