Latest news with #Cybereason
Forbes
08-05-2025
- Business
- Forbes
Your SOC Doesn't Need More Alerts—It Needs A Brain
Padraic O'Reilly is the Founder at CyberSaint, transforming cyber risk management with AI, automation, and actionable insights. getty The phrase "alert fatigue" has become a mainstay in cybersecurity conversations. However, behind the flood of findings, alerts, vulnerabilities and compliance gaps lies a deeper problem: the security context crisis. Security teams aren't just drowning in volume; they're operating without a clear sense of what matters most and why. As expected, the cybersecurity landscape is in constant flux—both inside and outside your organization. Every day, new vulnerabilities are discovered, common vulnerabilities and exposures (CVEs) are published, threat actor tactics, techniques and procedures (TTPs) evolve and active exploit campaigns emerge. Meanwhile, internally, asset inventories shift, misconfigurations pop up and controls degrade. Each of these changes can introduce new risk, but rarely are they evaluated together. Correlating this evolving external threat landscape with an equally dynamic internal environment is no small feat, and without the right context, it's nearly impossible to prioritize next steps effectively. Security operations centers (SOCs) are overwhelmed. According to a 2023 Cybereason report, 16% of surveyed SOC professionals manage only 50% to 59% of their weekly alert volume—meaning nearly half of incoming alerts go unactioned. This is not a resource issue; it's a signal-to-noise issue. This results in analysts spending more time triaging than reducing risk and security leaders struggling to extract meaning from the chaos. The costs of this crisis are already playing out in SEC filings and earnings reports. In January 2025, ahead of the World Economic Forum's annual meeting, global leaders warned of not just isolated attacks but a convergence of geopolitical tension, AI-powered threats and increasingly fragile digital infrastructure. CISOs and heads of state alike flagged the growing risk of large-scale systemic cyber events, where one compromised system could trigger cascading failures across sectors. Despite this clear and present danger, many organizations still manage cyber risk in silos with disconnected tools and manual processes that can't keep pace. The threats are evolving faster than our ability to see them—let alone act. Regulators are also increasing the pressure. The SEC has begun cracking down on companies for downplaying the scope or impact of cyber incidents. These datapoints are signs of a system under strain, where the inability to identify and act on meaningful threats before they materialize leads to costly impacts. The future of cybersecurity isn't about shrinking the number of alerts but about surfacing the right ones. This means providing context so security teams can address the highest priority findings first. Security teams today are forced to treat every finding like a potential crisis because they lack the necessary context to know which issues are critical. Maybe it is, maybe it isn't? Every alert is potentially critical because there isn't a reliable way to correlate internal cyber risk posture data (controls, assets, configurations, etc.) with external threat intelligence. Teams are stuck reacting to noise instead of acting on risk. This is where AI can help—not by replacing teams but by augmenting them with clarity and prioritization. AI's role in security isn't to replace human analysts. It's to amplify their ability to prioritize by analyzing massive volumes of security-relevant data in real time and making connections that would take humans days or weeks to uncover. AI can identify patterns, anomalies and correlations that are invisible to the naked eye. For companies I've personally worked with, it can flag the three alerts out of 3,000 that actually point to a business-critical issue based on how likely and impactful the risk is—and it can do so continuously, learning and adapting to evolving threats and environments. The shift isn't just toward automation; it's toward intelligent, contextual decision-support. However, AI is only as powerful as the data it's trained on. In cybersecurity, that means pulling together everything—from asset configurations to TTPs to missing controls—and understanding how it all interacts. The power of AI lies in its ability to connect these dots. Not just to reduce alert volume but to prioritize what matters based on business impact. Is this vulnerability on an internet-facing, revenue-generating asset? Is it being actively exploited in the wild? Do we have controls in place to mitigate it, or do we need to escalate? That's the kind of insight that prevents breaches, and that's what's missing today. To bring meaning to chaos, organizations must ingest and correlate data such as vulnerabilities (system-specific exposures), common weakness enumerations (code-level flaws and design weaknesses), CVEs (known public vulnerabilities), TTPs (adversary behavior patterns such as MITRE ATT&CK), threat intelligence feeds (emerging IOCs and APT campaigns), assets (business-critical