Core Insights - Cribl has announced a strategic partnership with Palo Alto Networks to enhance AI-driven SecOps and facilitate faster upgrades from legacy SIEM solutions to modern platforms [1] - The integration with Cortex XSIAM aims to provide customers with improved data onboarding, simplified proof of concept assessments, and a more secure SOC transformation [1][5] Company Overview - Cribl is positioned as the Data Engine for IT and Security, offering vendor-agnostic solutions that allow organizations to analyze, collect, process, and route IT and security data from any source [4] - The product suite includes Cribl Stream, Cribl Edge, Cribl Search, and Cribl Lake, catering to the needs of Fortune 1000 companies globally [4] Industry Context - The current security landscape is characterized by disconnected tools and alert fatigue, which hinder effective threat detection and response [2] - AI-powered security operations require comprehensive data management to ensure effective deployment and response to evolving threats [2][3] - Legacy security solutions are increasingly inadequate in addressing the volume of data and sophistication of threats faced by organizations today [3]

Fulton, MD, April 28, 2025 (GLOBE NEWSWIRE) -- Arms Cyber, a pioneer of the first Automated Moving Target Defense (AMTD) anti-ransomware solution, is pleased to announce it has been selected for the Microsoft for Startups Pegasus Program. This global invitation-only program is designed to accelerate the growth of high- potential startups by providing access to Microsoft's extensive resources, technology, and enterprise network. The Pegasus Program offers a robust platform for startups to rapidly scale by co ...

Core Insights - The 2025 Global Threat Landscape Report from FortiGuard Labs indicates a significant rise in Cybercrime-as-a-Service on the darknet, leading to a booming market for credentials, exploits, and access [1][2] Group 1: Cybercrime Trends - Automated scanning has reached record highs, with a 16.7% year-over-year increase in 2024, resulting in 36,000 scans per second globally [3] - Darknet marketplaces have become sophisticated, with a 39% increase in new vulnerabilities added to the National Vulnerability Database, totaling over 40,000 in 2024 [3] - AI is being leveraged by cybercriminals to enhance phishing attacks and evade security measures, with tools like FraudGPT and BlackmailerV3 becoming more prevalent [3] Group 2: Targeted Sectors - Critical sectors such as manufacturing (17%), business services (11%), and healthcare are experiencing a surge in tailored cyberattacks, with the United States being the most targeted country at 61% [3] - Cloud security risks are escalating, with 70% of incidents involving logins from unfamiliar geographies, emphasizing the need for identity monitoring [3] Group 3: Credential Theft - Over 100 billion compromised records were shared on underground forums in 2024, marking a 42% increase, largely due to the rise of "combo lists" containing stolen credentials [3] - Prominent cybercriminal groups like BestCombo and ValidMail are actively lowering the barrier to entry for cybercrime by packaging and validating stolen credentials [3] Group 4: Recommendations for Cybersecurity - The report provides actionable insights for CISOs, emphasizing the need for a proactive, intelligence-led defense strategy that incorporates AI and continuous threat exposure management [4][5] - Strategies include continuous attack surface management, real-world emulation of adversary behavior, and leveraging dark web intelligence to preemptively mitigate threats [8]

Core Insights - Commvault and CrowdStrike have expanded their partnership to provide a unified set of services focused on incident response, cyber recovery, and resilience, enabling organizations to recover faster and be better prepared for cyberattacks [1][2][4] Group 1: Partnership Overview - The collaboration combines CrowdStrike's elite incident response services with Commvault's recovery expertise, addressing the entire lifecycle of a cyber incident from preparation to recovery [1][4] - The partnership aims to improve readiness, response times, and recovery outcomes for joint customers, reflecting the increasing demand for integrated cybersecurity solutions [2][3] Group 2: Service Offerings - The unified suite includes CrowdStrike's incident response services and Commvault's Guardian retainer-based services, which encompass readiness assessments, recovery validation, and incident response recovery assistance [5][7] - The integration between Commvault Cloud and CrowdStrike's AI-native Falcon® platform enhances the ability to identify malicious activities and restore compromised data [5] Group 3: Market Context - Ransomware attacks occur every 14 seconds, with average recovery times of 24 days, highlighting the critical need for effective cyber resilience strategies [3][10] - The partnership addresses both pre-attack preparedness and post-attack recovery, which are essential for organizations facing sophisticated cyber threats [3][4] Group 4: Customer Benefits - Customers will experience faster incident response and recovery through real-time threat visibility and rapid restoration capabilities [7] - Enhanced risk mitigation is achieved through joint cyber resilience maturity assessments and continuous recovery testing [7] - The collaboration provides tailored support and scalability, ensuring that services meet specific resilience needs of each customer [7] Group 5: Industry Engagement - Commvault will showcase the integrated offerings at the RSAC Conference from April 28 to May 1, 2025, providing opportunities for attendees to learn more about the partnership and its solutions [8]

