In the past month, several interesting products have been released by various companies in the cybersecurity industry. From ML/AI pentesting solutions to advanced fraud prevention capabilities, these products aim to enhance security measures and protect against evolving threats. Let’s take a closer look at some of the most notable releases.
NetSPI, a leading provider of security testing and vulnerability management solutions, has introduced its ML/AI Pentesting solution. This solution takes a holistic and proactive approach to safeguarding machine learning model implementations. It identifies, analyzes, and remediates vulnerabilities on machine learning systems, such as Large Language Models (LLMs). Additionally, it provides grounded advice and real-world guidance to ensure security is considered from ideation to implementation.
SpecterOps has released version 5.0 of BloodHound Community Edition (CE), an open-source penetration testing tool. This solution maps attack paths in Microsoft Active Directory (AD) and Azure environments. The update brings enterprise-grade usability features like containerized deployment, REST APIs, user management, and access control to BloodHound CE.
Qualys has unveiled a first-party software risk management solution as part of its Qualys Cloud Platform. This solution allows customers to assess risks in first-party applications and integrate their own assessment and remediation logic into the platform. It provides SecOps teams with a unified view of all first- and third-party applications, as well as open-source software in their environment.
Menlo Security has introduced two features, HEAT Shield and HEAT Visibility, to protect users against web browser threats. These threat prevention capabilities detect and block highly evasive threats targeting users via the web browser.
Synopsys has launched Software Risk Manager, a tool that simplifies application security testing for security and development teams. It aligns intelligent policy-driven orchestration and vulnerability management capabilities with Synopsys’ SAST and SCA engines. The tool supports other open-source and commercial AST tools, making it easier for organizations to streamline their application security testing across projects and teams.
Forescout has unveiled Risk and Exposure Management, a cloud-native product that offers a quantitative approach to risk prioritization. It collates data from various sources associated with an organization’s connected assets and calculates a unique multifactor risk score for each asset. This helps organizations prioritize risks based on quantitative data.
Traceable AI has integrated advanced fraud prevention capabilities within its API security platform. This holistic approach helps organizations detect and prevent real-time digital fraud. By analyzing patterns and behaviors in API traffic, Traceable can identify and stop fraudulent activities.
SonarSource has introduced a new deep-analysis capability that discovers and fixes code security issues. This innovation addresses the gap of traditional Static Application Security Testing (SAST) by analyzing user source code interactions with external dependencies. It aims to help organizations achieve clean code that is consistent, intentional, adaptable, and responsible.
Lineaje has developed BOMbots, a generative AI tool that helps remediate security issues. BOMbots act as a “co-pilot” by enhancing a user’s ability to find, understand, and mitigate specific software security and maintenance issues. Through an intelligent chatbot feature integrated with the Software Bill of Materials (SBOM), teams can engage in a conversation for a comprehensive resolution of complex issues.
Vicarius has launched vuln_GPT, an LLM model trained to generate remediation scripts for software vulnerabilities. This AI-powered remediation engine can automatically generate a script to execute actions like removing a file, closing a port, disabling a protocol, or initiating a compensating control.
LastPass has introduced FIDO2 authenticators, which remove the master password from customers’ login process. This feature provides passwordless login to LastPass vaults, enhancing security for users.
Adaptive Shield has integrated ITDR (Identity Threat Detection and Response) capabilities into its platform. These security measures help detect and respond to identity-related threats based on key indicators of compromise (IOCs).
ThreatConnect has launched an Intelligence Requirement capability that helps security teams articulate their requirements and streamline the threat lifecycle process. This feature automatically parses and organizes relevant intelligence related to each requirement, saving users time and effort.
Solvo SecurityGenie, powered by OpenAI, uses natural language processing (NLP) to help security teams identify and remediate security risks quickly and easily. It eliminates the need for manual searches by providing automated insights into misconfigurations, vulnerabilities, and compliance violations.
Action1 Corporation has released an updated version of its patch management platform. This platform brings together vulnerability discovery and remediation, helping enterprises fortify their defenses against threats like ransomware infections and security breaches.
MongoDB has introduced Queryable Encryption, a feature that helps organizations meet data privacy requirements. It protects sensitive data when it is queried and in-use on MongoDB, reducing the risk of data exposure.
Bitdefender has launched Scam Alert, an advanced security feature for iOS users. This technology protects users from phishing scams delivered through SMS/MMS messages and calendar invites, providing complete security for iPhone and iPad users.
SentinelOne and Netskope have partnered to deliver a joint solution that secures remote work from endpoint to cloud. The SentinelOne Singularity App for Netskope provides comprehensive visibility and protection against threats in distributed work environments.
Security Onion, a free and open platform for threat hunting and enterprise security monitoring, has released a new version with many updates and improvements. This platform is widely used by security teams worldwide.
Offensive Security has released Kali Linux 2023.3, the latest version of its penetration testing and digital forensics platform. This update introduces a redesigned Kali NetHunter app and a new NetHunter Terminal.
ImmuniWeb has introduced ImmuniWeb Neuron Mobile, an automated mobile app security testing solution. This AI-enabled solution helps discover vulnerabilities and weaknesses in iOS and Android mobile applications.
LOKKER has launched an On-demand Website Privacy Audit feature within its Privacy Edge software suite, specifically designed for healthcare organizations. This audit summarizes the highest priority privacy risks on an organization’s website.
Kingston Digital Europe has released the Kingston IronKey Keypad 200C, a hardware-encrypted USB Type-C drive that provides secure data protection and compatibility without the need for adapters.
Bitwarden has released Bitwarden Secrets Manager, an open-source, end-to-end encrypted solution for storing and managing secrets. This solution is designed for development, IT, and DevOps teams.
These products represent the latest advancements in cybersecurity technology. With their innovative features and capabilities, organizations can enhance their security measures and protect against evolving threats. By incorporating AI, automation, and encryption, these solutions offer more proactive and comprehensive approaches to safeguarding sensitive data and infrastructure.