Identity Management and Information Security News for the Week of April 26; Cyera, Lumu, At-Bay, and More
The editors at Solutions Review have curated this list of the most noteworthy identity management and information security news for the week of April 26. This curated list features identity management and information security vendors such as Cyera, Lumu, At-Bay, and more.
Keeping tabs on all the most relevant identity management and information security news can be a time-consuming task. As a result, our editorial team aims to provide a summary of the top headlines from the last month, in this space. Solutions Review editors will curate vendor product news, mergers and acquisitions, venture capital funding, talent acquisition, and other noteworthy identity management and information security news items.
Identity Management and Information Security News for the Week of April 26
Cyera Extends Data Security to On-Premises Databases and File Shares
Cyera, a data security solutions provider, announced this week that it has extended its coverage from SaaS, DBaaS, and IaaS environments to include on-premises databases and file shares. This expansion further increases customers’ understanding of their data, its associated risks, and how to protect it.
Cayosoft Achieves Record Sales, Company Growth
Cayosoft Inc., a leader in Microsoft Active Directory (AD) security and monitoring solutions, recently announced it has achieved significant milestones in 2023, driven by growing demand for its AD forest recovery solution, Cayosoft Guardian Forest Recovery. At the same time, Cayosoft has invested in hypergrowth-focused talent with Board of Advisors appointments and several C-level and strategic senior leadership hires across company departments. “Active Directory security is seeing a resurgence of importance as organizations experience cyberattacks and outages at unprecedented levels,” said Robert Bobel, founder and CEO, Cayosoft. “AD is both a primary target of attacks, and one of the first core IT assets organizations must restore in the aftermath of a misconfiguration or a disaster scenario like a cyberattack. Seeing the increased global demand for instant AD recovery, Cayosoft focused on talent acquisition and acquiring the capital it would need to extend its global sales reach. We’re on track to execute our ambitious 2024 growth goals.”
Concentric AI Set to Demonstrate New Capabilities at RSA Conference 2024
Concentric AI, a leading vendor of intelligent AI-based solutions for autonomous data security posture management (DSPM), announced today it will demonstrate the latest in autonomous data security at RSA Conference 2024 in its booth No. 2452 Moscone South, including showcasing its new remediation and compliance capabilities that highlight how Concentric AI can not only identify data risk with organizations’ environments, but can help fix issues along with providing reporting to address compliance needs. With this new extension, Cyera has delivered “an elegant, easy-to-deploy” solution that integrates on-premises data into its cloud-native platform. A single, lightweight connector allows Cyera to scan multiple datastores in the customer’s on-premises environment while still leveraging its existing AI-powered data discovery and ML-based learned classification capabilities – avoiding the complexity challenges customers face with legacy data security services.
Immersive Labs Announces Inaugural Cyber Drills Roadshow
Immersive Labs, a cyber resilience solutions provider, this week announced its inaugural Cyber Drills Roadshow, a series of half-day, hands-on events that put participants’ knowledge, skills, and judgment to the test against simulated attacks. Hosted by Immersive Labs’ world-class cyber crisis experts, the roadshow offers everyone from techs to execs an unforgettable experience, along with best practices for building resilience against threats. “With 74 percent of all cyber attacks targeting people, it is vitally important for individuals to put themselves in the hot seat and learn from experience – it’s too late to wait for the real thing,” said Dan Potter, Senior Director of Organizational Resilience, Immersive Labs. “Immersive Labs cyber drills are designed with a specific goal: offer a tailor-made learning experience to help participants at all levels counter the most damaging cyber attacks. We provide a unique opportunity to identify individual and team strengths and pinpoint areas for improvement.”
Lumu Debuting Lumu Autopilot Autonomous Incident Response and Management Platform
Lumu, an incident response and management solutions provider, will debut Lumu Autopilot at the RSA Conference 2024. Autopilot is a patent-pending technology built to help organizations manage security incidents detected by Lumu. Through continuous operation, investigation, it takes action according to its assessment of each incident. The tool monitors, mutes, closes or escalates security attacks autonomously and in real time. “Over the past five years, Lumu has meticulously collected network metadata and conducted comprehensive analyses of cyber threats to craft AI-powered playbooks designed to tackle a wide range of cyber threats. We have distilled the best practices of seasoned cybersecurity analysts into these playbooks, combining human decision-making with the unmatched speed of machines,” said Ricardo Villadiego, founder and CEO of Lumu. “With Lumu Autopilot on, organizations get a virtualized version of their security operations team with augmented capabilities that reduce error. These capabilities keep security operations running around the clock regardless of where your team is.”
