Business
April 24, 2025
Push Security raises $30M to expand browser-based identity threat detection Full Text
Abstract
Identity security company Push Security Ltd. announced today that it has raised $30 million. The Series B funding round was led by Redpoint Ventures, with Datadog Ventures also participating.Silicon Angle
April 22, 2025
AI security firm Pillar raises $9m to secure the future of enterprise software Full Text
Abstract
The $9 million seed funding round for Pillar Security was led by Shield Capital, with participation from Golden Ventures, Ground Up Ventures, and a group of strategic angel investors.FinTech
March 18, 2025
Varonis Acquires Database Security Firm Cyral Full Text
Abstract
New York City-based Varonis said it has acquired Florida-headquartered Cyral, a next-generation database activity monitoring provider, to enhance its data security platform offerings.CRN
March 12, 2025
Forcepoint Acquires Getvisibility to Strengthen its AI-Driven Data Security Offerings Full Text
Abstract
Forcepoint is acquiring Cork-based Getvisibility in a deal that aims to enhance its risk mitigation and security management offerings while speeding up compliance for its enterprise and government clientele.Silicon Republic
March 6, 2025
Cisco-backed Cybersecurity Startup SpecterOps Raises $75M In Series B Funding Full Text
Abstract
Cybersecurity startup SpecterOps on Wednesday revealed it has raised $75 million in a Series B financing round that will go towards scaling its flagship platform for detecting and removing identity-based attack paths.CRN
February 14, 2025
A10 Networks Buys ThreatX Protect To Boost AI And WAAP Security Full Text
Abstract
Network security standout A10 Networks is boosting its cybersecurity portfolio around web application and API protection (WAAP) by purchasing the assets and key employees from ThreatX Protect.CRN
February 14, 2025
Quantum-Focused QuSecure Gets $28 Million in Funding Full Text
Abstract
QuSecure has closed its latest round of funding with $28 million, which it will use to advance post-quantum technology and help educate partners on best practices for helping customers battle future security threats.Channel Futures
February 12, 2025
Semgrep Bags $100M in Series D to Elevate AI-Driven Code Security Full Text
Abstract
The round was spearheaded by Menlo Ventures, with significant contributions from existing stakeholders including Felicis Ventures, Harpoon Ventures, Lightspeed Venture Partners, Redpoint Ventures, and Sequoia Capital.Fintech
February 6, 2025
Riot Raises $30 Million for its Cybersecurity Product Suite Focused on Employees Full Text
Abstract
French startup Riot has raised a $30 million Series B funding round after reaching $10 million in annual revenue in 2024. Left Lane Capital led the round, with participation from existing investors Y Combinator, Base10, and FundersClub.Tech Crunch
February 3, 2025
Seraphic Raises $29M to Secure Browsers in the Enterprise Full Text
Abstract
The Series A funding round was led by GreatPoint Ventures (GPV), with participation from the CrowdStrike Falcon Fund and existing investors Planven, Cota Capital, and Storm Ventures.Silicon Angle
February 3, 2025
Oligo Security Raises $50M in Series B Funding Full Text
Abstract
The round was led by Greenfield Partners, with participation from Red Dot Capital Partners, Strait Capital, and existing investors Ballistic Ventures, Lightspeed Venture Partners, and TLV Partners.Finsmes
January 13, 2025
Cado Security Poised to be Purchased by Darktrace Full Text
Abstract
Darktrace plans to purchase a cloud forensics and automation startup led by the former head of PwC's incident response business to enhance the security of multi-cloud environments.SC Media
January 9, 2025
1Password Acquires SaaS Access Management Provider Trelica Full Text
Abstract
1Password on Monday announced that it has acquired software-as-a-service (SaaS) access management provider Trelica. Although terms of the transaction were not disclosed, 1Password said it is the largest acquisition by company revenue in its history.Dark Reading
December 21, 2024
SailPoint Acquires Imprivata’s IGA Business - Expands Portfolio Full Text
Abstract
Identity security provider SailPoint acquired Imprivata’s Identity Governance and Administration (IGA) business, expanding its portfolio of healthcare security solutions. The two firms will collaborate as strategic partners in the healthcare market.Hit Consultant
December 21, 2024
Bureau Raises $30M in Series B Funding Full Text
Abstract
The round was led by Sorenson Capital, with participation from PayPal Ventures and previous investors Commerce Ventures, GMO Venture Partners, and Village Global. It intends to use the funds to expand operations and its development efforts.Finsmes
December 21, 2024
OPSWAT Acquires Fend for OT Security Full Text
Abstract
Critical infrastructure security firm OPSWAT, has acquired Fend Incorporated. Fend is a data pipeline and cybersecurity company dedicated to securing operational technology (OT) against cyber threats, ransomware, and other evolving risks.MSSP Alert
December 17, 2024
Arctic Wolf Acquires BlackBerry’s Cylance Endpoint Security Unit for $160 Million Full Text
Abstract
Cylance became part of the company’s cybersecurity portfolio through a 2018 acquisition. The BlackBerry unit sells a software platform for protecting endpoints such as employee workstations.Silicon Angle
December 14, 2024
Fortinet Acquires Perception Point, Boosting AI Security for Email and SaaS Apps Full Text
Abstract
The acquisition highlights Fortinet’s strategy to extend its cybersecurity solutions beyond email, aiming to secure the broader digital workspace as businesses increasingly adopt cloud-first and hybrid environments.Cacalis Tech
December 14, 2024
Sublime Security Raises $60M in Series B Funding Full Text
Abstract
The round was led by IVP, with participation from new investor Citi Ventures, as well as existing investors Index Ventures, Decibel Partners, and Slow Ventures. The company intends to use the funds to expand operations and its development efforts.Finsmes
December 14, 2024
Silent Push Raises $10M in Series A Funding Full Text
Abstract
The round was led by Ten Eleven Ventures and Stepstone Group. The company intends to use the funds to accelerate its global expansion in EMEA and APJ regions and strengthen its GTM efforts.Finsmes
December 14, 2024
Citrix Strengthens Zero-Trust Security with Acquisitions of deviceTRUST and strong.network Full Text
Abstract
The company acquired deviceTRUST GmbH and strong.network SA, both companies that specialize in security technology designed to provide zero-trust security for hybrid environments.Silicon Angle
December 12, 2024
Astrix Security Secures $45M to Strengthen Nonhuman Identity Protection in Enterprise Full Text
Abstract
Menlo Ventures led the Series B round, with Workday Ventures and existing investors Bessemer Venture Partners Management, Charles River Ventures, and F2 Venture Capital also participating.Siicon Angel
December 10, 2024
System Two Security Raises $7M in Funding Full Text
Abstract
The round was led by Costanoa Ventures, with participation from Runtime Ventures, as well as The Hive and Webb Investment Network. The round was also joined by individual investors including Scott McNealy, Frederic Kerrest, Ash Devata, and others.Finsmes
December 10, 2024
CyberProof acquires Interpres Security to enhance cybersecurity services Full Text
Abstract
The acquisition will enable CyberProof to provide clients with a comprehensive view of their cybersecurity posture, focusing on high-risk threats specific to industries, technologies, and locations.TechCircle
December 10, 2024
Integrity360 expands European presence with Adsigo acquisition Full Text
Abstract
The deal marks the next stage of Integrity360’s pan-European expansion plan and will expand the company’s presence in continental Europe, as well as bolster its PCI and cybersecurity compliance teams with additional skilled resources.ItPro
December 4, 2024
French Mobile Operators Join Forces to Tackle Rising Fraud Full Text
Abstract
Bouygues Telecom, Free, Orange, and SFR announced on December 3 that they will launch two network APIs for the French market in the first half of 2025 to help online businesses combat fraud and digital identity theft.Infosecurity Magazine
November 26, 2024
Haveli Purchases AppViewX to Strengthen Identity Automation Full Text
Abstract
The Austin-based private equity firm said acquiring a majority interest in AppViewX will help the New York-based firm capture the growing market opportunity due to emerging compliance standards and security challenges.Bank Info Security
November 7, 2024
CrowdStrike Acquires Adaptive Shield in $300M Deal to Boost SaaS Security Full Text
Abstract
Cybersecurity giant CrowdStrike has acquired Israeli cyber startup Adaptive Shield for approximately $300 million. Adaptive Shield, founded in 2019, focuses on monitoring and controlling security in cloud environments to prevent potential attacks.Calcalis
November 4, 2024
Detectify Eyes AppSec Expansion After Insight Partners Buy Full Text
Abstract
Venture capital and private equity firm Insight Partners acquired a majority stake in the Swedish cybersecurity company, Detectify, to combine application security and attack surface management capabilities.Cyware
November 4, 2024
Bugcrowd Receives $50M Growth Capital Facility from Silicon Valley Bank Full Text
Abstract
The company intends to use the funds to further scale its AI-powered platform globally, accelerate continued innovation, and leverage opportunities for strategic M&A, providing added value to clients, partners, and the hacker community.Cyware
October 30, 2024
Zenity Raises $38 Million Series B to Protect AI Copilots From Cyber Threats Full Text
Abstract
Zenity, an Israeli startup specializing in securing AI copilots, raised $38 million in a Series B funding round led by Third Point Ventures and DTCP, with support from Microsoft’s M12 fund, Intel Capital, UpWest, and Vertex Ventures.Calcalist
October 30, 2024
Proofpoint Expands Data Security With Normalyze Acquisition Full Text
Abstract
Email security vendor Proofpoint has acquired Normalyze, a data security posture management startup, to address the growing security challenges tied to human error within complex data ecosystems.Bank Infosecurity
October 14, 2024
Cyrisma Raises $7M in Funding Full Text
Abstract
The Series A funding round was led by Blueprint Equity, with participation from SaaS Venture and Golden Ventures. Blueprint Equity’s Sheldon Lewis will join Cyrisma’s Board of Directors.Finsmes
September 23, 2024
Picus Security Raises $45M in Funding Full Text
Abstract
Picus Security, a San Francisco, CA-based security validation company, raised $45M in funding. The round, which brought total funds raised to $80M, was led by Riverwood Capital, with participation from existing investor Earlybird Digital East Fund.Finsmes
September 19, 2024
BlackCloak Raises $17M to Boost Cybersecurity for Executives Full Text
Abstract
Using the fresh funding, the company plans to improve its threat modeling and deepfake protection services to safeguard high-profile individuals from cyber threats in their personal lives.Bank Infosecurity
September 19, 2024
RunSafe Security Raises $12M to Drive Global Expansion and Product Development Full Text
Abstract
The Series B funding was led by Critical Ventures and SineWave Venture Partners, with other key investors joining in to support RunSafe's mission to protect critical systems from global threats.Silicon Angel
September 2, 2024
Uniqkey Raises $5.92M in Funding Full Text
Abstract
Backers included BackingMinds, in combination with industry veterans such as Jesper Zerlang (ex-CEO of Logpoint), Lars Ankjer, Otto Krabbe, Rolf Bladt, and several angels and key employees.Finsmes
August 16, 2024
DigiCert Announces Acquisition of Vercara Full Text
Abstract
DigiCert has announced the acquisition of Vercara to offer customers a unified DNS and certificate management experience. Vercara provides cloud-based services like managed DNS and DDoS security to protect networks and applications.Security Info Watch
August 7, 2024
Abnormal Security Raises $250M on $5.1B Valuation to Enhance AI-Driven Cyber Protection Full Text
Abstract
Abnormal Security, an AI-driven cybersecurity company, has raised $250 million in funding, valuing the company at $5.1 billion. The funding will support their mission of using AI to protect against cybercrime by understanding human behavior.Silicon Angle
August 2, 2024
Credo AI Raises $21M to Help Enterprises Deploy AI Safely and Responsibly Full Text
Abstract
Credo AI, a startup specializing in artificial intelligence governance software, recently closed a $21 million Series B funding round led by CrimsoNox Capital, Mozilla Ventures, and FPV Ventures.Silicon Angle
July 30, 2024
Cowbell Secures $60 Million Series C Funding From Zurich Insurance Group Full Text
Abstract
This investment will allow Cowbell to expand its operations, enter key global markets, enhance cyber resilience services, introduce innovative products, and strengthen partnerships.Dark Reading
July 26, 2024
Chainguard Raises $140M to Drive AI Support, Global Growth Full Text
Abstract
Chainguard, a supply chain security startup, recently raised $140 million in a Series C funding round led by Redpoint Ventures, Lightspeed Venture Partners, and JVP. It aims to expand globally and strengthen its presence in the U.S. public sector.Bank Infosecurity
July 25, 2024
Vanta Raises $150M Series C, Now Valued at $2.45B Full Text
Abstract
Vanta's Series C funding was led by Sequoia Capital. Other participating investors include Growth Equity at Goldman Sachs Alternatives and J.P. Morgan, along with existing partners like Atlassian Ventures and Y Combinator.Tech Crunch
July 25, 2024
Lakera Raises $20 Million to Secure GenAI Applications Full Text
Abstract
Lakera has raised $20 million in a Series A funding round. Led by European VC Atomico, with participation from Citi Ventures, Dropbox Ventures, and existing investors including redalpine, this investment brings Lakera’s total funding to $30 million.Help Net Security
July 19, 2024
Larger Deals Propel Cybersecurity Funding to Two-Year High in Q2 2024 Full Text
Abstract
According to Crunchbase data, cybersecurity funding reached a two-year high in Q2 of 2024, with venture capitalists investing $4.4 billion in startups, the strongest quarter since 2022. This marked a 144% increase from the previous year.Cybersecurity Dive
July 17, 2024
Kaspersky to Quit US This Weekend Full Text
Abstract
Kaspersky, the Russian cybersecurity vendor, is winding down its operations in the US due to a Commerce Department decision prohibiting the sale of its products and services in the country.Infosecurity Magazine
July 12, 2024
Cytactic Raises $16M in Seed Funding Full Text
Abstract
Cytactic, an Israel-based provider of a platform pioneering cyber crisis readiness and management, raised $16M in a seed funding round led by Evolution Equity Partners. It intends to use the funds to expand operations and development efforts.Finsmes
July 10, 2024 – Phishing
Regional Transport Office Themed Phishing Campaign Targets Android Users In India Full Text
Abstract
Phishing messages impersonating the Regional Transport Office have been circulating since 2024, claiming traffic violations and prompting users to download a malicious APK named "VAHAN PARIVAHAN.apk".Cyble As CISOs Grapple with the C-Suite, Job Satisfaction Takes a Hit Full Text
Abstract
Research shows that 75% of CISOs are considering a job change due to various challenges and pressures. CISOs often face accountability for cyber incidents and compliance failures, leading to discontent.Cybersecurity Dive
August 31, 2023
Compliance and Risk Management Startup Hyperproof Raises $40M Full Text
Abstract
Hyperproof, a software-as-a-service risk and compliance management company, today announced that it raised $40 million in a funding round led by Riverwood Capital, with participation from Toba Capital, an early-stage VC firm.Cyware
August 26, 2023
Cypago Raises $13 Million for GRC Automation Platform Full Text
Abstract
The new investment will allow Cypago to expand its research and development, product, and go-to-market teams, and grow its presence in the North American and European markets.Cyware
August 23, 2023
Thoma Bravo Merges ForgeRock with Ping Identity Full Text
Abstract
Private equity powerhouse Thoma Bravo on Wednesday announced plans to merge the just-acquired ForgeRock with Ping Identity, combining two of the biggest names in the enterprise identity and access management market.Cyware
August 22, 2023
Grip Security Raises $41 Million to Accelerate Growth and Extend its Market Full Text
Abstract
The investment brings Grip Security’s total funding to $66 million and marks a major milestone for the company, further accelerating its go-to-market strategy and advancing product development.Cyware
August 22, 2023
Cerby Raises $17 Million for Access Management Platform for Nonstandard Applications Full Text
Abstract
The investment round was led by Two Sigma Ventures, with additional funding from Outpost Ventures, AV8, Bowery Capital, Founders Fund, Incubate Fund, Okta Ventures, Ridge Ventures, Salesforce Ventures, and Tau Ventures.Cyware
August 15, 2023
Protect AI Purchases Huntr to Extend Bug Bounties to AI, ML Full Text
Abstract
The Seattle-based AI and ML security vendor said its acquisition of Seattle-based Huntr will allow customers to discover exploits in the artificial intelligence or machine learning supply chain weeks before they're publicly revealed.Cyware
August 15, 2023
Dallas to Pay Vendors $8.6m for Their Ransomware Recovery Services Full Text
Abstract
The bill covers invoices from “various vendors for emergency purchases of hardware, software, professional services, consultants and monitoring services,” the city said in a statement.Cyware
August 10, 2023
Sweet Security Raises $12M Seed Round for its Cloud Security Suite Full Text
Abstract
The $12 million seed round was led by Glilot Capital Partners, with participation from CyberArk Ventures and a number of angel investors including Gerhard Eschelbeck, a former CISO at Google, and Travis McPeak, who led product security at Databricks.Cyware
August 9, 2023
Horizon3 AI Raises $40 Million to Expand Automated Pentesting Platform Full Text
Abstract
The additional funding will help the San Francisco-based company integrate pentesting, SOAR, and detection engineering into its platform and expand its channel and partner presence to fuel global growth.Cyware
August 9, 2023
Rubrik Buys Startup Laminar to Unify Cyber Posture, Recovery Full Text
Abstract
Rubrik purchased a data security posture management startup backed by Salesforce and SentinelOne to provide visibility into where a company's data lives and who has access.Cyware
August 8, 2023
Cyberinsurance Firm Resilience Raises $100 Million to Expand Its Cyber Risk Platform Full Text
Abstract
The Series D round was led by Intact Ventures, an affiliate of Resilience’s primary capacity provider, Intact Insurance’s underwriting companies, with participation by Lightspeed Venture Partners, as well as General Catalyst and Founders Fund.Cyware
August 3, 2023
Threat Intelligence Provider Cyble Raises $24 Million in Series B Funding Full Text
Abstract
The new funding round was co-led by Blackbird Ventures and King River Capital, with participation from January Capital, Spider Capital, Summit Peak Ventures, and other investors.Cyware
August 2, 2023
Nile, Which Offers Enterprise Networks as a Service, Raises $175M Full Text
Abstract
Nile, a networking-as-a-service (NaaS) provider founded by former Cisco executive Pankaj Patel, has raised $175 million in a Series C funding round. The funding will be used for go-to-market growth and expanding the company's workforce.Cyware
August 1, 2023
Dynatrace Acquires Cloud-Native Debugging Platform Rookout Full Text
Abstract
Observability and security platform Dynatrace today announced that it plans to acquire Rookout, a Tel Aviv-based observability startup that focuses on helping developers troubleshoot and debug their code in production.Cyware
July 29, 2023
Coro Buys Privatise to Infuse SASE With Network Connectivity Full Text
Abstract
The New York-based company said its acquisition of Jerusalem-based Privatise will provide Coro clients with a secure way to connect, manage and filter out malicious content, according to co-founder Dror Liwer.Cyware
July 26, 2023
Protect AI Raises $35M to Build a Suite of AI-Defending Tools Full Text
Abstract
Protect AI announced that it raised $35 million in a Series A round led by Evolution Equity Partners with participation from Salesforce Ventures, Acrew Capital, boldstart ventures, Knollwood Capital and Pelion Ventures.Cyware
July 25, 2023
Thales Acquiring Imperva From Thoma Bravo for $3.6 Billion Full Text
Abstract
Thales will buy Imperva for an enterprise value of $3.6 billion ($3.7 billion gross value minus $0.1 billion tax benefits). The transaction is expected to close by the beginning of 2024.Cyware
July 14, 2023
Secure Code Warrior Lands $50M to Educate Developers on Best Cyber Practices Full Text
Abstract
With a recent $50 million Series C funding round led by Paladin Capital Group, Secure Code Warrior plans to improve its platform and expand its workforce to meet the growing demand for cybersecurity skills training.Cyware
July 6, 2023
Node4 acquires ThreeTwoFour to strengthen its security capabilities Full Text
Abstract
The acquisition is Node4’s third significant growth purchase in the last 18 months, having also bought risual, an IT managed services and solutions provider and Tisski, a leading UK-based independent Microsoft Business applications partner.Cyware
June 28, 2023
Astrix Security, which uses ML to secure app integrations, raises $25M Full Text
Abstract
Astrix Security, a platform that helps companies manage and secure third-party app integrations, today announced that it closed a $25 million Series A funding round led by CRV with participation from Bessemer Venture Partners and F2 Venture Capital.Cyware
June 28, 2023
Cyera Raises $100M to Bring Data Protection to Hybrid Cloud Full Text
Abstract
The startup, founded by longtime Israeli Military Intelligence leaders, landed the Accel-led $100 million Series B funding to support the cloud and on-premises data protection needs of hybrid organizations.Cyware
June 27, 2023
Socure Buys Berbix for $70M to Fortify Identity Verification Full Text
Abstract
The Nevada-based identity verification company said the acquisition of San Francisco-based Berbix will help it optimize the digital capturing and back-end processing of driver's licenses and passports at faster speeds and with greater accuracy.Cyware
June 27, 2023
CalypsoAI Raises $23 Million for AI Security Tech Full Text
Abstract
The company, founded by DARPA, NASA, and DoD veterans, said the Series A-1 financing was led by Paladin Capital Group. Existing investors including Lockheed Martin Ventures, new investors Hakluyt Capital and Expeditions Fund, also took part.Cyware
June 23, 2023
Google announces $20 million investment for cyber clinics Full Text
Abstract
By deploying students to community organizations to improve digital defenses, university cybersecurity clinics aim to give students cybersecurity experience, improve local defensive capacity and steer students toward work in cybersecurity.Cyware
June 19, 2023
Content Moderation Tech Startup Trust Lab Snags $15M Investment Full Text
Abstract
The Palo Alto company said the $15 million Series A was led by U.S. Venture Partners (USVP) and Foundation Capital, two prominent investment firms betting on cybersecurity startups.Cyware
June 14, 2023
Thales to Buy Tesserent for $119.1M to Aid Australian Growth Full Text
Abstract
A French conglomerate plans to purchase Australia's largest publicly traded cybersecurity company to expand its cyber service delivery capability in the high-growth Oceania market.Cyware
June 9, 2023
Blackpoint Cyber raises $190 million to fund further development of its security technology Full Text
Abstract
The $190 million growth investment wasled by Bain Capital Tech Opportunities, with participation from Accel. They join existing investors including Adelphi Capital Partners, Telecom Ventures, Pelican Ventures, and WP Global Partners.Cyware
June 8, 2023
Cyber unicorn Snyk acquiring Israeli startup Enso Security for over $50 million Full Text
Abstract
Snyk said it plans to leverage Enso’s Application Security Posture Management (ASPM) solution to offer a developer security platform providing a holistic view of application security posture.Cyware
May 24, 2023
Memcyco raises $10 million to deliver real-time brandjacking protection Full Text
Abstract
The Israel-based real-time website impersonation detection and prevention solution provider has completed a $10 million seed round led by Capri Ventures and Venture Guides.Cyware
May 22, 2023
Onfido acquires Airside to boost identity verification for individuals and businesses Full Text
Abstract
Cybersecurity firm Onfido acquired Airside Mobile to deliver user-controlled, shareable digital identity designed with data privacy and time-saving convenience at its core.Cyware
May 22, 2023
Facebook Parent Meta Hit With Record Fine for Transferring European User Data to US Full Text
Abstract
The European Union slapped Meta with a record $1.3 billion privacy fine Monday and ordered it to stop transferring user data across the Atlantic, the latest salvo in a decadelong case sparked by U.S. cyberespionage fears.Cyware
May 17, 2023
IBM snags Polar Security to boost cloud data practice Full Text
Abstract
In an effort to grow its hybrid cloud and artificial intelligence capabilities, IBM announced on Tuesday that it was acquiring Polar Security, an Israel-based company specializing in data security posture management.Cyware
May 16, 2023
Huntress Closes $60M Series C for MDR Expansion Full Text
Abstract
The $60 million Series C was led by Sapphire Ventures and brings the total raised by Huntress to a whopping $118 million. Existing investors JMI Equity and Forgepoint Capital expanded their equity stake.Cyware
May 15, 2023
Former ByteDance executive alleges TikTok of wrongful conduct Full Text
Abstract
A former ByteDance executive revealed that the China government has access to TikTok data, including data stored in the United. Yintao Yu, the head of engineering for ByteDance’s U.S. operations from August 2017 to November 2018, revealed that the Chinese...Security Affairs
May 8, 2023
HUB Security Raises Up to $16 Million in Growth Investment from The Lind Partners Full Text
Abstract
This investment is expected to provide HUB Security with additional resources to fuel its rapid growth and development, enhance its financial stability, and enable the company to pursue its future plans.Cyware
May 8, 2023
Immuta Receives Investment from Databricks Ventures Full Text
Abstract
Immuta, a Boston, MA-based leader in data security, received a strategic investment from Databricks Ventures, the investment arm of Databricks, a data and AI company and pioneer of the lakehouse. The amount of the deal was not disclosed.Cyware
April 21, 2023
American Bar Association (ABA) suffered a data breach,1.4 million members impacted Full Text
Abstract
The American Bar Association (ABA) disclosed a data breach, threat actors gained access to older credentials for 1,466,000 members. The American Bar Association (ABA) is a voluntary bar association of lawyers and law students; it is not specific to any jurisdiction...Security Affairs
April 19, 2023
Dasera Scores $12M Funding for Cloud Data Security Full Text
Abstract
The Silicon Valley startup has banked $12 million in venture capital funding to drive innovation in the data security and governance space. The Series A funding round was led by Storm Ventures and brings the total raised by Dasera to $20 million.Cyware
April 18, 2023
Israeli surveillance firm QuaDream is shutting down amidst spyware accusations Full Text
Abstract
The Israeli surveillance firm QuaDream is allegedly shutting down its operations after Citizen Lab and Microsoft uncovered their spyware. Last week Citizen Lab researchers reported that at least five civil society members were victims of spyware...Security Affairs
April 18, 2023
Cyber venture capital funding slows to a trickle, a sharp decline from 2022 investment Full Text
Abstract
The flow of venture capital funding to cybersecurity firms hit a steep decline in the first quarter of 2023 compared with year-ago figures, lending more credence to the notion the industry may be oversaturated with vendors and overlapping tools.Cyware
April 17, 2023
ZeroFox to Acquire Threat Intelligence Firm LookingGlass for $26 Million Full Text
Abstract
ZeroFox (ZFOX), which advertises itself as an external cybersecurity solutions provider, on Monday, announced that it’s in the process of acquiring threat intelligence and attack surface management company LookingGlass.Cyware
April 11, 2023
Fivecast Completes Series A Raise With New US and Existing Australian VC Investors Full Text
Abstract
The Australian open-source intelligence (OSINT) software company has closed its Series A funding round with almost US$20 million raised to fuel its expansion and service contracts in key markets.Cyware
April 4, 2023
Cybereason Raises $100 Million, Appoints New CEO Full Text
Abstract
The new funding, Cybereason says, will help it advance its XDR, EDR, and EPP solutions and support global growth. In addition to the investment, Cybereason also announced that SoftBank’s executive vice president, Eric Gan, will become its new CEO.Cyware
April 1, 2023
SCADAfence raises $16 million, adds Fujitsu and Mitsubishi Electric as new investors Full Text
Abstract
This new funding round will enable SCADAfence to continue scaling its global reach into new markets, increasing sales and support teams in key regions, and building stronger collaborative relationships with its strategic partners.Cyware
April 1, 2023
LeapXpert Banks $22M Funding to Secure Corporate Messaging With Consumer Apps Full Text
Abstract
The company said the Series A financing was led by Rockefeller Asset Management through its Technology Ventures Group with equity investments from Uncorrelated Ventures, the Partnership Fund for New York City.Cyware
March 30, 2023
DataDome, which uses AI to protect against bot-based attacks, raises $42M Full Text
Abstract
Benjamin Fabre founded DataDome in 2015 with Fabien Grenier, a longtime business partner, after the pair made the observation that most companies weren’t able to detect and block bots.Cyware
March 25, 2023
Cork-based Dope Security lands $16m investment Full Text
Abstract
The Series A funding round was led by Google Ventures (GV), with participation from existing investors Boldstart Ventures and Preface. The company plans to use some of the funding to expand its engineering team in Cork.Cyware
March 25, 2023
Britive, which helps secure public clouds, lands $20.5M investment Full Text
Abstract
Led by Pelion Venture Partners with participation from Liberty Global Ventures, Crosslink Capital and One Way Ventures, the new brings Britive’s total raised to $36 million.Cyware
March 23, 2023
Splashtop Buys Foxpass to Bring Enterprise IAM to the Masses Full Text
Abstract
Remote access provider Splashtop has acquired the server and network access management vendor Foxpass to get better visibility across co-managed and multi-tenant environments.Cyware
March 23, 2023
Backslash Snags $8M Seed Financing for AppSec Tech Full Text
Abstract
The Israeli startup said the financing was provided by StageOne Ventures, First Rays Venture Partners, and D. E. Shaw & Co. A roster of prominent security practitioners and entrepreneurs also joined the round.Cyware
March 21, 2023
Aembit Scores $16.6M Seed Funding for Workload IAM Technology Full Text
Abstract
The Maryland-based cybersecurity company said the seed-stage financing was provided by Ballistic Ventures and Ten Eleven Ventures, two firms active in funding cybersecurity companies.Cyware
March 21, 2023
Mastercard acquires Baffin Bay Networks to improve customer security Full Text
Abstract
Baffin Bay Networks, based in Sweden, adds to Mastercard’s multi-layered approach to cybersecurity and helps to stop attacks, while mitigating exposure to risk across the ecosystem.Cyware
March 14, 2023
Grip Security Receives Investment from The Syndicate Group Full Text
Abstract
The Boston, MA, and Tel Aviv, Israel-based SaaS security company unifying discovery, access control, and data governance, received an investment from The Syndicate Group. The amount of the deal was not disclosed.Cyware
March 10, 2023
Socure Secures $95 Million Credit Facility with J.P. Morgan, Silicon Valley Bank, and KeyBanc Capital Markets Full Text
Abstract
This line of credit will further strengthen the company's financial position as it continues on its mission to be the first and only solution provider to verify 100% of good identities in real-time and eliminate identity fraud on the internet.Cyware
March 9, 2023
Cado Security Banks $20M in Series B Funding Full Text
Abstract
The London-based company said Series B financing was led by Eurazeo, a French investment and asset management firm. Ten Eleven Ventures, a prior backer, also expanded its equity stake.Cyware
March 2, 2023
Cisco to Acquire Valtix for Cloud Network Security Tech Full Text
Abstract
Cisco is dipping into the acquisition pool to beef up its cybersecurity portfolio with plans to acquire Valtix, an early-stage Silicon Valley startup in the cloud network security business.Cyware
March 1, 2023
Immuta Receives Strategic Investment from ServiceNow Full Text
Abstract
Immuta, a Boston, MA-based data security company, received an additional strategic investment from ServiceNow. The investment, which was in addition to the Series E funding round, will allow the company to continue growing its cloud offering.Cyware
February 28, 2023
Cloud security startup Wiz, now valued at $10B, raises $300M Full Text
Abstract
The Series D round was co-led by Lightspeed Venture Partners and Greenoaks Capital Partners, with participation from angel investors including Starbucks owner Howard Schultz and French business magnate Bernard Arnault.Cyware
February 24, 2023
Google Teams Up with Ecosystem Partners to Enhance Security of SoC Processors Full Text
Abstract
Google said it's working with ecosystem partners to harden the security of firmware that interacts with Android. While the Android operating system runs on what's called the application processor (AP), it's just one of the many processors of a system-on-chip ( SoC ) that cater to various tasks like cellular communications and multimedia processing. "Securing the Android Platform requires going beyond the confines of the Application Processor," the Android team said . "Android's defense-in-depth strategy also applies to the firmware running on bare-metal environments in these microcontrollers, as they are a critical part of the attack surface of a device." The tech giant said the goal is to bolster the security of software running on these secondary processors (i.e., firmware) and make it harder to exploit vulnerabilities over the air to achieve remote code execution within the Wi-Fi SoC or the cellular baseband. To that end, Google noted thaThe Hacker News
February 24, 2023
CyberSmart secures $15.3m for SME cybersecurity software Full Text
Abstract
CyberSmart’s Series B was led by Oxx, with further contributions from British Patient Capital, IQ Capital, Eos Venture Partners, Legal & General Capital, Seedcamp, and Winton Ventures.Cyware
February 23, 2023
Sublime nabs $9.8M for an anti-phishing email security platform built on collective, crowdsourced rules Full Text
Abstract
Decibel is leading the round, with Slow Ventures and a number of cybersecurity veterans participating, including Sounil Yu, Martin Roesch, Jerry Perullo, Michael Sutton, Rishi Bhargava, Slavik Markovich, Kevin Patrick Mahaffey, and Oliver Friedrichs.Cyware
February 22, 2023
Entitle Nabs $15M Seed Funding for Cloud Permissions Management Tech Full Text
Abstract