systems, endpoints, cloud workloads, etc.), control gaps (deviations from expected security posture), risks (aggregated threat likelihoods and impacts), compliance frameworks (requirements from NIST CSF, ISO 27001, etc.) and business context (which systems support revenue, operations or customer experience). As cyber threats grow more dynamic and the internal environment shifts daily, CISOs are under pressure to lead with precision. However, precision requires clarity. Before meaningful automation or response can happen, CISOs must ask the right questions that expose where context is missing. Here are a few to start with: • Are we treating many of these alerts equally because we don't trust our prioritization logic? • Do we understand our control environment and, importantly, holistic cyber risk posture well enough to know where we're most vulnerable? This means taking into account all relevant datapoints. • Can we correlate our internal control data with active threat intelligence in real time? If not, why? How can we make this a strategic priority? If the answer is "not yet," it's time to rethink the way your security program operates. The next evolution of cyber risk management is powered by real-time data, automation and AI, and leaders (whether technical or business-side) can't make this shift soon enough. The tools are finally available if you look for them. Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
Int'l Business Times
21-04-2025
- Business
- Int'l Business Times
Trump Bares 'Non-Tariff Cheating' List In Easter Sunday Trade War Warning, Mentions Japan, EU
Trump indicated that Japan's "bowling ball test" is an example of "protective technical standards" He also said the EU's stance on genetically engineered corn was a form of "protective agricultural standards" Some X users raised issue with Trump's stance on VATs as well as his views on the EU's agricultural practices President Donald Trump has issued what is deemed a warning to countries trading with the United States as he published a "non-tariff cheating" list that he believes are unfair trade practices beyond tariffs. Trump shared his eight-point plan on his social media platform on Easter Sunday, as countries urgently weigh their options on whether they should secure a trade deal with Washington or, like China and Canada, stand their ground. Trump hits Japan, EU, in "cheating" list For the Republican leader, the following practices are a form of "cheating" in trade, even if they don't involve tariffs: Currency manipulation VATs (value-added taxes), which act as tariffs and export subsidies Dumping below cost – an economic term that refers to countries or companies exporting products at lower prices than domestic sale prices Export subsidies and other government subsidies Protective agricultural standards (e.g., no genetically engineered corn in the EU as per Trump) Protective technical standards (Japan's bowling ball test as per Trump) Counterfeiting, piracy, and IP (intellectual property) theft (over $1 trillion a year as per Trump) Transshipping to evade tariffs Trump's list, which specifically mentioned some countries and regions, came amid increasing scrutiny over his global tariffs that have been placed under a 90-day pause for most nations, but will take effect early in July. Even though Trump did not mention China in his post, a 2022 report by cybersecurity firm Cybereason revealed that Chinese hackers have been siphoning trillions in stolen intellectual property from some 30 multinational companies within various industries. X users take issue with Trump's VAT stance While some people on Elon Musk-owned X were still trying to figure out Trump's reasoning for posting his list, a growing number of users raised issues with the president's views regarding VATs. One user asked whether Trump was expecting other countries "to change their VAT systems—a taxation method that doesn't even negatively affect U.S. imports" for his own interests. "Delusional. And not happening," the user said. Another user said Trump appeared to have a lack of understanding of VAT. "No American (or other) exporter company pays VAT in Europe as it is paid and reclaimed by the local sales channels," the user pointed out. So it is clear, Trump not only does not understand tariffs, but he has no clue what VAT is about: it is paid by the end user/customer. All the companies can reclaim or deduct it. No American (or other) exporter company pays VAT in Europe as it is paid and reclaimed by the local… — Sowhat? (@KMediaEng) April 20, 2025 Concerns over Trump's agricultural expectations rise Aside from his seeming demands over VATs, Trump's list is also in question over his views on the European Union's corn practices. "Forcing countries to drop their food standards is crazy," said one user. Forcing countries to drop their food standards is crazy. so if genetically engineered corn is okay, then lab grown meat should also be encouraged. Where do we draw the line here ? — Htmk (@Htmk1111) April 20, 2025 "He thinks he decided what we eat in the EU. Let him go for a walk," said another. Trump has yet to address concerns around his definitions of unfair international trade.
