Latest news with #BLACKHAT
Yahoo
06-08-2025
- Business
- Yahoo
'Dirty Data' Undermines a Generation of AI Cybersecurity Tools, Study Finds
While 9 in 10 security leaders feel prepared for an attack, a new 'Trust Gap' report from Axonius finds only 25% actually trust their own data, leading to slow remediation and delays in AI adoption NEW YORK and LAS VEGAS, Aug. 04, 2025 (GLOBE NEWSWIRE) -- BLACK HAT USA 2025 -- A stark disconnect between cybersecurity confidence and the reality of security data is leaving organizations exposed, according to a new report released today. A recent study reveals that while 90% of cybersecurity leaders say their organization is prepared to take immediate action on a vulnerability, only a quarter of them (25%) trust all the data in their own security tools. This fundamental 'Trust Gap' is the central finding of a new research report commissioned by Axonius, the global leader in cyber asset intelligence. The study, which surveyed 500 U.S. director-level and above cybersecurity and IT leaders from companies with over 500 employees, found this data trust deficit (due to dirty data) directly impacts performance. Looking closer at the 1 in 4 leaders who mistrust their security data, they cite inconsistent data (36%), incomplete data (34%), and inaccurate data (33%) as the primary reasons. 'Many organizations mistakenly believe they have a clear picture of their security posture, but that confidence often rests on flawed or what some call 'dirty data'—information that's incomplete, inaccurate, or out of date,' said Ryan Knisley, chief product strategist at Axonius. 'Effective exposure management depends on reliable, trustworthy data. No amount of automation or AI integration can make up for a broken data foundation. Until that gap is addressed, the risk of a serious breach only grows.' Industry analysts agree that this data integrity issue is a primary obstacle to security modernization. 'The CISOs we talk to are investing heavily in automation and AI, but it is unclear how many of these projects will actually deliver on their promise,' said Andrew Braunberg, principal analyst, Omdia. 'The reason is simple: AI algorithms are only as good as the data they're fed. A single, credible view of all assets and their exposures is critical for organizations to train accurate, predictive, and up-to-date models.' Key findings from the report include: Execution Lags Behind Confidence: Despite feeling prepared, 4 in 5 organizations (81%) take more than 24 hours to remediate a critical vulnerability or (80%) exposure, giving attackers a wide-open window to exploit security weaknesses. This is compounded by key operational challenges, including difficulty with prioritization and risk assessment (29%), and a lack of integration between security tools (27%). CTEM Adoption is a Priority, But Faces Hurdles: While 58% of organizations report having adopted a Continuous Threat Exposure Management (CTEM) framework to become more proactive, they face significant challenges. The top obstacles include integrating CTEM tools across platforms (38%), measuring ROI (35%), and automating remediation (34%). AI's Potential is Hindered by Bad Data: Organizations are eager to use AI and automation for tasks like automated patching (42%) and AI-driven risk prioritization (40%). However, the top challenge to incorporating these technologies is integration issues with existing systems (38%)—a problem rooted in a weak data foundation. 'The industry is chasing the promise of proactive, predictive security, but you can't predict threats if your view of the battlefield is a mirage,' continued Knisley. 'The path forward requires a real commitment to establishing the right context: a consolidated view across environments for what exists in an environment and how it's exposed. Only then can teams close the gap between feeling ready and actually being ready, enabling them to preemptively tackle threats and build lasting cyber resilience.' To download the full report, The Trust Factor: How Trusted Data Drives Smarter Vulnerability and Exposure Management, please visit Visit Axonius at Black Hat USA 2025Axonius will present research findings and demonstrate the Axonius Asset Cloud at Black Hat USA 2025 from Aug. 6–7. To learn more and see live demos, visit the Axonius team at Booth #3051. About the StudyThe study was commissioned to understand how organizations are managing vulnerabilities and exposures in a complex, modern IT environment. A key underlying issue is that data is often scattered across siloed systems, preventing a single, credible view of assets, vulnerabilities, and their business context. Team LEWIS Research conducted an online survey of 500 security and IT leaders (400 cybersecurity professionals and 100 IT professionals). Respondents were in the United States and held titles of director-level or above at organizations with more than 500 employees. All respondents had decision-making authority for security and/or IT-related decisions. Data was collected in the first and second calendar quarter of 2025. About Axonius:Axonius transforms asset intelligence into intelligent action. With the Axonius Asset Cloud, customers preemptively tackle high-risk and hard-to-spot threat exposures, misconfigurations, and overspending. The integrated platform brings together data from every system in an organization's IT infrastructure to optimize mission-critical risk, performance, and cost measures via actionable intelligence. Covering cyber assets, software, SaaS applications, identities, vulnerabilities, infrastructure, and more, Axonius is the one place to go for Security, IT, and GRC teams to continuously drive actionability across the organization. Cited as one of the fastest-growing cybersecurity startups, with accolades from CNBC, Forbes, and Fortune, Axonius supports millions of assets for leading customers across industries and around the world. Bring truth to action with Axonius. Learn more at Media Contact:press@
Scoop
06-08-2025
- Business
- Scoop
Rubrik And Sophos Join Forces To Enhance Microsoft 365 Cyber Resilience