The Israeli security startup has attracted $15 million in early-stage venture capital funding from Glilot Capital Partners to build technology to address entitlement sprawl in the enterprise.Cyware
February 21, 2023
Scrut Automation Raises $7.5 Million for GRC Platform Full Text
Abstract
India-based Scrut Automation has announced raising $7.5 million in a new funding round that will help the company improve its governance, risk, and compliance (GRC) automation platform and expand its presence in the United States.Cyware
February 18, 2023
Twitter Limits SMS-Based 2-Factor Authentication to Blue Subscribers Only Full Text
Abstract
Twitter has announced that it's limiting the use of SMS-based two-factor authentication (2FA) to its Blue subscribers. "While historically a popular form of 2FA, unfortunately we have seen phone-number based 2FA be used – and abused – by bad actors," the company said . "We will no longer allow accounts to enroll in the text message/SMS method of 2FA unless they are Twitter Blue subscribers." Twitter users who have not subscribed to Blue that have enrolled for SMS-based 2FA have time till March 20, 2023, to switch to an alternative method such as an authenticator app or a hardware security key. After this cutoff date, non-Twitter Blue subscribers will have their option disabled. The alternative methods "require you to have physical possession of the authentication method and are a great way to ensure your account is secure," Twitter noted. Given that SMS has been the least secure form of 2FA , the latest enforcement is likely to force peopleThe Hacker News
February 18, 2023
Twitter will allow using the SMS-based two-factor authentication (2FA) only to its Blue subscribers Full Text
Abstract
Twitter has announced that the platform will allow using the SMS-based two-factor authentication (2FA) only to its Blue subscribers. To date, Twitter has offered three methods of 2FA: text message, authentication app, and security key. However,...Security Affairs
February 16, 2023
Costanoa Ventures and Norrsken22 back Smile Identity in $20M Series B round Full Text
Abstract
Silicon Valley investor Costanoa Ventures, one of the co-leads in its Series A, also co-led this recent Series B round with Africa-focused venture capital firm Norrsken22. Lexi Novitske, general partner at Norrsken22, will join the company’s Board.Cyware
February 15, 2023
Passwordless authentication startup Descope lands $53M seed round Full Text
Abstract
The money came from Lightspeed Venture Partners and GGV Capital, with additional funds contributed by Dell Technologies Capital, TechAviv, J Ventures, Cerca, Unusual Ventures, Silicon Valley CISO Investments, and several individual investors.Cyware
February 14, 2023
Accenture acquires cybersecurity company Morphus Full Text
Abstract
Acquiring the privately held cyber defence, risk management, and cyber threat intelligence services provider is set to enable Accenture to widen its cybersecurity footprint within the region.Cyware
February 8, 2023
Build38 Raises $14M in Series A Funding Full Text
Abstract
The round was led by Tikehau Capital’s European Cybersecurity Growth Fund, with participation from existing investors eCAPITAL Entrepreneurial Partners and Caixa Capital Risc.Cyware
January 31, 2023
Guardz Emerges From Stealth Mode With $10 Million in Funding Full Text
Abstract
Guardz today emerged from stealth mode with $10 million raised in a seed funding round led by Hanaco Ventures, with additional investment from iAngels, Cyverse Capital, and GKFF Ventures.Cyware
January 31, 2023
Saviynt Raises $205M; Founder Rejoins as CEO Full Text
Abstract
The latest funding brings the total raised by the California company to $375 million and provides a growth-mode runway for Saviynt to establish a foothold in a very competitive marketplace.Cyware
January 30, 2023
Automated security CyberTech Hadrian receives ABN AMRO backing Full Text
Abstract
As part of the investment, ABN AMRO will integrate Hadrian technology into its platform. The company stated it has formed tens of thousands of digital endpoints as it has grown its digital infrastructure over the years.Cyware
January 25, 2023
EGERIE raises $32.7 million to help quantify the financial impact of shabby cyber security Full Text
Abstract
The capital will be used to help Egerie further develop its automated data recovery technology while at the same time opening the doors to an insurer-specific reporting functionality as the company ramps up pan-European expansion plans.Cyware
January 23, 2023
Exterro acquires Zapproved to address critical business challenges Full Text
Abstract
Exterro’s acquisition of Zapproved is the latest step in furthering Exterro’s vision to empower customers to proactively and defensibly manage their legal governance, risk, and compliance obligations.Cyware
January 18, 2023
ProArch Acquires Data Protection Firm Trum & Associates Full Text
Abstract
The acquisition expands ProArch’s cybersecurity and governance, risk, and compliance (GRC) practices to secure enterprise data to prevent data breaches and establish a culture that values safeguarding corporate data.Cyware
January 18, 2023
Hypori Secures $10.5M in Series B Funding Full Text
Abstract
The round, part of a total fundraising round with commitments to invest up to $18M, was led by Hale Capital Partners with participation from GreatPoint Ventures, and GEN David Petraeus.Cyware
January 18, 2023
Cybersecurity firm Blackpanda closes $15M Series A to deepen its Asia presence Full Text
Abstract
The Series A round for the Singapore-based cybersecurity firm, which specializes in incident response and digital forensics, was led by Primavera Venture Partners and Gaw Capital Partners, with participation from San Francisco-based WI Harper.Cyware
January 16, 2023
SailPoint acquires SecZetta to help companies validate non-employee identities Full Text
Abstract
With SecZetta, SailPoint will be able to expand its capabilities to help companies gain better visibility into all types of identities, across both employee and non-employee identities all from a single, market-leading identity security platform.Cyware
December 27, 2022
Facebook (Meta) to settle Cambridge Analytica data leak for $725M Full Text
Abstract
Facebook (Meta) has agreed to pay $725 million to settle the class-action lawsuit filed in 2018 over the Cambridge Analytica data leak. Facebook (Meta) has agreed to pay $725 million to settle a class-action lawsuit filed in 2018 over the Cambridge...Security Affairs
December 16, 2022
Meta takes down surveillance-for-hire firms, calls for government action against the industry Full Text
Abstract
Meta revealed its latest actions in a report released Thursday that was accompanied by a policy paper offering 13 recommendations for confronting the surveillance-for-hire industry.Cyware
December 8, 2022
Vaultree raises $12.8M to let companies more easily work with encrypted data Full Text
Abstract
Vaultree this week closed a $12.8 million Series A round co-led by Molten Ventures and Ten Eleven Ventures, with participation from SentinelOne, Elkstone Partners, CircleRock Capital, and Cyber Club London.Cyware
December 7, 2022
Brazilian PAM Company Senhasegura Raises $13 Million Full Text
Abstract
Founded in 2010 and having a market presence in over 55 countries, the Sao Paulo-based privileged access management (PAM) vendor officially launched its North American operations in August this year.Cyware
November 30, 2022
Investors Bet $31 Million on Sphere for Identity Hygiene Tech Full Text
Abstract
The woman-owned company led by Rita Gurevich said the $31 million Series B was led by growth equity firm Edison Partners. Forgepoint Capital, the venture capital firm that led Sphere’s Series A, also invested in the new round.Security Week
November 23, 2022
Google Strikes Back On Misuse of Cobalt Strike - YARA Rules Released Full Text
Abstract
Google Cloud team identified 34 different hacked releases of Cobalt Strike in the wild. Researchers have found the versions of Cobalt Strike JAR files starting with 1.44 (circa 2012) up to the latest version, 4.7.2.Cyware Alerts - Hacker News
November 23, 2022
Meta Takes Down Fake Facebook and Instagram Accounts Linked to Pro-U.S. Influence Operation Full Text
Abstract
Meta Platforms on Tuesday said it took down a network of accounts and pages across Facebook and Instagram that were operated by people associated with the U.S. military to spread narratives that depicted the country in a favorable light in the Middle East and Central Asia. The network, which originated from the U.S., primarily singled out Afghanistan, Algeria, Iran, Iraq, Kazakhstan, Kyrgyzstan, Russia, Somalia, Syria, Tajikistan, Uzbekistan, and Yemen. The social media giant stated the individuals behind the activity impersonated the communities they targeted, propagating content in Arabic, Farsi, and Russian that floated themes of increased military cooperation with the U.S., and criticized Iran, China, and Russia. These narratives spanned "Russia's invasion of Ukraine, China's treatment of the Uyghur people, Iran's influence in the Middle East, and the support of the Taliban regime in Afghanistan by Russia and China," Meta said in its Quarterly AdversariaThe Hacker News
November 16, 2022
ThreatLocker acquires Third Wall to provide endpoint protection for MSPs Full Text
Abstract
Managed Service Providers (MSPs) using ThreatLocker's solutions will now be able to harden Windows operating systems, ensure end-users comply with government regulations, and strengthen their overall security posture.Help Net Security
November 15, 2022
Bishop Fox Adds $46 Million to Series B Funding Round Full Text
Abstract
The continuous attack surface management solution provider raised another $46 million in growth funding led by WestCap. In addition to WestCap, NextEquity Partners and Rockpool Capital joined the latest funding.Security Week
November 13, 2022
FTX Investigating Possible Hack Hours After Bankruptcy Filing Full Text
Abstract
A day after it filed for bankruptcy, the collapsed cryptocurrency exchange FTX said that it was investigating “unauthorized transactions” flowing from its accounts, as crypto researchers documented suspicious transfers of $515 million.New York Times
November 10, 2022
BOXX Insurance acquires Templarbit to strengthen cyber risk protection for businesses Full Text
Abstract
BOXX Insurance has acquired Templarbit, a cyber threat intelligence platform that makes it simpler for businesses to stay ahead of digital threats. With teams in Palo Alto and Los Angeles, Templarbit was founded by Bjoern Zinssmeister in 2017.Help Net Security
November 10, 2022
Kaspersky to kill its VPN service in Russia next week Full Text
Abstract
Kaspersky is stopping the operation and sales of its VPN product, Kaspersky Secure Connection, in the Russian Federation, with the free version to be suspended as early as November 15, 2022.BleepingComputer
November 8, 2022
Worldr raises $11m to let businesses control their messaging data Full Text
Abstract
Worldr has secured $11 million in a seed funding round led by Molten Ventures for its messaging data sovereignty software that integrates with Microsoft Teams, Slack, and WhatsApp.UKTN
November 8, 2022
Beosin, a leading blockchain security firm, announces $20M Series A strategic financing Full Text
Abstract
Beosin, a leading blockchain security service provider, has recently closed a $20-million strategic financing round participated by prominent industry investors and existing shareholders.Coin Telegraph
November 1, 2022
Mondelez and Zurich reach settlement in NotPetya cyberattack insurance suit Full Text
Abstract
Mondelez International and Zurich American Insurance reached a settlement late last week in their multi-year legal battle over the food company’s $100 million claim regarding damage from the NotPetya cyberattack in 2017.The Record
October 29, 2022
How will Twitter change under Elon Musk? Full Text
Abstract
Cybhorus CEO Pierluigi Paganini talks to TRT World about Elon Musk completing his $44 billion deal to buy Twitter and what changes he will make to the social media platform. Of course, the first impact will be on the leadership, Elon Musk was critical...Security Affairs
October 26, 2022
Spyderbat Raises $10M in Series A Funding Full Text
Abstract
The Austin, TX-based cloud-native runtime security company, raised $10M in Series A funding. The round was led by NTTVC with participation from LiveOak Venture Partners, Benhamou Global Ventures, and John McHale.FinSMEs
October 26, 2022
Valence Security raises fresh capital to secure the SaaS app supply chain Full Text
Abstract
The $25 million Series A round was led by M12, Microsoft’s corporate venture arm, with participation from YL Ventures, Porsche Ventures, Akamai Technologies, Alumni Ventures, and former Symantec CEO Michael Fey.Tech Crunch
October 20, 2022
Health Insurer Pays Out $4.5 Million Over Bungled Data Security Full Text
Abstract
To put the fines in perspective: EyeMed's parent company Luxottica of America reportedly rakes in annual revenues exceeding $500 million. In other words: don't shed too many tears for the insurer over a $4.5 million check.The Register
October 12, 2022
Vista Equity Partners acquires KnowBe4 for $4.6 billion in cash Full Text
Abstract
KnowBe4 has entered into a definitive agreement to be acquired by Vista Equity Partners in an all-cash transaction valued at approximately $4.6 billion on an equity value basis.Help Net Security
October 12, 2022
Cyber training platform pulls in another $66M after post-pandemic remote working increases cyber threats Full Text
Abstract
Ten Eleven Ventures led the latest round, while existing investors Goldman Sachs Asset Management, Summit Partners, Insight Partners, Menlo Ventures, and Citi Ventures all participated in the round.Tech Crunch
October 11, 2022
Endor Labs Joins Race to Secure Software Supply Chain Full Text
Abstract
Endor Labs announced the closing of a $25 million seed round to build a dependency lifecycle management platform. Investors betting on Endor Labs include Lightspeed Venture Partners and Dell Technologies Capital.Security Week
October 6, 2022
Kocho acquires Mobliciti to strengthen its mobile management and security capabilities Full Text
Abstract
The deal adds strategic mobile management and security capabilities to Kocho’s portfolio, allowing customers of both organizations to benefit from an end-to-end range of services that will further accelerate their digital transformation programs.Help Net Security
October 5, 2022
RealDefense Raises $30 Million to Acquire More Privacy, Cybersecurity Firms Full Text
Abstract
The Pasadena, California-based firm this week announced that it has raised $30 million in debt financing from Sunflower Bank, which brings the total investment in the company to $50 million.Security Week
September 30, 2022
Pathlock Expands SAP Capabilities with Acquisition of Grey Monarch Full Text
Abstract
The acquisition will strengthen Pathlock's vision of providing the industry's most complete 360-degree platform for application security and control automation for the SAP ecosystem.Dark Reading
September 29, 2022
Brave browser to start blocking annoying cookie consent banners Full Text
Abstract
The Brave browser will soon allows users to block annoying and potentially privacy-harming cookie consent banners on all websites they visit.BleepingComputer
September 28, 2022
MPCH Labs Closes $40M Series A Funding Full Text
Abstract
The round was led by Liberty City Ventures with participation from QCP Capital, Mantis VC, Human Capital, Global Coin Research, LedgerPrime, Finality Capital, Oak HC FT, Polygon Studios, Quantstamp, and Animoca Brands.FinSMEs
September 28, 2022
Google to test disabling Chrome Manifest V2 extensions in June 2023 Full Text
Abstract
Developers of extensions for Google Chrome can keep their hopes up that the transition from Manifest V2 to V3 will be as gradual as possible, helping to minimize the negative impact on the community of users.BleepingComputer
September 26, 2022
Web3 bug-bounty platform Immunefi raises $24M for its Series A funding round Full Text
Abstract
Immunefi has raised $24 million as part of its Series A round led by Framework Ventures. Other investors include Samsung Next, Electric Capital, and Polygon Ventures. That brings its total raised to now $29.5 million.Tech Crunch
September 26, 2022
Google to Make Account Login Mandatory for New Fitbit Users in 2023 Full Text
Abstract
Wearable technology company Fitbit has announced a new clause that requires users to switch to a Google account "sometime" in 2023. "In 2023, we plan to launch Google accounts on Fitbit, which will enable use of Fitbit with a Google account," the Google-owned fitness devices maker said . The switch will not go live for all users in 2023. Rather, support for Fitbit accounts is expected to continue until at least the beginning of 2025, after which a Google account will be mandatory for using the devices. The deeper integration also means that a Google account will be compulsory to sign up for Fitbit and activate new features, including those that incorporate Google products and services such as Google Assistant. Also necessitated as part of the transition is the consent from the part of users to move their personal data from Fitbit to Google. The internet giant stressed that users' personal information will not be used to serve ads. The goal, Fitbit saidThe Hacker News
September 22, 2022
DataGuard locks down $61M for data protection as a service Full Text
Abstract
The Series B round was led by Morgan Stanley Expansion Capital to double down on the market. The investment also includes One Peak, the U.K. VC that led DataGuard’s last fundraise of $20 million in 2020.Tech Crunch
September 21, 2022
Sardine raises $51.5M led by a16z to sniff out fishy fintech transactions Full Text
Abstract
The company announced it has raised $51.5 million in a Series B round led by Andreessen Horowitz’s (a16z) Growth Fund after closing $19.5 million for its Series A earlier this year.Tech Crunch
September 15, 2022
SandboxAQ acquires Cryptosense to accelerate the deployment of PQC solutions to organizations Full Text
Abstract
The acquisition of Cryptosense complements and accelerates the deployment of SandboxAQ’s Post-Quantum Cryptography (PQC) solutions to corporations and government institutions worldwide.Help Net Security
September 13, 2022
Cloud Data Security Startup Theom Emerges From Stealth With $16 Million in Funding Full Text
Abstract
Founded by former executives from Google, Cisco, and Yahoo, Theom has developed a solution designed to help organizations secure their data in the cloud and SaaS data stores.Security Week
September 12, 2022
Google announced the completion of the acquisition of Mandiant for $5.4 billion Full Text
Abstract
Google completed the acquisition of the threat intelligence firm Mandiant, the IT giant will pay $5.4 billion. Google announced the completion of the $5.4 billion acquisition of threat intelligence firm Mandiant. The acquisition was announced in March...Security Affairs
September 12, 2022
SaaS Alerts Raises $22 Million to Help MSPs Protect Business Applications Full Text
Abstract
SaaS Alerts, a cybersecurity startup that helps managed service providers (MSPs) protect their customers' core business SaaS applications, has received a $22 million growth investment from Insight Partners.Security Week
September 9, 2022
Huntress Scores $40M Funding, Plans International Expansion Full Text
Abstract
Huntress, based in Ellicott City, said the new financing will be used to shop for acquisition opportunities and to speed up expansion into international markets across Canada, the U.K., Europe, Australia, and New Zealand.Security Week
September 8, 2022
Data Security Company Open Raven Raises $20 Million Full Text
Abstract
The cloud-native data security company plans to use the new funding to expand its engineering, sales, and marketing operations, to accelerate its roadmap and support for large enterprises.Security Week
September 6, 2022
New strategic growth investment in Hornetsecurity Full Text
Abstract
Hornetsecurity announced that TA Associates has signed a definitive agreement to make a strategic growth investment in the Company. TA will join existing investors PSG Equity and Verdane, as well as the Company’s management team.Help Net Security
September 5, 2022
Titan Security Group acquires Prudential Security to expand its service footprint Full Text
Abstract
Titan Security Group has completed the acquisition of the security staffing operation of Prudential Security, a security solutions provider based in Taylor, Michigan. Titan is a portfolio company of Quad C Management.Help Net Security
August 30, 2022
Cerberus Sentinel Announces Acquisition of CUATROi Full Text
Abstract
Cerberus Cyber Sentinel Corporation announced that it has completed the acquisition of CUATROi, a cloud-based managed services provider and cybersecurity company with headquarters in Santiago, Chile, and offices in Bogotá, Colombia, and Lima, Peru.Dark Reading
August 22, 2022
TXOne Networks Scores $70M Series B Investment Full Text
Abstract
The company offers security gateways, endpoint agents, and network segmentation solutions designed to help organizations secure, control, and monitor equipment and operational technology (OT).Security Week
August 10, 2022
AppOmni receives funding from Cisco Investments to expand SaaS coverage Full Text
Abstract
AppOmni announced that Cisco Investments has made a strategic investment in the company. This investment will help propel product development and accelerate the company’s roadmap.Help Net Security
August 5, 2022
Keyavi Data raises $13 million to meet market demand for self-protecting data technology Full Text
Abstract
As organizations rely on digital information to run their business, data-centric security is rapidly evolving. Keyavi’s patented technology infuses intelligence directly into data—adding layers of policy-based protection that fortify each file.Help Net Security
August 4, 2022
Cyber Readiness Measurement Firm Axio Raises $23 Million Full Text
Abstract
New York-based cyber readiness and risk management firm Axio has raised $23 million in a Series B funding round led by ISTARI, with participation from existing investors NFP Ventures and IA Capital Group.Security Week
August 3, 2022
NortonLifeLock, Avast deal gets provisional approval of CMA Full Text
Abstract
The $8.6 billion merger was announced in August 2021 and, after a gentle probe, the Competition and Markets Authority (CMA) decided that a closer look was needed in March 2022.The Register
July 28, 2022
With $11.5M In Funding, Naoris Protocol Will Use Blockchain & Decentralization To Plug Web3 Security Gaps Full Text
Abstract
By creating a decentralized network of trusted devices that are incentivized to continuously validate each other to ensure no weak points, Naoris Protocol is on a mission to reinvent cybersecurity best practices.Hackread
July 28, 2022
Human Security merges with PerimeterX to thwart bots and automated fraud Full Text
Abstract
Human Security, a bot mitigation and fraud detection platform for enterprises, is merging with PerimeterX, a company focused on safeguarding web apps from account takeover and automated fraud. The terms of the deal were not disclosed.Tech Crunch
July 21, 2022
Huntress Acquires Security Awareness Training Startup Curricula for $22M Full Text
Abstract
Huntress, itself a startup that raised about $60 million in venture capital funding, said the acquisition adds another critical layer to its Managed Security Platform and brings an important security tool to small and medium-sized businesses.Security Week
July 20, 2022
AppViewX raises $20 million to help organizations reduce their digital risk Full Text
Abstract
AppViewX announced that the company has raised $20 million in a Series B funding round led by growth equity firm and existing investor, Brighton Park Capital (“Brighton Park”).Help Net Security
July 18, 2022
Graff paid a $7.5M ransom and sued its insurance firm for refusing to cover this payment Full Text
Abstract
The high-end British jeweler Graff paid a £6 million ransom after the ransomware attack it suffered in 2021. In September 2021, the Conti ransomware gang hit high society jeweler Graff and threatens to release private details of world leaders, actors...Security Affairs
July 18, 2022
Crosslake Technologies Announces Acquisition of Cybersecurity Advisory Firm VantagePoint Full Text
Abstract
Crosslake Technologies, a leader in providing data-driven technology advisory services to PE firms and their portfolio companies, announced it has completed its third add-on acquisition in the past 18 months with the purchase of VantagePoint.Yahoo Finance
July 13, 2022
Thales acquires OneWelcome to strengthen its authentication and data privacy portfolio Full Text
Abstract
OneWelcome’s strong digital identity lifecycle management capabilities will complement Thales’s existing Identity services in order to offer the most comprehensive Identity Platform in the market.Help Net Security
July 13, 2022
Privitar Acquires Regulatory Intelligence Provider Kormoon Full Text
Abstract
The company plans to use Kormoon's codified repository of data privacy rules across 46 jurisdictions globally to inform and automate policies on Privitar's data provisioning platform, says co-founder and CEO Jason du Preez.Bank Info Security
July 11, 2022
Microsoft says decision to unblock Office macros is temporary Full Text
Abstract
Microsoft says last week's decision to roll back VBA macro auto-blocking in downloaded Office documents is only a temporary change.BleepingComputer
July 8, 2022
Cyber Insurance Firm Coalition Raises $250 Million at $5 Billion Valuation Full Text
Abstract
The latest funding, which brings the total raised by Coalition to more than $755 million, came from Allianz X, Valor Equity Partners, Kinetic Partners, and other existing investors.Security Week
July 1, 2022
Inspectiv Closes USD8.6M in Series A Funding Full Text
Abstract
The Series A funding round, which brings total capital raised to more than $16 million, was led by StepStone Group with participation from Fika Ventures, Freestyle and Mucker Capital.FinSMEs
June 28, 2022
Cerby Emerges From Stealth With Security Platform for Unmanageable Apps Full Text
Abstract
Cerby has raised $12 million in seed funding from Ridge Ventures, Bowery Capital, Okta Ventures, Salesforce Ventures and others. This investment brings the total raised by the firm to $15.5 million.Security Week
June 22, 2022
RevealSecurity Raises $23 Million for Application Detection and Response Full Text
Abstract
The Series A financing provides capital for the Tel Aviv-based company to build "Application Detection and Response" technology capable of ferreting out malicious activities executed by insiders and imposters in enterprise applications.Security Week
June 20, 2022
Google no longer allows username and passwords on third-party email applications Full Text
Abstract
App-specific passwords are used in conjunction with two-factor authentication on your Google account. Most applications do not know how to handle two-factor, which is why app-specific passwords were created.Neowin
June 16, 2022
Jit Banks Massive $38.5 Million Seed Round Funding Full Text
Abstract
The $38.5 million round is abnormally high for seed-stage funding and signals a strategic shift to make bigger bets on early-stage companies with brand-new products and no significant revenue stream.Security Week
June 10, 2022
DigiCert Acquires DNS Made Easy Full Text
Abstract
The addition of DNS Made Easy enhances the company's certificate validation and lifecycle management portfolio, it said in a company statement on the acquisition. The terms of the deal were not disclosed.Dark Reading
June 10, 2022
Whistic Raises $35 Million in Series B Funding for Vendor Security Network Full Text
Abstract
The new funding round was led by JMI Equity, with participation from Album VC, Emergence Capital, Forgepoint Capital, and FJ Labs. This brings the total investment in the company to $51 million.Security Week
June 8, 2022
Cloud Data Access Firm Immuta Raises $100 Million Full Text
Abstract
Boston-based cloud data access and security firm Immuta has raised $100 million in a Series E round led by NightDragon, and joined by new investor Snowflake Ventures (the VC arm of Snowflake), with participation from existing investors.Security Week
June 7, 2022
Security Awareness Firm CybSafe Bags $28 Million in Series B Funding Full Text
Abstract
The new Series B investment round was led by Evolution Equity Partners, with participation from Emerald Development Managers, Hannover Digital Investments (HDI), and IQ Capital.Security Week
June 4, 2022
Ten Eleven Ventures Raises $600M Fund for Cybersecurity Investments Full Text
Abstract
On the heels of similar announcements by YL Ventures and SYN Ventures, Ten Eleven this week announced it had raised $600 million for its third generation fund to invest in the next wave of security companies, from seed to growth stages.Security Week
June 3, 2022
Chainguard raises $50M Series A for supply chain security Full Text
Abstract
The round was led by Sequoia Capital. Amplify, the Chainsmokers’ Mantis VC, LiveOak Venture Partners, Banana Capital, K5/JPMC, and CISOs from Google and Square, among others, also participated in this round.Tech Crunch
June 3, 2022
Logging and Security Analytics Firm Devo Banks New $100 Million Investment Full Text
Abstract
The Series F round was led by Eurazeo, a global investment firm with over $30 billion in assets under management. Existing investors Insight Partners, Georgian, TCV, General Atlantic, Bessemer Venture Partners, and Kibo Ventures also participated.Security Week
May 31, 2022
Hoxhunt Raises $40M in Series B Funding Full Text
Abstract
Hoxhunt, a Helsinki, Finland–based cybersecurity training platform provider, raised $40 million in Series B funding. The round was led by Level Equity Management, with participation from existing investor Icebreaker.vc.FinSMEs
May 30, 2022
Hornetsecurity acquires IT-Seal to add security training services to its portfolio Full Text
Abstract
Located in Darmstadt, Germany, IT-Seal specializes in establishing a sustainable security culture. It employs innovative technologies to train employees at businesses and organizations worldwide.Help Net Security
May 27, 2022
Microsoft to force better security defaults for all Azure AD tenants Full Text
Abstract
Microsoft has announced that it will force enable stricter secure default settings known as 'security defaults' on all existing Azure Active Directory (Azure AD) tenants starting in late June 2022.BleepingComputer
May 26, 2022
Broadcom announces plans to buy VMware in $61 billion deal Full Text
Abstract
Broadcom will buy VMware in a cash-and-stock transaction valued at $61 billion, based on the closing price of Broadcom common stock on May 25, 2022, the companies announced Thursday.CNBC
May 17, 2022
French group Thales buys two cybersecurity firms Full Text
Abstract
France's Thales said on Tuesday it had struck a deal with Sonae Investment Management to acquire two European cybersecurity companies, S21sec and Excellium, for an enterprise value of 120 million euros (~$125 million).Reuters
May 17, 2022
Access Orchestration Firm Pathlock Announces Several M&As and $200M Funding Full Text
Abstract
Pathlock on Tuesday announced mergers with ERP data security firm Appsian, and Security Weaver, a company that provides governance, risk, and compliance management (GRCM) software for SAP.Security Week
May 17, 2022
Pangea Lands $25 Million Investment for API Security Services Full Text
Abstract
Pangea, the brainchild of serial entrepreneur Oliver Friedrichs, said the Series A funding round was led by Ballistic Ventures, a new investment firm focused exclusively on cybersecurity companies.Security Week
May 13, 2022
StackHawk Raises $20.7 Million in Series B Funding Full Text
Abstract
The round, which brings total funding raised to $35.3m, was led by Sapphire and Costanoa Ventures with the participation of others. The company intends to use the funds to invest in product development.FinSMEs
May 11, 2022
Concentric AI Raises $14.5M in Series A Funding Full Text
Abstract
Concentric Inc. raised $14.5 million in Series A funding led by Ballistic Ventures with participation from Citi Ventures and current investors Core Ventures Group, Engineering Capital, and Clear Ventures.FinSMEs
May 11, 2022
Abnormal Security Raises $200 Million to Provide Email Security Solutions for Businesses Full Text
Abstract
Abnormal Security announced the close of a $210 million Series C round of financing led by global software investor Insight Partners, with participation from Greylock Partners and Menlo Ventures.Help Net Security
May 10, 2022
Microsoft Flexes Security Vendor Muscles With Managed Services Full Text
Abstract
Microsoft rolled out a new suite of new managed services aimed at the mid-market, betting that short-staffed organizations will need outside help to reduce bloating attack surfaces and mitigate an ongoing surge in malware attacks.Security Week
May 9, 2022
Near $1 Million Fine Proposed for Colonial Pipeline Following Cyber Attack Full Text
Abstract
The U.S. Department of Transportation’s Pipeline and Hazardous Materials Safety Administration (PHMSA) found management failings and has issued a Notice of Probable Violation and Proposed Compliance Order to Colonial Pipeline Company.HS Today
May 5, 2022
Network Perception Secures $13 Million Series A Funding Round Full Text
Abstract
The funding round was led by The Westly Group, with participation from Energy Impact Partners and other existing investors, including Serra Ventures, Okapi Venture Capital, Energy Foundry, and SaaS Venture Capital.Yahoo Finance
May 5, 2022
GitHub launches new 2FA mandates for code developers, contributors Full Text
Abstract
On Wednesday, the Microsoft-owned code repository said that changes will be made to existing authentication rules as "part of a platform-wide effort to secure the software ecosystem through improving account security."ZDNet
May 04, 2022
GitHub to require 2FA from active developers by the end of 2023 Full Text
Abstract
GitHub announced today that all users who contribute code on its platform (an estimated 83 million developers in total) will be required to enable two-factor authentication (2FA) on their accounts by the end of 2023.BleepingComputer
May 4, 2022
Identity-Based Infrastructure Access Firm Teleport Raises $110 Million Full Text
Abstract
The Series C funding round was led by Bessemer Venture Partners, with participation from Insight Partners and existing investors. This latest investment brings the total raised to $169.2 million and values the firm at $1.1 billion.Security Week
May 2, 2022
Smallstep Raises $26 Million for Automated Certificate Management Platform Full Text
Abstract
Smallstep says it will use the funds to invest in the open-source community, will continue to build products for practical zero trust, and will accelerate research and development.Security Week
April 28, 2022
Veza Raises $110M in Funding Full Text
Abstract
Backers included Accel, Bain Capital, Ballistic Ventures, GV, Norwest Venture Partners, and True Ventures, as well as Kevin Mandia, Enrique Salem, Lane Bess, Manoj Apte, Joe Montana, Niels Provos, and Karthik Rangarajan, and many more.FinSMEs
April 27, 2022
ARMO Raises $30 Million for Open Source Kubernetes Security Platform Full Text
Abstract
The latest investment, which brings ARMO’s total funding to date to $34.5 million, was led by Tiger Global and Hyperwise Ventures, with participation from existing investors Pitango First and Peled Ventures.Security Week
April 20, 2022
ThreatLocker Scores $100M in Funding Led by General Atlantic, Zeroes in on $1B Unicorn Valuation Full Text
Abstract
ThreatLocker, which provides zero trust policy-driven security for endpoints, has scored $100 million in Series C funding led by private equity powerhouse and growth equity investor General Atlantic.CRN
April 14, 2022
Obsidian Security Raises $90 Million Series C Round to Cement its Leadership in SaaS Security Full Text
Abstract
