Latest news with #DigitalRiskProtection
Business Mayor
22-05-2025
- Business
- Business Mayor
CTM360 report: Ransomware exploits trust more than tech
A recent wave of ransomware attacks has disrupted major retailers across the UK. According to a new report from CTM360, the attackers didn't need to break down the door, they were invited in through misplaced trust and weak identity safeguards. This wasn't about advanced malware or zero-day vulnerabilities. The attackers used common tactics: impersonating IT staff, tricking employees into handing over credentials, and intercepting multi-factor authentication codes. From there, they moved across networks. What went wrong? The report outlines a familiar yet dangerous pattern: attackers gained access through social engineering, stayed hidden while gathering intel, and finally deployed ransomware to cripple operations. In one case, the attackers added their own identity provider to a retailer's single sign-on system, giving them long-term access even after passwords were changed. They monitored internal communication channels, learned how the company handled security alerts, and used that knowledge to delay detection. When the time came, they hit hard. Ransomware locked systems. Online sales stopped. Contactless payments failed. And behind the scenes, sensitive data had already been stolen for added leverage. The bigger picture Ransomware groups don't need zero-days. They rely on people, misconfigurations, and common tools. The entry point might not be malware, it might be a phone call or a spoofed login screen. For CISOs, the real lesson here isn't just about controls. It's about assumptions. These attacks succeeded not because defences failed, but because basic trust was abused: trust in employees to recognize phishing attempts, trust in identity systems to block unauthorised access, and trust in remote access tools that attackers easily repurposed. This campaign echoes a broader trend. Threat actors are targeting identity, not infrastructure. They exploit how users authenticate, how systems connect, and how access is granted across cloud and on-prem environments. What CISOs should focus on The report recommends: Seeing the organization from an attacker's perspective Reducing digital exposure across identity and supply chain systems Reviewing remote access practices Applying focused hardening policies that are easy to enforce Auditing how internal trust boundaries are managed Download CTM360's How To Harden Against Ransomware report and discover how ransomware groups are exploiting identity systems instead of technical flaws. How CTM360 can help CTM360 offers a comprehensive, fully managed cybersecurity approach to help organizations become harder targets. Its platform brings together key services such as External Attack Surface Management (EASM), Digital Risk Protection (DRP), and Third-Party Risk Management (TPRM), enabling enterprises to proactively identify and mitigate vulnerabilities. EASM helps organizations uncover hidden entry points, such as exposed IPs and applications, before attackers can exploit them. DRP goes a step further by detecting early indicators of warning (IOW) and attack (IOA), effectively disrupting cybercriminals' planning phases. For organizations dependent on vendors, TPRM provides visibility into supply chain risks by identifying insecure configurations or vulnerable third parties. Complementing these services, CTM360 also offers Cyber Threat Intelligence (CTI) tailored to specific threat profiles and tactics, as well as robust email security through Domain-based Message Authentication, Reporting and Conformance (DMARC) enforcement.