1Kosmos Expands into Government Market with Credential Service Provider (CSP) Offering
1Kosmos, an identity proofing and passwordless authentication solutions provider, this week announced it has expanded its offerings for the identity verification and passwordless market with the introduction of a new Credential Service Provider (CSP) managed service based on the “privacy-by-design” 1Kosmos platform. The 1Kosmos CSP offering enables government agencies to offer residents who are requesting services “an elegant, automated process” that simultaneously digitally verifies their identity up to certified NIST Identity Assurance Level 2 (IAL2) and then issues a strong, phishing-resistant, multi-factor authentication (MFA) credential, up to certified NIST Authentication Assurance Level 2 (AAL2). “Virtually every government agency at the federal, state, tribal, and local level is modernizing resident services which all require immutable digital identity verification,” said Hemen Vimadalal, CEO of 1Kosmos. “With the 1Kosmos CSP service, we are providing the government sector with a low friction, intuitive and user-directed way to enroll and verify their identity that meets the highest assurance level standards available today.”
Torq Launches HyperSOC Platform
Torq, an InfoSec solutions provider, this week announced Torq HyperSOC, a purpose-built solution that “harnesses the power of the AI-driven Torq Hyperautomation Platform to automate, manage, and monitor critical SOC responses at machine speed.” It uses Natural Language Processing (NLP) to initiate and accelerate security event investigation, triage, and remediation at scale, deliver comprehensive case management capabilities with ease, and automate complex processes. Torq is offering demos of Torq HyperSOC exclusively for RSAC attendees, between May 6-9, at Booth #4415, North Hall, Moscone Center, in San Francisco.
Entrust Announces Identity as a Service (IDaaS) Platform
Entrust, an identity and authentication solutions provider, this week announced a single-vendor enhanced authentication solution that integrates identity verification (IDV) and identity and access management (IAM) to fight deepfakes, phishing, account takeover (ATO) attacks and other threats. By enhancing the Entrust Identity as a Service (IDaaS) platform with Onfido’s AI-powered document and biometric verification, customers will be able to deploy “next-level” identity authentication before allowing a privileged action or making a high-value transaction. This equips the IDaaS platform with a new layer of hardened security that resists identity fraud and phishing, secures digital interactions, and safeguards sensitive information. “As physical and digital credentials merge, identity has become central to security. AI-driven threats, deepfakes, synthetic identities and ransomware gangs are driving a rising need for confidence in the identities of the people seeking to connect, access, and transact,” said Bhagwat Swaroop, President of Digital Security at Entrust. “That’s why identity-centric security is essential to making Zero Trust work. Entrust is the only provider that can integrate world-class IDV and IAM to enhance fraud prevention, reduce manual intervention, and improve the user experience.”
At-Bay Launches New Capabilities to Platform
At-Bay, an InsurSec (insurance security) solutions provider, announced this week new enhancements to its flagship security solution, At-Bay Stance. Changes include security awareness training with Stance Exposure Manager and platform integration with Microsoft 365 and Google Workspace. “We believe the key to reducing cyber risk among mid-sized to small businesses is to provide them with a comprehensive insurance policy that also helps to proactively secure them against attacks with InsurSec,” said Thom Dekens, Chief Business Officer at At-Bay and General Manager of At-Bay Security. “At-Bay Stance keeps businesses ahead of the game by identifying, prioritizing, and mitigating the most critical security risks all through a single platform.”
Expert Insights Section
Watch this space each week as our editors will share upcoming events, new thought leadership, and the best resources from Insight Jam, Solutions Review’s enterprise tech community for business software pros. The goal? To help you gain a forward-thinking analysis and remain on-trend through expert advice, best practices, trends and predictions, and vendor-neutral software evaluation tools.
What We Learned from the MITRE Breach
“The breach at MITRE Corporation in January, orchestrated by nation-state hackers exploiting two zero-day vulnerabilities in Ivanti Connect Secure underscores a critical reality: no organization is immune to sophisticated attacks. The attack is eye-opening. Despite MITRE’s position at the forefront of defending against threat actors, this breach serves as a stark reminder of these persistent threats. We are observing more zero-day vulnerabilities than ever, with threat actors that continue to take advantage of these opportunistic attacks. Organizations must remain vigilant and create comprehensive defense strategies. Proactive measures including thorough asset assessments, root cause analysis, and red teaming can be to identify and address any potential gaps and weaknesses. Mitigating these threats takes a continual effort and amidst these ongoing attacks it’s important to remain sympathetic to the defenders at MITRE and likewise defenders everywhere during these times.”
-Paul Laudanski, Director of Security Research at Onapsis