The funding was led by Menlo Ventures, Norwest Venture Partners, and IVP, with participation from existing investors Greylock, Wing, and GV. Obsidian will add Menlo Ventures Partner Venky Ganesan to its board of directors.Yahoo Finance
April 14, 2022
Cloud Security Startup DoControl Raises $30 Million Full Text
Abstract
The startup said it plans to use the money to scale its SaaS data security product offerings, fuel global growth through aggressive hiring, and build strategic partner programs.Security Week
April 12, 2022
Kaseya to acquire Datto for $6.2 billion Full Text
Abstract
The all-cash transaction will be funded by an equity consortium led by Insight Partners, with significant investment from TPG Capital and Temasek, and participation from notable investors including Sixth Street.Help Net Security
April 11, 2022
HelpSystems acquires Terranova Security to offer security awareness solutions for businesses Full Text
Abstract
HelpSystems announced the acquisition of Terranova Security, an organization providing phishing simulation, privacy awareness, and security awareness training services across the globe.Help Net Security
April 8, 2022
Blockchain Security Firm CertiK Raises $88 Million at $2 Billion Valuation Full Text
Abstract
The new investment round was led by Advent International, Insight Partners, and Tiger Global, with participation from Goldman Sachs and previous investors Lightspeed Venture Partners and Sequoia.Security Week
April 7, 2022
VPN Provider Nord Security Reaches Unicorn Status With $100 Million Funding Full Text
Abstract
Lithuania-based Nord Security has raised $100 million in its first ever outside capital funding with a financing round led by Novator Ventures, and participation from Burda Principal Investments and General Catalyst.Security Week
April 6, 2022
Tufin Enters Into Definitive Agreement to be Acquired by Turn/River Capital in a $570 million Transaction Full Text
Abstract
Tufin announced that it has entered into a definitive agreement to be acquired by Turn/River Capital, a software-focused investment firm, in an all-cash transaction that values the company at about $570 million.Yahoo! Finance
April 5, 2022
Coro secures $60M at ~$500M valuation for an all-in, SaaS-based cyber protection platform aimed at SMBs Full Text
Abstract
Alongside this latest round, the company is also disclosing for the first time an additional $20 million raised in the last six months, bringing the total to $80 million in the period.Tech Crunch
March 31, 2022
Cloaked Snags $25M Funding to Tackle Data-Sharing Privacy Full Text
Abstract
The startup, called Cloaked, said the Series A investment was co-led by Lux Capital and Human Capital and will be used to exit beta and drive growth in a competitive marketplace.Security Week
March 29, 2022
Steve Mnuchin’s private equity firm buys Zimperium for $525m Full Text
Abstract
Former US Treasury secretary Steve Mnuchin's private equity firm has announced its plans to buy a controlling stake in a mobile cybersecurity company for more than half a billion dollars.The Register
March 26, 2022
Kaspersky named first Russian company on security risk list Full Text
Abstract
The U.S. placed internet-security provider AO Kaspersky Lab on a list of companies deemed a threat to national security, for the first time adding a Russian entity to a list dominated by Chinese telecommunications firms.Livemint
March 24, 2022
MixMode raises $45 million to automate cyberattack detection for organizations Full Text
Abstract
MixMode announced that it has raised $45 million in a Series B funding round led by the growth equity firm PSG, with participation from existing investor Entrada Ventures.Help Net Security
March 23, 2022
Microsoft confirms breach by Lapsus$ hacker group Full Text
Abstract
Microsoft has confirmed that the hacker group Lapsus$ breached its security system, after the digital extortion gang claimed credit earlier this week.The Hill
March 23, 2022
Weeks after launch, Island hits $1.3B valuation with $115M round Full Text
Abstract
The round was led by previous lead investor Insight Partners, and comes just weeks after the New York-based venture capital firm raised over $20 billion for its 12th flagship fund.Tech Crunch
March 22, 2022
Application Security Firm ForAllSecure Raises $21 Million Full Text
Abstract
ForAllSecure plans to use the funding to accelerate growth, hire new talent, and build a solution that would help secure open source projects that businesses worldwide depend on.Security Week
March 22, 2022
McAfee Enterprise’s security service edge business is now called Skyhigh Security Full Text
Abstract
At the start of this year, Symphony Technology Group (STG) announced Trellix was the new name for the business unit that resulted from the merger of McAfee Enterprise and FireEye last October.ZDNet
March 15, 2022
Cyber Insurance Firm Cowbell Raises $100 Million Full Text
Abstract
The latest investment round was led by the Anthemis Group. All previous investors participated as well, along with NYCA Partners, Permira, PruVen Capital, and Viola Fintech.Security Week
March 11, 2022
SafeBase bags $18M Series A to speed up vendor security auditing process Full Text
Abstract
The company, which allows clients to share their security posture with customers, announced an $18 million Series A investment led by New Enterprise Associates, with participation from Y Combinator and Comcast Ventures.Tech Crunch
March 10, 2022
HelpSystems to Acquire MDR Services Firm Alert Logic Full Text
Abstract
Software firm HelpSystems continues on its cybersecurity buying spree, announcing on Wednesday that it has agreed to acquire Alert Logic, a provider of managed detection and response (MDR) services.Security Week
March 08, 2022
Google to acquire Mandiant for $5.4 billion Full Text
Abstract
Google plans to acquire Mandiant, the cybersecurity firm that uncovered the SolarWinds hack, for $5.4 billion, the tech giant announced Tuesday.The Hill
March 08, 2022
Google Buys Cybersecurity Firm Mandiant for $5.4 Billion Full Text
Abstract
Google is officially buying threat intelligence and incident response company Mandiant in an all-cash deal approximately valued at $5.4 billion, the two technology firms announced Tuesday. Mandiant is expected to be folded into Google Cloud upon the closure of the acquisition, which is slated to happen later this year, adding to the latter's growing portfolio of security offerings such as BeyondCorp Enterprise , VirusTotal , Chronicle , and the Cybersecurity Action Team . "Today, organizations are facing cybersecurity challenges that have accelerated in frequency, severity and diversity, creating a global security imperative," Google said in a statement. "To address these risks, enterprises need to be able to detect and respond to adversaries quickly; analyze and automate threat intelligence to scale threat detection across organizations; orchestrate and automate remediation; validate their protection against known threats; and visualize their IT environment iThe Hacker News
March 08, 2022
ProtonMail urges Russian users to renew as payment options dry up Full Text
Abstract
ProtonMail is urging its Russian user base to hurry up and renew their subscriptions before it is too late, as multiple payment processing services like Mastercard, Visa, and PayPal are exiting the Russian market. ProtonMail is a provider of privacy-centric and end-to-end encrypted email services to millions around the world.BleepingComputer
March 8, 2022
Cybersecurity startup Axonius valued at $2.6 bln after latest funding Full Text
Abstract
The latest financing led by Accel comes a year after Axonius raised $100 million at a valuation of $1.2 billion. Silver Lake Partners and existing investors Bessemer Venture Partners also participated.Reuters
March 7, 2022
What to Make of Microsoft’s Year in Cybersecurity Full Text
Abstract
Microsoft simultaneously combats, profits from and contributes to cybersecurity problems.Lawfare
March 7, 2022
AppSec Firm Cider Security Emerges From Stealth With $38 Million in Funding Full Text
Abstract
Cider Security plans to use the new funding to expand its research and development operations in Israel and to open new offices around the world, to support increasing demand.Security Week
March 04, 2022
Cisco joins long list of security companies supporting Ukraine Full Text
Abstract
Cisco has joined the growing list of security and technology companies that no longer offer services in Russia after their invasion of Ukraine.BleepingComputer
March 3, 2022
CardinalOps Raises $17.5 Million for Threat Coverage Optimization Platform Full Text
Abstract
CardinalOps, which is a threat coverage optimization company, on Thursday announced raising $17.5 million in a Series A funding round that brings the total raised by the firm to $24 million.Security Week
March 2, 2022
Bright Security (NeuraLegion) Raises $20 Million in Series A Funding Full Text
Abstract
The investment round was led by Evolution Equity Partners and received participation from previous investors, including DNX Ventures, Fusion Fund, Incubate Fund, and J-ventures.Security Week
March 01, 2022
‘Help Ukraine’ crypto scams emerge as Ukraine raises over $37 million Full Text
Abstract
Scammers are now targeting unsuspecting users via phishing webpages, forum posts, and email links enticing users to "help Ukraine" by donating cryptocurrency. The development follows Ukraine's successful effort of raising over $37 million in crypto donations from all around the world amid the country's ongoing Russian invasion.BleepingComputer
February 25, 2022
Email Security and Brand Protection Firm Red Sift Raises $54 Million Full Text
Abstract
The latest funding round was led by Highland Europe, with participation from new and existing investors, including Sands Capital, MMC Ventures, and Oxford Capital Partners.Security Week
February 25, 2022
Integrity360 acquires Caretower to strengthen its cybersecurity services Full Text
Abstract
Ireland-based Integrity360 and Caretower announced that they have joined forces with Caretower becoming an Integrity360 company. The terms of the transaction were not disclosed.Help Net Security
February 24, 2022
eSentire Raises US$325M in Funding Full Text
Abstract
The MDR provider eSentire raised US$325M in private equity funding. The round was led by Georgian, with participation from Caisse de dépot et placement du Québec (CDPQ) and Warburg Pincus.FinSMEs
February 24, 2022
Cloudflare acquires Area 1 Security for $162 million Full Text
Abstract
Cloudflare announced that it is acquiring Area 1 Security for approximately $162 million. Area 1 Security has a cloud-native platform built to work alongside email programs to stop phishing attacks.ZDNet
February 24, 2022
anecdotes Raises $25 Million for Its Compliance OS Platform Full Text
Abstract
The new funding round was led by Red Dot Capital Partners and received participation from Aleph, Glilot Capital Partners, Shasta Ventures, and Vintage Investment Partners.Security Week
February 21, 2022
Radware buys Israeli cybersecurity co SecurityDAM Full Text
Abstract
Radware said that the $42.5 million acquisition of cloud security firm SecurityDAM is part of its strategic initiative to accelerate the growth of its cloud security service business.Globes
February 21, 2022
TitanHQ Announces Acquisition of Cyber Risk Aware Full Text
Abstract
The acquisition will further bolster TitanHQ's already extensive security offering. Cyber Risk Aware delivers cyber security awareness training to staff in response to actual staff network behavior.Yahoo! Finance
February 17, 2022
Snyk Buys Cloud Security Vendor Fugue To Protect Developers Full Text
Abstract
Snyk has purchased Cloud Security Posture Management (CSPM) vendor Fugue to help organizations manage compliance and security throughout the software development lifecycle.CRN
February 16, 2022
WhiteSource acquires DefenseCode and Xanitizer to enter into the SAST market Full Text
Abstract
WhiteSource announced the company’s expansion into custom code security following two recent acquisitions and the availability of its static application security testing (SAST) solution.Help Net Security
February 15, 2022
Facebook Agrees to Pay $90 Million to Settle Decade-Old Privacy Violation Case Full Text
Abstract
Meta Platforms has agreed to pay $90 million to settle a lawsuit over the company's use of cookies to allegedly track Facebook users' internet activity even after they had logged off from the platform. In addition, the social media company will be required to delete all of the data it illegally collected from those users. The development was first reported by Variety . The decade-old case, filed in 2012, centered around Facebook's use of the proprietary "Like" button to track users as they visited third-party websites – regardless of whether they actually used the button – in violation of the federal wiretapping laws, and then allegedly compiling those browsing histories into profiles for selling the information to advertisers. Based on the terms of the proposed settlement, users who browsed non-Facebook websites that included the "Like" button between April 22, 2010, and September 26, 2011, will be covered. "Reaching a settlement in this casThe Hacker News
February 10, 2022
Legit Security Launches Out of Stealth with Series A Investment to Secure Software Supply Chains Full Text
Abstract
Legit Security announced its launch out of stealth mode with a Series A $30 million funding announcement with leading venture capital firms Bessemer Venture Partners and TCV.Yahoo! Finance
February 10, 2022
NightDragon Leads New Growth Round in ThriveDX alongside Prytek Full Text
Abstract
A dedicated cybersecurity and privacy investment firm, NightDragon joins early strategic partner Prytek (who invested $110 million to date) as the co-lead investor in ThriveDX's current funding round.Yahoo! Finance
February 9, 2022
Vulnerability Remediation Platform Vicarius Raises $24 Million Full Text
Abstract
The New York-based company’s cloud-first, integrated platform – called Topia – helps organizations identify, prioritize and address software vulnerabilities before hackers can exploit them.Security Week
February 08, 2022
ExpressVPN offering $100,000 to first person who hacks its servers Full Text
Abstract
ExpressVPN has updated its bug bounty program to make it more inviting to ethical hackers, now offering a one-time $100,000 bug bounty to whoever can compromise its systems.BleepingComputer
February 08, 2022
Google sees 50% security boost for 150M users after 2FA enroll Full Text
Abstract
After accelerating its efforts to auto-enroll as many accounts as possible in two-factor authentication (2FA), Google announced that an additional 150 million users now have 2FA enabled.BleepingComputer
February 07, 2022
Microsoft Disables Internet Macros in Office Apps by Default to Block Malware Attacks Full Text
Abstract
Microsoft on Monday said it's taking steps to disable Visual Basic for Applications (VBA) macros by default across its products, including Word, Excel, PowerPoint, Access, and Visio, for documents downloaded from the web in an attempt to eliminate an entire class of attack vector. "Bad actors send macros in Office files to end users who unknowingly enable them, malicious payloads are delivered, and the impact can be severe including malware, compromised identity, data loss, and remote access," Kellie Eickmeyer said in a post announcing the move. While the company does warn users about permitting macros in Office files, unsuspecting users — e.g., recipients of phishing emails — can still be lured into enabling the feature, effectively granting the attackers the ability to gain an initial foothold into the system. As part of the new change, when a user opens an attachment or downloads from the internet an untrusted Office file containing macros, the app displays a seThe Hacker News
February 07, 2022
Microsoft Temporarily Disables MSIX App Installers to Prevent Malware Abuse Full Text
Abstract
Microsoft last week announced that it's temporarily disabling the MSIX ms-appinstaller protocol handler in Windows following evidence that a security vulnerability in the installer component was exploited by threat actors to deliver malware such as Emotet, TrickBot, and Bazaloader. MSIX , based on a combination of .msi, .appx, App-V and ClickOnce installation technologies, is a universal Windows app package format that allows developers to distribute their applications for the desktop operating system and other platforms . ms-appinstaller, specifically, is designed to help users install a Windows app by simply clicking a link on a website. But a spoofing vulnerability uncovered in Windows App Installer ( CVE-2021-43890 , CVSS score: 7.1) meant that it could be tricked into installing a rogue app that was never intended to be installed by the user via a malicious attachment used in phishing campaigns. Although Microsoft released initial patches to address this flaw as partThe Hacker News
February 7, 2022
US Telecom providers requested $5.6B to replace Chinese equipment Full Text
Abstract
The Federal Communications Commission (FCC) says that small telecom providers have requested $5.6 billion to replace Chinese gear. The U.S. government has requested telecom providers to replace Chinese equipment in their networks due to security issues...Security Affairs
February 6, 2022
Israeli surveillance firm QuaDream emerges from the dark Full Text
Abstract
One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream. One of the vulnerabilities in Apple iOS that was previously exploited by the spyware developed by the Israeli company NSO Group...Security Affairs
February 2, 2022
PlexTrac Raises $70M Series B Funding Round to Fuel Growth in Proactive Cybersecurity Management Full Text
Abstract
New York-based global venture capital firm Insight Partners led the round, with participation from existing investors Madrona Venture Group, Noro-Moseley Partners, and StageDotO Ventures.idahocountyfreepress
February 2, 2022
Tenable agrees to acquire Cymptom; terms undisclosed (NASDAQ:TENB) Full Text
Abstract
Tenable has agreed to acquire Cymptom, a specialist in attack path management. The financial terms of the deal were not disclosed. The acquisition is expected to close in Q122.Seeking Alpha
February 2, 2022
Check Point Acquires Developer Security Startup Spectral Full Text
Abstract
Check Point Software Technologies has bought Spectral to broaden its range of cloud application security use cases to include Infrastructure as Code scanning and hard-coded secrets detection.CRN
February 2, 2022
Forescout Acquires CyberMDX to Expand Healthcare Cybersecurity Focus Full Text
Abstract
Forescout Technologies announced its acquisition of CyberMDX, a leading healthcare cybersecurity provider delivering visibility and threat prevention for medical devices and clinical networks.Dark Reading
January 31, 2022
Apple Pays $100.5K Bug Bounty for Mac Webcam Hack Full Text
Abstract
The researcher found that he could gain unauthorized camera access via a shared iCloud document that could also “hack every website you’ve ever visited.”Threatpost
January 27, 2022
Microsoft mitigates largest DDoS attack ‘ever reported in history’ Full Text
Abstract
Microsoft says its Azure DDoS protection platform mitigated a massive 3.47 terabits per second (Tbps) distributed denial of service (DDoS) attack targeting an Azure customer from Asia in November.BleepingComputer
January 27, 2022
Worklyn Partners acquires Quadrant Information Security to expand security services Full Text
Abstract
On the heels of the first close of its maiden fund at over $35 million, Worklyn’s investment will enable Quadrant to scale its proprietary technology platform and accelerate faster growth.Help Net Security
January 26, 2022
Slim.AI Raises $31 Million to Secure Cloud-Native Applications Full Text
Abstract
Slim.AI’s latest funding round was led by Insight Partners and StepStone Group and also received participation from Knollwood, boldstart Ventures, Decibel Partners, FXP, and TechAviv Founder Partners.Security Week
January 25, 2022
XDR Firm Hunters Raises $68 Million in Series C Funding Round Full Text
Abstract
The Series C round was led by Stripes, with participation from DTCP, Cisco Investments, Databricks, YL Ventures, Bessemer Venture Partners, Microsoft’s M12, U.S. Venture Partners, and others.Security Week
January 21, 2022
Software Supply Chain Security Specialist Codenotary Raises $12.5 Million in Series B Round Full Text
Abstract
Codenotary, the immutability specialist that can instantly identify untrusted components in software, announced that it has raised $12.5 million in series B funding by new and existing investors.Yahoo! Finance
January 20, 2022
SEC Filing Reveals Fortune 500 Firm Targeted in Ransomware Attack Full Text
Abstract
R.R. Donnelly, the integrated services company, confirmed a ‘systems intrusion’ that occurred in late December and is still under investigation.Threatpost
January 20, 2022
Datto Acquires Cybersecurity Company Infocyte Full Text
Abstract
Datto acquired threat detection and response company Infocyte, extending its security capabilities that protect, detect, and respond to cyber threats found within endpoints and cloud environments.Yahoo! Finance
January 19, 2022
1Password Raises Mammoth $620 Million Funding Round Full Text
Abstract
The new financing round, which was led by ICONIQ Growth, raised the valuation of 1Password to about $6.8 billion, setting a new record for venture-backed Canadian companies.Security Week
January 17, 2022
Firefox Relay gets added to disposable email blocklist, angers users Full Text
Abstract
The maintainers of a "disposable email service" blocklist have decided to add Firefox Relay to the list, leaving many users of the service upset. Firefox Relay is a privacy-centric email service that enables users to protect their real email addresses and hence limit spam.BleepingComputer
January 17, 2022
DigiCert acquires Mocana to accelerate its presence in the IoT market Full Text
Abstract
The combination of DigiCert and Mocana technologies provides IoT manufacturers and operators with a comprehensive platform for managing security across the full IoT device lifecycle.Help Net Security
January 15, 2022
Prominent Carding Marketplace UniCC announced it’s shutting down Full Text
Abstract
One of the biggest underground carding marketplaces, UniCC, announced it’s shutting down its operations. UniCC, one of the biggest underground carding marketplaces announced it is shutting down. The site was launched in 2013 and according to the Elliptic...Security Affairs
January 14, 2022
Insurers Stake Out Their Ground for Covering State Cyber Attacks Full Text
Abstract
The heart of the challenge facing insurers is not necessarily the quantum of loss that might arise from cyber events, but rather the uncertainty that attaches to it.Lawfare
January 14, 2022
New Intel chips won’t play Blu-ray disks due to SGX deprecation Full Text
Abstract
Intel has removed support for SGX (software guard extension) in 12th Generation Intel Core 11000 and 12000 processors, rendering modern PCs unable to playback Blu-ray disks in 4K resolution.BleepingComputer
January 13, 2022
Microsoft Yanks Buggy Windows Server Updates Full Text
Abstract
Since their release on Patch Tuesday, the updates have been breaking Windows, causing spontaneous boot loops on Windows domain controller servers, breaking Hyper-V and making ReFS volume systems unavailable.Threatpost
January 13, 2022
Apple, Amazon executives to meet with White House to discuss software security Full Text
Abstract
Executives from Apple, Amazon and other top tech firms are meeting at the White House Thursday to discuss software security with the administration after major cyberattacks last year.The Hill
January 13, 2022
Dataprise acquires Global Data Vault to expand DRaaS and data protection offerings Full Text
Abstract
Dataprise announced the acquisition of Global Data Vault, a provider of Disaster-Recovery-as-a-Service (DRaaS), Backup-as-a-Service (BaaS) and modern data protection solutions.Help Net Security
January 12, 2022
Proofpoint Buys AI-Powered Data Protection Startup Dathena Full Text
Abstract
Proofpoint has purchased Dathena to help organizations better understand information risk and eliminate data loss through artificial intelligence-based data classification.CRN
January 12, 2022
Kiteworks Acquires Email Encryption Leader totemo Full Text
Abstract
Kiteworks announced its acquisition of totemo, the leading email encryption gateway provider used by hundreds of the largest multinational enterprises in the German, Austrian, and Swiss markets.Dark Reading
January 11, 2022
Signal CEO Resigns, WhatsApp Co-Founder Takes Over as Interim CEO Full Text
Abstract
Moxie Marlinspike, the founder of the popular encrypted instant messaging service Signal, has announced that he is stepping down as the chief executive of the non-profit in a move that has been underway over the last few months. "In other words, after a decade or more, it's difficult to overstate how important Signal is to me, but I now feel very comfortable replacing myself as CEO based on the team we have, and also believe that it is an important step for expanding on Signal's success," Marlinspike said in a blog post on Monday. Executive chairman and WhatsApp co-founder Brian Acton will serve as the interim CEO while the search for a replacement is on. Founded in July 2014, Signal has more than 40 million monthly users, in part driven by a surge of new users in January 2021 when Meta-owned WhatsApp enacted a controversial policy change that sparked a privacy backlash over the nature of personal information shared with its parent company. But the communiThe Hacker News
January 11, 2022
Israeli security startup Pentera raises $150 mln in funding round, eyes IPO Full Text
Abstract
The funding round led by K1 Investment Management could be the last capital raise before an IPO, which will "probably" take place in 2024, Pentera Chief Executive Amitai Ratzon told Reuters.Reuters
January 11, 2022
Walmart warned over cybersecurity ‘violations’ in China Full Text
Abstract
"It is reported that the public security organs discovered 19 exploitable network security vulnerabilities in Walmart's network system on November 25, 2021..." said China Quality News.The Register
January 10, 2022
iProov raises $70 million to fuel businesss growth Full Text
Abstract
Headquartered in Silicon Valley, Sumeru invests in technology firms with the potential to change the world, with a particular emphasis on helping companies expand in North America.Help Net Security
January 03, 2022
Microsoft Skype makes you solve a complex captcha 10 times to sign up Full Text
Abstract
New Skype users report frustration after being presented with a captcha that requires them to solve a complex puzzle ten times before signing up for the service.BleepingComputer
December 28, 2021
LastPass investigated recent reports of blocked login attempts Full Text
Abstract
Password manager app LastPass confirmed that threat actors have launched a credential stuffing attack against its users. While LastPass says that it is not aware that some of its accounts were compromised in the recent credential stuffing attacks...Security Affairs
December 16, 2021
Noname Security Raises $135 Million at ‘Unicorn’ Valuation Full Text
Abstract
The Silicon Valley-based startup came out of stealth in December 2020, and closed a $60 million Series B funding round in June 2021. To date, the company has raised $220 million.Security Week
December 15, 2021
Cequence adds $60M Series C to improve API security Full Text
Abstract
Menlo Ventures led the latest round with participation from Icon Ventures, Telstra Ventures, HarbourVest Partners, Shasta Ventures, Dell Technologies Capital, and T-Mobile Ventures.TechCrunch
December 15, 2021
Zoom joins counterterrorism tech group Full Text
Abstract
Video conferencing platform Zoom has joined an independent counterterrorism group that shares information among major tech companies to combat violence and extremism.The Hill
December 15, 2021
Facebook to Pay Hackers for Reporting Data Scraping Bugs and Scraped Datasets Full Text
Abstract
Meta Platforms, the company formerly known as Facebook, has announced that it's expanding its bug bounty program to start rewarding valid reports of scraping vulnerabilities across its platforms as well as include reports of scraping data sets that are available online. "We know that automated activity designed to scrape people's public and private data targets every website or service," said Dan Gurfinkel, security engineering manager at Meta. "We also know that it is a highly adversarial space where scrapers — be it malicious apps, websites or scripts — constantly adapt their tactics to evade detection in response to the defenses we build and improve." To that end, the social media giant aims to monetarily compensate for valid reports of scraping bugs in its service and identify unprotected or openly public databases containing no less than 100,000 unique Facebook user records with personally identifiable information (PII) such as email, phone numbThe Hacker News
December 15, 2021
Cylus raises $30M Series B to help protect trains and metros worldwide Full Text
Abstract
The Series B funding round was led by Ibex Investors, with participation from Vertex Growth Fund, Strides International Business, Magma Venture Partners, Vertex Ventures Israel, and GlenRock Israel.TechCrunch
December 15, 2021
Sysdig Raises $350 Million at $2.5 Billion Valuation Full Text
Abstract
The latest funding round was led by Permira, with participation from Guggenheim Partners, Accel, Bain Capital Ventures, DFJ Growth, Glynn Capital, Goldman Sachs, Insight Partners, Next47, and others.Security Week
December 8, 2021
Private Equity Firm Permira to Acquire Mimecast in $5.8 Billion Deal Full Text
Abstract
Mimecast on Tuesday announced that private equity firm Permira wants to acquire it in an all-cash transaction that values the email security company at roughly $5.8 billion.Security Week
December 8, 2021
Claroty raises $400 million to fund Medigate acquisition Full Text
Abstract
Israeli security firm Claroty is raising $400 million in a Series E round led by SoftBank. The fresh funding will be used to acquire Medigate, which specializes in protecting medical infrastructure.Calcalis Tech
December 7, 2021
Google Takes Down Glupteba Botnet; Files Lawsuit Against Operators Full Text
Abstract
The malware’s unique blockchain-enabled backup C2 scheme makes it difficult to eliminate completely.Threatpost
December 7, 2021
GitGuardian Raises $44 Million to Create Code Security Platform Full Text
Abstract
GitGuardian raised $44 million in Series B funding, bringing the total funds raised to $56 million. The round was led by Eurazeo, with participation from Sapphire, Balderton, BPI, and Fly Ventures.Security Week
December 3, 2021
Security Analytics Startup Panther Labs Scores $120M Investment Full Text
Abstract
Panther Labs, an early-stage startup that specializes in detection and response analytics, has raised $120 million in a new Series B round of funding led by Coatue Management.Security Week
December 2, 2021
SpeQtral raises $8.3M to develop quantum-secure communication systems Full Text
Abstract
The funds will be used to expand SpeQtral’s regional and international presence, establish strategic business partnerships, hire top talent, support the commercial rollout of terrestrial systems, and further develop its satellite-based systems.Help Net Security
November 30, 2021
Lloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks Full Text
Abstract
The insurer won’t pay for ‘acts of cyber-war’ or nation-state retaliation attacks.Threatpost
November 24, 2021
Apple sues NSO Group for abusing state-sponsored Pegasus spyware Full Text
Abstract
Apple has filed suit to ban the Israeli surveillance firm NSO Group and parent company Q Cyber Technologies from using its product and services. Apple has sued NSO Group and its parent company Q Cyber Technologies in a U.S. federal court for illegally...Security Affairs
November 23, 2021
The Importance of IT Security in Your Merger Acquisition Full Text
Abstract
In the business world, mergers and acquisitions are commonplace as businesses combine, acquire, and enter various partnerships. Mergers and Acquisitions (M&A) are filled with often very complicated and complex processes to merge business processes, management, and a whole slew of other aspects of combining two businesses into a single logical entity. In the modern business world before and after the acquisition, a new concern with M&A activities is cybersecurity. What role does cybersecurity play in today's mergers and acquisitions of businesses? Why is it becoming a tremendous concern? Cybersecurity threats are growing in leaps and bounds There is no question that cybersecurity risks and threats are growing exponentially. A report from Cybersecurity Ventures estimated a ransomware attack on businesses would happen every 11 seconds in 2021. Global ransomware costs in 2021 would exceed $20 billion. It seems there are constantly new reports of major ransomware attacks, cosThe Hacker News
November 22, 2021
Tel Aviv-based cybersecurity firm Shield IoT raises $7.4M funding in Series A Full Text
Abstract
The funding round was led by NextLeap Ventures and Bloc Ventures, with the participation from Atlas Ventures, Akamai Technologies, Springtide Ventures, DIVEdigital, and Janvest Capital Partners.UKTN
November 18, 2021
Cloud Security Firm Lacework Raises Record-Breaking $1.3 Billion Full Text
Abstract
Lacework raised a record-breaking second Series D funding round led by existing investors Sutter Hill Ventures, Altimeter Capital, D1 Capital Partners, and Tiger Global Management.Security Week
November 18, 2021
Ontic Raises $40M in Series B Funding Full Text
Abstract
The round, which brought total funding raised to date to nearly $58m, was led by JMI Equity, with participation from Felicis Ventures, Silverton Partners, and Ridge Ventures.FinSMEs
November 18, 2021
Cloud Data Protection Startup Laminar Closes $32M Funding Round Full Text
Abstract
The new round was led by Insight Partners. Meron Capital, SentinelOne, and TLV Partners also participated. The funding will help Laminar expand its engineering, data security and go-to-market teams.Security Week
November 16, 2021
Threat Hunting Firm Team Cymru Acquires Attack Surface Management Firm Amplicy Full Text
Abstract
By combining the two services, Team Cymru will be able to inform its customers on both the evolving threats and where they might strike against Amplicy-detected perimeter weaknesses.Security Week
November 15, 2021
Network Security Company Netography Raises $45 Million Full Text
Abstract
The new investment round was led by Bessemer Venture Partners and SYN Ventures. Existing investors Andreessen Horowitz, Harpoon Ventures, Mango Capital, and Wing Venture Capital also contributed.Security Week
November 9, 2021
OpenText Acquires Email Security Firm Zix for $860 Million Full Text
Abstract
Enterprise information management solutions provider OpenText on Monday announced the acquisition of email security company Zix for $860 million. OpenText will acquire Zix for $8.50 per share in cash.Security Week
November 09, 2021
Robinhood Trading App Suffers Data Breach Exposing 7 Million Users’ Information Full Text
Abstract
Robinhood on Monday disclosed a security breach affecting approximately 7 million customers, roughly a third of its user base , that resulted in unauthorized access of personal information by an unidentified threat actor. The commission-free stock trading and investing platform said the incident happened "late in the evening of November 3," adding it's in the process of notifying affected users. "Based on our investigation, the attack has been contained and we believe that no Social Security numbers, bank account numbers, or debit card numbers were exposed and that there has been no financial loss to any customers as a result of the incident," the Silicon Valley financial company noted . The malicious third-party is believed to have socially engineered a customer service representative to gain access to internal support systems, using it to obtain the email addresses of five million users, full names for a different group of about two million people, andThe Hacker News
