The editors at Solutions Review have curated this list of the most noteworthy identity management and information security news for the week of June 23. This curated list features identity management and information security vendors such as Brinqa, Securiti, Baffle, and more.
Keeping tabs on all the most relevant identity management and information security news can be a time-consuming task. As a result, our editorial team aims to provide a summary of the top headlines from the last month, in this space. Solutions Review editors will curate vendor product news, mergers and acquisitions, venture capital funding, talent acquisition, and other noteworthy identity management and information security news items.
Identity Management and Information Security News for the Week of June 23
Brinqa Announces Partnership with Checkmarx
Brinqa, a cyber risk management solutions provider, this week announced a strategic partnership with Checkmarx, a vendor for application security solutions, to help organizations build “world-class” application security programs that meet the needs of today’s evolving threat landscape. This partnership combines the risk-based prioritization, automation, and reporting in the Brinqa Attack Surface Intelligence Platform with the Checkmarx One Application Security Platform, a comprehensive application security solution.
Securiti Unveils Unify Partner Program
Securiti, a provider of unified data controls, this week announced the introduction of its Securiti Unify Partner Program (UPP). The company’s partner program brings together global technology, cloud, and solution providers to customers by creating a layer of unified data intelligence and controls. Securiti’s DataControls Cloud partners can support organizations to realize greater value and outcomes from their existing data systems and investments across multi-cloud, SaaS, and on-premise environments.
QuProtect Awarded AWS Qualified Software Certification
QuSecure, Inc., a leader in post-quantum cryptography (PQC), this week announced that its QuProtect PQC solution has been recognized as Qualified Software by Amazon Web Services (AWS). Certification was achieved upon successful completion of the Foundational Technical Review (FTR). Passing the FTR recognizes QuSecure as a validated partner on the Software Path in the AWS Partner Network, fast-tracking QuProtect toward a co-selling program. QuSecure also achieved AWS Public Sector Partner Program designation, which recognizes AWS Partners with cloud-based solutions and expertise in the areas of government, space, education, and non-profit organizations. With this designation, QuSecure can now leverage the AWS brand and ecosystem to bolster its distribution efforts.
Oreo Cookie Parent Company, Mondelez Global, Hacked; 50k+ Employees’ Personal Info Leaked
Mondelez Global LLC, the parent company of Oreo cookies and other major food products have released a notice stating that Oreo cookie maker Hacked, they have faced a data breach that involves several personal information. Bryan Cave, which acts as a legal supporting firm for Mondelez mentioned that unauthorized access to the systems has been detected between February 27, 2023 and March 1, 2023. Investigations are still being done and legal authorities have been contacted. Second unauthorized access to the systems was detected on March 24, 2023, 23 days prior to the first breach. Data that was stolen during these breaches are under investigation and yet to be confirmed. The data that has been confirmed to be leaked during this breach belongs to current and former employees of Mondelez. Affected employees are currently being notified about the breach and the company is working on taking necessary actions.
USDA Investigating Possible Russian-Hacker-Related Data Leak
The US Department of Agriculture is investigating a “possible data breach” of a department contractor connected to a broader hack on multiple federal agencies that officials have blamed on Russian cybercriminals, a department spokesperson told CNN on Saturday night. The news brings the list of publicly known US agencies to be targeted or breached by the Russian-speaking hackers to three. The US Office of Personnel Management is impacted by the cyber incident, CNN first reported on Friday, as are two organizations in the US Department of Energy.
Baffle Launches Baffle Manager 2.0
Data security solutions provider, Baffle, Inc. released Baffle Manager 2.0 this week . The updated platform delivers a new user interface (UI) and other features that highly automate enterprise-wide data protection for applications, analytics and AI. Baffle Manager 2.0’s new UI, APIs, automation and expanded integrations deliver a single platform to create and manage data-centric protection policies that can be reused and enforced across all cloud-native stores, legacy and third-party applications and new AI initiatives. Baffle Manager 2.0 also includes a secrets store, certificates store and Single Sign-on (SSO) authentication to simplify deployment and enterprise integration. And virtually every action can be fully automated with Baffle Manager 2.0’s integrations.
Expert Insights Section
Watch this space each week as Solutions Review editors will use it to share new Expert Insights Series articles, Contributed Shorts videos, Expert Roundtable and event replays, and other curated content to help you gain a forward-thinking analysis and remain on-trend. All to meet the demand for what its editors do best: bring industry experts together to publish the web’s leading insights for enterprise technology practitioners.
ChatGPT, DALL-E, and the Future of AI-Based Identity Fraud
Avidan Lamdan of AU10TIX looks at the current state of identity fraud, AI tech, and the ever-evolving future of AI-based identity fraud. As artificial intelligence advances, it’s taking on an ability to mimic humans in amazing ways. While the potential for positive impact is enormous, it also poses a risk for malicious use, particularly in the realm of synthetic identity fraud. This type of fraud involves bad actors using a combination of real and fake information to create a new identity, and can be perpetrated using deepfakes — artificially created media such as videos or images that are so convincing they appear to be real — and other forms of AI-generated identity fraud. While current ID verification solutions are effective against more established forms of identity fraud, they may not be equipped to tackle the newer generative AI-based threats. In this article, we will explore how AI technologies and large neural networks like ChatGPT and DALL-E are being exploited through deception. We will also discuss the emerging technologies that can help address this challenge.
The AI Era: Why Cybersecurity Needs to Be Ready
Dr. Jason Zhang of Anomali warns all involved in cybersecurity that the AI era is here, and we all need to be ready to brave the new world. From a defender’s perspective, the advent of AI is a welcome development. It can play an incredibly useful role in identifying malicious behavior from the millions of different events taking place each day across a network. For instance, it’s increasingly common for the bad guys to leverage legitimate software used in the Windows system to execute malware. That makes it hard to differentiate between malicious and legitimate behavior, which both use similar tools to execute. But here’s an instance where leveraging machine learning and AI improves the signal-to-noise ratio in the events to help security teams differentiate between the malicious and the benign. However, at the same time, AI now serves as a valuable weapon for cyber-criminals and other malicious actors to analyze huge amounts of data. That helps them more precisely target victims and automate their processes to speed up the cadence of attacks, making it harder for targeted victims to keep up with the pace of their cyber barrages.
DPUs and the Importance of Data Center Fabric Technology
Soni Jiandani of AMD gives us a closer look at DPUs (Data Processing Units) and the importance of data center fabric technology. Over the past decade, the evolution of data center fabrics has evolved into high-performing leaf-spine topologies to address the volume and velocity of emerging application architectures. Despite advancements in these fabrics, their associated services have not kept pace, resulting in efficiency bottlenecks and security vulnerabilities that impede productivity. This is where Data Processing Units (DPUs) come into play. DPUs are typically integrated into Smart Switches and other network devices to enable distributed services. Distributed services technology allows customers to scale and realize the potential of next-generation data center technology without the need to rip and replace existing infrastructure. DPUs and the advanced stateful software services they enable can be added incrementally to the fabric without adding performance and administrative overhead to application servers.
- Identity Management and Information Security News for the Week of July 7; SandboxAQ, Dig Security, Kivera, and More - July 7, 2023
- Identity Management and Information Security News for the Week of June 23; Brinqa, Securiti, Baffle, and More - June 22, 2023
- Debunking 7 Common IAM Myths - June 20, 2023