Newss Web Security

Kaspersky Lab shares views on “Efficiently managing risks with Cyber Threat Intelligence”

At the recent CISO Summit held in Mumbai, Sidharth Mutreja, the Enterprise Solutions Architect at Kaspersky Lab, shared his views on “Efficiently Managing Risks with Cyber Threat Intelligence”.

Cyber threat intelligence (CTI) is a practice of organizing, analyzing, and refining the information related to current or potential cyber threats that can affect an organization. The aim of CTI is to help businesses learn the risks of most common cyber attacks, like zero-day threats, advanced persistent threats, and exploits.

For responding and counter-attacking the modern cyber attacks, organizations need a complete view of the tricks and tools used by attackers. Sidharth Mutreja shed light on the best practices to make well-informed strategies for detecting the attacks, identify the cybercriminals, and impacts of attacks in short-term as well as long-term.

“With the ever-evolving threat landscape, organizations need to be more proactive in their approach for cybersecurity. As a proactive measure, security teams need to embrace cyber threat intelligence encompassing technical, operational, tactical and strategic threat intelligence into their existing security operations to leverage specific intelligence for proactive countermeasures and threat hunting,” said Mutreja.

When organizations assess the risks related to their digital footprint, they can direct the focus of their defensive strategy in the right areas. It also helps in making well-informed decisions related to budgets and staffs.

“Today’s cybersecurity approach in terms of solutions and services don’t just have to be as advanced as the threats but should be able to strike down a threat even before it hits. Hence, it is of critical importance that organization’s today enhance their predictive and pre-emptive capabilities with cyber threat intelligence,” added Mutreja.

Further, Mutreja also talked about the Kaspersky CyberTrace, a threat intelligence fusion and analytics tool, which the company launched in February this year.

Also read: Romantic Phishing is on the rise – How not to lose your money while losing your heart

The Kaspersky CyberTrace is a free tool that integrates multiple threat data feeds with SIEM solutions. It will help enterprises to identify the threats that can be dangerous for the organization and allow security teams to focus on the right areas.

Newss Web Security

Sectigo to protect enterprises in Middle East against rising cyberthreats

Sectigo (formerly Comodo CA) is looking to protect enterprises in Middle East against phishing, business email compromise (BEC), and other web security threats.

As a part of this, the company has expanded collaboration with its partners in Middle East, which includes BroadBITS, Checksum Consultancy, and Hayyan Horizons.

Sectigo will now deliver web security solutions and consultancy services to enterprises in Bahrain, Dubai, Kuwait, Jordan, Oman, Saudi Arabia, Qatar, and United Arab Emirates. These solutions will modernize the digital identity strategies and help enterprises reduce cybersecurity risks.

“Business email compromise (BEC) attacks are on the rise. In 2018, spoofing or BEC attacks rose 250 percent and spear-phishing attacks in companies saw a 70 percent increase (IndustryWeek),” explained Victor Schooling, Regional Director, Middle East and Africa, Sectigo.

“Organizations throughout the Gulf States and Jordan are eager for email encryption and digital signing solutions that minimize these and other risks. We’ve chosen our initial Middle East partners for their excellent reputations and commitment to addressing important cybersecurity challenges.”

The cybersecurity solutions available to enterprises in Middle East will include Sectigo Certificate Manager, Secure Email Certificates (S/MIME), and Sectigo Private CA.

Sectigo Certificate Manager is a cloud-based platform that allows customers to manage, public, private and IoT device certificates from a single platform. It comes with required tools, support, and capabilities that can help in minimizing risks, respond to threats faster, and optimize operational costs.

“Expired certificates can be incredibly costly to a company,” added Naveed Ahmed, General Manager, BroadBITS.

“By offering Sectigo Certificate Manager, we are helping clients prevent incidents like Ericsson’s global outage in December, which resulted in UK mobile carrier O2 seeking millions in damages.”

The Secure Email Certificates (S/MIME) is going to help in combatting BEC attacks. The solution digitally signs and encrypts email communications across the enterprise. It supports top email apps such as Microsoft Outlook, Exchange, mobile operating systems, etc.

“Checksum is dedicated to ensuring that information security enables businesses to advance their digital strategy. Sectigo innovations, such as its Zero Touch S/MIME solution, will greatly help CIOs and IT managers save time and money through efficient and effective cybersecurity administration,” said Mohamed Omar, Principal Consultant at Checksum Consultancy Co.

Whereas, the Sectigo Private CA allows enterprises to create their own private root certificates. These root certificates can be used to issue private and end-entity certificates for internal servers, users and devices, while meeting compliance requirements of corporate and industry.