November 9, 2021
SafeBreach Closes $53.5 Million Series D in New Funding to Fuel Momentum Full Text
Abstract
SafeBreach announced that it has raised $53.5 million in Series D funding, led by Sonae IM and Israel Growth Partners (IGP), with additional participation from Sands Capital and Leumi Partners.Dark Reading
November 8, 2021
McAfee to be Taken Private in $14 Billion Private Equity Deal Full Text
Abstract
Cybersecurity firm McAfee Corp. has agreed to be acquired by a group of private equity firms led by Advent International, in a deal valued at more than $14 billion, the company announced Monday.Security Week
November 08, 2021
Google will kill Chrome sync support on Chrome 48 and earlier Full Text
Abstract
Google will end support for the Chrome sync feature for all users still running Google Chrome 48 and earlier after Chrome 96 reaches the stable channel.BleepingComputer
November 8, 2021
SCYTHE Announces $10 Million Series A Investment to Support Expansion of Enterprise-Level Cybersecurity Full Text
Abstract
SCYTHE, a provider of an adversarial emulation platform, today announced the company has received $10 million in Series A funding, led by Gula Tech Ventures and Paladin Capital Group.Yahoo! Finance
November 6, 2021
SolarWinds investors allege board knew about cyber risks Full Text
Abstract
SolarWinds Corp investors have sued the software company's directors, alleging they knew about and failed to monitor cybersecurity risks to the company ahead of a breach that created a vulnerability in thousands of its customers' systems.Reuters
November 5, 2021
Native Tribal Casinos Taking Millions in Ransomware Losses Full Text
Abstract
An FBI notification is warning of an uptick in attacks against tribal casinos.Threatpost
November 01, 2021
Microsoft Defender for Windows is getting a massive overhaul Full Text
Abstract
Microsoft Defender for Windows is getting a massive overhaul allowing home network admins to deploy Android, iOS, and Mac clients to monitor antivirus, phishing, compromised passwords, and identity theft alerts from a single security dashboard.BleepingComputer
November 1, 2021
Google, Salesforce, others team up to launch MVSP security baseline project Full Text
Abstract
Dubbed the ‘Minimum Viable Secure Product’ (MVSP), Google’s Royal Hansen, vice president of security, said that the scheme will establish “minimum acceptable security baselines” for corporations.The Daily Swig
October 28, 2021
Dragos Becomes First Industrial Cybersecurity Unicorn After Raising $200 Million Full Text
Abstract
The latest funding, which brings the total raised by Dragos to roughly $360 million, was led by Koch Disruptive Technologies and funds and accounts managed by BlackRock. Several other investors also took part in this round.Security Week
October 27, 2021
Twitter employees required to use security keys after 2020 hack Full Text
Abstract
Twitter rolled out security keys to its entire workforce and made two-factor authentication (2FA) mandatory for accessing internal systems following last year's hack.BleepingComputer
October 26, 2021
Sonrai Security Announces $50M in Series C Funding Led by ISTARI Full Text
Abstract
Sonrai plans to use new funding to accelerate research and development and expand sales and marketing globally for the company’s industry-leading cloud security platform.Yahoo! Finance
October 22, 2021
Turkish cybersecurity venture raises $24M to accelerate expansion Full Text
Abstract
This latest round takes the total funding Picus has received to $33 million. The company plans to use the funds to help accelerate its expansion in EMEA and APAC countries.Daily Sabah
October 21, 2021
INE Acquires Pentester Academy to Enhance Comprehensive IT Training Solutions Full Text
Abstract
INE has acquired Pentester Academy to accelerate the creation of more challenging, scenario-based training tools across Cyber Security, Networking, Data Science, Cloud, and DevOps.Globe News Wire
October 21, 2021
Plurilock to Acquire Assets of CloudCodes Software, Award Winning Cloud Security Provider Full Text
Abstract
Plurilock has entered into definitive agreements dated October 21, 2021, to acquire certain assets of CloudCodes Software Private Limited, a cloud access security broker based in India.Yahoo! Finance
October 19, 2021
SASE Firm Cato Networks Raises $200 Million at $2.5 Billion Valuation Full Text
Abstract
The latest funding round was led by Lightspeed Venture Partners, with participation from Greylock, Aspect Ventures / Acrew Capital, Coatue, Singtel Innov8, and Shlomo Kramer.Security Week
October 14, 2021
Cyber Insurance Firm At-Bay Announces $20 Million Series D Extension Full Text
Abstract
The new injection of capital came from ION Crossover Partners, which joins Series D investors Icon Ventures, Lightspeed Venture Partners, Acrew Capital, Khosla Ventures, and M12, and others.Security Week
October 13, 2021
MITRE launches two organizations to protect critical infrastructure and clinical health data Full Text
Abstract
MITRE has created two new organizations intended to help the company better focus on cybersecurity threats to critical infrastructure and new approaches to public health challenges.Help Net Security
October 12, 2021
Google creates cybersecurity team to respond to increased hacks Full Text
Abstract
Google on Tuesday announced the creation of a new cybersecurity team to help respond to attacks against governments and other critical groups, along with a new program to help strengthen the cybersecurity of businesses.The Hill
October 12, 2021
Forcepoint To Acquire Cloud Security Startup Bitglass Full Text
Abstract
Forcepoint said it has reached a deal to acquire cloud security startup Bitglass. The deal is expected to close later this year. The financial terms of the deal were not disclosed.CRN
October 11, 2021
Wiz raises $250 mln, values Israeli cyber firm at $6 bln Full Text
Abstract
Wiz said that most of its previous investors -- Sequoia Capital, Index Ventures, Insight Partners, Greenoaks, Salesforce, CyberStarts, Bernard Arnault, and Howard Schultz -- participated in the round.Reuters
October 7, 2021
Gretel AI raises $50M for a platform that provides synthetic datasets to ensure privacy of actual data Full Text
Abstract
Anthos Capital is leading the round with Section 32 also participating alongside Greylock and Moonshots Capital. Greylock led the company’s previous round in 2020. It has raised $65.5 million to date.TechCrunch
October 07, 2021
Firefox now shows ads as sponsored address bar suggestions Full Text
Abstract
Mozilla is now showing ads in the form of sponsored Firefox contextual suggestions when U.S. users type in the URL address bar.BleepingComputer
October 6, 2021
Blackstone-backed Patria creates Latam cybersecurity platform, eyes IPO Full Text
Abstract
Brazilian asset manager Patria Investments Ltd has acquired cybersecurity companies Neosecure and Proteus to create the largest information security platform in Latin America, it said on Tuesday.Reuters
October 05, 2021
Google to auto-enroll 150 million user accounts into 2FA Full Text
Abstract
Google announced today that they plan on auto-enrolling 150 million accounts into two-factor authentication by the end of 2021.BleepingComputer
October 5, 2021
Temasek leads $550M Series C extension into Orca Security, which aims for further international foothold Full Text
Abstract
Orca Security, an Israeli security company offering an agent-less platform for protecting cloud-based assets, secured a $550 million extension to the Series C funding round it raised seven months ago.TechCrunch
October 01, 2021
Neiman Marcus sends notices of breach to 4.3 million customers Full Text
Abstract
Neiman Marcus, the Texas-based luxury department stores chain, is sending notices of a data breach to roughly 4.3 million customers.BleepingComputer
September 30, 2021
McAfee Enterprise-FireEye Products To Merge Into $2B Titan Full Text
Abstract
The combined 5,000-employee company will be led by former Blackberry President and Cisco SVP Bryan Palma, while Ian Halifax, Riverbed Technology’s CFO since December 2019, will step into the CFO role.CRN
September 30, 2021
SecZetta Announces $20.5 Million Series B Funding Full Text
Abstract
The round was led by SYN Ventures and MassMutual Ventures. The round also included participation from existing investors ClearSky and Rally Ventures, which strengthened their investments in SecZetta.Yahoo! Finance
September 30, 2021
S2W raised over $10M of Series B funding Full Text
Abstract
With the lead of LB Investment, KDB Development Bank, Magellan Technology Investment, YG Investment, Mirae Asset Venture Investment, Lotte Ventures, and DS Asset Management participated in the round.Yahoo! Finance
September 27, 2021
SenseOn nabs $20M for faster, more accurate cybersecurity detection and response via its ‘triangulation’ approach Full Text
Abstract
The $20 million Series A round was led by Eight Road Venutres, with MMC Ventures, Crane Venture Partners, and Winton Ventures Limited — all existing backers — also participating.TechCrunch
September 26, 2021
Microsoft will disable Basic Auth in Exchange Online in October 2022 Full Text
Abstract
Microsoft announced that Basic Authentication will be turned off for all protocols in all tenants starting October 1st, 2022, to protect millions of Exchange Online users.BleepingComputer
September 24, 2021
Microsoft rushes to register Autodiscover domains leaking credentials Full Text
Abstract
Microsoft is rushing to register Internet domains used to steal Windows credentials sent from faulty implementations of the Microsoft Exchange Autodiscover protocol.BleepingComputer
September 22, 2021
Apple will disable insecure TLS in future iOS, macOS releases Full Text
Abstract
Apple has deprecated the insecure Transport Layer Security (TLS) 1.0 and 1.1 protocols in recently launched iOS and macOS versions and plans to remove support in future releases altogether.BleepingComputer
September 22, 2021
Osano, a data privacy platform, raises $11M Full Text
Abstract
Osano, a data privacy platform that helps websites become compliant with international regulations, today announced that it closed an $11 million funding round led by Jump Capital.Venture Beat
September 22, 2021
Stairwell secures $20M Series A to help organizations outsmart attackers Full Text
Abstract
As well as raising $20 million, a round co-led by Sequoia Capital and Accel, Stairwell launched its threat-hunting platform to help organizations determine if they were compromised now or in the past.TechCrunch
September 21, 2021
Cloud security company Threat Stack acquired by F5 for $68 million Full Text
Abstract
F5 Networks, one of the world's largest providers of enterprise networking gear, announced on Monday that it is acquiring cloud security company Threat Stack for $68 million.ZDNet
September 20, 2021
AT&T lost $200 million in phone-unlocking scheme Full Text
Abstract
“Beginning in 2012, Fahd, 35, conspired with others to recruit AT&T employees at a call centre located in Bothell, Washington, to unlock large numbers of cellular phones for profit,” said the DOJ.Secure Reading
September 19, 2021
AT&T lost $200M in seven years to illegal phone unlocking scheme Full Text
Abstract
A Pakistani fraudster was sentenced earlier this week to 12 years in prison after AT&T, the world's largest telecommunications company, lost over $200 million after he and his co-conspirators coordinated a seven year scheme that led to the fraudulent unlocking of almost 2 million phones.BleepingComputer
September 19, 2021
Google to Auto-Reset Unused Android App Permissions for Billions of Devices Full Text
Abstract
Google on Friday said it's bringing an Android 11 feature that auto-resets permissions granted to apps that haven't been used in months, to devices running Android versions 6 and above. The expansion is expected to go live later this year in December 2021 and enabled on Android phones with Google Play services running Android 6.0 (API level 23) or higher, which the company said should cover "billions more devices." Google officially released Android 6.0 Marshmallow on October 5, 2015. With Android 11 that came out last year, the internet giant introduced a permission auto-reset option that helps improve user privacy by automatically resetting an app's permissions to access sensitive features like storage or camera if the app in question is left unopened for a few months. "Some apps and permissions are automatically exempted from revocation, like active Device Administrator apps used by enterprises, and permissions fixed by enterprise policy," GoogleThe Hacker News
September 17, 2021
Ditch the Alert Cannon: Modernizing IDS is a Security Must-Do Full Text
Abstract
Jeff Costlow, CISO at ExtraHop, makes the case for implementing next-gen intrusion-detection systems (NG-IDS) and retiring those noisy 90s compliance platforms.Threatpost
September 17, 2021
Identity startup Persona closes $150M round at $1.5B valuation Full Text
Abstract
The Series C round was led by Founders Fund, Persona said in an announcement this morning. Meritech Capital Partners, BOND, Index Ventures, and Coatue Management participated as well.Silicon Angle
September 16, 2021
Dynatrace acquires SpectX to advance its observability and application security analytics capabilities Full Text
Abstract
Dynatrace completed acquisition of the parsing and query analytics company. This acquisition will accelerate the convergence of observability and security for modern hybrid, multicloud environments.Help Net Security
September 16, 2021
Strike Graph raises $8M to expand its offerings of cybersecurity compliances Full Text
Abstract
Strike Graph announces that it has secured $8 million in Series A funding, led by Information Venture Partners, investors in the next generation of leaders in B2B FinTech and Enterprise SaaS.Help Net Security
September 16, 2021
Tenable acquires infrastructure-monitoring startup Accurics Full Text
Abstract
Tenable, a cyber risk management company based in Columbia, Maryland, today announced it has acquired infrastructure-as-code (IaC) technology provider Accurics for $160 million in cash.Venture Beat
September 15, 2021
Microsoft announces passwordless authentication for consumer accounts Full Text
Abstract
Microsoft announced that users can access their consumer accounts without providing passwords and using more secure authentication methods. Microsoft will allow its users to log into their consumer accounts without using passwords, they will be able...Security Affairs
September 15, 2021
Infrastructure access platform StrongDM raises $54M Full Text
Abstract
StrongDM today announced that it raised $54 million in Series B round led by Tiger Global, with participation from GV, Sequoia Capital, True Ventures, HearstLab, Bloomberg Beta, and Godfrey Sullivan.Venture Beat
September 13, 2021
JumpCloud Raises $159M To Aid User And Device Management Full Text
Abstract
JumpCloud, an identity management provider, has closed its Series F round and notched a $2.56 billion valuation to add additional capabilities to its directory platform and drive channel sales.CRN
September 13, 2021
WhatsApp details plans to offer encrypted backups Full Text
Abstract
WhatsApp announced on Friday it will be offering its users end-to-end encrypted backups later this year. Users will have a choice for how the encryption key used is stored.ZDNet
September 12, 2021
Google implements new Private Compute Services for Android Full Text
Abstract
Google introduces Private Compute Services, a collection of services aimed at designing to improve privacy in the Android operating system. Good news for Android users, Google has implemented the Private Compute Services, a set of features aimed at improving...Security Affairs
September 10, 2021
Moving Forward After CentOS 8 EOL Full Text
Abstract
The Linux community was caught unprepared when, in December 2020, as part of a change in the way Red Hat supports and develops CentOS, Red Hat suddenly announced that it's cutting the official CentOS 8 support window from ten years – to just two, with support ending Dec 31, 2021. It created a peculiar situation where CentOS 7 users that did the right thing and upgraded quickly to CentOS 8 were left using an OS with just a year's official support remaining – while users of CentOS 7 still get full support until June 30, 2024. Worse, the fact that stable releases of CentOS were discontinued in exchange for the rolling-release CentOS Stream means that to secure their workloads most CentOS 8 users have to opt for an entirely different Linux distribution, with just a year to choose, evaluate and implement an alternative. Red Hat's unexpected decision underlined to what degree software users depend on official support windows for their software security. Countless organizationThe Hacker News
September 9, 2021
Thoma Bravo invests in Intel 471 to boost threat preparedness capabilities worldwide Full Text
Abstract
Thoma Bravo announced it has signed a definitive agreement to make a strategic growth investment in Intel 471, a provider of cyber threat intelligence for leading enterprises and governments.Help Net Security
September 9, 2021
Cyber security software startup Snyk raises $300 million, valued at $8.5 billion Full Text
Abstract
The latest round co-led by Sands Capital Ventures and Tiger Global follows a funding round in March when $175 million of new capital was raised. The company was valued at $4.7 billion only six months ago.Reuters
September 08, 2021
Going beyond backup: Acronis True Image is now Acronis Cyber Protect Home Office Full Text
Abstract
After nearly two decades, one of the most recognizable software brands is getting a new name. Acronis True Image, the leading personal cyber protection solution, is changing its name to Acronis Cyber Protect Home Office.BleepingComputer
September 7, 2021
Ad Fraud Protection Firm Pixalate Raises $18.1 Million Full Text
Abstract
Pixalate, a firm that provides fraud protection for mobile app and CTV advertising, has raised $18.1 million in growth capital, bringing the total amount raised by the company to $22.7 million.Security Week
September 4, 2021
Apple will delay the rollout of new child pornography protection tools Full Text
Abstract
Apple will delay the introduction of its new child pornography protection tools due to a heated debate raised by privacy advocates. Apple announced this week that it will delay the rollout of its new child pornography protection tools after many experts...Security Affairs
September 2, 2021
SpyFone & CEO Banned From Stalkerware Biz Full Text
Abstract
The FTC’s first spyware ban nixes a company whose “slipshod” security practices led to exposure of thousands of victims’ illegally collected personal data.Threatpost
September 2, 2021
Corelight Banks $75M for Network Monitoring Expansion Plans Full Text
Abstract
Corelight said the Series D investment was led by Energy Impact Partners and brings the total raised to $160 million. Several previous investors also joined the latest funding round.Security Week
September 1, 2021
Google Awards Over $130,000 for Flaws Patched With Release of Chrome 93 Full Text
Abstract
Google this week announced the release of Chrome 93 with a total of 27 security patches inside, including 19 for vulnerabilities that were reported by external researchers.Security Week
September 01, 2021
Industry lobbies Congress to extend notification timeline after cybersecurity incidents Full Text
Abstract
Key industry groups on Wednesday pushed to give organizations at least three days to report cybersecurity incidents to the federal government, effectively opposing Senate legislation that would give them 24 hours to report breaches.The Hill
August 30, 2021
Check Point To Acquire Email Security Startup Avanan Full Text
Abstract
Check Point Software Technologies has agreed to buy email security solutions provider Avanan to deliver best-of-breed cloud email malware protection and expand security to SaaS collaboration suites.CRN
August 28, 2021
Google to train 100,000 Americans to boost cybersecurity in the US Full Text
Abstract
Google, which has announced to invest $10 billion over the next five years to strengthen cybersecurity in the US, said that the governments and businesses are at a watershed moment in addressing cybersecurity.The Times Of India
August 28, 2021
Amazon disables website used for ISIS propaganda Full Text
Abstract
Amazon Web Services (AWS) has disabled a website that had reportedly been used since April by a wing of the Islamic State to promote propaganda, including praise of the deadly suicide attack Thursday at the airport in Kabul, Afghanistan.The Hill
August 27, 2021
T-Mobile CEO apologizes for breach that compromised data of 50 million people Full Text
Abstract
T-Mobile CEO Mike Sievert on Friday announced that the hacker behind the recent breach of the company that compromised the information of around 50 million individuals had used “brute force” in the attack and apologized for the impact of the breach.The Hill
August 27, 2021
Amazon to Offer Free Cybersecurity Training Materials, MFA Devices Full Text
Abstract
The training materials, which focus on security awareness and particularly the threat posed by social engineering, will be offered for free to both individuals and organizations starting in October.Security Week
August 27, 2021
IronNet Completes Business Combination with LGL Systems Acquisition Corp. Full Text
Abstract
The ticker symbols for the previously outstanding common stock and warrants of LGL will change from DFNS and DFNS.WS to IRNT and IRNT.WS and will begin trading as such on NYSE on August 27, 2021Yahoo! Finance
August 27, 2021
Microsoft, Google to Invest $30 Billion in Cybersecurity Over Next 5 Years Full Text
Abstract
Google and Microsoft said they are pledging to invest a total of $30 billion in cybersecurity advancements over the next five years, as the U.S. government partners with private sector companies to address threats facing the country in the wake of a string of sophisticated malicious cyber activity targeting critical infrastructure, laying bare the risks to data, organizations, and governments worldwide. The White House cybersecurity meeting, which brought together executives from the education, energy, finance, insurance, and tech sectors, included companies like ADP, Amazon, Apple, Bank of America, Code.org, Girls Who Code, Google, IBM, JPMorgan Chase, Microsoft, and Vantage Group, among others. To that end, the U.S. government on Wednesday announced a collaboration between the National Institute of Standards and Technology (NIST) and industry partners to develop a new framework to improve the security and integrity of the technology supply chain, alongside plans to expand theThe Hacker News
August 27, 2021
Monad emerges from stealth with $17M to solve the cybersecurity big data problem Full Text
Abstract
Cloud security firm Monad, which offers a platform for extracting and connecting data from various security tools, has launched from stealth with $17 million in Series A funding led by Index Ventures.TechCrunch
August 27, 2021
Updates on our continued collaboration with NIST to secure the Software Supply Chain Full Text
Abstract
Google will collaborate with the National Institute of Standards and Technology to support and develop a new framework that will help improve the security and integrity of the technology supply chain.Chrome Releases
August 27, 2021
Elastic acquisition spree continues as it acquires security startup CMD Full Text
Abstract
Elastic CEO and co-founder Shay Banon told TechCrunch that his company will be welcoming the employees of CMD into his company, but did not disclose precisely how many would be coming over.TechCrunch
August 26, 2021
Microsoft and Google to invest billions to bolster US cybersecurity Full Text
Abstract
Executives and leaders from big tech, education, the finance sector, and infrastructure have committed to bolstering US interests' security during yesterday's White House cybersecurity summit.BleepingComputer
August 25, 2021
Major tech groups commit to array of cybersecurity actions following White House meeting Full Text
Abstract
The federal government and several major technology companies on Wednesday announced they are taking a host of steps to enhance the nation’s cybersecurity, specifically focused on growing the cyber workforce and investing billions of dollars in the field.The Hill
August 25, 2021
Samsung could use a TV Block feature to disable any of its TVs worldwide Full Text
Abstract
The South Korean multinational Samsung revealed that it can disable its Samsung TV sets remotely using the TV Block feature. Samsung TV sets can be remotely disabled by the vendor using a built-in feature dubbed TV Block. The company revealed...Security Affairs
August 24, 2021
Amazon, IBM leaders among those convening at White House for cyber meeting Wednesday Full Text
Abstract
The CEOs of Amazon and IBM will be among a group of leaders from a wide spectrum of tech companies and organizations set to meet with President Biden at the White House on Wednesday.The Hill
August 24, 2021
Automotive startup Upstream raises $62M Series C to scale cloud-based security Full Text
Abstract
Upstream's Series C funding was led by Mitsui Sumitomo Insurance and was joined by new investors I.D.I. Insurance, 57 Stars’ NextGen Mobility Fund, and La Maison Partners.TechCrunch
August 22, 2021
Microsoft shares guidance on securing Windows 365 Cloud PCs Full Text
Abstract
Microsoft has shared guidance on securing Windows 365 Cloud PCs and more info on their built-in security capabilities.BleepingComputer
August 19, 2021
What’s Next for T-Mobile and Its Customers? – Podcast Full Text
Abstract
Hopefully not a hacked-up hairball of a “no can do” message when customers rush to change their PINs. In this episode: Corporate resilience vs. the opposite.Threatpost
August 18, 2021
Blumira raises $10.3M Series A to bring cloud-based SIEM to mid-market companies Full Text
Abstract
With the new funding, the firm has raised $12.9 million since its founding in 2018. New investor Mercury led the round with Managing Director Aziz Gilani joining Blumira’s board as a director.TechCrunch
August 18, 2021
Periscope Equity invests in CyberMaxx to accelerate growth and product innovation Full Text
Abstract
Periscope Equity announced that it has invested in CyberMaxx through a recapitalization in partnership with management. CyberMaxx provides services to prevent, detect, and respond to cyberattacks.Help Net Security
August 18, 2021
Microsoft, Rubrik Strike Deal To Expand Ransomware Protection Full Text
Abstract
Along with an equity investment into Rubrik by Microsoft, the deal will include co-engineering projects aimed at battling ransomware and promoting zero-trust data protection, the companies say.CRN
August 17, 2021
Cisco to acquire observability company Epsagon Full Text
Abstract
Cisco announced on Friday that it has signed a deal to acquire observability company Epsagon. Cisco said the deal will play a key role in helping it ramp up its full-stack observability strategy.ZDNet
August 17, 2021
Solution Providers Can Now Add Incident Response to Their Services Portfolio For Free Full Text
Abstract
The Incident Response (IR) services market is in accelerated growth due to the rise in cyberattacks that result in breaches. More and more organizations, across all sizes and verticals, choose to outsource IR to 3rd party service providers over handling security incidents in-house. Cynet is now launching a first-of-its-kind offering, enabling any Managed Security Provider (MSP) or Security Integrator (SI) to add Incident Response to its services portfolio, without building an in-house team of incident responders, by using Cynet's IR team and technology at no cost. Managed Service providers interested to add Incident Response to their service portfolio with no investment in people or technology can apply here . As cyber threats grow in sophistication and volume, there is an increasing number of cases in which attackers succeed in compromising the environments they target. This, in turn, fuels a rapidly growing demand for IR technologies and services. Since in most casesThe Hacker News
August 17, 2021
Baffle raises $20M to secure cloud data Full Text
Abstract
Baffle announced that it has raised $20 million in Series B funding led by new investor Celesta Capital, with contributions and follow-on investments from multiple investors.Help Net Security
August 13, 2021
Facebook rolls out end-to-end encryption for Messenger calls Full Text
Abstract
Facebook has announced the roll-out of end-to-end encrypted Messenger voice and video calls five years after making it available in one-on-one text chats.BleepingComputer
August 13, 2021
Huawei stole our tech and created a ‘backdoor’ to spy on Pakistan, claims IT biz Full Text
Abstract
The filing claims, among other things, that Huawei used BES’s Data Exchange System "to create a backdoor and obtain data important to Pakistan’s national security and to spy on Pakistani citizens."The Register
August 12, 2021
Arctic Wolf appoints Nick Schneider as CEO Full Text
Abstract
Arctic Wolf announced that Nick Schneider, president and chief revenue officer, has been appointed as CEO, succeeding Brian NeSmith who will serve as executive chairman of the Board of Directors.Help Net Security
August 12, 2021
Mandiant’s Advantage Platform To Get A Boost With Intrigue Acquisition Full Text
Abstract
FireEye-owned Mandiant on Tuesday announced it has acquired attack surface management startup Intrigue in a move to bolster the Mandiant Advantage software-as-a-service platform.CRN
August 11, 2021
Norton and Avast are merging into an $8 billion antivirus empire Full Text
Abstract
NortonLifeLock and Avast are merging in a deal worth more than $8 billion. The deal will see NortonLifelock acquire all of Avast’s shares, and create a much larger cybersecurity firm.The Verge
August 11, 2021
OwnBackup Raises $240 Million at $3.35 Billion Valuation Full Text
Abstract
Data protection solutions provider OwnBackup on Tuesday announced raising $240 million in a Series E funding round led by Alkeon Capital and B Capital Group at a valuation of $3.35 billion.Security Week
August 10, 2021
Google discontinues Bluetooth security keys to focus on NFC versions Full Text
Abstract
Only two security key models will be available from tomorrow, namely Titan keys with USB-A and USB-C connectors, both of which also support NFC (Near Field Communication) for mobile connectivity.The Record
August 09, 2021
Google drops Bluetooth Titan Security Keys in favor of NFC versions Full Text
Abstract
Google is discontinuing the Bluetooth Titan Security Key to focus on security keys with Near Field Communication (NFC) functionality.BleepingComputer
August 9, 2021
Checkmarx’s Dustico acquisition bolsters the open source software supply chain Full Text
Abstract
Application security testing (AST) company Checkmarx has acquired Dustico, a platform for detecting backdoors and other malicious activity in the open source software supply chain.Venture Beat
August 09, 2021
Google drops Bluetooth Titan Security Keys in favor of NFC versions Full Text
Abstract
Google is discontinuing the Bluetooth Titan Security Key to focus on security keys with Near Field Communication (NFC) functionality.BleepingComputer
August 7, 2021
Checkmarx acquires open-source supply chain security startup Dustico Full Text
Abstract
Founded in 2020, Dustico provides a dynamic source-code analysis platform that employs machine learning to detect malicious attacks and backdoors in software supply chains.TechCrunch
August 05, 2021
Google expects delays in enforcing 2FA for Chrome extension devs Full Text
Abstract
Google says that enforcing two-step verification on Google accounts of Chrome Web Store developers will take longer than expected.BleepingComputer
August 05, 2021
Microsoft Edge just got a ‘Super Duper Secure Mode’ upgrade Full Text
Abstract
Microsoft has announced that the Edge Vulnerability Research team is experimenting with a new feature dubbed "Super Duper Secure Mode" and designed to bring security improvements without significant performance losses.BleepingComputer
August 4, 2021
SolarWinds says shareholders’ cyber disclosure lawsuit fails Full Text
Abstract
SolarWinds urged a Texas federal judge to dismiss a lawsuit alleging the software company that was targeted by hackers misled shareholders about its cybersecurity measures ahead of a massive breach.Reuters
August 4, 2021
Telos acquires Diamond Fortress Technologies to expand into the touchless biometrics services market Full Text
Abstract
Telos announced that it has acquired the assets of Diamond Fortress Technologies, including all patents, and will integrate the ONYX touchless fingerprinting software with its IDTrust360 platform.Help Net Security
August 3, 2021
Cisco, Sonatype and Others Join Open Source Security Foundation Full Text
Abstract
With open source software (OSS) becoming a central pillar of the application development lifecycle, ensuring the security of open source code is essential to securing modern software.Security Week
August 3, 2021
Finite State Raises $30 Million in Series B Funding Full Text
Abstract
Founded in 2017, the Columbus, Ohio-based company provides cybersecurity controls at the firmware layer, in an attempt to secure the device supply chain and mitigate risks to OT and IT environments.Security Week
August 3, 2021
Ivanti acquires cybersecurity startup RiskSense Full Text
Abstract
Ivanti announced it has acquired vulnerability management software provider RiskSense to drive the next evolution of patch management. The terms of the RiskSense transaction were not disclosed.Silicon Angle
August 3, 2021
CDW acquires Focal Point to enhance its identity management and data protection services Full Text
Abstract
CDW announced that it has acquired Focal Point Data Risk, a U.S-based provider of cybersecurity services with customers across a diverse set of industries. Terms of the transaction were not disclosed.Help Net Security
August 03, 2021
Cynet Empowers IT Resellers and Service Providers to Become Fully Qualified MSSPs Full Text
Abstract
As cyber incidents increase in scope and impact, more and more organizations come to realize that outsourcing their defenses is the best practice—significantly increasing the Managed Security Service Provider (MSSP) market opportunities. Until recently, IT integrators, VARs, and MSPs haven't participated in the growing and profitable MSSP market as it entailed massive investments in building an in-house skilled security team. However, this is beginning to change as a result of certain security vendors, like Cynet, that provide a purpose-built partner offering that enables IT integrators, VARs, and MSPs to provide managed security service with zero investment in hardware or personnel. Their offering includes a 24/7 SOC that trains and supports the partner's existing team and a security platform that consolidates and automates breach protection (including endpoint, user, and network security), making it simple to operate by any IT professional. To learn more about thThe Hacker News
August 2, 2021
Zoom Agrees to Settle Lawsuit Over ‘Zoombombing’ Full Text
Abstract
The videoconferencing company said it would pay $85 million to settle the suit, which claimed that it violated users’ privacy, in part by allowing hackers to interrupt online meetings.New York Times
July 30, 2021
Google claims no instances of foreign interference campaigns targeting Australia Full Text
Abstract
While conceding that foreign interference campaigns on its platforms targeting other jurisdictions have made their way to Australia, Google said none pursued the country specifically.ZDNet
July 30, 2021
EY Australia acquires Melbourne MSP SecureWorx Full Text
Abstract
Based in Melbourne, SecureWorx specializes in multi-cloud services, managed security operations, and security advisory services for customers dealing with sensitive information.CRN
July 30, 2021
Amazon gets $888 million GDPR fine for behavioral advertising Full Text
Abstract
