Malware, Careers, Vulnerability management

Becoming a Year Younger, Material Security, Tailscale, Radiflow, & Artic Wolf – ESW #273

In the Enterprise News for this week: Funding announcements from Material Security, Abnormal, Teleport, Tailscale, Smallsetp, Phylum and more. Acquisitions include HDiv Security, and Radiflow. New product announcements from Siren, Corelight, Artic Wolf, Onapsis and Aqua. And, in other news, all South Koreans are about to become one year younger, & more!

Full episode and show notes

Announcements

  • Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Hosts

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
  1. 1. FUNDING – Material Security Reaches $1.1 Billion Valuation for ‘Zero Trust’ Security on Microsoft and Google Email - "Material Security, a company that can protect email accounts even after they have been compromised, today announced it has secured $100 million in Series-C funding at a valuation of $1.1 billion. The round is led by Founders Fund, with participation from previous backers Andreesen Horowitz, Silicon Valley solo capitalist Elad Gil and other high-profile individual tech investors, gaining the company unicorn status just two years after the official launch of its product suite"
  2. 2. FUNDING – Abnormal Raises $200M+ To Protect The Modern Enterprise Workforce - " Abnormal Security, the leading AI-based cloud-native email security platform, announced today the close of a $210 million Series C round of financing led by global software investor Insight Partners, with participation from Greylock Partners and Menlo Ventures. With this round, the 4-year-old company is now valued at $4 billion."
  3. 3. PARTNERSHIP – Exabeam partners with ZeroFox to improve cyber defense capabilities for customers - "Exabeam and ZeroFox announced an OEM partnership to enhance indicators of compromise (IoC) with an added layer of threat intelligence for Exabeam Fusion SIEM and Exabeam Fusion XDR customers. In addition to Exabeam site collector and cloud connecter data, Exabeam will merge the ZeroFox Adversary Disruption service into the Exabeam Threat Intelligence Service, included in all Exabeam Fusion products, to further enrich customers’ data."
  4. 4. PRODUCT – Siren 12.1 provides organizations with 360 degrees data visibility capability - "Siren is a flexible, investigative intelligence platform that uses a data model to drive the discovery of associated data. Siren fuses previously-disconnected paradigms such as business intelligence (BI) dashboards, link analysis, content search, and operational monitoring." and "Siren 12.1 introduces the ability to generate a rich 360 degrees entity description. These are scripted interactive templates which show information about the record with data coming not only from the record itself, but also from connected records and web service calls."
  5. 5. PARTNERSHIP – Kroll and Armis join forces to strengthen cyber resilience for critical systems
  6. 6. PRODUCT – CoreLight: Spotting Log4j traffic in Kubernetes environments - Neat: "The demo environment contained 4 K8s pods. Those pods where network traffic monitoring is required, have two containers, the service itself and vxlan. The vxlan container encapsulates all network traffic to and from the pod into a vxlan and forwards that traffic to the sensor-core pod. This traffic forwarding could also take place to an external network sensor. "
  7. 7. PRODUCT – Arctic Wolf Launches Arctic Wolf Labs - "the mission of Arctic Wolf Labs is to develop cutting-edge technology and tools that are designed to enhance the company’s core mission to end cyber risk, while also bringing comprehensive security intelligence to Arctic Wolf’s customer base and the security community-at-large." Look here for tools: https://github.com/rtkwlf/wolf-tools
  8. 8. PRODUCT – Onapsis Announces New Offering to Jumpstart Security for SAP Customers - "Onapsis Assess Baseline empowers companies of any size to accelerate time-to-value by simplifying deployment with a new SaaS-based, zero-footprint model and focusing on a core, targeted set of critical vulnerabilities as first steps on their journey to ensure cybersecurity, compliance, and availability of their SAP applications. When organizations are ready to take on more, Onapsis Assess Baseline offers easy expansion to additional scope for vulnerability management as well as capabilities for continuous threat monitoring and application security testing."