Yahoo
05-03-2025
- Business
- Yahoo
SoftBank-Backed Cybereason CEO Quits After Boardroom Turmoil
(Bloomberg) -- Cybereason Inc.'s chief has stepped down following a months-long feud with investors SoftBank Group Corp. and former US Treasury Secretary Steven Mnuchin that's stalled decision-making at the cash-strapped startup. How Upzoning in Cambridge Broke the YIMBY Mold Remembering the Landscape Architect Who Embraced the City Republican Mayor Braces for Tariffs: 'We Didn't Budget for This' NYC's Finances Are Sinking With Gauge Falling to 11-Year Low US Tent Facility is Holding Migrant Families Longer Than Recommended Eric Gan resigned after a boardroom battle erupted at the La Jolla, California-based cybersecurity company, which has been struggling to raise money and stem losses. A planned merger with Chicago-based peer Trustwave Holdings Inc. has also been terminated, according to a person familiar with the matter. Gan, a former SoftBank executive who helped the tech investor build telecom infrastructure in Japan, sued Mnuchin and the Vision Fund last month, alleging the investors had prioritized their own interests and stymied his efforts to raise the money needed to stave off bankruptcy. Both Mnuchin and the Vision Fund deny the allegations. 'I cannot continue to lead a company where critical decisions are made based on personal interests rather than what is best for the organization,' Gan said in an internal email to staff. 'I cannot stand by while minority shareholders, employees and customers suffer the consequences.' Manish Narula, Cybereason's chief financial officer, has been appointed to succeed Gan as CEO, according to another person familiar with the matter. An announcement will be made this week, the person said. At the heart of the dispute is a disagreement over how to structure fundraising in such a way that it doesn't disadvantage or undervalue the startup. The lawsuit alleged that Liberty and Vision Fund proposed a financing that would have deliberately excluded management and further concentrate power in the hands of the two entities. Representatives at the Vision Fund, SoftBank Corp. and Trustwave declined to comment. Representatives at Liberty didn't respond to a request for comment. Investors have devoted more than $800 million to Cybereason. The startup sells technology that it says uses artificial intelligence to predict and defeat cyber-attacks. The company was potentially worth billions of dollars at one point but its valuation later tumbled to less than $400 million. In the latest round of talks, the Vision Fund, SoftBank's telecom arm and Mnuchin's Liberty Strategic Capital are working to close a deal as soon as this week, according to people familiar with the matter, asking not to be named as the discussions remain private. As recently as last month, fundraising talks involved Liberty, the Vision Fund, All Blue Capital and Andra Capital for a plan to put about $100 million into Cybereason and increase their control. Representatives for All Blue and Andra declined to comment. Gan said he's pressing forward with litigation against the Vision Fund and Liberty. 'I'm still fighting for justice,' he said by phone without elaborating. (Updates with company responses in the 10th paragraph.) The Mysterious Billionaire Behind the World's Most Popular Vapes Rich People Are Firing a Cash Cannon at the US Economy—But at What Cost? Snack Makers Are Removing Fake Colors From Processed Foods Trump's SALT Tax Promise Hinges on an Obscure Loophole The US Is Withdrawing From Global Health at a Dangerous Time ©2025 Bloomberg L.P. Sign in to access your portfolio
Yahoo
27-02-2025
- Business
- Yahoo
SoftBank, Mnuchin Weigh Deal to Salvage $800 Million Cyber Firm
(Bloomberg) -- Former US Treasury Secretary Steven Mnuchin and SoftBank Group Corp.'s Vision Fund are discussing a deal to salvage Cybereason Inc., a onetime Silicon Valley unicorn that has lost most of its value amid boardroom turmoil. The Trump Administration Takes Aim at Transportation Research Shelters Await Billions in Federal Money for Homelessness Providers NYC's Congestion Pricing Pulls In $48.6 Million in First Month New York's Congestion Pricing Plan Faces Another Legal Showdown NYC to Shut Migrant Center in Former Hotel as Crisis Eases A group of four investors — Mnuchin's Liberty Strategic Capital, the Vision Fund, All Blue Capital and Andra Capital — plans to put about $100 million into Cybereason and increase their control, according to people familiar with the matter, who requested anonymity as the details aren't public. The company's board has approved the deal but it has yet to close as the investors carry out due diligence and the transaction may still fail, one of the people said. Investors have poured more than $800 million into La Jolla, California-based Cybereason but the company is loss-making and has become mired in internal rancor. Chief Executive Officer Eric Gan — a former SoftBank vice president — sued Mnuchin and the Vision Fund earlier this month, alleging they had stymied his efforts to raise the funds needed to stave off bankruptcy in order to protect their own stakes. They have disputed the lawsuit, saying it lacked any merit. Representatives for the four investors declined to comment. Gan also didn't comment. The four investors would each have a right to nominate a director to a newly-constituted board of five members under the terms of the plan, the people said. The group would also have the right to propose executives, the people said. If the deal is successful, directors will begin a review of strategic options for Cybereason, including a potential sale or initial public offering, the people said. Gan has opposed the deal and pointed out multiple issues with it to the board, the people said. He proposed an alternative $150 million fundraising that directors rejected, they said. Cybereason sells technology that it says uses artificial intelligence to predict and defeat cyber attacks. The company was potentially worth billions of dollars at one point but its valuation later tumbled to about $300 million, Bloomberg reported last year. Under Gan, Cybereason announced a merger in November with Chicago-based cybersecurity firm Trustwave Holdings Inc. That deal has yet to close, the people said. A Trustwave spokesperson declined to comment. SoftBank, the technology firm led by billionaire founder Masayoshi Son, is exposed to Cybereason in multiple ways. The Vision Fund, its investment arm, is helping to lead this latest deal while the Tokyo-based company is also a significant standalone investor. The Vision Fund is also an investor in Mnuchin's Liberty, which led a $275 million fundraising for Cybereason in 2021, according to a Financial Times report at the time. --With assistance from Sarah McBride. Trump's SALT Tax Promise Hinges on an Obscure Loophole Warner Bros. Movie Heads Are Burning Cash, and Their Boss Is Losing Patience Walmart Wants to Be Something for Everyone in a Divided America China Learned to Embrace What the US Forgot: The Virtues of Creative Destruction Meet Seven of America's Top Personal Finance Influencers ©2025 Bloomberg L.P.