Amazon has quietly been hit with a record-breaking €746 million fine for alleged GDPR violations regarding how it performs targeted behavioral advertising.BleepingComputer
July 30, 2021
ActiveFence comes out of the shadows with $100M in funding and tech that detects online harm, now valued at $500M+ Full Text
Abstract
ActiveFence has quietly built a tech platform to filter out threats as they are being formed and planned to make it easier for trust and safety teams to combat them on platforms.Yahoo! Finance
July 30, 2021
Google to block logins on old Android devices starting September Full Text
Abstract
Google is emailing Android users to let them know that, starting late September, they will no longer be able to log in to their Google accounts on devices running Android 2.3.7 (Gingerbread) and lower.BleepingComputer
July 29, 2021
Noetic Cyber raises $20M to automate cybersecurity remediation Full Text
Abstract
Noetic Cyber today emerged from stealth with $20 million, including $15 million in series A funding from Energy Impact Partners, TenEleven Ventures, and Glasswing Ventures.Venture Beat
July 29, 2021
SolCyber emerges from stealth with $20M in funding from ForgePoint Full Text
Abstract
The managed security service provider SolCyber Managed Security Services Inc. launched out of stealth mode and announced that it has raised $20 million in Series A funding led by ForgePoint Capital.Silicon Angle
July 29, 2021
Microsoft Security: 5 Big Statements From Satya Nadella Full Text
Abstract
Microsoft CEO Satya Nadella touted the Redmond-based technology giant’s latest momentum in its cybersecurity business during the company’s fiscal fourth-quarter earnings call.CRN
July 28, 2021
Google Play Protect fails Android security tests once more Full Text
Abstract
Google Play Protect, the Android built-in malware defense system, has failed the real-world tests of antivirus testing lab AV-TEST after detecting just over two thirds out of more than 20,000 malicious apps it was pitted against.BleepingComputer
July 28, 2021
Tencent suspends signups to WeChat, citing ‘security upgrade’ and need to comply with Chinese laws Full Text
Abstract
The upgrade is expected to conclude in "early August". Tencent hasn't defined a range of dates that fits within that phrase, leaving open the possibility that the suspension could last a week or more.The Register
July 27, 2021
South Africa’s Transnet Declares Force Majeure at Container Terminals Full Text
Abstract
The document sent to customers and dated on Monday said the force majeure would be implemented with immediate effect. It would impact container terminals in Durban, Ngqura, Port Elizabeth, and Cape Town.Reuters
July 27, 2021
Cyber insurance startup At-Bay raises $185 million at $1.35 billion valuation Full Text
Abstract
Cyber insurance startup At-Bay said on Tuesday it raised $185 million at a $1.35 billion valuation to expand its business as many in the cyber industry face growing losses due to ransomware attacks.Reuters
July 27, 2021
18 Companies to Participate in NIST ‘Zero Trust’ Project Full Text
Abstract
The NIST has selected 18 technology companies to demonstrate "zero trust" security architectures as it prepares to draft guidance for use of the model by federal agencies, which the private sector can also follow.Gov Info Security
July 26, 2021
Kaseya denies paying hackers for decryption key after ransomware attack Full Text
Abstract
Software company Kaseya on Monday strongly denied paying to get access to a key to decrypt its systems following a massive ransomware attack on the company that impacted up to 1,500 organizations earlier this month.The Hill
July 26, 2021
Dahua, Hikvision out of security camera industry group Full Text
Abstract
Both Dahua and Hickvision, two of China’s largest security camera makers, are no longer members of the Security Industry Association (SIA), the largest trade organization for surveillance vendors.The Record
July 23, 2021
Bug Bounty and VDP Platform YesWeHack Raises $18.8 Million Full Text
Abstract
The Series B funding round included investments from Banque des Territoires and Eiffel Investment Group, as well as existing investors Normandie Participations and CNP Assurances.Security Week
July 23, 2021
Cybereason acquires empow to enhance its XDR features Full Text
Abstract
Cybereason announced the acquisition of empow, a security analytics company based in Tel Aviv. The acquisition of empow will enable the integration of empow prediction technology into Cybereason XDR.Help Net Security
July 23, 2021
Sysdig acquires Apolicy to help customers secure Infrastructure As Code and automate remediation Full Text
Abstract
The deal, the terms of which kept secret, will bolster Sysdig’s capabilities by strengthening cloud and container security with compliance and governance enforcement, Sysdig CEO Suresh Vasudevan said.Help Net Security
July 22, 2021
Kaseya obtains universal decryptor for REvil ransomware victims Full Text
Abstract
Kaseya received a universal decryptor that allows victims of the July 2nd REvil ransomware attack to recover their files for free.BleepingComputer
July 21, 2021
DNSFilter secures $30M Series A to step up fight against DNS-based threats Full Text
Abstract
DNSFilter, an artificial intelligence startup that provides DNS-based web content filtering and threat protection, has secured $30 million in Series A funding from Insight Partners.TechCrunch
July 21, 2021
Safe Security raises $33M to manage and mitigate cyber risk Full Text
Abstract
Safe Security, which provides a platform to measure cyber risk, today announced that it raised $33 million in a strategic investment from BT Group, the U.K.-based telecom provider.Venture Beat
July 19, 2021
Enea acquires AdaptiveMobile Security to strengthen its 5G network security portfolio Full Text
Abstract
AdaptiveMobile Security announced that it has been acquired by Enea. The firm will continue to deliver software and services for messaging and signaling security in mobile core networks.Help Net Security
July 16, 2021
NortonLifeLock in Talks to Buy Antivirus Rival Avast Full Text
Abstract
NortonLifeLock on Wednesday issued a statement confirming that it is "in advanced discussions with the board of Avast regarding a possible combination of NortonLifeLock and Avast."Gov Info Security
July 15, 2021
Microsoft: Israeli firm used Windows zero-days to deploy spyware Full Text
Abstract
Microsoft and Citizen Lab have linked Israeli spyware company Candiru (also tracked as Sourgum) to new Windows spyware dubbed DevilsTongue deployed using now patched Windows zero-day vulnerabilities.BleepingComputer
July 15, 2021
Passwordless authentication platform Stytch raises $30M in Series A funding Full Text
Abstract
Stytch raised $30 million in its Series A funding led by Thrive Capital, which also included participation from Coatue Management and existing backers Benchmark and Index.TechCrunch
July 15, 2021
Cybereason raises $275M at Series F, adds Steven Mnuchin to board Full Text
Abstract
Cybereason, a U.S.-Israeli late-stage cybersecurity startup that provides extended detection and response (XDR) services, has secured $275 million in Series F funding led by Liberty Strategic Capital.TechCrunch
July 15, 2021
SonicWall Warns Firewall Hardware Bugs Under Attack Full Text
Abstract
SonicWall issued an urgent security alert warning customers that some of its current and legacy firewall appliances were under active attack.Threatpost
July 15, 2021
Cybersecurity startup Virsec raises $100M in round led by BlueIO Full Text
Abstract
Cybersecurity startup Virsec Systems Inc. disclosed today that it has raised $100 million in new funding to hire more people, meet product demand and build out its customer support model.Silicon Angle
July 14, 2021
AWS offers free online training for cloud architects Full Text
Abstract
Amazon Web Services this week launched a new free online training series on Twitch that aims to build up the skills of cloud developers. The new series, the AWS Power Hour: Architecting, kicked off on Monday, July 12 and will run for six weeks. According to an AWS blog, the developer training is part of…SCMagazine
July 12, 2021
Microsoft aims to expand cloud security by acquiring RiskIQ Full Text
Abstract
Looking to strengthen its position in cloud security, Microsoft on Monday announced a definitive agreement to acquire RiskIQ, a cloud-based threat intelligence and attack surface management vendor best known for its PassiveTotal product. In a blog post, Eric Doerr, vice president of Microsoft Cloud Security, said companies need better visibility into their assets and exposure…SCMagazine
July 12, 2021
VU raises $12M to remove cybersecurity friction from digital experiences Full Text
Abstract
The fraud and identity protection company announced $12 million in Series B funding from backers including Globant, Agrega Partners, NXTP Ventures, Bridge One, the IDB Lab, and Telefónica.TechCrunch
July 12, 2021
Microsoft looks to boost your business security with reported RiskIQ bid Full Text
Abstract
Microsoft is planning to acquire the San Francisco-based cybersecurity firm RiskIQ and is likely to pay more than $500 million in cash for the company, according to people familiar with the matter.Tech Radar
July 10, 2021
Kaseya warns customers of ongoing malspam campaign posing as security updates Full Text
Abstract
Threat actors are conducting a spam campaign aimed at infecting Kaseya customers, posing as legitimate VSA security updates Kaseya is warning customers of threat actors attempting to exploit the recent massive supply chain ransomware attack suffered...Security Affairs
July 10, 2021
Netskope’s valuation more than doubles to $7.5 bn in the latest $300 mn funding round Full Text
Abstract
Netskope's valuation more than doubled to $7.5 billion after a $300 million funding round led by ICONIQ Growth, highlighting massive demand for cloud security services as cyber-attacks increase in number and severity.Reuters
July 9, 2021
Cisco fixes High Severity issue in BPA and WSA Full Text
Abstract
Cisco addresses high severity privilege escalation vulnerabilities in Business Process Automation (BPA) and Web Security Appliance (WSA) that expose users to privilege escalation attacks. Cisco released security patches for high severity vulnerabilities...Security Affairs
July 8, 2021
In video address, exhausted Kaseya CEO announces relaunch dates Full Text
Abstract
Kaseya CEO Fred Voccola said the company was confident in the July 11 date to relaunch VSA SaaS and on-premises services.SCMagazine
July 8, 2021
Coursera Flunks API Security Test in Researchers’ Exam Full Text
Abstract
The problem APIs included numero uno on the OWASP API Security Top 10: a Broken Object Level Authorization (BOLA) issue that could have exposed personal data.Threatpost
July 8, 2021
In video address, exhausted Kaseya CEO announces relaunch dates Full Text
Abstract
Kaseya CEO Fred Voccola said the company was confident in the July 11 date to relaunch VSA SaaS and on-premises services.SCMagazine
July 8, 2021
NanoLock secures $11 million Series B to boost OT and IoT device-level protection Full Text
Abstract
NanoLock Security has secured an $11 million Series B round from new investors OurCrowd, HIVE2040 (by Avnon Group), and Atlantica Group as well as current investors AWZ Ventures.Calcalis Tech
July 8, 2021
Sophos acquires Capsule8 for Linux security Full Text
Abstract
Acquired for an unknown sum, the acquisition will see Sophos integrate Capsule8 technology, which is aimed at Linux cybersecurity, to its Adaptive Cybersecurity Ecosystem.Channel Asia
July 07, 2021
Huawei hires three new lobbying firms Full Text
Abstract
Embattled Chinese telecom Huawei recently hired three new lobbying firms, according to disclosure reports filed with Congress.The Hill
July 7, 2021
Cybersecurity companies are selling like hotcakes in post-pandemic investment market Full Text
Abstract
The red-hot cyber investment market in 2020 was replete with action from top dogs, both from outside the industry and within.SCMagazine
July 07, 2021
Microsoft urges users to update PCs in security warning Full Text
Abstract
Microsoft on Wednesday said that users of its Windows operating system should install updates after a cybersecurity company accidentally published a guide on how to exploit vulnerabilities in the service.The Hill
July 7, 2021
Kaseya’s VSA SaaS restart fails, service restoration delayed by at least ten hours Full Text
Abstract
Kaseya’s attempt to recover its SaaS services has suffered a setback. The recent breach has seen its VSA services offline since July 2nd and over 1,000 ransomware infections.The Register
July 7, 2021
Zimperium Acquires Mobile Application Security Pioneer whiteCryption Full Text
Abstract
Zimperium will continue to support current whiteCryption customers and will integrate whiteCryption’s solutions into Zimperium’s Mobile Application Protection Suite (MAPS).Yahoo! Finance
July 6, 2021
Kaseya plans to bring SaaS servers back online Tuesday, with patch then expected within a day Full Text
Abstract
A patch for on-premises customers of the VSA product that was the source of a widespread ransomware attack since Friday is currently going through testing and validation.SCMagazine
July 5, 2021
Kaseya won’t release on-prem patch before SaaS restoration starts Full Text
Abstract
The Kaseya board determined the company was not ready to begin the rollout of restoration of its software-as-a-service VSA remote monitoring and management tool following the ransomware incident. That decision appears to delay the release of a patch for on-premises clients.SCMagazine
July 05, 2021
Getting Started with Security Testing: A Practical Guide for Startups Full Text
Abstract
A common misconception among startup founders is that cybercriminals won't waste time on them, because they're not big or well known enough yet. But just because you are small doesn't mean you're not in the firing line . The size of a startup does not exempt it from cyber-attacks – that's because hackers constantly scan the internet looking for flaws that they can exploit; one slip up, and your business can become front-page news, for the wrong reasons. Fortunately, buyers are also becoming increasingly aware of the importance of cybersecurity and are commonly asking startups about the processes they use to secure their data - meaning cybersecurity is now becoming an important business enabler. So if you're a CTO thinking about ramping up your web or mobile apps' cybersecurity posture, then you are already on the right track, but with so many options, where should you start? To help you get going, we created this guide that covers the following crucialThe Hacker News
July 4, 2021
Kaseya to meet Monday to determine fate of SaaS VSA tool Full Text
Abstract
In the latest update following a widespread ransomware attack that hit managed service providers, Kaseya announced that its executive team would meet Monday to discuss bringing the software-as-a-service VSA remote monitoring and management tool back online. The company also said Monday would be the day it disclosed a timeline for the release of a patched on-premises VSA product.SCMagazine
July 3, 2021
China investigates Didi over cybersecurity days after its huge IPO Full Text
Abstract
Didi Global's shares fell more than 10% in New York on Friday after China's cyberspace agency said it had launched an investigation into the Chinese ride-hailing giant to protect national security and the public interest.Reuters
July 3, 2021
Kaseya, a Software Provider, Investigates Potential Cyberattack Full Text
Abstract
Kaseya, a software company that provides services to more than 40,000 organizations around the world, said on Friday that it was investigating the possibility that it had been the victim of a cyberattack.New York Times
July 1, 2021
Preventing another Equifax breach: Sevco Security wants to transform asset management Full Text
Abstract
The company’s vision, says CEO J.J Guy, is to transform how asset inventory is managed for better visibility into potential security gaps in the infrastructure.SCMagazine
July 1, 2021
SentinelOne closes up 21% in NYSE debut as highest-valued cybersecurity IPO ever Full Text
Abstract
Shares of cybersecurity company SentinelOne closed up more than 20% in its market debut Wednesday on the New York Stock Exchange, going public under the ticker symbol “S.”CNBC
July 01, 2021
Google Chrome will get an HTTPS-Only Mode for secure browsing Full Text
Abstract
Google is working on adding an HTTPS-Only Mode to the Chrome web browser to protect users' web traffic from eavesdropping by upgrading all connections to HTTPS.BleepingComputer
June 30, 2021
Windows 11 makes TPM Diagnostics tool its first optional feature Full Text
Abstract
Windows 11 comes with a new optional feature called 'TPM Diagnostics' that allows administrators to query the data stored on a device's TPM security processor.BleepingComputer
June 30, 2021
Enterprise API security startup Noname Security raises $60M Full Text
Abstract
Enterprise application programming security startup Noname Security today announced it has raised $60 million in new funding amid fast growth. Insight Partners led the Series B round.Silicon Angle
June 29, 2021
Accenture Acquires 40th Company In 10 Months With Sentor Buy Full Text
Abstract
Accenture Tuesday unveiled its acquisition of Sweden-based Sentor, a provider of cyberdefense and managed security services. The financial terms of the Sentor deal were not disclosed.CRN
June 29, 2021
Google to require 2FA and a physical address from Android app devs Full Text
Abstract
After seeing an increase in fraud and malicious developer accounts, Google announced plans to require additional identity verification from developers who want to list apps on the official Play Store.The Record
June 28, 2021
AWS Acquires Encrypted Communications Service Wickr Full Text
Abstract
Amazon’s AWS subsidiary on Friday announced the acquisition of Wickr, a late-stage startup that sells end-to-end encrypted communications tools. Financial terms of the transaction were not released.Security Week
June 28, 2021
Bit Discovery Banks $4 Million for Attack Surface Management Tech Full Text
Abstract
The Series B funding round was led by Mighty Capital and return investor Aligned Partners and includes smaller investments from prominent security practitioners including Alex Stamos and Jeff Moss.Security Week
June 25, 2021
AWS acquires encrypted comms platform Wickr to support shift to hybrid work environments Full Text
Abstract
AWS CISO Stephen Schmidt said that the move to a hybrid work environment due in part to the pandemic has led to a need among companies and government agencies to protect their communications across multiple remote locations.SCMagazine
June 25, 2021
World’s Largest E-tailers to be Investigated Over Fake Reviews Full Text
Abstract
UK’s Competition and Markets Authority announces probe into how Amazon and Google combat fake reviewsInfosecurity Magazine
June 25, 2021
Threat Monitoring Firm FYEO Announces Acquisition as It Emerges From Stealth Full Text
Abstract
Threat monitoring and identity access management provider FYEO on Wednesday announced that it emerged from stealth mode with the acquisition of threat intelligence company Intelliagg.Security Week
June 25, 2021
Drata lands $25M for its automated cybersecurity compliance platform Full Text
Abstract
Drata Inc., a new startup working to make it easier for companies to comply with cybersecurity standards, today announced that it has raised a $25 million funding round led by GGV Capital.Silicon Angle
June 25, 2021
Cloud Application Security Firm Anjuna Raises $30 Million Full Text
Abstract
The funding round was led by Insight Partners and is expected to help the company bring its Confidential Cloud Software Platform to market and support technology development and innovation.Security Week
June 25, 2021
Windows 11 won’t work without a TPM - What you need to know Full Text
Abstract
Windows 11 requires a TPM security processor to install or upgrade to Windows 11. Unfortunately, there has been a lot of confusion about what type of TPM you need and why you need it in the first place.BleepingComputer
June 25, 2021
Google Extends Support for Tracking Party Cookies Until 2023 Full Text
Abstract
Google's sweeping proposals to deprecate third-party cookies in Chrome browser is going back to the drawing board after the company announced plans to delay the rollout from early 2022 to late 2023, pushing back the project by nearly two years. "While there's considerable progress with this initiative, it's become clear that more time is needed across the ecosystem to get this right," Chrome's Privacy Engineering Director, Vinay Goel, said Thursday. In buying extra time, the search giant said it hopes to arrive at a consensus on the right solutions, while simultaneously engaging with regulators, and enabling publishers and the advertising industry to migrate their services to privacy-preserving technologies that prevent "alternative forms of individual tracking, and discourage the rise of covert approaches like fingerprinting ." The revised timelines comes close on the heels of a fresh regulatory setback in the European Union, after the EurThe Hacker News
June 25, 2021
AWS BugBust Aims to Fix One Million Vulnerabilities Globally Full Text
Abstract
Cloud giant wants to save $100 million in technical debtInfosecurity Magazine
June 24, 2021
Splunk expands into cloud security space with new platform Full Text
Abstract
Splunk, best known for its analytics software, delved deeper into the security realm this week when it released its new Splunk Security Cloud, a security operations platform that consists of security analytics, automated security operations, and integrated threat intelligence. The move to a cloud-based platform reflects Splunk’s recognition that the migration to remote work last…SCMagazine
June 24, 2021
Google Pushes Back Cookie Removal Plans to 2023 Full Text
Abstract
Google's plan to deprecate third-party tracking cookies from its Chrome browser delayed to 2023Infosecurity Magazine
June 23, 2021
Anti-virus Pioneer John McAfee Found Dead in Spanish Prison Cell Full Text
Abstract
McAfee, of the antivirus firm that bore his name, allegedly committed suicide while in holding awaiting extradition to the U.S. for tax evasionInfosecurity Magazine
June 23, 2021
Symmetry Systems lands $15 million in Series A funding to solve data visibility issues Full Text
Abstract
Said Mohit Tiwari, the company’s co-founder and CEO: “Given that so many organizations are moving to the cloud, this is a once in a generation opportunity to reset security so it’s answering questions about data. Our goal is to map data and track data flows – at scale.”SCMagazine
June 23, 2021
MITRE adds D3FEND defensive cybersecurity techniques to ATT&CK Framework Full Text
Abstract
D3FEND is a new project promoted by MITRE Corporation to add defensive cybersecurity techniques to the ATT&CK Framework. D3FEND is a new project promoted by MITRE Corporation aimed to add a knowledge graph of cybersecurity countermeasures to the ATT&CK...Security Affairs
June 23, 2021
Colonial Pipeline Sued for Gas Crisis From Ransomware Attack Full Text
Abstract
Colonial Pipeline Co. was sued by a gas station seeking to represent thousands more over the ransomware attack in May that paralyzed the U.S. East Coast’s flow of gasoline, diesel, and jet fuel.Yahoo! Finance
June 22, 2021
SEC Probes SolarWinds Breach Disclosure Failures Full Text
Abstract
Companies being investigated on suspicion of hiding the fact they got hackedInfosecurity Magazine
June 22, 2021
Pondurance Acquires Bearing Cybersecurity to Help Customers Better Assess and Remediate Security Gaps Full Text
Abstract
Pondurance, a Managed Detection and Response (MDR) service provider, today announced the acquisition of Rockwall, Texas-based advisory and assessment services provider Bearing Cybersecurity.Yahoo! Finance
June 22, 2021
Transmit Security raises $543M Series A to kill off the password Full Text
Abstract
Transmit Security said it has a pre-money valuation of $2.2 billion, and will use the new funds to expand its reach and investing in key global areas to grow the organization.TechCrunch
June 22, 2021
Did Companies Fail to Disclose Being Affected by SolarWinds Breach? Full Text
Abstract
The US Securities and Exchange Commission (SEC) has reportedly opened a probe into whether some companies that were affected by the SolarWinds breach failed to disclose that fact.Dark Reading
June 22, 2021
Ransomware Payments Could Be Tax Deductible - Report Full Text
Abstract
Another silver lining for firms that choose to pay their extortersInfosecurity Magazine
June 22, 2021
Ping Identity acquires SecuredTouch for bot detection Full Text
Abstract
Ping Identity on Monday announced it's acquired SecuredTouch, a fraud and bot detection firm based in Tel Aviv. The financial terms of the acquisition deal were not disclosed.ZDNet
June 21, 2021
Finger Scanning Costs Six Flags $36m Full Text
Abstract
American amusement park agrees to $36m settlement over use of finger-scan entry gatesInfosecurity Magazine
June 21, 2021
CyberSmart secures $10m Series A funding round Full Text
Abstract
CyberSmart, a cybersecurity technology firm for SMEs, has announced the completion of its Series A funding round led by IQ Capital, bringing the total raised to over $10 million.Business Leader
June 18, 2021
Google Spices Up Supply Chain Security with SLSA Framework Full Text
Abstract
Certification will give customers confidence software hasn't been tampered withInfosecurity Magazine
June 18, 2021
Threatray Raises $2.7M in Funding Full Text
Abstract
The Switzerland-based Threatray raised $2.7 million in funding led by Verve Ventures, with participation from existing investors Hammer Team, SICTIC, BackBone Ventures, and the Innofund by SZKB.FinSMEs
June 17, 2021
LORCA Announces New Intensive Program for Most Promising Cyber Startups Full Text
Abstract
LORCA Ignite is a new intensive program that will help six of the most promising cyber startups in the UK achieve rapid growthInfosecurity Magazine
June 17, 2021
Industrial Cybersecurity Firm Claroty Raises $140 Million in Series D Funding Full Text
Abstract
The latest funding round was co-led by Bessemer Venture Partners’ Century II fund and 40 North Ventures, with participation from I Squared Capital’s ISQ Global InfraTech Fund and previous investors.Security Week
June 16, 2021
Deloitte Acquires Terbium Labs Full Text
Abstract
Baltimore-based digital risk protection company Terbium Labs is acquired by DeloitteInfosecurity Magazine
June 16, 2021
NHS Test and Trace Bolsters its Cybersecurity Full Text
Abstract
NHS Test and Trace appoints UK cyber startup Risk Ledger to manage its supply chain risksInfosecurity Magazine
June 16, 2021
How FireEye attributed the SolarWinds hacking campaign to Russian spies Full Text
Abstract
The first revelations about the campaign, which hit nine government agencies and around 100 companies, came in December 2020, when FireEye disclosed that hackers had stolen its security testing tools.Cyberscoop
June 16, 2021
Web app and API protection startup ThreatX raises $10M to expand US operations Full Text
Abstract
Web application and API protection startup ThreatX Inc. revealed that it has raised $10 million in new Series B funding to accelerate business growth and expand U.S. operations.Silicon Angle
June 16, 2021
Forcepoint Acquiring Deep Secure to Extend Portfolio Full Text
Abstract
The acquisition will allow Forcepoint to extend the capabilities of its Cross Domain Solutions portfolio to secure the critical data of governments in the United States and beyond.channelfutures
June 15, 2021
Deloitte acquires online antifraud firm Terbium Labs Full Text
Abstract
The startup creates digital fingerprints of sensitive data and uses machine learning to scan the open and dark web for signs of a breach.SCMagazine
June 15, 2021
Zero trust networking startup Elisity raises $26M Full Text
Abstract
Elisity today announced that it raised $26 million in its Series A funding round led by Two Bear Capital and AllegisCyber Capital, with participation from Atlantic Bridge.Venture Beat
June 15, 2021
Microsoft Gets Second Shot at Banning hiQ from Scraping LinkedIn User Data Full Text
Abstract
Decision throws out previous ruling in favor of hiQ Labs that prevented Microsoft’s business networking platform to forbid the company from harvesting public info from user profiles.Threatpost
June 14, 2021
Cyber resilience company Immersive Labs announces $75 million Series C round Full Text
Abstract
Cybersecurity readiness firm Immersive Labs has announced a $75 million Series C round, with investments from Citi Ventures, Menlo Ventures, and follow-on from Goldman Sachs Asset Management.ZDNet
June 14, 2021
ServiceNow partners with ZScaler for remote access security Full Text
Abstract
Amit Raikar, vice president of technology alliances and business development at ZScaler, said the new integrations will enable ServiceNow users to access only company-owned devices. And by setting appropriate policies, ServiceNow users will only have access to the data they need to do their jobs.SCMagazine
June 11, 2021
McDonalds says data breach targeted South Korea and Taiwan operations Full Text
Abstract
McDonald’s said that it was the target of a data breach affecting its markets in South Korea and Taiwan.The Hill
June 10, 2021
JBS paid $11 million to REvil ransomware out of $22.5M requested Full Text
Abstract
The beef producer JBS has admitted to have paid an $11 million ransom to the REvil ransomware gang after the group initially demanded $22.5 million. The meat processing giant JBS confirmed it paid the REvil ransomware gang $11 million in bitcoins...Security Affairs
June 10, 2021
JBS Paid $11M to REvil Gang Even After Restoring Operations Full Text
Abstract
The decision to pay the ransom demanded by the cybercriminal group was to avoid any further issues or potential problems for its customers, according to the company’s CEO.Threatpost
June 10, 2021
Meat processor JBS paid $11 million in ransom to hackers Full Text
Abstract
The F.B.I. said last week that it believed REvil, a Russian-based group that is one of the most prolific ransomware organizations, was responsible for the attack on the meat processing giant.New York Times
June 10, 2021
JBS Admits Paying REvil Ransomware Group $11 Million Full Text
Abstract
The meat processing giant claims to have paid Russian-speaking hackers millions in bitcoin to restore servicesInfosecurity Magazine
June 10, 2021
RSA Security spins out its Fraud & Risk Intelligence business into standalone company called Outseer Full Text
Abstract
RSA Security is spinning out its anti-fraud and payments security business into a new standalone company called Outseer. The new organization will be led by CEO Reed Taussig.ZDNet
June 09, 2021
Beef Supplier JBS Paid Hackers $11 Million Ransom After Cyberattack Full Text
Abstract
Meat processing company JBS on Wednesday confirmed it paid extortionists $11 million in bitcoins to regain access to its systems following a destructive ransomware attack late last month. "In consultation with internal IT professionals and third-party cybersecurity experts, the company made the decision to mitigate any unforeseen issues related to the attack and ensure no data was exfiltrated," JBS USA said in a statement, with CEO Andre Nogueira adding the firm made the "very difficult decision" to prevent any potential risk for its customers. Stating that third-party forensic investigations into the incident are still ongoing, the company noted that no company, customer, or employee data was compromised as a consequence of the breach. The FBI officially discourages victims from paying ransoms because doing so can establish a profitable criminal marketplace. JBS, the world's largest meat company by sales, on May 30 disclosed it fell prey to an "orgThe Hacker News
June 09, 2021
JBS paid $11 million to hackers to resolve ransomware attack Full Text
Abstract
Major meat producer JBS USA said it paid the equivalent of $11 million to hackers to resolve a ransomware attack that forced the company to shut down its beef plants.The Hill
June 09, 2021
Colonial Pipeline may use recovered ransomware attack funds to boost cybersecurity Full Text
Abstract
Colonial Pipeline may use the recovered funds paid out to cyber criminals as part of a ransomware attack last month to increase cybersecurity, Joseph Blount, the company's president and CEO, said Wednesday.The Hill
June 9, 2021
‘I did not like handing that money over to criminals’: Colonial CEO touts corporate cyber transparency, defends his own Full Text
Abstract
The hearing touched on the internal and external debates that face most executives during a crippling cyberattack: How fast should a company act, and what decisions should be made internally versus in consultation with external advisers or the federal government.SCMagazine
June 08, 2021
Colonial Pipeline CEO grilled over ransomware attack Full Text
Abstract
Colonial Pipeline President and CEO Joseph Blount was grilled by lawmakers Tuesday on his decision to pay hackers in a ransomware attack that forced a temporary shutdown of operations — and led to gas shortages in parts of the country.The Hill
June 08, 2021
Colonial CEO apologizes for pipeline attack’s impact Full Text
Abstract
Colonial Pipeline CEO Joseph Blount apologized on Tuesday for the impact of a cyberattack that shut down the major fuel provider last month.The Hill
June 8, 2021
Horizon3.ai looks to expand NodeZero tech with new funding Full Text
Abstract
Horizon3.ai wants to change the way companies address cyberattacks through automation, announcing a new round of funding of $8.5 million led by SignalFire. The cash infusion is a combination of two rounds of funding – a seed funding of $3 million and Series A funding of $5.5 million. According to Antani, the funding will be…SCMagazine
June 8, 2021
Billions of Compromised Records and Counting: Why the Application Layer is Still the Front Door for Data Breaches Full Text
Abstract
Security teams should brace for an unsettling and unprecedented year, as we’re on pace to see 40 billion records compromised by the end of 2021. Imperva’s Terry Ray explains what security teams need to do to bolster their defenses.Threatpost
June 8, 2021
Seattle cybersecurity startup ExtraHop to be acquired by private equity firms in $900M deal Full Text
Abstract
ExtraHop uses machine learning to help companies prevent, detect, and eliminate threats on their networks, operating in a sector of cybersecurity called “network detection and response.”Geek Wire
June 7, 2021
CloudQuest Acquired by Deloitte Full Text
Abstract
Deloitte snaps up Silicon Valley–based security posture management providerInfosecurity Magazine
June 7, 2021
Identity verification company Trulioo lands $394M Full Text
Abstract
Online identity verification platform Trulioo has closed a $394 million series D round of funding at a $1.75 billion valuation. The round was led by growth equity firm TCV.Venture Beat
June 7, 2021
Qualys Announces Passing of Philippe Courtot, it’s CEO of the Past 20 Years Full Text
Abstract
Courtot became CEO of Qualys in 2001, leading its global expansionInfosecurity Magazine
June 06, 2021
Signal app safety numbers do not always change — here’s why Full Text
Abstract
This week, security researchers have steered attention towards an interesting finding while using Signal apps across multiple platforms. When you or your contact reinstall the Signal app or switch over to a new device, the Signal safety number between you two does not always change.BleepingComputer
June 06, 2021
Amazon to share your Internet with neighbors on Tuesday - How to opt out Full Text
Abstract
Amazon will be launching the Amazon Sidewalk service on Tuesday that automatically opts-in your Echo and Ring devices into a new feature that shares your Internet with your neighbors. Here's more about this new feature and how to opt-out of sharing your bandwidth with other Amazon devices.BleepingComputer
June 05, 2021
GitHub Updates Policy to Remove Exploit Code When Used in Active Attacks Full Text
Abstract