Techday NZ
20-05-2025
- Business
- Techday NZ
Outpost24 adds AI summaries to boost digital threat analysis
Outpost24 has introduced AI-powered summaries to the Digital Risk Protection modules of its External Attack Surface Management platform. The new feature is designed to provide efficient threat analysis by reducing the time security teams spend interpreting complex findings and helping organisations manage digital risks more effectively. Outpost24's Digital Risk Protection modules enable organisations to identify, monitor, and protect against potential cyber threats before exploitation occurs. These modules continuously scan for exposed credentials, brand impersonations, data leaks, and other risks, but the volume and intricacy of findings can pose challenges for rapid decision-making by security professionals. With the addition of AI-enhanced summaries, each DRP finding is automatically condensed into a 25-word explanation. By employing large language model (LLM) technology, the platform aims to streamline the interpretation of threat intelligence and provide concise, helpful information. The AI-generated summaries are intended to offer content insights in an accessible format, translate threat information from foreign languages into English, and distil complex intelligence into key areas of concern for users. "The latest AI-powered feature in Outpost24's Digital Risk Protection solution enhances efficiency by providing time-saving summaries that support informed decision-making and proactive threat management. We will continue expanding AI capabilities across our Attack Surface Management solutions," Omri Kletter, Chief Product Officer at Outpost24, said The AI-enhanced summaries join the existing Domain Discovery AI feature in the External Attack Surface Management platform, reflecting Outpost24's ongoing research and development in artificial intelligence for attack surface management. Outpost24 has stated that, although DRP results are inherently based on publicly available data, the company is taking steps to prevent further data exposure. The AI summaries will be generated through a private instance of a large language model to help ensure information is not leaked to third parties. Outpost24, a prominent European cybersecurity firm specialising in Attack Surface Management (ASM), has solidified its position in the industry through strategic investments and leadership enhancements. The company is backed by Vitruvian Partners, an international investment firm known for supporting high-growth technology companies. Founded in 2001 in Sweden, Outpost24 has expanded its global footprint, serving over 3,000 customers across 65 countries. The company's comprehensive cybersecurity solutions encompass ASM, Digital Risk Protection (DRP), and Identity and Access Management (IAM), enabling organizations to identify assets, mitigate risks, and monitor emerging threats effectively. A key component of Outpost24's approach involves its team of ethical hackers who specialise in identifying and addressing complex threats. These professionals collaborate closely with client teams to enhance security measures and contribute to the broader cybersecurity community through research and intelligence sharing.
Cision Canada
24-04-2025
- Business
- Cision Canada
NetWitness and BforeAI Forge Strategic Partnership to Revolutionize Cybersecurity with Predictive Intelligence
BOSTON, April 24, 2025 /CNW/ -- NetWitness, a leading provider of threat detection and response solutions, and BforeAI, a pioneer in predictive security, today announced a strategic partnership aimed at transforming the cybersecurity landscape. This collaboration integrates BforeAI's PreCrime™ technology into the NetWitness Platform, delivering unparalleled predictive threat intelligence to proactively identify and mitigate cyber threats. "In today's rapidly evolving threat environment, anticipating and neutralizing cyberattacks before they occur is paramount," said John Pirc (JP), Head of Product Management at NetWitness. "By integrating BforeAI's predictive capabilities, we're empowering organizations to stay ahead of adversaries and protect their critical assets more effectively." BforeAI's PreCrime™ platform leverages advanced AI and machine learning to forecast malicious activities, enabling security teams to take pre-emptive actions. This integration enhances NetWitness's ability to provide comprehensive visibility and rapid response across complex digital infrastructures. "Our mission at BforeAI has always been to shift cybersecurity from reactive to proactive," said Luigi Lenguito, Founder and CEO at BforeAI. "Partnering with NetWitness allows us to extend our predictive insights to a broader audience, helping organizations thwart threats before they materialize." The combined solution offers: Predictive Threat Intelligence: Utilizing AI to identify and neutralize threats before they impact systems. Enhanced Visibility: Providing comprehensive insights into potential vulnerabilities and attack vectors. Accelerated Response: Enabling faster decision-making and incident response through advanced analytics. This partnership marks a significant advancement in cybersecurity, offering organizations a powerful tool to anticipate and defend against emerging threats. About BforeAI : BforeAI is a pioneer in Predictive Attack Intelligence and Digital Risk Protection Services (DRPS). Using behavioral AI, our PreCrime™ platform aims to shift cyber defense from reactive to preemptive. With brand protection and threat intelligence solutions, BforeAI is the industry's fastest, most accurate automated online fraud protection. To learn more, visit About NetWitness : Founded in 1997, NetWitness is a leading threat detection & cyber security monitoring company. The NetWitness platform combines visibility, analytics, and automation into a single solution allowing customers to prioritize, respond, reconstruct, survey, investigate and confirm information about the threats in their environment and take the appropriate response—quickly and precisely. Visit to learn more.