  9. 9. PRODUCT – Aqua Security’s Trivy Integrates with Docker Desktop to Help Developers Easily Identify Vulnerabilities - "The new extension enables Docker Desktop users to access Trivy directly through the dashboard — no CLI needed — to quickly and easily parse and scan an unlimited number of container images. Scan results include vulnerability findings for both operating systems and programming language packages." Also, Docker Desktop now supports Linux, whoohoo!
  10. 10. ANNOUNCEMENT – Anchore Joins Docker Extension Program to Enable Deep Analysis of Container Images - Sounds familiar: "The Anchore Docker Desktop Extension is unique because it seamlessly scans each container image behind the scenes, without requiring developers to request an individual scan or wait for a scan to complete. Instead, the Anchore extension instantly displays the number and type of packages along with vulnerabilities segmented by severity level, allowing users to easily search for specific packages or vulnerabilities"
Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
  1. 1. FUNDING: YL Ventures Announces $400M Fifth Fund to Champion Israeli Cybersecurity Innovation
  2. 2. FUNDING: What Our Series C Investment Means for Our Customers - $200M Series C round at a $4BN valuation. So correction, we have 3 more unicorns this week and 56 unicorns now?
  3. 3. FUNDING: Teleport Raises $110 Million Series C at $1.1 Billion Valuation Led by Bessemer Venture Partners with Participation from New Investor Insight Partners - One of our two new unicorns for this week (putting the count at, I think, 55 cybersecurity unicorns now). Teleport makes it easy to access infrastructure without exposing SSH and RDP all over the place. This apparently makes them worth $1.1B. They're not the first to do this (CloudPassage comes to mind), but it looks like they remove a lot of friction and overhead from the process of implementing this at scale.
  4. 4. FUNDING: Tailscale lands $100 million to ‘transform’ enterprise VPNs – TechCrunch - $100M Series B with an "over $1B valuation", but not in USD, in CAD. So sadly, they're only a unicorn in Canada. There's a joke in here somewhere.
  5. 5. FUNDING: Edge Delta raises $63M to help companies analyze observability data ‘at its source’
  6. 6. FUNDING: Smallstep Raises $26 Million for Automated Certificate Management Platform
  7. 7. FUNDING: Phylum Raises $15 Million to Proactively Defend the Open-Source Supply Chain - $15M Series A. Very exciting and needed product - Phylum gives risks scores to open source software packages! Is it abandoned? Is it buggy? Would the maintainer fail a KYC/AML check? Increasingly, we're seeing companies get shafted by shady FOSS packages. Phylum might not even be the first to do this - I expect to see more companies tackling this problem. As usual, I suspect the Qualys, R7, Tenable cloud to be late to the party, but they'll get there eventually, and this will be a feature of Tenable.io and InsightVM someday.
  8. 8. FUNDING: Network Perception Secures $13 Million Series A Funding Round – Network Perception
  9. 9. FUNDING (FEDERAL): DOE announces $12M to enhance cybersecurity of U.S. energy systems – Daily Energy Insider - Only $12M??? That's barely a seed round in the private markets these days!!! This is specifically just for R&D projects, but still...
  10. 10. ACQUISITION: Datadog Signs Definitive Agreement To Acquire Hdiv Security; Terms Not Disclosed – Benzinga
  11. 11. ACQUISITION: Magnet Forensics Acquires Cybersecurity Software Firm Comae Technologies – Magnet Forensics
  12. 12. ACQUISITION: Sabanci Acquires OT Security Vendor Radiflow – Radiflow
  13. 13. PRODUCT FEATURE: Kubernetes taps Sigstore to thwart open-source software supply chain attacks
  14. 14. PLEASEDOABUGBOUNTY: Antwerp-based UTM provider Unifly secures €10M to safely manage drones in airspace
  15. 15. SQUIRREL: All South Koreans are about to become one year younger – here’s why - There's apparently a tradition that Koreans are considered 1 year old at birth, and then gain a year on New Year's Day, regardless of their actual biological birth date! This has caused issues with age-based COVID vaccination programs and other scenarios that require an accurate *biological* age, so Korea's new president is making the shift to using biological ages official.
Katie Teitler
Katie Teitler
Senior Security Strategist at Axonius
Lee Neely
Lee Neely
Information Assurance APL at Lawrence Livermore National Laboratory
Matt Alderman
Matt Alderman
Executive Director at CyberRisk Alliance
prestitial ad