Code-hosting platform GitHub Friday officially announced a series of updates to the site's policies that delve into how the company deals with malware and exploit code uploaded to its service. "We explicitly permit dual-use security technologies and content related to research into vulnerabilities, malware, and exploits," the Microsoft-owned company said . "We understand that many security research projects on GitHub are dual-use and broadly beneficial to the security community. We assume positive intention and use of these projects to promote and drive improvements across the ecosystem." Stating that it will not allow the use of GitHub in direct support of unlawful attacks or malware campaigns that cause technical harm, the company said it may take steps to disrupt ongoing attacks that leverage the platform as an exploit or a malware content delivery network (CDN). To that end, users are refrained from uploading, posting, hosting, or transmitting any coThe Hacker News
June 05, 2021
TikTok Quietly Updated Its Privacy Policy to Collect Users’ Biometric Data Full Text
Abstract
Popular short-form video-sharing service TikTok quietly revised its privacy policy in the U.S., allowing it to automatically collect biometric information such as faceprints and voiceprints from the content its users post on the platform. The policy change, first spotted by TechCrunch , went into effect on June 2. TikTok users who reside in the European Economic Area (EEA), the U.K., Switzerland, and other geographies (excluding India) where the service operates are exempted from the changes. "We may collect biometric identifiers and biometric information as defined under U.S. laws, such as faceprints and voiceprints, from your User Content. Where required by law, we will seek any required permissions from you prior to any such collection," the ByteDance-owned company said in a newly introduced section called "Image and Audio Information." On top of this, the company's privacy policy also notes that it may collect information about "the nature of theThe Hacker News
June 05, 2021
GitHub’s new policies allow removal of PoC exploits used in attacks Full Text
Abstract
GitHub announced on Friday their updated community guidelines that explain how the company will deal with exploits and malware samples hosted on their service.BleepingComputer
June 04, 2021
Google announces new experimental Abuse Research Grants Program Full Text
Abstract
Google has announced a new experimental Abuse Research Grants Program for abuse-related issues and tactics outside the scope of existing Vulnerability Research Grants and the Vulnerability Reward Program (VRP).BleepingComputer
June 4, 2021
Colorado-based Cybersecurity Company Coalfire Acquires Denim Group Full Text
Abstract
The company is keeping all employees on staff and moving forward with the continued leadership of Denim Group's Principals John Dickson, Dan Cornell, and Sheridan Chambers.coalfire
June 04, 2021
Reports: Cox Media Group websites hacked in ransomware attack Full Text
Abstract
Cox Media Group, which owns television and radio stations in 20 media markets around the U.S., was the victim of a ransomware hack Thursday, according to several reports.The Hill
June 03, 2021
All global JBS facilities up and running following ransomware attack Full Text
Abstract
JBS USA and Pilgrim’s on Thursday afternoon announced that all global facilities were functioning normally, days after JBS was hit by a ransomware attack believed to have been carried out by Russia-based hackers.The Hill
June 03, 2021
Maloney grills Colonial Pipeline on decision to pay ransom to hackers Full Text
Abstract
House Oversight and Reform Committee Chairwoman Carolyn Maloney (D-N.Y.) on Thursday grilled Colonial Pipeline and insurance group CNA Financial Corporation for their recent decisions to pay hackers in order to regain access to their networks following ransomware attacks.The Hill
June 3, 2021
Mandiant to Re-Emerge After $1.2 Billion FireEye Sale Full Text
Abstract
The deal will see STG acquire FireEye’s network, email, endpoint and cloud security productsInfosecurity Magazine
June 3, 2021
Enterprise Mobile Security Startup Hypori Raises $20 Million Full Text
Abstract
Founded in 2013, the Austin, Texas-based company provides organizations with security and management solutions to keep corporate apps and data protected on employees’ personal mobile devices.Security Week
June 3, 2021
Secureworks Appoints Wendy Thomas as CEO as Michael Cote Announces Retirement Full Text
Abstract
Current CEO Michael Cote will retire on September 3, 2021, following nearly 20 years at the company.Infosecurity Magazine
June 03, 2021
ARIN will take down its RPKI for 30 minutes to test your BGP routes Full Text
Abstract
ARIN plans on performing unannounced maintenance of its RPKI, sometime in July, for about thirty minutes to check if networks are adhering to BGP best practices.BleepingComputer
June 3, 2021
FireEye is selling its products business and name for $1.2 billion Full Text
Abstract
FireEye said Wednesday it’s selling its products business, including the FireEye name, to a consortium led by private-equity firm Symphony Technology Group for $1.2 billion in cash.CNBC
June 3, 2021
Update: Largest meat producer getting back online after cyberattack Full Text
Abstract
The world’s largest meat processing company has resumed most production after a weekend cyberattack, but experts say the vulnerabilities exposed by this attack and others are far from resolved.NBC News
June 2, 2021
FireEye to split from Mandiant in $1.2B deal Full Text
Abstract
FireEye announced its products and name will be sold to a consortium led by private equity firm Symphony Technology Group in a $1.2 billion dollar acquisition announced June 2.SCMagazine
June 2, 2021
Microsoft acquires firmware analysis company ReFirm, eying edge IoT security Full Text
Abstract
ReFirm provides drag-and-drop automated firmware analysis, which Microsoft hopes will provide security insight for industrial IoT products, where security personnel often struggle to look inside built-in hardware.SCMagazine
June 1, 2021
SOAR company led by former Facebook exec lands $35 million in Series B funding Full Text
Abstract
Max Kelly, co-founder and CEO of [redacted], explained that the company’s unified SOAR platform and services handle the whole spectrum of security needs from attack prevention, detection and response to damage mitigation.SCMagazine
June 1, 2021
Redacted comes out of stealth with $60M in funding and a new take on fighting cybercrime Full Text
Abstract
The Series B funding is being led by Ten Eleven Ventures, with participation from Valor Equity Partners and SVB Capital. It brings the total raised by Redacted to $60 million.TechCrunch
June 1, 2021
Cybersecurity startup Exabeam raises $200 mln, valued at $2.4 bln Full Text
Abstract
Exabeam, a startup that helps companies automate the analysis and monitoring of their cybersecurity data, said it raised $200 million in its latest funding round which valued it at $2.4 billion.Reuters
June 1, 2021
Microsoft Convenes Asia Pacific Info-Sharing Council Full Text
Abstract
The initiative aims to build a strong response against cyberattacks across seven markets in the regionInfosecurity Magazine
May 28, 2021
Salesforce Leads $120 Million Round in Israeli Cyber Startup Wiz Full Text
Abstract
Salesforce led a new funding round in the Wiz, according to a person familiar with the matter. Existing investors include Greenoaks Capital, Advent International, Sequoia, and Insight Partners.Yahoo! Finance
May 28, 2021
SAM Seamless Snags $20M Series B As Network Threats Grow Full Text
Abstract
Israel-based SAM Seamless Network raised a $20 million Series B as the cybersecurity company readies itself for the perfect storm of an expanding network attack surface and the coming of 5G.CrunchBase News
May 28, 2021
DataDome raises $35M to defend ecommerce from bot attacks Full Text
Abstract
Bot defense startup DataDome today announced it has raised $35 million in a Series B round led by Elephant. It aims to use the funds to invest in R&D as it looks to expand its customer base.Venture Beat
May 26, 2021
Salt Security Raises $70 Million To Strengthen API Security Full Text
Abstract
Salt Security closed a $70 million Series C funding round led by Advent International to scale the company’s sales organization globally and enhance security earlier in the development lifecycle.CRN
May 26, 2021
Cybersecurity monitoring and threat prevention startup Uptycs raises $50M Full Text
Abstract
Cloud security analytics platform Uptycs today announced it has raised $50 million in a Series C funding round led by Norwest Venture Partners, bringing the company’s total raised to $93 million.Venture Beat
May 25, 2021
Security startup Tessian, which uses AI to fight social engineering, trousers $65M Full Text
Abstract
The Series C round was led by March Capital. Existing investors Accel, Balderton Capital, Latitude, and Sequoia Capital also participated, along with new investor Schroder Adveq.TechCrunch
May 24, 2021
Huawei to move toward software development in wake of US restrictions Full Text
Abstract
Chinese telecommunications giant Huawei’s leadership is moving the company toward software development in the face of crippling pushback by many Western nations against use of the company’s hardware.The Hill
May 24, 2021
EY and CrowdStrike partner to deliver cloud-based security services Full Text
Abstract
The alliance combines CrowdStrike’s Falcon security platform and incident response – including digital forensics and investigations – with EY’s consulting and risk management services.SCMagazine
May 24, 2021
What To Do When Your Business Is Hacked Full Text
Abstract
As businesses move to a remote workforce, hackers have increased their activity to capitalize on new security holes. Cybercriminals often use unsophisticated methods that continue to be extremely successful. These include phishing emails to harvest credentials and gain easy access to business-critical environments. Hackers are also using ransomware to hold your data hostage, demanding a ransom payment in exchange for a decryption key that unlocks your stolen data. When dealing with a cyberattack, there are practical steps you want to follow. What do these steps include? Quickly contain and isolate critical systems Report the hack to your customers and business stakeholders Engage the help of law enforcement Enact your disaster recovery and business continuity plans Analyze the attack, and remediate Quickly contain and isolate critical systems This first step is necessary: quickly contain and isolate critical systems. There is a chance that if you discover ransomware or oThe Hacker News
May 24, 2021
Cynerio raises $30 million to protect medical IoT Full Text
Abstract
IoT security is bad mostly everywhere, but threats against medical devices bring some of the most worrying potential for damage against health care organizations and their patients.SCMagazine
May 24, 2021
Insurance Giant Reportedly Paid $40 Million Ransom Full Text
Abstract
CNA Financial was struck in March this yearInfosecurity Magazine
May 21, 2021
ServiceNow, Microsoft expand partnership, enable ‘virtual war room’ during cyber incidents Full Text
Abstract
One of the important features of the integrations is major security incident management, which can be described as “a war room” for handling major incidents and security breaches. The offering enables all teams across a company to coordinate response during a major security incident, like the recent Colonial Pipeline attack.SCMagazine
May 21, 2021
Insurance giant CNA Financial paid a $40 million ransom Full Text
Abstract
The US insurance giant CNA Financial reportedly paid a $40 million ransom to restore access to its files following a ransomware attack. CNA Financial, one of the largest insurance companies in the US, reportedly paid a $40 ransom to restore...Security Affairs
May 21, 2021
Apple isn’t happy about the amount of Mac malware out there Full Text
Abstract
A top Apple exec has said that Mac malware has now exceeded Apple's level of tolerance, and framed security as the reason for keeping iPhones locked to the App Store, during testimony is a lawsuit.ZDNet
May 21, 2021
API security startup 42Crunch raises $17M Series A led by Energy Impact Partners Full Text
Abstract
42Crunch, an API security startup, has raised $17 million in its Series A funding round led by Energy Impact Partners. Adara Ventures also participated in this funding round.TechCrunch
May 20, 2021
Colonial Pipeline CEO to testify on Capitol Hill in June following cyberattack Full Text
Abstract
Colonial Pipeline CEO Joseph Blount will testify in June before the House Homeland Security Committee at a hearing one month after the company was forced to shut down operations due to a devastating ransomware attack.The Hill
May 19, 2021
As digital innovation accelerates, what is the next cyber investment unicorn? Full Text
Abstract
Companies poised to do well in the rapidly accelerated digital economy are those that can cater to concepts such as dynamic network infrastructure and securing edge computing. In particular, said Chenxi Wang of Rain Capital, the market is witnessing “great momentum in cloud security.”SCMagazine
May 19, 2021
ReaQta Closes Series-A Round to Expand Commercial Operations Full Text
Abstract
ReaQta will invest the Series A funding, led by Alpha Intelligence Capital, towards expanding its commercial operations and footprint, particularly across Europe and Asia.Yahoo! Finance
May 19, 2021
Splunk to Acquire TruSTAR Full Text
Abstract
California tech company Splunk announces plan to snap up cloud-native security firmInfosecurity Magazine
May 19, 2021
Cynerio Raises $30M in Series B Funding Full Text
Abstract
It was led by Alive Israel HealthTech Fund, with participation from existing investors Accelmed, RDC, MTIP, CBG London investment company owned by Vincent Tchenguiz, and UAE based investment group.FinSMEs
May 19, 2021
Colonial Pipeline CEO says company paid hackers $4.4 million in ransomware attack Full Text
Abstract
The CEO of Colonial Pipeline, hit by a ransomware attack that forced it to shut down operations for much of last week, confirmed publicly for the first time Wednesday that the company paid the hackers behind the attack so it could regain access to its systems.The Hill
May 19, 2021
Styra, the startup behind Open Policy Agent, nabs $40M to expand its cloud-native authorization tools Full Text
Abstract
Styra's Series B round of funding led by Battery Ventures. Also participating are previous backers A. Capital, Unusual Ventures and Accel; and new backers CapitalOne Ventures and Citi Ventures.TechCrunch
May 19, 2021
ThreatLocker raises $20M to secure enterprise endpoints Full Text
Abstract
ThreatLocker, a startup providing enterprise cybersecurity tools for servers and endpoints, today announced it has raised $20 million in a series B round led by Elephant.Venture Beat
May 18, 2021
Eldorado-based Shared Assessments acquired by national company OneTrust Full Text
Abstract
Eldorado-based cybersecurity firm Shared Assessments has been acquired for an undisclosed price by one of its member organizations, OneTrust, at one time the fastest-growing company on the Inc. 5000.Yahoo! Finance
May 18, 2021
IBM to Acquire Waeg Full Text
Abstract
Deal to acquire European Salesforce Consulting Partner expected to close this quarterInfosecurity Magazine
May 17, 2021
Cisco Plans to Acquire Kenna Security, Boost Security Offerings Full Text
Abstract
Cisco Systems (CSCO) plans to acquire privately-held California-based Kenna Security in a bid to enhance its security offerings. However, the financial terms of the deal were not disclosed.Yahoo! Finance
May 17, 2021
Cisco Snaps Up Kenna Security for Vulnerability Management Full Text
Abstract
New capabilities will boost SecureX platformInfosecurity Magazine
May 17, 2021
Bitcoin down: 51% attack? No, put the blame on Elon Musk Full Text
Abstract
The price of Bitcoin falls after Elon Musk declared that its company, Tesla, may have sold holdings of the cryptocurrency We have a long-debated about the possibility that the Bitcoin price could be influenced by threat actors through 51% attacks,...Security Affairs
May 14, 2021
Lemonade Denies “Unforgivably Negligent” Security Gaffe Full Text
Abstract
Insurtech company says alleged lapse was merely customers sharing their quotes onlineInfosecurity Magazine
May 14, 2021
BluBracket raises $12 million to expand operations and support a shift left in code testing Full Text
Abstract
Code automation company BluBracket on Thursday said it raised $12 million in Series A funding so it can continue to work with DevSecOps teams to build security into products from the start and shift code development left.SCMagazine
May 14, 2021
Fidelis Buys CloudPassage To Better Monitor Cloud Assets Full Text
Abstract
Fidelis was impressed by CloudPassage’s ability to collect telemetry from the enterprise and deliver cloud security posture management and cloud workload protection from a single platform.CRN
May 13, 2021
AI-powered identity access management platform Authomize raises $16M Full Text
Abstract
Cloud-based authorization startup Authomize today announced that it raised $16 million in series A funding led by Innovation Endeavors, bringing the startup’s total raised to $22 million to date.Venture Beat
May 13, 2021
Code-scanning platform BluBracket nabs $12M for enterprise security Full Text
Abstract
Code security startup BluBracket today announced it has raised $12 million in a Series A round led by Evolution Equity Partners to further develop BluBracket’s products and grow its sales team.Venture Beat
May 13, 2021
H&R Block seeks out open-source expertise to stock up on SOC talent Full Text
Abstract
Open source experience can help propel professionals’ careers and bring diversity of thought to a security team. SC Media spoke to Carraig Stanwyck, H&R Block’s manager of global security operations, and Bernard Brantley, CISO at Corelight, to hear more.SCMagazine
May 12, 2021
Microvirtualization at the heart of new HP hardware line Full Text
Abstract
The crown jewel security feature is HP’s micro-virtualization and isolation technology, which shift risky activities to hardware-enforced virtual machines.SCMagazine
May 12, 2021
Cyber risk management startup VisibleRisk secures $25M Full Text
Abstract
The Series A funding round — which comes as VisibleRisk launches a new risk assessment service, Cyber Rating — will be used to expand the company’s workforce well into this year.Venture Beat
May 12, 2021
Cybersecurity startup Panaseer raises $26.5M Series B led by AllegisCyber Capital Full Text
Abstract
Existing investors, including Evolution Equity Partners, Notion Capital, AlbionVC, Cisco Investments and Paladin Capital Group, as well as new investor National Grid Partners, also participated.TechCrunch
May 12, 2021
Microsoft’s new project ports Linux eBPF to Windows 10, Server Full Text
Abstract
Microsoft has launched a new open-source project that aims to add to Windows the benefits of eBPF, a technology first implemented in Linux that allows attaching programs in both kernel and user applications.BleepingComputer
May 12, 2021
Apple service provider Jamf buys zero-trust software vendor Wandera for $400 million Full Text
Abstract
Apple enterprise support services provider Jamf this afternoon said it will acquire nine-year-old startup Wandera of San Francisco, a provider of cloud-based software for "zero trust" security.ZDNet
May 11, 2021
GitHub Prepares to Move Beyond Passwords Full Text
Abstract
GitHub adds support for FIDO2 security keys for Git over SSH to fend off account hijacking and further its plan to stick a fork in the security bane of passwords.Threatpost
May 11, 2021
Fraud prevention firm Arkose Labs raises $70M Full Text
Abstract
Arkose Labs, a startup developing a platform to detect and mitigate online fraud, today announced that it raised $70 million in a funding round led by SoftBank Vision Fund 2.Venture Beat
May 11, 2021
GitHub shifts away from passwords with security key support for SSH Git operations Full Text
Abstract
When you add a security key to SSH operations, you can use these devices to protect you and your account from accidental exposure, account hijacking, or malware, a GitHub security engineer wrote.ZDNet
May 10, 2021
CrowdStrike, Google partnership aims to deliver defense-in-depth for hybrid cloud environments Full Text
Abstract
CrowdStrike and Google Cloud on Monday announced a series of product integrations to deliver joint customers defense-in-depth security, deeper visibility and workload protection across a hybrid cloud environment. The companies say the integrations will allow for more seamless sharing of telemetry and data between the two security platforms, helping maintain high levels of security across…SCMagazine
May 10, 2021
Colonial aims to ‘substantially’ restore pipeline operations by end of week Full Text
Abstract
The Colonial Pipeline Company said that it hopes to “substantially” restore the operations of its pipeline by the end of the week following a ransomware attack that led to its shutdown.The Hill
May 7, 2021
Beware the gold rush: The risk of a cyber investment surge Full Text
Abstract
Crises begets demand which begets a terrific business opportunity.SCMagazine
May 7, 2021
Forcepoint Buys Remote Browser Isolation Startup Cyberinc Full Text
Abstract
Forcepoint has purchased emerging remote browser isolation vendor Cyberinc to give administrators granular controls that allow them to minimize risk without impeding user productivity.CRN
May 6, 2021
SolarWinds hires CISO from within, enabling a quicker security transformation Full Text
Abstract
Tim Brown’s familiarity with the internal environment and attack investigation potentially means less time to ramp up company’s Secure by Design initiative. But there could be some drawbacks to hiring from within as well.SCMagazine
May 6, 2021
MDR Firm Huntress Raises $40 Million in Series B Funding Round Full Text
Abstract
The Series B round, led by JMI Equity, will help the company expand its platform. Previous investors ForgePoint Capital and Gula Tech Adventures also participated in the latest financing round.Security Week
May 4, 2021
JupiterOne nabs $30M to help companies manage cybersecurity data Full Text
Abstract
JupiterOne, a cybersecurity management automation startup, today closed a $30 million Series B round led by Sapphire Ventures, with participation from previous investors Bain Capital Ventures.Venture Beat
May 4, 2021
Aryaka Networks buys Secucloud to offer a more secure network edge Full Text
Abstract
The company said today that it has closed on a deal to buy German secure access service edge or SASE firm Secucloud GmbH. That company is now a fully owned subsidiary of Aryaka.Silicon Angle
May 4, 2021
Acronis Raises $250 Million at $2.5 Billion Valuation Full Text
Abstract
The funding, which brings the total raised by the company to more than $400 million, was led by CVC Capital Partners VII. Acronis announced achieving unicorn status in 2019 after raising $147 million.Security Week
May 4, 2021
Imperva acquires API security company CloudVector Full Text
Abstract
Imperva today announced it plans to acquire application programming interface (API) security company CloudVector for an undisclosed sum to differentiate itself in the API protection market.Venture Beat
April 29, 2021
Accenture to Acquire Openminded Full Text
Abstract
Accenture enters into agreement to acquire French cybersecurity services companyInfosecurity Magazine
April 29, 2021
Accenture acquires French cybersecurity firm Openminded Full Text
Abstract
Openminded provides cybersecurity services including management, consultancy, and cloud & infrastructure solutions with a focus on risk analysis, remediation, and regulatory compliance.ZDNet
April 29, 2021
Threat Detection Firm Vectra Raises $130 Million at $1.2 Billion Valuation Full Text
Abstract
Threat detection and response solutions provider Vectra AI on Thursday announced that it has raised $130 million at a valuation of $1.2 billion, making the company the latest cybersecurity unicorn.Security Week
April 28, 2021
DevSecOps Company Sysdig Raises $188 Million at $1.19 Billion Valuation Full Text
Abstract
The latest funding round, which brings the total raised by the company to $394 million, was led by Premji Invest & Associates and Third Point Ventures, with participation from several other investors.Security Week
April 28, 2021
Alsid SAS Acquired by Tenable Full Text
Abstract
Tenable acquires Active Directory security firm and launches new solutionInfosecurity Magazine
April 28, 2021
Secrets management and authentication platform Akeyless raises $14M Full Text
Abstract
Akeyless, a SaaS platform for authentication and digital access, has offices in New York and Tel Aviv and says the round will be put toward hiring and global expansion to grow its customer base.Venture Beat
April 27, 2021
Cigent gets $7.6 million to reimagine data protection at the file level Full Text
Abstract
The cybersecurity startup is being backed by In-Q-Tel and other investors to bring their data defense technologies to the commercial market.SCMagazine
April 27, 2021
Private Equity Giant Snaps Up Proofpoint for $12.3 billion Full Text
Abstract
Thoma Bravo will add the SaaS player to its large security portfolioInfosecurity Magazine
April 27, 2021
Endpoint Management Firm Automox Raises $110 Million Full Text
Abstract
Cyber hygiene and patch management company Automox on Tuesday announced raising $110 million in a Series C funding round that brings the total raised by the firm to more than $152 million.Security Week
April 27, 2021
Network security company Proofpoint goes private in $12.3B deal Full Text
Abstract
Private equity firm Thoma Bravo has announced plans to acquire cybersecurity company Proofpoint, which was founded in 2002 and went public in 2012, in a deal worth $12.3 billion.Venture Beat
April 26, 2021
With $30M extension, BigID boosts Series D to $100M at $1.25B valuation Full Text
Abstract
After announcing a $70 million Series D at a $1 billion valuation at the end of 2020, now BigID announced a $30 million extension from Advent International valuing the company at $1.25 billion.TechCrunch
April 26, 2021
AirEye Raises $8M Series A to Extend Network Security into the Unprotected Digital Airspace Full Text
Abstract
AirEye, an Network Airspace Protection (NAP) provider, announced raising $8 million in its Series A funding round led by U.S. Venture Partners (USVP), with Canaan Partners also taking part.Yahoo! Finance
April 24, 2021
KnowBe4 Issues IPO to Drive Global Expansion, New Automation Features Full Text
Abstract
Security awareness company KnowBe4 successfully debuted on the NASDAQ, with its initial public offering bringing in more than $150 million to fund the company's international expansion and a focus on new automation and machine learning features.Dark Reading
April 23, 2021
Fraud prevention platform Sift raises $50M at over $1B valuation, eyes acquisitions Full Text
Abstract
Sift has raised $50 million in a funding round that values the company at over $1 billion. Insight Partners led the financing, which included participation from Union Square Ventures and Stripes.TechCrunch
April 23, 2021
50 companies named trusted providers by Cloud Security Alliance Full Text
Abstract
The Cloud Security Alliance (CSA) on Thursday announced the selection of a first round of “trusted providers” for cloud security. In a press announcement, the group said a Trusted Cloud Provider “trustmark” will get displayed on each organization’s CSA Security, Trust, Assurance & Risk (STAR) registry. The CSA hopes this will assist security teams in…SCMagazine
April 22, 2021
KnowBe4 CEO Stu Sjouwerman talks IPO, and ‘strengthening that human firewall’ Full Text
Abstract
SC Media caught up with CEO and founder Stu Sjouwerman on the company’s plans to expand international sales and leverage automation and machine learning to further explore the human layer of cybersecurity.SCMagazine
April 22, 2021
Security Biz Launches RDP Breach Notification Site Full Text
Abstract
Advanced Intelligence will check to see if your assets are on dark web siteInfosecurity Magazine
April 21, 2021
TikTok Sued Over Use of Minors’ Data Full Text
Abstract
Claim filed against TikTok on behalf of millions of children in Europe and the UKInfosecurity Magazine
April 21, 2021
Rapid7 Acquires Open Source Monitoring Platform Velociraptor Full Text
Abstract
The deal will allow Rapid7 to enhance its incident response capabilitiesInfosecurity Magazine
April 21, 2021
Facebook leaks strategy to numb reaction to data scraping incidents Full Text
Abstract
Facebook's long-term strategy is to desensitize users about leaked data dumps that were collected through scraping the public portion of the social network.BleepingComputer
April 21, 2021
Cape Privacy raises $20M to enable data science operations on encrypted data Full Text
Abstract
Cape Privacy, which is developing a privacy-preserving platform for collaborative data science, today announced that it closed a $20 million Series A led by Evolution Equity Partners.Venture Beat
April 21, 2021
Mastercard Acquires Digital Identity Verification Firm Ekata for $850 Million Full Text
Abstract
Mastercard says the plan is to combine the identity verification technology and experience of Seattle-based Ekata with its own fraud prevention and digital identity programs.Security Week
April 21, 2021
Hypr raises $35M to grow its passwordless authentication platform Full Text
Abstract
Hypr, a cloud multifactor authentication platform, today announced it has raised $35 million in a series C round led by Advent International, doubling the company’s total funding to over $72 million.Venture Beat
April 20, 2021
Grip Security grabs more cash to lead ‘gold rush’ to cloud security development Full Text
Abstract
The Israeli-based startup, which focuses on mapping out how cloud-based software interacts with other third party applications and other vendors, raised $6 million to help tackle the increasingly urgent security problem of software supply chain compromise.SCMagazine
April 20, 2021
Druva raises $147M to continue expansion of Druva Cloud Platform Full Text
Abstract
The fundraise was led by Caisse de dépôt et placement du Québec (CDPQ), a global investment group, with a significant investment by Neuberger Berman, each of which manage over $300 billion in assets.Help Net Security
April 19, 2021
Cloudflare Announces First Canadian Office Full Text
Abstract
American tech company’s plan to open new office in Toronto is welcomed by city’s mayorInfosecurity Magazine
April 19, 2021
Mastercard to Acquire Ekata Full Text
Abstract
Digital ID verification company to be acquired for $850mInfosecurity Magazine
April 19, 2021
Google Trumpets New Mobile App Security Standard Full Text
Abstract
Tech giant encourages developers to get on boardInfosecurity Magazine
April 19, 2021
OneTrust acquires Convercent to bring ethics and compliance technology into a single platform Full Text
Abstract
The acquisition of the ethics and compliance platform brings together privacy, data governance, GRC, third-party risk, ESG and ethics and compliance together into a single operational workflow.Help Net Security
April 19, 2021
PlexTrac Raises $10 Million for Its Purple Teaming Platform Full Text
Abstract
PlexTrac last week announced closing a $10 million Series A funding round led by Noro-Moseley Partners and Madrona Venture Group, with participation from StageDotO Ventures.Security Week
April 16, 2021
Keyfactor to Merge with PrimeKey Full Text
Abstract
Deal marks first ever merger between certificate automation and certificate authority providersInfosecurity Magazine
April 16, 2021
Cyber nonprofits ask billionaire philanthropists to show them some love Full Text
Abstract
Cyber organizations are seeking funding from what they describe as the “entrepreneurs who made vast fortunes creating the very technologies that give rise to threats.”SCMagazine
April 16, 2021
The Biggest Cybersecurity Funding Rounds in 2020 Full Text
Abstract
The lifeblood of the cybersecurity industry is new investments, both in startups and established companies. 272 vendors received additional funding in 2020 based on data published by Crunchbase. The total new investment for 2020 was $10.7 billion.Thansyn
April 15, 2021
Hack The Box looks to expand in America, add new functions to ‘hacking experiences’ suite Full Text
Abstract
Today, Hack The Box has 90 employees across the globe and the U.S. team makes up 10% of the global workforce – a number the company intends to double in the U.S. by end-of-year. While the location for the U.S. office has not been confirmed, the company aims for the office to create a strong base for its U.S. business operations.SCMagazine
April 15, 2021
Mozilla drops Firefox support on Amazon Fire TV Full Text
Abstract
This month, Amazon has announced plans to phase out support for the Mozilla Firefox web browser app on its Fire TV product line. The company has decided to no longer support the Mozilla Firefox browser in a bid to promote its Amazon Silk web browser app to customers, effective at the end of this month.BleepingComputer
April 15, 2021
Cybersecurity VC Funding Hit Record in 2020 With $7.8 Billion Invested Full Text
Abstract
Despite the coronavirus pandemic, 2020 was a record year in terms of venture capital funding for cybersecurity companies, with more than $7.8 billion invested, according to a new report from business information platform Crunchbase.Security Week
April 15, 2021
Cado Security locks in $10M for its cloud-native digital forensics platform Full Text
Abstract
The funding for London-based Cado is being led by Blossom Capital, with existing investors Ten Eleven Ventures also participating, among others. As another signal of demand, this Series A is coming only six months after Cado raised its seed round.TechCrunch
April 14, 2021
Led by cloud, cyber funding dollars flowed like water in 2020 Full Text
Abstract
2020 brought with it record levels of investment, with a combined $7.8 billion poured into cybersecurity startups. 2021 is shaping up even better, with some predicting $15 billion in investments by year end.SCMagazine
April 14, 2021
Thycotic and Centrify Complete Merger to Expand PAM Offerings Full Text
Abstract
The newly merged company will operate under the temporary name of ThycoticCentrifyInfosecurity Magazine
April 14, 2021
1Password targets developers with Secrets Automation, acquisition of SecretHub Full Text
Abstract
Password specialist 1Password has acquired SecretHub, a secrets management platform aimed at IT engineers, and made a new service called Secrets Automation, previously in beta, generally available.The Register
April 14, 2021
SolarWinds says dealing with hack fallout cost at least $18 million Full Text
Abstract
Texas-based SolarWinds Corp said the sprawling breach stemming from the compromise of its flagship software product has cost the company at least $18 million in the first three months of 2021.Reuters
April 13, 2021
Cybersecurity Services Market to be Worth $192.7bn Full Text
Abstract
New research suggests global cybersecurity market will be worth $192.7bn by 2028Infosecurity Magazine
April 13, 2021
Fitch Partners with SecurityScorecard to Help Investors Assess Businesses’ Cyber-Risk Full Text
Abstract
The growing threat landscape has made investors more concerned about companies' cybersecurity posturesInfosecurity Magazine
April 13, 2021
Data of 500 Million LinkedIn Users Scraped and Being Sold Online Full Text
Abstract
LinkedIn is the most recent victim of a massive data breach and data of over 500 million of its users has been...Cyber Security News
April 13, 2021
Talon Cyber Security raises $26M to further develop its technology and expand the development team Full Text
Abstract
Talon Cyber Security announced that it has secured $26 million in seed funding from Lightspeed Venture Partners, Team8, serial entrepreneur Zohar Zisapel, and leading cyber angel investors.Help Net Security
April 13, 2021
Cybersecurity training startup Hack The Box raises $10.6M Series A led by Paladin Capital Full Text
Abstract