Also read: Revamped Sectigo Channel Partner Program offers increased profitability and visibility to partners

“We have found Sectigo a great partner to work with. The company’s offerings are proven and strong, and we appreciate the team’s dedication,” said Ali Tamimi, Founder and Managing Director, Hayyan Horizons.

In September last year, Sectigo had also joined hands Korea Information CA to expand partnership in Asia and offer digital web security solutions in Vietnam and Indonesia.


McAfee joins hands with Dell and Verizon to secure mobile devices

Leading cybersecurity firm McAfee is extending its partnership with computer maker Dell to launch a new cross-device software that will allow users to secure mobile devices along with PCs and laptops.

Cyberthreats against all the internet-connected devices are rising, compromising the confidential data of millions of users globally. McAfee Labs identified 3 to 4 new pieces of malware every second, which shows that users need to keep best security practices in place to reduce the risk of data compromise.

Following the extension of this partnership, Dell will provide pre-installed cross-device security software on PCs and laptops. Dell Consumer and Small Business customers who buy a new PC or laptop will be able to install the McAfee security software on their smartphones and tablets as well.

This will bring the security of PCs and laptops to the mobile devices as well, and secure them against emerging cyberattacks. McAfee is currently protecting over 500 million customers around the world.

“As cybercriminals’ become more sophisticated and pervasive, it is more important than ever to have active security on devices from the start,” said Terry Hicks, executive vice president, consumer business group, McAfee. “Our extended collaboration with Dell provides users with cross-device security software that helps them protect what matters most.”

“The extension of our collaboration with McAfee underscores our continued commitment to protecting consumers and small businesses as they enjoy all the benefits that today’s technology brings,” said Ray Wah, SVP, Consumer and Small Business Product Group, Dell. “We want our customers to connect with confidence, and McAfee helps us deliver on this vision.”

Further, the cybersecurity firm is also joining hands with Verizon to protect the devices connected to a home network, like internet of things (IoT) devices.

Today, an increasing number of consumers are opting for connected devices. On the other hand, the cybercriminals are looking for new ways to compromise these devices. As per McAfee Labs 2019 predictions, smartphones and tablets will be the target of cybercriminals in 2019 to get control of IoT devices.

McAfee will provide protection for home network via the Verizon Home Network Protection (HNP) which will fight against malicious websites, and offer parental controls.

Also read: Organizations have 14 misconfigured public cloud services running at any given time: McAfee study

“We are committed to providing the security solutions that help our customers enjoy their digital lives to the fullest,” said Darren Kaufmann, executive director, Verizon. “Together with McAfee, we can help ensure the home network is secure, and that parents have the peace of mind knowing they have the simple tools they need to provide a safe online environment for their children.”


Acquisition of SiteLock by ABRY Partners strategically positions it for growth and product innovation

Global leader in cloud-based website security solutions – SiteLock, has announced that it has been acquired by the leading private equity firm – ABRY Partners.

SiteLock’s CEO and President – Neill Feather, considers this acquisition an opportunity to accelerate the company’s growth and increase its cybersecurity product portfolio.

SiteLock provides cloud-based website security solutions and protects more than 12 million websites around the globe. Its primary mission is to protect organizations from the ever-increasing cyberthreats and attacks.

St. Jean, Partner at ABRY Partners, considers Acquisition of SiteLock by ABRY Partners  as a strategic step towards supporting their innovation across new products, both organically and inorganically.

He said, “As threats become more complex and frequent, organizations need a comprehensive and reliable solution to protect their online presence. We believe SiteLock is well positioned to continue to be the go-to partner for website security needs.

Cyberattacks are becoming more and more hazardous these days with the high-risk probability of data breach, loss and theft.

During the fourth quarter of 2017 the average website experienced more than 44 attacks per day, and there was a 90 percent rise in the number of businesses targeted by ransomware for a total $5 billion financial impact. We are excited to work with the team at ABRY to continue to develop new products and solutions to support and protect our customers.” – said Feather. More such findings were revealed in the SiteLock Website Security Insider Q4 2017 report.

Tomas Gorny – CEO of UnitedWeb Inc. (former parent company) also commented on the acquisition and said, “We’re proud to have supported SiteLock for more than 10 years as it has grown to become the leading provider of website security solutions.

SiteLock was also named as the fastest growing software company in Arizona by Deloitte.

On the other hand, ABRY Partners, with an expertise of almost 30 years in media, communications, business services and information sector, stands as one of the most experienced private equity firms investing in North America and Europe regions.

Acquisition of SiteLock by ABRY Partners will help SiteLock extend its services in the small and medium sized business (SMB) market.

The financial terms of the deal have not been revealed yet, though the deal was closed on 5th April 2018, as per the market reports.