Core Insights - Palo Alto Networks has launched Cortex XSIAM 3.0, enhancing its SecOps platform with AI-driven Cortex Exposure Management and Advanced Email Security, aimed at improving security operations for customers [1][3][4] Group 1: Product Innovations - Cortex XSIAM 3.0 introduces proactive security measures, shifting the focus from reactive incident response to preventing breaches before they occur, addressing a total addressable market (TAM) of $37 billion [3][4] - The platform has achieved over $1 billion in cumulative bookings in FY25 Q2, marking it as the fastest offering to reach this milestone [2] - New features include AI-driven prioritization and automated remediation, which can reduce vulnerability noise by up to 99% [5][6] Group 2: Customer Impact - Customers have reported significant improvements in security operations, with one organization reducing mean time to resolution (MTTR) from over 24 hours to under two minutes and automating 86% of incidents [7] - The integration of multiple security capabilities into a single platform has led to enhanced efficiencies and a 100% incident close-out rate for some users [5][7] Group 3: Market Positioning - Palo Alto Networks continues to lead the cybersecurity industry by providing comprehensive AI-powered security solutions across various domains, including network, cloud, and security operations [9] - The company emphasizes the importance of platformization to streamline security processes and fuel innovation for enterprises [9]

Core Insights - Palo Alto Networks has launched Prisma Access Browser 2.0, the world's only SASE-native secure browser, aimed at enhancing security in a cloud-first environment [1][4] - The new browser is designed to secure generative AI usage, improve user experience, and enhance operational resilience in modern workplaces [1][5] Group 1: Product Features and Innovations - Prisma Access Browser 2.0 provides real-time visibility and access control to secure generative AI adoption, preventing data leaks through context-based classification [5] - The browser includes advanced protection against sophisticated web attacks, utilizing Precision AI to detect evasive threats such as AI-generated cloaking and phishing attacks [5] - New features also include Endpoint Data Loss Prevention (DLP) to enhance data classification accuracy and safeguard sensitive information from insider threats [6] Group 2: Market Context and Demand - With 85% of work occurring in browsers, there is a significant risk of data exposure, as 44% of security incidents are linked to browser activities [2][3] - The shift towards remote, cloud-based work necessitates a unified security approach, making secure browsers essential for modern work environments [4][5] Group 3: Strategic Partnerships and Future Plans - Palo Alto Networks collaborates with Oracle Cloud Infrastructure to enhance operational resiliency and user experience globally [7] - The new SASE features are expected to be generally available in Q4 FY25, indicating a strategic timeline for market introduction [8]

Core Viewpoint - Palo Alto Networks has launched Prisma AIRS™, a comprehensive AI security platform aimed at protecting the entire AI ecosystem, including applications, agents, models, and data, in response to the rapid adoption of AI across enterprises [1][2]. Group 1: AI Adoption and Security Needs - Enterprises are increasingly deploying AI applications and large language models (LLMs) across various functions, which drives innovation but also creates security vulnerabilities [2]. - There is a critical need for a comprehensive AI security platform to effectively protect AI initiatives and prevent security incidents [2]. Group 2: Features and Capabilities of Prisma AIRS - Prisma AIRS offers capabilities such as AI model scanning for vulnerabilities, posture management for security risks, AI red teaming for automated penetration testing, runtime security against various threats, and AI agent security against new threats [6]. - The platform is designed to provide continuous visibility and real-time insights into AI usage, helping organizations identify potential security issues [4]. Group 3: Strategic Enhancements and Future Plans - Palo Alto Networks plans to enhance Prisma AIRS through the acquisition of Protect AI, a leader in securing AI usage, which is expected to close by the first quarter of fiscal 2026 [4].

The acquisition will enable secure pursuit of AI innovation with confidence by helping customers discover, manage, and protect against AI-specific security risks—securing AI end to end from development to runtime. After the close of the transaction, Protect AI's solutions and team of experts will enable Palo Alto Networks to more quickly and comprehensively accelerate its vision for Prisma AIRS™, the industry's most complete AI security platform, also announced today. Prisma AIRS will offer customers unpara ...

Core Insights - Cisco announced transformative innovations and partnerships aimed at enhancing security professionals' ability to secure and leverage AI in response to a complex threat landscape and talent shortages [2][3] - The upcoming 2025 Cybersecurity Readiness Index indicates that 86% of organizations have faced AI-related security incidents in the past year, highlighting the urgency for improved security measures [2] Group 1: Innovations and Partnerships - Cisco XDR integrates agentic AI to improve threat detection and response, correlating data across various platforms to prioritize alerts and automate responses [4][5] - The collaboration with Splunk enhances network visibility and detection capabilities, allowing organizations to build a more efficient Security Operations Center (SOC) [5][6] - Cisco's Foundation AI initiative aims to democratize AI security through open-source tools and models, fostering collaboration among security experts [9][10] Group 2: AI Security and Risk Management - Cisco's AI Defense integrates with ServiceNow to provide comprehensive AI risk management and governance, facilitating secure AI adoption [8] - New AI Supply Chain Risk Management controls are introduced to protect against vulnerabilities in AI model files and datasets, ensuring secure deployment of AI applications [10] Group 3: Industrial IoT Security - Enhancements to Cisco's Industrial Threat Defense solution aim to secure critical infrastructure and industrial networks against cyber threats, integrating IT security measures into operational technology [11]

Core Insights - Concentrix Corporation has launched CyberProtect, a managed service security solution aimed at modernizing detection and response to security threats for businesses [1][2] - CyberProtect integrates AI-driven security operations and is designed to provide a holistic threat and response service across both on-premises and cloud environments [2][3] - The solution is built on a flexible model that allows clients to access proven tools and skilled analysts, reducing the complexity and cost of in-house management [2][3] Company Overview - Concentrix Corporation is a global technology and services leader, recognized as a Fortune 500 company, that provides integrated solutions to over 2,000 clients across various industries [5] - The company focuses on delivering end-to-end solutions that help clients address their business challenges efficiently and effectively [5] - Concentrix emphasizes its deep industry expertise and advanced technology solutions to drive intelligent transformation for its clients [5]