Cybersecurity training startup Hack The Box has raised a Series A investment round of $10.6 million, led by Paladin Capital Group and joined by Osage University Partners, Brighteye Ventures, and existing investors Marathon Venture Capital.TechCrunch
April 12, 2021
Microsoft is open sourcing CyberBattleSim Enterprise Environment Simulator Full Text
Abstract
Microsoft released as open-source the 'CyberBattleSim Python-based toolkit which is an Enterprise Environment Simulator. Microsoft has recently announced the open-source availability of the Python-based enterprise environment simulator. named 'CyberBattleSim.'...Security Affairs
April 12, 2021
British cyber security firm Darktrace targets $4 billion London listing Full Text
Abstract
Darktrace, the British cybersecurity firm fired the gun on its $4 billion London listing on Monday, aiming to raise new funds to accelerate product development and strengthen its balance sheet.Reuters
April 12, 2021
LinkedIn confirmed that it was not a victim of a data breach Full Text
Abstract
LinkedIn has formally denied that the recently disclosed data leak was caused by a security breach, data were obtained via web scraping. LinkedIn has issued a formal statement to deny that the recent leak that exposed the account details of more than...Security Affairs
April 9, 2021
LinkedIn confirms leak of 500 million profiles online, maintains incident was not a breach Full Text
Abstract
LinkedIn has become one of the most impersonated brands when it comes to phishing, and having access to such a treasure trove of information can help facilitate convincing social engineering attacks.SCMagazine
April 9, 2021
SAP partners with Onapsis to mitigate active threats against unprotected SAP applications Full Text
Abstract
SAP and Onapsis jointly released a cyber threat intelligence report providing actionable information on how malicious threat actors are targeting unprotected mission-critical SAP applications.Help Net Security
April 8, 2021
OneTrust raises $210M to expand its enterprise compliance solutions Full Text
Abstract
OneTrust, a privacy, marketing, security, and data governance firm based in Atlanta, Georgia, today announced it has raised $210 million in a series C extension led by SoftBank’s Vision Fund 2.Venture Beat
April 8, 2021
Cofense acquires Cyberfish to eliminate the need for legacy email security solutions Full Text
Abstract
Cofense announced the acquisition of Cyberfish, a provider of next-generation phishing protection powered by Computer Vision and advanced Machine Learning (ML) technology.Help Net Security
April 8, 2021
ACC Launches Data Security Program for Law Firms Full Text
Abstract
Program will enable prospective clients to assess and compare law firms’ data security standardsInfosecurity Magazine
April 2, 2021
Cybersecurity Firm ReliaQuest Announces New Senior Appointments Full Text
Abstract
Kara Wilson and Alex Bender both join the companyInfosecurity Magazine
April 2, 2021
Wipro acquires Ampion to deliver combined portfolio of transformation offerings Full Text
Abstract
Wipro announced that it has signed an agreement to acquire Ampion, an Australia-based provider of cybersecurity, DevOps, and quality engineering services. Ampion was formed through the merger of IT services providers ‘Revolution IT’ and ‘Shelde’.Help Net Security
April 2, 2021
Molson Coors Cyberattack, Storms Could Cost Company $140 Million Full Text
Abstract
Known brewing giant Molson Coors said that a disruptive cyberattack, combined with winter storms in Texas, could cost the company upwards of $140 million in short-term EBITDA.Security Week
March 31, 2021
Critical Infrastructure Protection Firm OPSWAT Secures $125 Million Growth Funding Full Text
Abstract
Critical infrastructure protection firm OPSWAT has secured $125 million growth funding from Brighton Park Capital, to accelerate its global growth, invest in R&D, and pursue strategic acquisitions.Security Week
March 31, 2021
James Reynolds Joins SecureAge Technology to Lead Security Product Strategy Full Text
Abstract
Reynolds brings 30 years of IT experience to the data security firmInfosecurity Magazine
March 30, 2021
Multi-Cloud Data Protection Vendor HYCU Closes $87.5M Funding Round Full Text
Abstract
HYCU, which was founded in April 2018, managed to stay completely private for a very long time before working with Bain Capital Ventures, which is leading the A funding round, said CEO Simon Taylor.CRN
March 29, 2021
ClubCISO Appoints Stephen Khan as its New Chair Full Text
Abstract
Khan replaces Dr Jessica Barker in the roleInfosecurity Magazine
March 26, 2021
FatFace disclosure a case study in ‘bungling the process’ Full Text
Abstract
U.K.-clothing retailer FatFace has egg on its face after a botched disclosure letter customers and security professionals consider too late, too secretive and too hard to confirm.SCMagazine
March 26, 2021
Google Announces the Android Ready SE Alliance Full Text
Abstract
Google announced the formation of the Android Ready SE Alliance. SE vendors are joining hands with Google to create a set of open-source, validated, and ready-to-use SE Applets.Chrome Releases
March 26, 2021
Hornetsecurity Acquires Zerospam Full Text
Abstract
Hornetsecurity Group, a Hanover, Germany-based cloud email security provider, acquired Zerospam, a Montreal, Canada-based email protection company, in a bid to extend its presence in North America.FinSMEs
March 26, 2021
Kroll Acquires Redscan to Expand Cyber-Risk Offering Full Text
Abstract
Senior Redscan execs to stay on as part of the dealInfosecurity Magazine
March 26, 2021
Cybersecurity startup Morphisec reels in $31M funding round Full Text
Abstract
Morphisec Ltd., a cybersecurity startup with offices in the U.S. and Israel, today said that it has nabbed $31 million in Series C funding to support expansion initiatives.Silicon Angle
March 25, 2021
Fleeceware Apps Bank $400M in Revenue Full Text
Abstract
The cache of apps, found in Apple and Google’s official marketplaces is largely targeted towards children, including several “slime simulators.”Threatpost
March 25, 2021
SolarWinds chief details changes in the boardroom, build process in wake of hack Full Text
Abstract
Chief executive Sudhakar Ramakrishna described the work they’re doing as an “experiment” and said he has had conversations with CISA and the Cyberspace Solarium Commission about whether it could serve as a model for other businesses.SCMagazine
March 25, 2021
McAfee Partners with College to Help Address Cyber-Skills Shortage Full Text
Abstract
Collaboration is designed to encourage more young people to pursue careers in cybersecurityInfosecurity Magazine
March 24, 2021
Cybeats Technologies Acquired by Relay Medical Full Text
Abstract
Relay completes acquisition of Toronto-based IoT cybersecurity firmInfosecurity Magazine
March 24, 2021
LogMeIn Appoints Michael Oberlaender as CISO Full Text
Abstract
Oberlaender will be responsible for managing and growing LogMeIn’s security programInfosecurity Magazine
March 24, 2021
Proton Founder Accuses Apple of “Giving in to Tyrants” Full Text
Abstract
Human rights should trump profits, says Andy YenInfosecurity Magazine
March 23, 2021
Orca raises another $210 million after increasing workforce fivefold amid pandemic Full Text
Abstract
CEO and cofounder Avi Shua told SC Media that the company is trying to balance its original, scrappier identity with its newer status as a cybersecurity unicorn.SCMagazine
March 23, 2021
Herjavec to Handle Cybersecurity for Formula 1 Full Text
Abstract
Formula 1 appoints Herjavec Group as official cybersecurity services providerInfosecurity Magazine
March 23, 2021
Facebook says took down 1.3 billion fake accounts in Oct-Dec 2020 Full Text
Abstract
Facebook Inc said on Monday it took down 1.3 billion fake accounts between October and December and that it had over 35,000 people working on tackling misinformation on its platform.The Times Of India
March 23, 2021
Jumio Secures Whopping $150m Investment from Private Equity Firm Full Text
Abstract
Investment represents largest digital identity funding round everInfosecurity Magazine
March 22, 2021
Musk Denies Tesla Security Claims After Chinese Military Ban Full Text
Abstract
Company would be shut down if allegations were true, he saysInfosecurity Magazine
March 22, 2021
Cloud security company Axis raises $50m. Full Text
Abstract
Tel Aviv-based cloud security company Axis Security said Monday it closed a $50 million Series C round, bringing its total raised to date to $100 million. The round was led by Spark Capital.The Jerusalem Post
March 20, 2021
Elon Musk denies cars were used to spy in China: Tesla would be ‘shut down’ Full Text
Abstract
Tesla founder and CEO Elon Musk denied claims from the Chinese government that Tesla vehicles could be tied to espionage efforts in the country, arguing such a move would force the electric car manufacturer to “shut down.”The Hill
March 18, 2021
Acronis Acquires South African Partner Full Text
Abstract
Acronis acquires Synapsys in fourth acquisition in the past 18 monthsInfosecurity Magazine
March 18, 2021
Recorded Future Swoops for Gemini Advisory in $52m Deal Full Text
Abstract
Combination will enhance customers’ threat intelligenceInfosecurity Magazine
March 17, 2021
Infrastructure Security Specialist Optilan Appoints Adrian Bannister as CFO Full Text
Abstract
Bannister brings over 25 years of financial experience to the firmInfosecurity Magazine
March 17, 2021
Acronis acquires Synapsys to extend cyber protection solutions to organizations across Africa Full Text
Abstract
Acronis announced to acquire Synapsys, its partner located in Cape Town, South Africa that specializes in distributing Acronis Cyber Protection Solutions through the service provider channel.Help Net Security
March 17, 2021
Cybersecurity insurance company Coalition raises $175M to secure the modern enterprise Full Text
Abstract
Coalition, an enterprise-grade cybersecurity platform that specializes in providing insurance, has raised $175 million in its Series D round of funding led by Index Ventures.Venture Beat
March 16, 2021
‘Cyber fusion’ startup Cyware secures $30M in fresh funding Full Text
Abstract
Announced today, the $30 million Series B funding round was led by Advent International and Ten Eleven Ventures and also included the participation of several returning backers.Silicon Angle
March 16, 2021
Cyware Closes $30M Series B Just 7 Months After A Round Full Text
Abstract
“Even though 2020 was a tough year for many companies, we were able to realize 120 percent (ARR) growth,” CEO Anuj Goel said. “We have now seen three years of triple-digit growth.”CrunchBase News
March 16, 2021
Cyware nabs $30M to help organizations detect and stop advanced cyber attacks – TechCrunch Full Text
Abstract
The funding is being co-led by Advent International and Ten Eleven Ventures, with participation from Prelude Fund, Emerald Development Managers, Great Road Holdings, and cloud security firm ZscalerTechCrunch
March 16, 2021
Lookout Acquires SASE Cloud Provider CipherCloud Full Text
Abstract
Lookout Inc., a provider of mobile security solutions, has acquired cloud security firm CipherCloud. CipherCloud has solutions that span several categories of secure access service edge (SASE).Dark Reading
March 15, 2021
IronNet to go public in $1.2 billion deal, as CEO Alexander warns of start of ‘digital arms race’ Full Text
Abstract
IronNet Cybersecurity announced a $1.2 billion agreement Monday with special purpose acquisition company LGL Systems Acquisition Corp. to go public. The combined company will move forward as IronNet Cybersecurity Inc., and be listed on the New York Stock Exchange under the ticker symbol IRNT. Company officials expect the company to go public by the third…SCMagazine
March 15, 2021
Lookout Enters SASE Market Through Acquisition of CipherCloud Full Text
Abstract
Lookout acquires CipherCloud with the intention of creating an integrated endpoint to cloud security solutionInfosecurity Magazine
March 15, 2021
Uber and Lyft Pool Driver Info to Boost Passenger Safety Full Text
Abstract
Program will keep deactivated drivers off the roadsInfosecurity Magazine
March 13, 2021
Microsoft Edge to use a four-week release cycle to sync with Chrome Full Text
Abstract
Major 'Stable' versions of Microsoft Edge will now be released every four weeks to synchronize with the new four-week release cycle announced by Google Chrome.BleepingComputer
March 12, 2021
XDR Firm Cynet Raises $40 Million Series C Funding Full Text
Abstract
Venture funding continues to flow this week, with extended detection and response (XDR) firm Cynet adding $40 million to its coffers via a Series C funding round led by Greenfield Partners.Security Week
March 12, 2021
SailPoint Appoints Heather Gantt-Evans as New CISO Full Text
Abstract
Gantt-Evans joins SailPoint from retail giant The Home DepotInfosecurity Magazine
March 11, 2021
Sumo Logic Agrees Deal to Acquire DFLabs Full Text
Abstract
Deal will enable Sumo Logic to incorporate DFLabs’ SOAR software into its portfolioInfosecurity Magazine
March 11, 2021
Ajay Sabhlok Appointed Rubrik’s First Joint CIO and CDO Full Text
Abstract
Sabhlok will oversee IT, data and analytics strategies at cloud data management firmInfosecurity Magazine
March 11, 2021
Intel partners with DARPA to perform in its DPRIVE program Full Text
Abstract
Intel announced that it has signed an agreement with Defense Advanced Research Projects Agency (DARPA) to perform in its Data Protection in Virtual Environments (DPRIVE) program.Help Net Security
March 11, 2021
Cyber Insurance Provider Corvus Raises $100 Million Full Text
Abstract
Cyber insurance provider Corvus on Wednesday announced that it has raised $100 million in a Series C funding round. To date, the company has raised a total of $147 million.Security Week
March 11, 2021
Cybersecurity Firm Snyk Reaches $4.7 Billion Valuation in Round Full Text
Abstract
The transaction included both primary and secondary offerings, with the company getting $175 million in new capital. That brings the total raised by Snyk, which was founded in 2015, to $470 million.Yahoo! Finance
March 11, 2021
Cloud Security Firm Aqua Security Raises $135M To Add Clients Full Text
Abstract
The Ramat Gan, Israel-based cloud security startup said it needs to keep improving its product, acquiring additional customers, and educating the market about cloud-native security.CRN
March 10, 2021
Cloud cybersecurity startup Lumu raises a $7.5 million Series A Full Text
Abstract
Miami-based cybersecurity startup Lumu today announced the closing of its $7.5 million Series A. The round was co-led by SoftBank Group Corp.’s SB Opportunity Fund and Panoramic Ventures.TechCrunch
March 10, 2021
PayPal to acquire cryptocurrency security startup Curv Full Text
Abstract
PayPal has announced that it plans to acquire Curv, a cryptocurrency startup based in Tel Aviv, Israel. Curv is a cryptocurrency security company that helps you store your crypto assets securely.TechCrunch
March 10, 2021
McAfee sells enterprise biz to Symphony Technology Group for $4B Full Text
Abstract
Cybersecurity firm McAfee announced that it will be selling its enterprise business to a consortium led by the private equity firm Symphony Technology Group for $4 billion.TechCrunch
March 9, 2021
McAfee Sells its Enterprise Business to Symphony Technology Group in $4.0 Billion Deal Full Text
Abstract
McAfee Corp., the device-to-cloud cybersecurity company has disclosed it has entered into a definitive agreement to sell its Enterprise business to a...Cyber Security News
March 9, 2021
Sontiq Acquires Fintech Provider Breach Clarity Full Text
Abstract
As a result of the acquisition, Sontiq’s products – IdentityForce, Cyberscout, and EZShield – all built on its tech-enabled IIS Platform, will have the proprietary capability, BreachIQ.Yahoo! Finance
March 9, 2021
Breach Clarity Acquired by Sontiq Full Text
Abstract
Intelligent identity security company Sontiq acquires fintech provider Breach ClarityInfosecurity Magazine
March 9, 2021
Privacera Raises $50M To Help Companies Control Their Data Full Text
Abstract
Data governance and security provider Privacera closed a $50 million Series B as it looks to build on momentum from last year with concerns about data and privacy only growing.CrunchBase News
March 9, 2021
SolarWinds spurs investment in threat hunting, supplier vetting Full Text
Abstract
Organizations that boosted security budgets in response to the SolarWinds hack invested the most in threat hunting, according to a new survey.SCMagazine
March 9, 2021
Veriff Appoints Duncan Steblyna as New VP of Product Full Text
Abstract
Steblyna will lead the product team at identity verification firmInfosecurity Magazine
March 8, 2021
TiG Acquires ThirdSpace Full Text
Abstract
TiG acquires award-winning company specializing in identity and securityInfosecurity Magazine
March 8, 2021
McAfee Agrees Deal to Sell Enterprise Business for $4bn Full Text
Abstract
The transaction is expected to be completed by the end of 2021Infosecurity Magazine
March 5, 2021
Public companies may not grasp responsibility to investors in sharing info on cyber risk Full Text
Abstract
Public companies “should be explaining to investors the specific risks they face from cybersecurity threats, not vague jargon.SCMagazine
March 4, 2021
Okta acquires cloud identity startup Auth0 for $6.5B Full Text
Abstract
With Auth0, Okta gets a cloud identity company that helps developers embed identity management into applications, adding an entirely new dimension to its identity platform.TechCrunch
March 3, 2021
US Cybersecurity Firm Opens New Belfast Office Full Text
Abstract
Launch of new Rapid7 office in Ireland to create 150 new jobsInfosecurity Magazine
March 3, 2021
TPG buys Thycotic and merges it with Centrify to create access management giant Full Text
Abstract
“The combination of Thycotic and Centrify creates a leader in one of the most important and strategic sub-sectors of security software,” said Tim Millikin, a partner at TPG Capital.The Register
March 3, 2021
BlueVoyant Appoints James M. Aquilina as Advisor Full Text
Abstract
Aquilina joins as member of BlueVoyant's advisory board and advisor to the CEOInfosecurity Magazine
March 2, 2021
NightDragon’s Dave DeWalt: ‘This is the highest threat environment we’ve ever had, bar none’ Full Text
Abstract
SC Media sat down (virtually) with former FireEye and McAfee CEO Dave DeWalt to learn more about his special purpose acquisition company, NightDragon, and the 11 sectors they’re targeting for investment.SCMagazine
March 02, 2021
SolarWinds reports $3.5 million in expenses from supply-chain attack Full Text
Abstract
SolarWinds has reported expenses of $3.5 million from last year's supply-chain attack, including costs related to incident investigation and remediation.BleepingComputer
March 1, 2021
Axonius looks toward global expansion with $100 million in Series D funding Full Text
Abstract
This later infusion of cash comes after Axonius doubled its staff during the pandemic and achieved triple-digit annual revenue growth in 2020.SCMagazine
March 1, 2021
Cybersecurity firm Axonius raises $100 million at $1.2 billion valuation Full Text
Abstract
Cybersecurity startup Axonius has raised $100 million in a private funding round led by New York-based growth equity firm Stripes at a valuation of $1.2 billion, the company said on Sunday.Reuters
March 1, 2021
Armorblox has raised $30 million to protect against phishing attacks with AI Full Text
Abstract
Armorblox, a cybersecurity startup using natural language understanding to protect enterprise communications, today announced that it raised $30 million in series B venture capital funding.Venture Beat
February 26, 2021
Atos Acquires Two Cybersecurity Companies Full Text
Abstract
Global cybersecurity company completes acquisitions of In Fidem and MotivInfosecurity Magazine
February 26, 2021
Learning Tree International Named First (ISC)² Global Premier Partner Full Text
Abstract
Companies will collaborate to help close the cyber-skills gap through cybersecurity trainingInfosecurity Magazine
February 26, 2021
David Birch Appointed Honorary President of EEMA Full Text
Abstract
Birch joins Kim Cameron as honorary president of the EEMAInfosecurity Magazine
February 26, 2021
Google funds Linux kernel developers to work exclusively on security Full Text
Abstract
Linux is more secure than most OSes, but that doesn't mean it can take security for granted. So, Google and the Linux Foundation are funding a pair of top Linux kernel developers to focus on security.ZDNet
February 25, 2021
Huawei backs supply chain security standards in wake of SolarWinds breach Full Text
Abstract
Chinese telecommunications giant Huawei is backing the idea of tough global cybersecurity standards of critical supply chains, in particular following a recently uncovered major breach of many U.S. federal agencies.The Hill
February 25, 2021
Startup that maps adversaries’ IT infrastructure lands $16 million in funding Full Text
Abstract
HYAS offers threat intelligence services, but the company’s calling card revolves around two tools, called Insight and Protect, that pull around 3 billion data points about adversary infrastructure every day from various sources on the internet and third-party data brokers.SCMagazine
February 25, 2021
Startup that maps adversaries’ IT infrastructure lands $16 million in funding Full Text
Abstract
HYAS offers threat intelligence services, but the company’s calling card revolves around two tools, called Insight and Protect, that pull around 3 billion data points about adversary infrastructure every day from various sources on the internet and third-party data brokers.SCMagazine
February 25, 2021
GitHub Hires Mike Hanley as Chief Security Officer Full Text
Abstract
Hanley joins GitHub from Cisco, where he served as Chief Information Security Officer (CISO) for less than a year. He arrived at Cisco via its $2.3 billion acquisition of Duo Security in 2018.Security Week
February 25, 2021
PerimeterX Banks $57 Million for Bot Protection Expansion Full Text
Abstract
Looking to take advantage of a growing global market for its bot protection technologies, PerimeterX has banked a new $57 million round of venture capital funding led by AllianceBernstein.Security Week
February 24, 2021
Google funds Linux maintainers to boost Linux kernel security Full Text
Abstract
Together with the Linux Foundation, Google announced today that they would fund two Linux kernel developers' efforts as full-time maintainers exclusively focused on improving Linux security.BleepingComputer
February 24, 2021
Google funds two Linux Foundation security roles Full Text
Abstract
The effort support Google’s strategy “to help support the critical open source projects that we’re relying on,” Google software engineer Dan Lorenc told SC Media.SCMagazine
February 24, 2021
IT Security Firm Kaseya Acquires SOC Platform RocketCyber Full Text
Abstract
Kaseya strengthens its security offering with RocketCyber dealInfosecurity Magazine
February 24, 2021
Data protection companies Arcserve and StorageCraft to merge Full Text
Abstract
The move will allow the companies to combine their intellectual property, pool research and development budgets as executives look to expand their respective market footprints.SCMagazine
February 24, 2021
Bill Bozeman Appointed to Netwatch Group’s Executive Board Full Text
Abstract
Bozeman is leaving his role as CEO at PSA Security NetworkInfosecurity Magazine
February 24, 2021
Flash version distributed in China after EOL is installing adware Full Text
Abstract
The Chinese version of Flash Player is available only via flash.cn, a website managed by a company named Zhong Cheng Network, the only entity authorized by Adobe to distribute Flash inside China.ZDNet
February 23, 2021
Aston Martin Partners with SentinelOne Full Text
Abstract
SentinelOne named official cybersecurity partner of Aston Martin Cognizant F1 TeamInfosecurity Magazine
February 23, 2021
Kaseya acquires RocketCyber to bring SOC solutions to more Full Text
Abstract
Kaseya has acquired RocketCyber with the intention of further developing its complete security suite. RocketCyber will continue to operate as an independent business within Kaseya, led by Banzhof.Security Brief
February 22, 2021
Proofpoint To Buy Data Protection MSP InteliSecure For $62.5M Full Text
Abstract
The email security vendor said the acquisition of InteliSecure will simplify data protection for customers by streamlining policy creation and providing unified event visibility across tools.CRN
February 22, 2021
Kaspersky Appoints Christopher Hurst GM of UK and Ireland Full Text
Abstract
Industry veteran to help drive continued enterprise and channel growthInfosecurity Magazine
February 22, 2021
1Kosmos Emerges from Stealth Mode With $15 Million in Funding Full Text
Abstract
Cybersecurity startup 1Kosmos emerged from stealth mode this week armed with $15 million in Series A funding from ForgePoint Capital to gain traction with its digital identity and authentic solutions.Security Week
February 20, 2021
Microsoft Edge is crowdsourcing whether to show notification prompts Full Text
Abstract
Microsoft is now using crowdsourcing to determine whether to show a site's website subscription dialog prompt in the Microsoft Edge web browser.BleepingComputer
February 19, 2021
CrowdStrike $400M buy addresses ‘drastically different attack surface’ Full Text
Abstract
The purchase and integration of log management startup Humio is designed to account for the changes that have taken place in IT management over the last decade, particularly the reliance on multiple vendors and cloud services.SCMagazine
February 19, 2021
CrowdStrike Snaps Up London Start-Up Humio Full Text
Abstract
US security giant pays $400m for log management firmInfosecurity Magazine
February 19, 2021
Capital Group Appoints Marta Zarraga as Global Chief Information Officer Full Text
Abstract
Zarraga will oversee the org’s technology and cybersecurityInfosecurity Magazine
February 18, 2021
Apple Outlines 2021 Security, Privacy Roadmap Full Text
Abstract
Latest Apple Platform Security update folds iOS, macOS and hardware into security 2021 roadmap.Threatpost
February 18, 2021
FDM Group Makes Pledge to Hire 2000+ New Global IT Trainees in 2021 Full Text
Abstract
Hiring goal announced amid surge in demand for IT specialistsInfosecurity Magazine
February 18, 2021
CrowdStrike To Acquire Humio For About $400M Full Text
Abstract
CrowdStrike, a provider of cloud-delivered endpoint and cloud workload protections, has agreed to acquire Humio, a provider of high-performance cloud log management and observability technology.Nasdaq
February 18, 2021
AdaCore acquires Componolit to expand its market share in Germany Full Text
Abstract
The acquisition of Componolit will provide AdaCore with a further foothold to expand its growing market share in Germany where the requirement for high-assurance software is increasing rapidly.Help Net Security
February 18, 2021
Security Operations Firm Red Canary Raises $81M To Grow R&D Full Text
Abstract
The Denver-based security operations vendor said the funding will support continued investment in both product and team expansion as Red Canary works to fulfill rapidly growing customer demand.CRN
February 17, 2021
Applied Insight Acquires Maryland Cyber Firm Full Text
Abstract
Bridges Inc. becomes Applied Insight LLC’s second acquisition in just over a yearInfosecurity Magazine
February 17, 2021
Caren Havelock Joins SureCloud as New CMO Full Text
Abstract
Havelock brings 21+ years of IT marketing experience to cybersecurity and risk management firmInfosecurity Magazine
February 17, 2021
Sources: Palo Alto Networks acquired DevOps security startup Bridgecrew for around $200M Full Text
Abstract
The startup, backed by the likes of Battery Ventures, Operator Partners and more than a dozen others, has only raised around $18 million, including a Series A of $14 million last year.TechCrunch
February 16, 2021
Strata Raises $11 Million to Tackle Multi-Cloud Identity Management Full Text
Abstract
The Boulder, Colorado-based Strata Identity today announced that it has raised $11 million through a Series A funding round led by Menlo Ventures with support from ForgePoint Capital.Security Week
February 16, 2021
LastPass Free to force users to choose between mobile, desktop Full Text
Abstract
Starting next month, LastPass will no longer allow a free account to be used on multiple types of devices (computers and mobile) at the same time.BleepingComputer
February 16, 2021
Cybersecurity spending for critical infrastructure to reach $105.99 billion in 2021 Full Text
Abstract
According to a report by ABI Research, cybersecurity spending for critical infrastructure (CI) will increase by $9 billion over the next year to reach $105.99 billion in 2021.Help Net Security
February 15, 2021
Hacked Finnish psychotherapy clinic files for bankruptcy Full Text
Abstract
After carefully assessing the situation of Vastaamo, liquidator Lassi Nyyssönen from the law firm Fenno made a decision that it is not possible to conduct liquidation proceedings.Hackread
February 15, 2021
Scalarr raises $7.5M to fight mobile ad fraud Full Text
Abstract
The Series A funding round of Scalarr was led by the European Bank of Reconstruction and Development, with participation from TMT Investments, OTB Ventures, and Speedinvest.TechCrunch
February 12, 2021
Accellion to retire product at the heart of recent hacks Full Text
Abstract
Since December, FTA-linked hacks have been reported by the Reserve Bank of New Zealand, Australian Securities and Investments Commission (ASIC), law firm Allens, the University of Colorado, and more.ZDNet
February 12, 2021
Datadog bolsters app security and observability data with Sqreen and Timber acquisitions Full Text
Abstract
Datadog, a security-focused cloud monitoring platform, announced to acquire Sqreen, a cybersecurity startup that helps developers monitor and protect their web apps from vulnerabilities and attacks.Venture Beat
February 12, 2021
WireWheel Raises $20M in Series B Funding Full Text
Abstract
The round was led by ForgePoint Capital with participation from existing investors New Enterprise Associates, Revolution’s Rise of the Rest Fund, PSP Growth, Grotech, and Sands Capital Ventures.FinSMEs
February 12, 2021 <br {:=”” .fs-4=”” .fw-700=”” .lh-0=”” }=”” <p=”” style=”font-weight:500; margin:0px” markdown=”1”> Landis+Gyr improves cybersecurity of smart meters with German acquisition Full Text
Abstract
Landis+Gyr has signed an agreement to acquire a 100% stake in Germany-based IoT cybersecurity firm Rhebo GmbH as part of efforts to strengthen the cybersecurity of its smart meters.Smart Energy
February 12, 2021
FingerprintJS raises $8 million to expand its enterprise identification API Full Text
Abstract
Chicago-based FingerprintJS, a company focused on browser fingerprinting-as-a-service, today announced the completion of an $8 million series A funding round led by Nexus Venture Partners.Venture Beat
February 11, 2021
Startup Traceable turns to CISO investors for next phase of growth Full Text
Abstract
The new partnership with Silicon Valley CISO Investments will include an additional $250,000, but perhaps more importantly it will include support and guidance from dozens of practicing CISOs around operations, product road maps, pricing and marketing initiatives as the startup looks to scale its business.SCMagazine
February 11, 2021
Apax to Acquire Herjavec Group Full Text
Abstract
Apax Partners signs agreement to acquire majority stake in Herjavec GroupInfosecurity Magazine
February 11, 2021
Investments in Israel’s Cybersecurity Sector Grow 70% Full Text
Abstract
The Israel National Cyber Directorate reports that pre-IPO investments in cybersecurity firms based in the country totaled $2.9 billion in 2020, up 70% from the previous year.Bank Info Security
February 11, 2021
Tenable acquires Alsid to provide users with a more complete approach to cyber preparedness Full Text
Abstract
Alsid for Active Directory is a Software as a Service (SaaS) solution with an on-premises deployment option that monitors the security of Active Directory (AD) in real-time.Help Net Security
February 11, 2021
Israeli startup CYE raises $100M to help companies shore up their cyber-defenses Full Text
Abstract
Israel-based cybersecurity startup CYE has raised $100 million in new funding round, led by investment firm EQT and with participation from 83North, to grow its presence in the U.S. and Europe.TechCrunch
February 11, 2021
AUTOCRYPT raises $13M to enhance V2X security technology Full Text
Abstract
AUTOCRYPT raised nearly $13 million in a Series A funding round involving major Korean investors KB Investment, Pathfinder H, Ulmus Investment, Korea Asset, Hyundai Venture Investment Corp., and IBK.Help Net Security
February 11, 2021
Cloud Security Firm iboss Appoints New Senior Leaders Full Text
Abstract
Cloud security firm looking to continue its rapid growthInfosecurity Magazine
February 11, 2021
Investor data breach ‘fatigue’ reduces Wall Street punishment for cybersecurity failures Full Text
Abstract
In today's marketplace, technology and financial services companies suffered the most after a data breach, whereas e-commerce and social media firms are "the least affected," according to Comparitech.ZDNet
February 10, 2021
Tenable Announces Intent to Acquire Alsid Full Text
Abstract
Tenable enters into $98m definitive agreement to acquire Activity Directory security startupInfosecurity Magazine
February 10, 2021
Identity Verification Firm Veriff Appoints Amish Mody as New CFO Full Text
Abstract
Moday joins Veriff from FinTech MoneseInfosecurity Magazine
February 9, 2021
SentinelOne forks over $155 million for log management company Full Text
Abstract
Executives are keen to incorporate Scalyr’s cloud-based data and event ingestion tool into their extended detection and response platform.SCMagazine
February 9, 2021
IoT Security Startup Armis Doubles Valuation To $2B With $125M Round Full Text
Abstract
The Palo Alto, California-based IoT security company announced Tuesday that it has raised a $125 million funding round from Brookfield Technology Partners and other investors.CRN
February 9, 2021
SentinelOne to acquire high-speed logging startup Scalyr for $155M Full Text
Abstract
SentinelOne, a security startup that helps customers make sense of security data using AI and machine learning, is acquiring Scalyr, the high-speed logging startup for $155 million in stock and cash.TechCrunch
February 9, 2021
Tanium Adds Matt Thompson to Board of Directors Full Text
Abstract
Thompson becomes independent director of endpoint management and security providerInfosecurity Magazine
February 8, 2021
Guardforce AI Announces Acquisition of Handshake Full Text
Abstract
Guardforce AI, an integrated security solutions provider in Asia, acquired a majority stake in Handshake Networking Ltd, a Hong Kong-based company specializing in penetration testing.Yahoo! Finance
February 5, 2021
Google Paid Out $6.7 Million in Bug Bounty Rewards in 2020 Full Text
Abstract
Google this week said it paid out more than $6.7 million in rewards as part of its bug bounty programs in 2020, marking a slight increase from the $6.5 million paid out in 2019.Security Week
February 5, 2021
Instagram Bans Hundreds of Accounts With Stolen User Names Full Text
Abstract
Instagram is coordinating with other social media platforms, including Twitter and TikTok, to ban users who have been involved in stealing hundreds of single-word user names.New York Times
February 4, 2021
IBM Announces Cybersecurity Grants for US Schools Full Text
Abstract
Public schools in US to receive $3m in cybersecurity grants from IBM to protect against threatsInfosecurity Magazine
February 04, 2021
IBM rolls out $3M grant program for schools to defend against cyberattacks Full Text
Abstract
IBM on Thursday announced a $3 million grant program that is expected to go toward protecting K-12 schools against ransomware and other cyberattacks, which have increased significantly as classes moved to online instruction during the COVID-19 pandemic.The Hill
February 3, 2021
HelpSystems Expands Cybersecurity Portfolio Through Latest Acquisition Full Text
Abstract
HelpSystems acquires cloud security firm Digital DefenseInfosecurity Magazine
February 1, 2021
