Rapid 7 s Deal
On Monday, Rapid7 announced it had purchased the external threat intelligence firm IntSights Cyber Intelligence Ltd. for approximately $335 million in cash and stock.
Rapid7 says it will merge Insight Cyber Intelligence s external threat intelligence capabilities with its community-based threat intelligence to create a unified view of the threat landscape.
Rapid7 plans to integrate IntSights external threat intelligence segment with its own platform, which will help enable faster threat identification and remediation.
In addition, IntSights will boost Rapid7 s XDR product line and enable the company to create a standalone threat intelligence product, Rapid7 says. By integrating IntSights external threat intelligence capabilities into Rapid7 s XDR solution, InsightIDR, we expect to provide security teams with expanded visibility and detections of internal and external threats across their traditional and modern environments - enabling them to quickly pivot into
NIST Publishes Critical Software Security Guidance
July 28, 2021
July 28, 2021
Compliance
dangun127) • July 21, 2021
Photo: Mike via Flickr/CC
New guidance from the National Institute of Standards and Technology spells out security measures for critical software used by federal agencies and minimum standards for testing its source code. The best practices could be a model for the private sector as well.
NIST s release of best practices carries out a mandate in President Joe Biden s May executive order on cybersecurity, which, in part, called for agencies to address supply chain threats, such as that posed by the SolarWinds incident, by more carefully scrutinizing critical software as later defined by NIST.
Senators Introduce Federal Breach Notification Bill
July 28, 2021
July 28, 2021 Twitter Get Permission
Sens. Mark Warner (right) and Marco Rubio introduced the Cyber Incident Notification Act of 2021 bill on Wednesday.
A bipartisan group of senators formally introduced a federal breach notification bill Wednesday that would require federal agencies, federal contractors and organizations that are considered critical to U.S. national security to report security incidents to the Cybersecurity and Infrastructure Security Agency within 24 hours of discovery.
Under the Cyber Incident Notification Act of 2021, companies that do not report an incident within 24 hours could face a maximum financial penalty equal to 0.5% of the previous year s gross revenue. The measure, however, allows for exceptions to the penalty, depending on the circumstances.
Senior Executive Advisor - Workforce and Customer Identity and Access, Okta
Mike Dessert provides global executive advisory services at Okta. Mike is an industry expert in Enterprise IT, with specializations in Identity andAccess Management (IAM) technology, large-scale software development, enterprise architecture, and DevSecOps. Prior to joining Okta, Mikeserved as an IT executive at a major Detroit-based Big3 Automotive Corporation over two decades, leading global solutions in Sales and Marketing,Dealers Networks, Supply Chain, Aftermarket, and Corporate Staffs, as well as leading the Enterprise, Security, and Solution Architecturepractices. Mike launched his IT career building applications and infrastructure at EDS and Netscape Communications, and is a proud graduate ofthe University of Michigan.
Spyware Zero-Day Hits Show Apple Ecosystem s Imperfections govinfosecurity.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from govinfosecurity.com Daily Mail and Mail on Sunday newspapers.