CISA launches platform to let hackers report security bugs to US federal agencies
The Cybersecurity and Infrastructure Security Agency has launched a vulnerability disclosure program allowing ethical hackers to report security flaws to federal agencies. The platform, launched with
AI cybersecurity provider SentinelOne files for $100M IPO
SentinelOne, a late-stage security startup that helps organizations secure their data using AI and machine learning, has filed for an IPO on the New York Stock Exchange (NYSE). In an S-1 filing on Thu
FireEye to sell products unit to Symphony-led group for $1.2B
Cybersecurity giant FireEye has agreed to sell its products business to a consortium led by private equity firm Symphony Technology Group for $1.2 billion. The all-cash deal will split FireEye, the ma
Cybersecurity startup Panaseer raises $26.5M Series B led by AllegisCyber Capital
Panaseer, which takes a data science approach to cybersecurity, has raised $26.5 million in a Series B funding led by AllegisCyber Capital. Existing investors, including Evolution Equity Partners, Not
Enterprise security attackers are one password away from your worst day
IT organizations must shift their enterprise security strategy to detect credential-based attacks before they become a problem.
Biden’s cybersecurity dream team takes shape
President Biden has named two former National Security Agency veterans to senior government cybersecurity positions, including the first national cyber director. The appointments, announced Monday, la
Bring CISOs into the C-suite to bake cybersecurity into company culture
Cyber strategy and company strategy are inextricably linked. Consequently, chief information security officers (CISOs) in the C-Suite will be just as common and influential as CFOs in maximizing share
The ‘Frankencloud’ model is our biggest security risk
The SolarWinds attack was successful because it took advantage of a vast, intermixed supply chain of technology vendors. The lesson? Complexity is the enemy of security.
Why ‘blaming the intern’ won’t save startups from cybersecurity liability
Whether a company is liable for cyber incidents based on the actions of employees or contractors will depend on the circumstances of what happened.
Microsoft says China-backed hackers are exploiting Exchange zero-days
Microsoft is warning customers that a new China state-sponsored threat actor is exploiting four previously undisclosed security flaws in Exchange Server, an enterprise email product built by the softw
SolarWinds hackers targeted NASA, Federal Aviation Administration networks
Hackers are said to have broken into the networks of U.S. space agency NASA and the Federal Aviation Administration as part of a wider espionage campaign targeting U.S. government agencies and private
Best practices as a service is a key investment theme to watch in 2021
Enterprise IT has been completely transformed by SaaS the past decade. Okta last week published a report that showed that the largest companies now use 175 apps, a doubling over the past few years. Mo
Talent and capital are shifting cybersecurity investors’ focus away from Silicon Valley
With better access to capital and worldwide talent, there will be further opportunities outside Silicon Valley to scale and create a new wave of solutions to solve today’s cybersecurity problems.
Extra Crunch roundup: Digital health VC survey, edtech M&A, deep tech marketing, more
Speaking as an unvaccinated urban dweller: I'd rather speak to a nurse or doctor via my laptop than try to remain physically distanced on a bus or hailed ride traveling to/from their office.
Chris Krebs and Alex Stamos have started a cyber consulting firm
Former U.S. cybersecurity official Chris Krebs and former Facebook chief security officer Alex Stamos have founded a new cybersecurity consultancy firm, which already has its first client: SolarWinds.
Decrypted: How bad was the US Capitol breach for cybersecurity?
The breach will likely present a major task for Congress' IT departments, which must now determine what's been stolen and which security risks could still pose a threat to the Capitol's network.
FBI, NSA say ongoing hacks at US federal agencies ‘likely Russian in origin’
The U.S. government says hackers “likely Russian in origin” are responsible for breaching the networks of at least 10 U.S. federal agencies and several major tech companies, including Fire
After the FireEye and SolarWinds breaches, what’s your failsafe?
Breaches of this magnitude are going to happen. If they’re something your organization needs to be resilient against, then it’s best to be prepared for them.
Just how bad is that hack that hit US government agencies?
"There’s not a single organization who can claim cybersecurity perfection."
Google launches Istio on GKE
Google today announced an update to GKE, the Google Kubernetes Engine, that brings integrated support for the Istio service mesh to service. Istio support is currently in beta. While Istio isn’t