Identity Management and Information Security News for the Week of October 20; Trend Micro, Compliance Risk, Tines, and More

The editors at Solutions Review have curated this list of the most noteworthy identity management and information security news for the week of October 6. This curated list features identity management and information security vendors such as Trend Micro, Compliance Risk, Tines, and more.

Keeping tabs on all the most relevant identity management and information security news can be a time-consuming task. As a result, our editorial team aims to provide a summary of the top headlines from the last month, in this space. Solutions Review editors will curate vendor product news, mergers and acquisitions, venture capital funding, talent acquisition, and other noteworthy identity management and information security news items.

Identity Management and Information Security News for the Week of October 20

Trend Micro Announces Updates to Container Security Platform

Trend Micro, a global cybersecurity leader, this week announced the next evolution of its cloud container security capabilities for its flagship platform. The new capabilities simplify investigations by enabling analysts to prioritize incidents faster and with greater accuracy— potentially reducing the time spent on each container security incident by up to two weeks.

Read on for more.

QuSecure Launches PQC Partners Program

QuSecure, Inc., a leader in post-quantum cryptography (PQC), this week launched its new global partner program. It is the company’s first formal global channel partner program for value added resellers, systems integrators, solutions providers, and managed service providers. The launch of this new program will enable QuSecure to “address the unprecedented global demand” for its PQC solution. Additionally, QuSecure has hired Stuart Oliver as Vice President of world-wide partner go-to-market programs to facilitate QuSecure’s growing partner ecosystem and the Partner Program.

Read on for more.

Hacker Leaks Millions of New 23andMe Genetic Data Profiles

Earlier this month, a threat actor leaked the stolen data of 1 million Ashkenazi Jews who used 23andMe services to find their ancestry info and genetic predispositions. This week, the hacker taking claim for last month’s leak, leaked an additional 4.1 million stolen 23andMe genetic data profiles for people in Great Britain and Germany on a hacking forum. The threat actors claim that the stolen data includes genetic information on the royal family, the Rothschilds, and the Rockefellers.

Read on for more.

Compliance Risk Receives $3.5M Investment from Bellini Capital

Compliance Risk, a Governance-as-a-Service solutions provider, this week announced it received a $3.5M investment from Bellini Capital and will be rebranding to Compliance Scorecard. Bellini Capital Managing Partner Arnie Bellini says Compliance Risk’s combination of expertise, support, and product put it in a unique position to help MSPs take an important next step. “MSPs need to get busy offering security operations services to their customers,” Bellini said. “Their customers are getting hacked, and it is time for MSPs to evolve. With Compliance Risk, MSPs can offer a basic set of security operations services. That puts MSPs on the path toward doubling their revenue.”

Read on for more.

IOActive Becomes a Founding Solutions Provider for Open Compute Project Foundation

IOActive, Inc., a security services provider, this week announced its support of and participation in the newly launched Open Compute Project Foundation (OCP) Security Appraisal Framework and Enablement (S.A.F.E.) program. A community-led security program, OCP S.A.F.E. was created to bring a consistency of methodology and elevated security standards to both data center providers and device manufacturers. With S.A.F.E., device manufacturers and purchasers will receive independent verification of security integrity of current and future devices, to build trust with a cost-effective approach.

Read on for more.

DigiCert Study: “61 Percent Concerned Their Organization Not Prepared to Address PQC”

This week, at its annual Trust Summit conference, DigiCert released the results of a global study exploring how organizations are addressing the post-quantum computing threat and preparing for a safe post-quantum computing future. Key findings reveal that while IT leaders are concerned about their ability to prepare in the timeframes needed, they are hampered by obstacles which include lack of clear ownership, budget and executive support. Sixty-one percent of respondents say their organizations are not and will not be prepared to address the security implications of PQC.

Read on for more.

Tines Report: “More than Half of Security Professionals Likely To Switch Jobs Next Year”

Tines, a SOC solutions provider, published the 2023 Voice of the SOC report, which examines job satisfaction and workloads among security operation center (SOC) teams, the obstacles analysts encounter, and the impact of automation on the lives of security professionals. Sixty-three percent of the security decision-makers and practitioners surveyed are experiencing burnout amid relentless cyberattacks, internal pressures, and limited resources. Nine out of ten security teams are automating at least some of their work, and almost all (93 percent) of respondents believe that more automation would improve their work-life balance. This year’s report surveyed 900 security decision-makers and practitioners. Tines expanded the scope beyond the United States to include Europe, and garnered perspectives from security leaders, practitioners and analysts.

Read on for more.

Expert Insights Section

Watch this space each week as our editors will share the best written and video resources from Insight Jam, Solutions Review’s enterprise tech community for business software pros. The goal? To help you gain a forward-thinking analysis and remain on-trend through expert advice, best practices, trends and predictions, and vendor-neutral software evaluation tools.

Solutions Review Launches New Insight Jam Community for Enterprise Technology Professionals

We are excited to bring an entirely new distribution channel to Insight Jam, and provide our readers with guidance, best practices, and advice on top-of-mind topics in enterprise technology, and our PR and vendor partners the ability to measure their impact on the community.

Read on for more.

Multifactor Authentication and Authorization: The Key to Evolving as Fast as Insider Threats

Jason Lohrey of Arcitecta introduces us to Multifactor Authentication and Authorization (MFA&A); examining how it’s the key against insider threats. As National Insider Threat Awareness Month in September reminded us, external actors are not the only threat. Threats can often already reside within an organization, in different forms. Some individuals may simply be negligent by unwittingly clicking on phishing emails, carelessly handling data, or not following security protocols. Others may unknowingly pose a risk when external actors compromise their credentials. Then, of course, malicious insiders intentionally cause harm by committing fraud, stealing sensitive data, or disrupting systems. Gartner predicts that by 2025, human failure or lack of talent will be the cause of more than half of significant cyber incidents, asserting that the number of cyber and social engineering attacks against people is spiking as threat actors increasingly see humans as the most vulnerable point of exploitation. The consequences of a successful insider threat may include a data breach, fraud, theft of trade secrets or intellectual property, and sabotage of security measures.

Read on for more.