Cloud Security

Application Security, Cloud Security, Vulnerabilities

Issued by: Security Week

Tracked as CVE-2021-22045 (CVSS score of 7.7), the security vulnerability exists in the CD-ROM device emulation function of Workstation, Fusion and ESXi. In an advisory, VMWare said the security defect could be exploited by attackers with access to a virtual machine that has CD-ROM device emulation enabled. An attacker capable of combining the security error…

Cloud Security

Issued by: Security Week

Financial terms of the transaction were not released but reports out of Israel peg the price tag in the range of $500 million. Google plans to pair Siemplify’s SOAR technology with its own home-built Chronicle security analytics platform to “change the rules on how organizations hunt, detect, and respond to threats,” according to Sunil Potti,…

Application Security, Cloud Security

Issued by: Security Week

Two new vulnerabilities were fixed, the most severe of which is CVE-2021-22057 (CVSS score of 6.6), an authentication bypass that affects VMware Verify two factor authentication. By exploiting the vulnerability, a malicious actor who has gained knowledge of the first-factor authentication, may provide it to obtain second-factor authentication from VMware Verify, VMware says. Tracked as…

Application Security, Cloud Security, Mobile Security, Software Security

Issued by: Security Week

ZeroFox provides an AI-powered platform that protects users and brands from social media-sourced threats. The platform analyzes millions of pieces of publicly-accessible content in platforms such as Microsoft 365, G Suite, LinkedIn, Facebook, Slack, Instagram, and Apple and Google mobile app stores — looking for potential threats such as account compromise, fraudulent profiles, business email…

Application Security, Cloud Security, Network Security

Issued by: Security Week

Eighteen cybersecurity-related acquisitions were announced December 1-12, 2021. Acclaim Technical Services acquires Entegra Systems Acclaim Technical Services (ATS), which specializes in operational support, language, and technology services, has acquired cyber technology solutions provider Entegra Systems. Both companies are US-based government contractors, and the acquisition of Entegra, which provides services to defense and intelligence agencies, will…

Application Security, Cloud Security

Issued by: Security Week

The number of cybersecurity-related mergers and acquisitions announced in the past months has remained constant, with 40 deals announced in November 2021. November 1-7 Appsian Security acquires Q Software ERP data security and compliance firm Appsian Security acquired Q Software, which specializes in security and compliance solutions for JD Edwards EnterpriseOne, JD Edwards World, and…

Cloud Security

Issued by: Security Week

Following the massive infusion of cash, investors are valuing the company at $8.3 billion. San Francisco, California-based Lacework was founded in 2015 by Mike Speiser (managing director of Sutter Hill Ventures) Sanjay Kalra (now founder and CEO at ShiftRight), and Vikram Kapoor (CTO). It was built on the principal that cloud security is fundamentally a…

Application Security, Cloud Security, Network Security

Issued by: Security Week

A total of 15 cybersecurity-related acquisitions were announced October 11-24, 2021. Ampa acquires CSS Assure Legal and professional services company Ampa has acquired cybersecurity firm CSS Assure, which specializes in data protection and risk management. Both companies are based in the UK. The CSS Assure brand will remain. Cellebrite acquires Digital Intelligence Israel-based digital intelligence…

Application Security, Cloud Security

Issued by: Security Week

A total of nine cybersecurity-related acquisitions were announced in the first 10 days of October 2021. 11:11 Systems acquires Green Cloud Defense Managed infrastructure solutions provider 11:11 Systems acquired Green Cloud Defense, a cloud infrastructure-as-a-service provider that specializes in managed cloud security solutions. The deal will help 11:11 Systems expand its capabilities and grow its…

Cloud Security

Issued by: Security Week

The company’s agentless CNAPP solution aims to secure multi-cloud IaaS and PaaS environments, as well as containers and data, through a single, unified interface. Founded in February 2021, the Santa Clara, California-based company offers support for major cloud infrastructure providers, including AWS, Azure, Google, IBM, and Oracle. Microsec.ai claims to provide visibility into containers, microservices,…