A new report today from cybersecurity company Netscout Systems Inc. reveals a staggering increase in application-layer and botnet-based direct-path attacks. Netscout’s 5th Anniversary DDoS Threat Intelligence Report found that the number of attacks has jumped by 487% since 2019, with the most significant surge occurring in the second half of 2022. Much of the increase comes from ...

Cybersecurity firm Fortinet Inc. today made several announcements that enhance its offerings in the networking and security markets. The innovations include new products, capabilities and updates to the flagship Network Security Expert Certification program. Leading with unified management and analytics across the entire hybrid network, Fortinet’s latest innovations enable unified management and analytics across its secure networking portfolio. ...

Cybersecurity platform provider Cybereason Inc. today announced that it has raised $100 million in new funding from SoftBank Group Corp. to support its global growth and advance its innovation in extended detection and response, endpoint detection and response and endpoint protection platform solutions. Founded in 2012, Cybereason offers an automated EDR platform that identifies elements of cyber attacks ...

Cloud security startup Obsidian Security Inc. today announced the release of its latest suite of software-as-a-service security solutions. Obsidian’s three new services, Compliance Posture Management, Integration Risk Management and Extend, enable security and government, risk and compliance teams to increase their SaaS security and compliance posture measurably. Leading the releases, Compliance Posture Management is designed to ...

Elastic N.V. today announced expanded capabilities for Elastic Security, including cloud security posture management for Amazon Web Services, container workload security and cloud vulnerability management. The new releases build on Elastic’s previously released Kubernetes security posture management and Cloud Workload Protection Platform capabilities to deliver what the company claims to be the only security analytics ...

A new comprehensive toolset for harvesting credentials across multiple cloud services providers has been spotted in the wild being distributed on Telegram. Detailed today by researchers at SentinelLabs, the “AlienFox” toolset is described as a cloud spammer’s “Swiss Army knife” thanks to its ability to attack multiple services in numerous ways. Attackers use AlienFox to ...

Zero-trust content security startup Votiro Cybersec Ltd. today announced that it has raised $11.5 million in new funding to accelerate its marketing and sales reach in North America and to advance its data detection and analytics services. Founded in 2010, Votiro offers file security and safety through enhanced data detection and analytics capabilities. The company says ...

Cloud cybersecurity startup Orca Security Ltd. today detailed the discovery of a previously unknown vulnerability in Microsoft Corp.’s Azure that allowed hackers to undertake remote code execution. Dubbed “Super FabriXss,” the vulnerability was demonstrated at BlueHat IL 2023, showing how they could escalate a reflected cross-site scripting vulnerability in Azure Service Fabric Explorer. The demonstration showed how ...

Cloud forensics and incident response platform startup Cado Security Ltd. today announced the availability of a new security service catering to application programming interfaces for large language models. Called Masked-AI, the open-source library enables the safe use of LLM APIs such as OpenAI LP’s GPT-4 without sending out sensitive information. Available as a download from the GitHub ...

A new report today from phishing protection company SlashNext Inc. finds that a majority of employees have sensitive work information on personal devices as “bring your own device” behavior continues to surge in popularity. The 2023 Mobile BYOD Intelligence Report surveyed individuals about the use of personal devices for work-related tasks, how employers balance corporate security and ...