Rapid7 acquires Kubernetes security startup Alcide for $50M Full Text
Abstract
Boston-based security operations company Rapid7 has been making moves into the cloud recently, and this morning it announced that it has acquired Kubernetes security startup Alcide for $50 million.TechCrunch
February 1, 2021
Akamai Buys IoT Security Vendor Inverse To Better Spot Devices Full Text
Abstract
Akamai has purchased Inverse to better identify IoT and mobile devices such as internet-enabled HVAC, lighting systems, medical equipment, robotics and printers in enterprise environments.CRN
February 1, 2021
Rapid7 Expands Cloud Security Portfolio with Acquisition of Alcide Full Text
Abstract
Rapid7 announces second acquisition in a yearInfosecurity Magazine
February 1, 2021
OwnBackup raises $167.5M to support investments in global expansion and extend platform Full Text
Abstract
OwnBackup announced a Series D investment of $167.5 million co-led by Insight Partners, Salesforce Ventures, and Sapphire Ventures, with participation from existing investors.Help Net Security
January 29, 2021
Texas Tech Company Scoops Fourth Equality Title Full Text
Abstract
Rackspace Technology named best place to work for LGBTQ equality four years runningInfosecurity Magazine
January 28, 2021
Microsoft: 8 trillion daily signals power our cybersecurity services Full Text
Abstract
Microsoft's security services grew by $10 billion in 2020, as more companies began utilizing their cloud-based security services.BleepingComputer
January 28, 2021
‘Don’t take Tom Bossert’s word on Trinity Cyber’: startup snags big-name board additions Full Text
Abstract
The analyst from FireEye that discovered the SolarWinds attack and the co-founder of Tenable will join the advisory board of Trinity Cyber – contributing expertise to the company that counts former homeland security adviser Tom Bossert among its top executives.SCMagazine
January 27, 2021
Pwn2Own 2021, more than $1,500,000 in cash and prizes for contestants Full Text
Abstract
Trend Micro’s Zero Day Initiative announced the Pwn2Own Vancouver 2021 hacking competition that will also cover Zoom, MS Teams Exploits. Trend Micro’s Zero Day Initiative (ZDI) on this week announced the forthcoming Pwn2Own Vancouver 2021 hacking...Security Affairs
January 27, 2021
Ivanti acquires Cherwell to expand the reach of its Neurons platform Full Text
Abstract
Ivanti is acquiring Cherwell to expand the reach of its Neurons platform, providing end-to-end service and asset management from IT to lines of business and from every endpoint to the IoT edge.Help Net Security
January 26, 2021
Dr Gary McGraw Appointed to IriusRisk Threat Modeling Technical Advisory Board Full Text
Abstract
Dr McGraw to assist in strategic direction and development of AppSec firmInfosecurity Magazine
January 26, 2021
Cybersecurity investments will increase up to 10% in 2021 Full Text
Abstract
A Canalys forecast predicts cybersecurity investments will increase 10% worldwide in the best-case scenario in 2021. The overall cybersecurity market value is expected to reach US$60.2 billion in 2021.Help Net Security
January 25, 2021
Deloitte Acquires Root9B Full Text
Abstract
Assets of cyber-threat-hunting service provider Root9B acquired by Deloitte & ToucheInfosecurity Magazine
January 22, 2021
2021 to bring ‘phase two’ of remote access investment for enterprises Full Text
Abstract
As work from home extends into 2021, remote access performance and security will continue to dominate enterprise budgets and priorities. Accommodating remote users “long-term will lead to phase two of remote access investment,” according to a report from Cato Networks that surveyed 2,376 IT leaders about budgets, purchase plans, future of remote work and secure…SCMagazine
January 22, 2021
Israeli cybersecurity firms raised record $2.9 billion in 2020 amid pandemic Full Text
Abstract
Israel’s cybersecurity industry accounted for 31% of global investments in the sector in 2020, putting the nation in second place after the US, the National Cyber Directorate said.The Times of Israel
January 21, 2021
Valtix raises $12.5 million as cloud native security becomes more urgent Full Text
Abstract
The company announced it has raised $12.5 million in venture capital from strategic partners Cisco Investments and The Syndicate Group, as well as venture firm Northgate Capital.Venture Beat
January 21, 2021
Barmak Meftah Joins Board of Directors at Nozomi Networks Full Text
Abstract
Meftah brings 25 years of experience to IoT and OT security firmInfosecurity Magazine
January 20, 2021
Livecoin halted operations after the December attack Full Text
Abstract
The Russian cryptocurrency exchange Livecoin has announced it is terminating its operation following the December cyberattack. The Russian cryptocurrency exchange was hacked on Christmas Eve, it published a message on its website warning customers...Security Affairs
January 19, 2021
Google Cloud: We do use some SolarWinds, but we weren’t affected by mega hack Full Text
Abstract
Google Cloud's first chief information security office (CISO) has revealed that Google's cloud venture does use software from vendor, SolarWinds, but says its use was "limited and contained".ZDNet
January 18, 2021
EEMA Appoints Digital Identity Expert to Board of Management Full Text
Abstract
Steve Pannifer joins EEMA boardInfosecurity Magazine
January 18, 2021
Entrust acquires HyTrust to offer identity, encryption and security policy control for cloud environments Full Text
Abstract
Based in Mountain View, California, and founded in 2007, HyTrust's solutions automate security controls for software-defined computing, networking, and storage workloads.Help Net Security
January 18, 2021
Thales and TT Electronics Partner to Enable OT Cybersecurity Initiatives and Research Full Text
Abstract
Collaboration seeks to accelerate digital risk management innovationInfosecurity Magazine
January 18, 2021
Quick Heal to invest more in Israeli startup L7 Defense Full Text
Abstract
Homegrown IT security company Quick Heal Technologies on Thursday said it has signed a definitive agreement to invest $2 million in L7 Defense, an Israeli API security startup.VCCircle
January 18, 2021
Data Security Startup Qohash Raises $6 Million Full Text
Abstract
Canadian data security startup Qohash this week announced it raised CAD 8 million (approximately USD $6.3 million) in Series A funding. The financing was led by FINTOP Capital.Security Week
January 18, 2021
Veritas Technologies acquires HubStor to protect cloud data Full Text
Abstract
Veritas plans to offer the HubStor service alongside an existing portfolio of data protection tools that are already employed widely by enterprise IT organizations, Veritas VP Simon Jelley added.Venture Beat
January 15, 2021
Women in Cybersecurity Mid-Atlantic Partners with CMMC COE Full Text
Abstract
Memorandum of Understanding reached between WiCyS Mid-Atlantic and CMMC COEInfosecurity Magazine
January 15, 2021
Seed rounds for cybersecurity rose during pandemic as enterprises search for new defenses Full Text
Abstract
According to a new report from VC firm DataTribe, the trend reflects the way the cybersecurity industry is resetting after a wave of venture capital began dropping off about two years ago.Venture Beat
January 14, 2021
With insured losses estimated at $90 billion, did cyber insurance firms dodge financial calamity? Full Text
Abstract
The number of SolarWinds victims will likely grow in the upcoming months, but direct insured costs should remain close to the current estimate since many of the organizations hit – particularly federal agencies – do not carry insurance against cyber risks.SCMagazine
January 14, 2021
Early-stage cybersecurity investment flowing, despite pandemic Full Text
Abstract
While most industries saw a significant dip in seed and Series A investments last year, cybersecurity investment remained resilient.SCMagazine
January 14, 2021
NTT DATA and Conferma Pay Partner to Deliver Secure, Virtual Payment Comms to Hotels Full Text
Abstract
Move seeks to improve payment security, safety and speedInfosecurity Magazine
January 14, 2021
Ring Adds End-to-End Encryption to Quell Security Uproar Full Text
Abstract
The optional feature was released free to users in a technical preview this week, adding a new layer of security to service, which has been plagued by privacy concerns.Threatpost
January 14, 2021
Ring Rolls-Out End-to-End Encryption to Bolster Privacy Full Text
Abstract
Video streams on some models now safe from snoopingInfosecurity Magazine
January 14, 2021
Iranian venture firm investing in cyber tech is subject of US sanctions Full Text
Abstract
Treasury’s Office of Foreign Assets Control identified the firm, Barkat Ventures, as an arm of an organization that the supreme leader of Iran controls called EIKO, short for Execution of Imam Khomeini’s Order.Cyberscoop
January 13, 2021
JumpCloud land $100 million in funding, as secure remote access market continues surge Full Text
Abstract
Over the past two decades, businesses have piled a patchwork of different products and services – multi-factor authentication, single sign-on, identity governance and administration policies and others – on top of their directory. That introduces risk and complexity, says Jumpcloud CEO Rajat Bhargava.SCMagazine
January 13, 2021
Hornetsecurity acquires Altaro to expand international locations and provide new products Full Text
Abstract
This new acquisition builds on it’s acquisition of Spamina, the Spanish market leader for cloud email security solutions, in January 2019, and EveryCloud, its British market partner, in early 2020.Help Net Security
January 13, 2021
Adobe Releases First Security Updates of 2021 as It Blocks Flash Content Full Text
Abstract
Adobe has patched a total of eight vulnerabilities across seven of its products, including Photoshop, Illustrator, Animate, Campaign Classic, InCopy, Captivate and Bridge.Security Week
January 12, 2021
Ubiquiti urges password reset, 2fa after breach Full Text
Abstract
IoT networking device vendor Ubiquiti experienced a breach of a web portal it uses to manage remote devices and as a support portal. The web servers stored information pertaining to user profiles for the account.ui.com portal that Ubiquiti makes available to customers who bought one of its router or webcam products, a ZDNet report said.…SCMagazine
January 12, 2021
Ellicott City’s Huntress makes first cyber tech acquisition Full Text
Abstract
Ellicott City-based cybersecurity firm Huntress has made its first acquisition. The firm has acquired a technology and intellectual property portfolio from San Antonio-based startup Level Effect.Baltimore Business Journal
January 12, 2021
Booz Allen Invests In Tracepoint Full Text
Abstract
The company, co-founded by Baton Rouge-based Plexos Group and several industry experts, specializes in supporting cyber insurance carriers, lawyers, brokers, and their clients through crises.CityBizList
January 12, 2021
Atos to Acquire in Fidem to Reinforce Its Cybersecurity Position in the North American Market Full Text
Abstract
Founded in 2005 and headquartered in Montréal, In Fidem has expertise in cloud security, digital identity, risk management, security operations, digital forensics, and cyber breach response.AIThority
January 12, 2021
Microsoft Sysmon adds support for detecting Process Herpaderping attacks Full Text
Abstract
Microsoft has released a new version of the Sysinternals package and updated the Sysmon utility with the ability to detect Process Herpaderping and Process Hollowing attacks.ZDNet
January 12, 2021
SolarWinds details stealthy code used to launch hacking campaign Full Text
Abstract
The code was designed to inject another piece of custom malicious software into Orion, the SolarWinds software used by numerous Fortune 500 companies and federal agencies.Cyberscoop
January 11, 2021
Microsoft releases Linux endpoint detection and response features Full Text
Abstract
Microsoft announced today that Microsoft Defender for Endpoint's detection and response (EDR) capabilities are now generally available on Linux servers.BleepingComputer
January 11, 2021
Francisco Partners Completes Forcepoint Acquisition Full Text
Abstract
Global investment firm acquires cybersecurity vendor from Raytheon TechnologiesInfosecurity Magazine
January 11, 2021
Accenture Acquires Real Protect, Brazil-Based Information Security Company Full Text
Abstract
Accenture has acquired Real Protect, a Brazil-based provider of managed security and cyber defense services (MSS), extending its cybersecurity presence and capabilities in Latin America.Yahoo! Finance
January 11, 2021
Bridewell Appoints Martin Riley as Director of Managed Security Services Full Text
Abstract
Riley will be responsible for growing Bridewell’s managed security service portfolioInfosecurity Magazine
January 11, 2021
Heather Hinton joins RingCentral as CISO Full Text
Abstract
Hinton previously spent 13 years in various leadership positions at IBM, most recently as vice president and IBM distinguished engineer, and CISO for it’s Cloud and Cognitive Software business unit.Help Net Security
January 9, 2021
Twitter has permanently suspended the account of President Donald Trump Full Text
Abstract
Twitter has permanently suspended the account of President Donald Trump on Friday, due to the risk of further incitement of violence. Twitter has permanently suspended President Donald Trump's account fearing his tweets may trigger a new wave of violence. In...Security Affairs
January 8, 2021
Legal recourse? Nissan balances competitive and security fallout from source code leak Full Text
Abstract
News that source code of Nissan North America tools leaked online because of a misconfigured Git server spurs questions not only about potential cyberattacks by bad actors, but also whether competitors could use the sensitive data against the automobile giant.SCMagazine
January 8, 2021
Red Hat to Acquire StackRox Full Text
Abstract
Kubernetes-native security startup StackRox to be acquired by open source solution provider Red HatInfosecurity Magazine
January 8, 2021
Ping Identity Appoints Acclaimed CIO Paul Martin to Board of Directors Full Text
Abstract
Martin will help security firm enhance leadership strategy and IT innovationInfosecurity Magazine
January 8, 2021
RedHat is acquiring container security company StackRox Full Text
Abstract
The acquisition fits nicely with RedHat OpenShift, its container platform, but the company says it will continue to support StackRox usage on other platforms including AWS, Azure, and GCP.TechCrunch
January 8, 2021
archTIS acquires Nucleus Cyber to expand global footprint Full Text
Abstract
According to the terms of the agreement, archTIS will acquire a 100 percent stake in Nucleus Cyber in an all-stock deal for a total consideration of around US$7.1 million.Help Net Security
January 8, 2021
CEO Refutes Reports of Involvement in SolarWinds Campaign Full Text
Abstract
JetBrains boss Shafirov says no evidence of compromise in TeamCity toolInfosecurity Magazine
January 8, 2021
Owl Cyber Defense Solutions acquires Trident’s Assured Collaboration Systems Full Text
Abstract
Columbia, Maryland-based cybersecurity company Owl Cyber Defense Solutions LLC announced Tuesday it has acquired Fairfax-based Trident’s Assured Collaboration Systems (ACS) product line.Virginia Business
January 7, 2021
Lacework raises $525 million to automate cloud security and compliance Full Text
Abstract
Lacework, which provides automated containerized workload defense, intrusion detection, and compliance solutions, announced its $525 million Series D funding round valuing it at over $1 billion.Venture Beat
January 7, 2021
Dragos Hires Former PepsiCo Deputy CISO Steve Applegate Full Text
Abstract
Dragos has hired Steve Applegate, former VP and Deputy CISO at PepsiCo, as Chief Information Security Officer (CISO). The cybersecurity veteran took to LinkedIn to share the news this week.Security Week
January 7, 2021
Panaseer Appoints Jonathan Gill as New CEO Full Text
Abstract
Gill succeeds Panaseer founder Nik Whitfield in the role, with the latter becoming chairmanInfosecurity Magazine
January 07, 2021
JetBrains denies involvement in the SolarWinds supply-chain hack Full Text
Abstract
JetBrains' CEO, Maxim Shafirov, denied reports from multiple news outlets that the company played a role in the SolarWinds supply chain attack.BleepingComputer
January 7, 2021
Kaspersky and Alias Robotics Partner to Secure Robots in OT Infrastructure Full Text
Abstract
Robots are a key component of Industry 4.0 and represent yet another endpoint in OT settingsInfosecurity Magazine
January 7, 2021
Sysnet raises $65m in debt funding and clinches another acquisition Full Text
Abstract
The latest funding comes in the form of $65m in debt financing from US investment firm Keybanc Capital Markets, the Irish Times reports. Sysnet also announced the acquisition of NuArx.Silicon Republic
January 6, 2021
Secure Chorus Transfers Ownership of Encrypted Messaging App Standards to ETSI Full Text
Abstract
Standards provide solutions which offer state-of-the-art end-to-end encryptionInfosecurity Magazine
January 6, 2021
BlueVoyant Enters Strategic Partnership with Third Party Risk Management Consultancy Full Text
Abstract
BlueVoyant will provide its cyber-risk management solutions to DVV Solutions customersInfosecurity Magazine
January 6, 2021
Caveonix raises $7.3M to continue innovation, market expansion and strategic partnership development Full Text
Abstract
Caveonix, which was founded in 2017, announced it has raised $7.3 million in Series A funding. The round was led by First In Capital, as well as other early investors in the company.Help Net Security
January 6, 2021
Italian mobile operator offers to replace SIM cards after massive data breach Full Text
Abstract
Ho Mobile, an Italian mobile operator, owned by Vodafone, has confirmed a massive data breach on Monday and is now taking the rare step of offering to replace the SIM cards of all affected customers.ZDNet
January 5, 2021
iboss Raises $145m in Funding Full Text
Abstract
Cloud security provider iboss raises millions in funding to support “rapid growth”Infosecurity Magazine
January 5, 2021
Ericom Appoints First Ever Chief Strategy Officer Full Text
Abstract
Dr Chase Cunningham is tasked with shaping Ericom’s strategic visionInfosecurity Magazine
January 5, 2021
Thoma Bravo invests in Venafi to deliver machine identity protection to an expanded customer base Full Text
Abstract
Thoma Bravo announced the completion of its strategic growth investment in Venafi. J.P. Morgan Securities served as financial advisor to Venafi and Orrick served as its legal counsel.Help Net Security
January 5, 2021
HelpSystems Acquires FileCatalyst to Boost Data Transfer Portfolio Full Text
Abstract
Deal will add to HelpSystems’ file transfer and process automation offeringsInfosecurity Magazine
January 5, 2021
NYSE U-Turn Means Chinese Telcos Escape Delisting Full Text
Abstract
Executive order had sought to remove them on security groundsInfosecurity Magazine
January 5, 2021
Netwrix and Stealthbits Merge to Tackle Data Security Full Text
Abstract
Security companies Netwrix and Stealthbits today confirmed their merger. The new company will operate under the Netwrix name and sell seven core products focused on information security.Dark Reading
January 4, 2021
Fourth breach at T-Mobile puts focus on security of post mergers Full Text
Abstract
T-Mobile reported a breach that compromised customer data – the company’s fourth in three years – raises questions about whether the mobile carrier’s massive merger with Sprint left the combined company more vulnerable. Indeed, when companies merge, particularly sizable ones, the integration of technology systems and networks can often introduce new security considerations. “The volume…SCMagazine
January 4, 2021 -
Microsoft doesn’t treat its source code like a trade secret. Is that smart? Full Text
Abstract
In the course of investigating the impacts of the SolarWinds breach, Microsoft security specialists discovered “unusual activity” within a number of internal accounts, including one that was used to view the company’s internal source code.SCMagazine
January 04, 2021
Microsoft Defender for Office 365 to allow testing without setup Full Text
Abstract
Microsoft wants to add a new Office 365 feature to allow customers to test Microsoft Defender email protection without actually having to configure the environment and devices for your organization.BleepingComputer
January 4, 2021
Netwrix and Stealthbits Announce Merger Full Text
Abstract
Cybersecurity companies merge “to address growing need for comprehensive data security”Infosecurity Magazine
January 4, 2021
NYSE to Delist Chinese Telcos on National Security Grounds Full Text
Abstract
Presidential executive order warns of “unusual and extraordinary threat”Infosecurity Magazine
December 30, 2020
Cerberus Cyber Sentinel buys Alpine Security Full Text
Abstract
The deal, and implication of more to come, hint at increased hunger for third-party security auditing services in the face of worsening cybercrime, and an increasingly complex regulatory compliance landscape.SCMagazine
December 29, 2020
Zix acquires CloudAlly backup for SaaS data protection Full Text
Abstract
When Zix acquired cloud backup and recovery provider CloudAlly for $30 million, it picked up backup for such popular SaaS apps as Microsoft 365, Google Workspace, Salesforce, Box, and Dropbox.Tech Target
December 26, 2020
White Ops Announces Acquisition by Goldman Sachs Merchant Banking, ClearSky Security, and NightDragon Full Text
Abstract
The Sponsors are acquiring the business from previous investors Paladin Capital Group, Grotech Ventures, and other shareholders, and the acquisition follows Goldman Sachs’ and ClearSky’s initial investment in the Company earlier this year.White Ops
December 24, 2020
White Ops Acquired by Goldman Sachs Full Text
Abstract
Bot mitigation platform acquired by Goldman Sachs, ClearSky Security, and NightDragonInfosecurity Magazine
December 24, 2020
HelpSystems Acquires Data Protection Firm Vera Full Text
Abstract
HelpSystems, a Minneapolis, Minnesota-based software company, announced on Wednesday that it has acquired cloud-based data protection solution provider Vera for an undisclosed amount.Security Week
December 24, 2020
White Ops Announces Its Acquisition Full Text
Abstract
White Ops Announces Its Acquisition A group including Goldman Sachs Merchant Banking Division, ClearSky Security, and NightDragon has purchased the human verification technology company.Dark Reading
December 24, 2020
HelpSystems Acquires Vera to Expand Data Security Offerings Full Text
Abstract
Deal comes amid increased demand for data security solutionsInfosecurity Magazine
December 23, 2020
Can SolarWinds survive? For breached companies it’s a long, painful road to restoring trust Full Text
Abstract
Communicating with the public, working with stakeholders and convincing insurers that root security failures have been addressed are all part of how companies come back from a bad breaches. But it still may not be enough.SCMagazine
December 23, 2020
Semperis Appoints Igor Baikalov as Chief Scientist Full Text
Abstract
Baikalov is tasked with developing the company's identity analytics and machine learning capabilitiesInfosecurity Magazine
December 23, 2020
SolarWinds Claims Execs Unaware of Breach When They Sold Stock Full Text
Abstract
Texas-based SolarWinds told the U.S. Securities and Exchange Commission (SEC) that its executives were not aware that the company had been breached when they decided to sell stock.Security Week
December 23, 2020
Cyber Insurance Market Expected to Surge in 2021 Full Text
Abstract
Orgs increasingly looking to protect themselves from the impact of cyber-attacksInfosecurity Magazine
December 22, 2020
Cybereason Adopts Oracle Cloud Infrastructure to Enhance its Platform Security Full Text
Abstract
The two companies will also jointly market and sell solutionsInfosecurity Magazine
December 21, 2020
BlueHalo Acquires Base2 and Fortego Full Text
Abstract
BlueHalo announces acquisition of Maryland companies Base2 and FortegoInfosecurity Magazine
December 21, 2020
Gallagher Appoints Three New Cybersecurity Specialists Full Text
Abstract
The move is designed to help clients protect themselves against attacksInfosecurity Magazine
December 21, 2020
OneTrust raises $300 million to automate data governance and compliance Full Text
Abstract
This latest cash infusion comes after roughly a year, during which time OneTrust grew its customer base to more than 7,000 organizations across 100 countries, up from 3,000 as of July 2019.Venture Beat
December 19, 2020
VMware Falls on Report Its Software Led to SolarWinds Breach Full Text
Abstract
VMware Inc. fell 5.4% after a cybersecurity expert said a flaw in the company’s products was partly responsible for the SolarWinds breach that is roiling U.S. companies and government agencies.Yahoo! Finance
December 18, 2020
Cloudhouse Technologies Acquires UpGuard Core Full Text
Abstract
Cloudhouse Technologies, a London, UK-based provider of application compatibility packaging solutions, acquired UpGuard Core, from third-party risk and attack surface management platform UpGuard Inc.FinSMEs
December 18, 2020
As Microsoft confirms breach from SolarWinds hack, President Brad Smith argues for federal policy changes Full Text
Abstract
Smith suggested a three-point plan he believed would prevent further supply chain attacks: Increasing intelligence sharing between government and the private sector, developing stronger international norms for acceptable behavior in cyberespionage, and finding harsher ways to hold governments accountable.SCMagazine
December 18, 2020
Corsair Capital Acquires Majority Stake in IDIQ Full Text
Abstract
IDIQ provides identity theft and dark web monitoring, identity restoration, and related family protection services in the rapidly evolving $20 billion consumer identity monitoring market.Yahoo! Finance
December 18, 2020
Cybersecurity startup PlainID secures $11 million in capital Full Text
Abstract
PlainID raised $11 Million in a Series A financing. Israeli venture capital firm Viola Ventures led the effort, with participation from Capri Ventures, Springtide Ventures and iAngels.New York Business Journal
December 18, 2020
As Microsoft confirms breach, President Brad Smith argues for federal policy changes Full Text
Abstract
Smith suggested a three-point plan he believed would prevent further supply chain attacks: Increasing intelligence sharing between government and the private sector, developing stronger international norms for acceptable behavior in cyberespionage, and finding harsher ways to hold governments accountable.SCMagazine
December 17, 2020
Enterprises Face the Onslaught of Brute-Force Attacks Full Text
Abstract
Brute-force attacks typically are aimed at computers and devices on organizational networks to capture email addresses, passwords, passphrases, usernames, and PINs.Cyware Alerts - Hacker News
December 17, 2020
Code42 Incydr Series: Bringing Shadow IT into the light with Code42 Incydr Full Text
Abstract
The massive shift to remote work has turbocharged the shadow IT problem.Threatpost
December 17, 2020
Data Protection Firm BigID Raises $70 Million at $1 Billion Valuation Full Text
Abstract
Data protection firm BigID announced on Wednesday that it has raised $70 million in a Series D funding round, bringing the valuation of the company to more than $1 billion.Security Week
December 17, 2020
LogicGate secures $8.75M in growth capital to fuel international expansion and new product offerings Full Text
Abstract
LogicGate announced that it secured $8.75 million in growth capital from Greenspring Associates and Silicon Valley Bank to fuel international expansion and new product offerings.Help Net Security
December 17, 2020
Holiday deal: 40% off Malwarebytes Premium and Teams Full Text
Abstract
Malwarebytes is running a holiday deal where you can get 40% off Malwarebytes Premium and the Malwarebytes for Teams business product for a limited time.BleepingComputer
December 16, 2020
Refinitiv Acquires GIACT Full Text
Abstract
Refinitiv boosts cybercrime-fighting abilities with acquisition of Giact SystemsInfosecurity Magazine
December 16, 2020
Cloudhouse Acquires UpGuard Core to Help Customers Resolve Compliance Issues Full Text
Abstract
Cloudhouse acquires UpGuard Core as it looks to expand its offerings and reachInfosecurity Magazine
December 16, 2020
Russian hacks weigh on private equity’s software investments Full Text
Abstract
Some of the world’s biggest private equity firms, including Blackstone Group, Silver Lake Partners, and Thoma Bravo, own major stakes in software firms that were breached by suspected Russian hackers.Reuters
December 16, 2020
Microsoft partnered with security firms to sinkhole the C2 used in SolarWinds hack Full Text
Abstract
Microsoft and its partners have seized the primary domain used in the SolarWinds attack to identify the victims through sinkholing. Microsoft partnered with other cybersecurity firms to seize the primary domain used in the SolarWinds attack (avsvmcloud[.]com)...Security Affairs
December 15, 2020
Here are the critical responses required of all businesses after SolarWinds supply-chain hack Full Text
Abstract
SolarWinds customers – over 300,000 of them, including most of the Fortune 500 – must determine what was breached, mitigate the damage before using the software again, and explore new supply chain safeguards.SCMagazine
December 15, 2020
A safe return to office may mean higher burden for companies to collect, protect medical data Full Text
Abstract
For many businesses, recovery from the pandemic fallout hinges in part on employees working safely and virus-free outside their homes. That leaves organizations facing the very real possibility that they will serve as both trackers and guardians of health data to ensure the safety of employees.SCMagazine
December 15, 2020
Businesses Often Do Not Inform Customers of Tracking Full Text
Abstract
72% of businesses admit tracking of customer data happensInfosecurity Magazine
December 15, 2020
HackerOne, Verizon Media weigh pros and cons of making live hacking contests virtual Full Text
Abstract
Among all the ways COVID-19 has affected the cybersecurity world, perhaps nothing is more impossible than live hacking events, which were once a staple of the security industry.Cyberscoop
December 15, 2020
Bank regulators mull stricter rules for reporting of data breaches Full Text
Abstract
The FDIC is poised to take the first public action on the issue with the agency’s board scheduled to vote Tuesday on a proposed rulemaking dealing with “computer-security incident notification.”American Banker
December 15, 2020
#BSEC: The Continuous Evolution of Cyber-Attacks Full Text
Abstract
Microsoft outlines the changing tactics being employedInfosecurity Magazine
December 15, 2020
Download the Essential Guide to Response Automation Full Text
Abstract
In the classic children's movie 'The Princess Bride,' one of the characters utters the phrase, " You keep using that word. I do not think it means what you think it means ." It's freely used as a response to someone's misuse or misunderstanding of a word or phrase. "Response Automation" is another one of those phrases that have different meanings to different people. It's bantered around by the security vendor community so much that its precise meaning, when used, is unclear. Many vendors throw the term out without explaining exactly what they mean by the phrase. One vendor's response automation might, and often do, perform very differently from another vendor's response automation capabilities. But, hey, they have "response automation!" A recently published guide is meant to make sense of Response Automation ( Download here ). It discusses the evolution of response automation and distinguishes five increasingly capablThe Hacker News
December 14, 2020
Cyber Threats Crawling Across Manufacturing Organizations Full Text
Abstract
Manufacturers are increasingly being targeted not just by traditional malicious actors such as unorganized cybercriminals, but by competing companies and nations engaged in corporate espionage.Cyware Alerts - Hacker News
December 14, 2020
Cyberattacks on the Rise for Digital Media and Entertainment Organizations Full Text
Abstract
Cybercrime against digital media and entertainment organizations is on the rise. Hackers formulate new and innovative ways to defeat security measures and controls to pilfer sensitive data.Cyware Alerts - Hacker News
December 14, 2020
Four ways CISOs should talk to the board Full Text
Abstract
When thinking about the modern security operations center (SOC), it’s clear that security touches every part of the business in today’s enterprises. This means the SOC analyst team—which many perceive as a dark war room separated from everyone else—must become more integrated with teams from across the company, from product development to sales to the…SCMagazine
December 13, 2020
FTC Filed a Lawsuit Against Facebook for Illegal Monopolization Full Text
Abstract
The Attorney General Letitia James of the Federal Trade Commission recently declared a new antitrust lawsuit upon Facebook. This lawsuit clearly justifies...Cyber Security News
December 13, 2020
From the startup to the enterprise: where cyber fits in a business’s growth trajectory Full Text
Abstract
As one expert told me, enterprise security is built for stability, while startup security is built for speed. And in all cases, investment in vulnerability can make or break a business.SCMagazine
December 12, 2020
Adobe releases final Flash Player update, warns of 2021 kill switch Full Text
Abstract
After 24 years of fun games and abuse by threat actors, Adobe has released their final Flash Player update and thanked everyone for the fantastic content that they have released over the years.BleepingComputer
December 10, 2020
App visibility startup Bionic comes out of stealth with $17 million in funding Full Text
Abstract
The company, which built a platform designed to reverse engineer and map out application environments and was founded by two former members of the Israeli Defense Force’s cyber division, plans to focus growth on the U.S. market.SCMagazine
December 10, 2020
Defending the Intelligent Edge from Evolving Attacks Full Text
Abstract
Fortinet’s Aamir Lakhani discusses best practices for securing company data against next-gen threats, like edge access trojans (EATs).Threatpost
December 10, 2020
Thales, Google Cloud collaboration puts private keys in hands of the enterprise Full Text
Abstract
The agreement that will compel quicker migration of sensitive data between public clouds, private clouds and private IT infrastructure.SCMagazine
December 10, 2020
North America lags behind Europe on proactive security initiatives in Q3 Full Text
Abstract
More encouraging, the Cybersecurity Resource and Spending Allocation (CRAE) Index found that North America added focus to responding and recovering from cyber events.SCMagazine
December 10, 2020
Cyber Monday is Every Monday: Securing the ‘New Normal’ Full Text
Abstract
From eCommerce threats, to attacks at the smart edge, Fortinet researchers discuss the top evolving threats of 2020, heading into the new year.Threatpost
December 9, 2020
Lawyer up: Following a breach, companies often call outside counsel first Full Text
Abstract
BakerHostetler assisted in about 1,600 cases tied to cyber breaches this year — about 60 percent more than 2019.SCMagazine
December 9, 2020
Microsoft’s GitHub adds dependency review to new code submitted from programmers Full Text
Abstract
Modern software is typically a patchwork of interdependent code from multiple sources. GitHub will now deliver an advanced warning of potential vulnerabilities detected so programmers can catch issues early on.SCMagazine
December 9, 2020
New Gula Tech Foundation pledges to award millions in grants to cyber nonprofits Full Text
Abstract
In an interview with SC Media, the former leaders and founders of Tenable explained why they believe cybersecurity nonprofits have long been overlooked for funding, despite playing a key role in creating a more secure world.SCMagazine