BLACK HAT USA, LAS VEGAS – August 6, 2025 – Rubrik (NYSE: RBRK), the cybersecurity company, and Sophos, a global leader of innovative security solutions for defeating cyberattacks, today announced a strategic partnership to provide Sophos M365 Backup and Recovery Powered by Rubrik. This marks the first Managed Detection and Response (MDR)-optimised Microsoft 365 backup and recovery solution fully integrated into Sophos Central, Sophos' security operations platform. Designed to support IT and cybersecurity teams, the new offering will provide a unified global platform to enhance cyber resilience against ransomware, account compromise, insider threats, and data loss in SharePoint, Exchange, OneDrive, and Teams. "We are reshaping what it means to stay operational in a world shaped by constant digital disruption,' said Joe Levy, CEO, Sophos. 'This is the future of cyber resilience: an intelligent, adaptive partnership that ensures organisations remain secure, responsive, and uninterrupted. By combining Sophos' prevention-first approach with Rubrik's unwavering recovery capabilities, we empower businesses to withstand attacks and maintain continuity, even under pressure." Sophos will offer a powerful new add-on solution for its more than 75,000 MDR and XDR customers—enabling fast, secure recovery of critical Microsoft 365 data in the event of accidental deletion or malicious compromise. This solution integrates Rubrik's industry-leading SaaS-based protection directly into the trusted Sophos Central platform, giving organisations the flexibility to enhance their existing security operations with robust data recovery capabilities. The Sophos Central platform integrates over 350 different telemetry sources across endpoint, cloud, network, identity, email and business applications. The platform leverages deep learning, custom LLMs, and frontier models to detect and respond to threats across the entire attack surface, enhancing defense effectiveness. Advertisement - scroll to continue reading "The reality of today's threat landscape demands a holistic approach to cyber resilience," said Bipul Sinha, CEO, Chairman, and Co-founder of Rubrik. "With AI-enabled attacks and sophisticated breaches on the rise, organisations need more than just prevention; they need the ability to recover rapidly and reliably. Our partnership with Sophos delivers this critical capability directly within a platform security teams already use and trust, raising the bar for Microsoft 365 resilience." The Evolving Threat Landscape According to The State of Ransomware report by Sophos, nearly half of organisations impacted by ransomware chose to pay the ransom to recover their data. Despite this, only 54 per cent of affected companies relied on backups for data restoration, highlighting a continued gap in effective cyber resilience practices. Recent research highlights the urgent need for robust Microsoft 365 data protection: 60 per cent of Microsoft 365 tenants have experienced account takeovers, a frequent launchpad for lateral movement within an organisation, and 81 per cent have encountered email compromise. When global admin credentials are compromised, attackers can manipulate retention settings and permanently delete critical business data. Existing tools were not designed for comprehensive, large-scale recovery, which requires speed, granularity, and reliability for rapid restoration. Sophos MDR and XDR customers will benefit from: Secure, immutable backups: Rubrik will isolate Microsoft 365 backups with air-gapped storage, WORM locks, and customer-held encryption keys. Multifactor authentication and data lock prevent tampering—even with compromised credentials. Fast, flexible recovery: Customers will be able to restore Microsoft 365 emails, OneDrives, SharePoint sites, Teams channels, and more to original or alternate users, including inactive accounts. Automated protection: Rubrik will automatically discover Microsoft 365 users, sites, and mailboxes, applies Entra ID-based policies, and supports delegated admin – all integrated with Sophos Central to reduce manual effort. Unified experience: Microsoft 365 protection and security operations will be managed via Sophos Central with no extra tools. Rubrik and Sophos' shared commitment to helping organisations operate with confidence in the face of risk, will provide Sophos customers and partners with a powerful solution to recover with speed and precision when threats inevitably break through. This offering will be available through Sophos' channel partner network in the coming months. To learn more about the Rubrik and Sophos partnership, read our blog post. If attending Black Hat USA, visit booths #1357 (Rubrik) and #2740 (Sophos). About Rubrik Rubrik (NYSE: RBRK) is on a mission to secure the world's data. With Zero Trust Data Security™, we help organizations achieve business resilience against cyberattacks, malicious insiders, and operational disruptions. Rubrik Security Cloud, powered by machine learning, secures data and identity across enterprise, cloud, and SaaS applications. We help organizations uphold data integrity, deliver data availability that withstands adverse conditions, continuously monitor data risks and threats, and restore businesses with their data when infrastructure is attacked. About Sophos Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is now the largest pure-play Managed Detection and Response (MDR) provider, supporting more than 30,000 organizations. In addition to MDR and other services, Sophos' complete portfolio includes industry-leading endpoint, network, email, and cloud security that interoperate and adapt to defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) worldwide, defending more than 600,000 organizations worldwide from phishing, ransomware, data theft, other every day and state-sponsored cybercrimes. The solutions are powered by historical and real-time threat intelligence from Sophos X-Ops and the newly added Counter Threat Unit (CTU). Sophos is headquartered in Oxford, U.K.
