Latest news with #Okta
Axios
a day ago
- Business
- Axios
Exclusive: AI threat-hunting startup Nebulock raises $8.5M
A new startup offering an AI-enabled threat-hunting platform is emerging from stealth today with backing from Bain Capital Ventures, the company first shared with Axios. Why it matters: Cyber defenders are in a race against malicious hackers to embrace AI tools before automated attacks become the norm. Some of the biggest advancements for defenders are coming from startups that have the flexibility to build new technologies from scratch, rather than retrofitting AI capabilities into existing products. Driving the news: Nebulock emerged from stealth today with $8.5 million in funding, including a fresh $6 million seed round led by Bain. Zoom in: Nebulock offers an autonomous threat-hunting platform that actively scans and responds to malicious activity on a company's system. The product — which uses both machine learning algorithms and AI agents to study telemetry data — can be plugged into the existing security stack, including CrowdStrike, Okta and Splunk, via an API to detect endpoint, identity and cloud security threats. While in stealth, Nebulock tested its products with a variety of customers across health tech companies, banks and VC-backed technology firms, Damien Lewke, the startup's founder and CEO, told Axios. The big picture: 90% of companies say they're not ready for AI-powered cyber threats, and cyber threat hunters are inundated with alerts about potential malicious activity across their companies' environments. Defenders have been eager for AI-enabled tools that can not only help them sort through those notifications but also automatically respond to significant threats. "Our vision is to have Nebulock be that teammate that tips the balance of power back in the hands of network defenders," Lewke said. Reality check: Cybersecurity has long been a crowded market, and automated threat response is no different. But Lewke told Axios that customers' awareness of the problem has been high. What's next: Lewke said the startup will use the new funds to hire more engineers and sales and marketing employees and also to build out the platform to expand the types of threats it can detect.
Business Wire
a day ago
- Business
- Business Wire
Nebulock Launches to Redefine Threat Hunting with AI-Powered Detection Capabilities
BOSTON--(BUSINESS WIRE)-- N ebulock, the AI-driven threat hunting platform transforming endpoint security, today announced it has raised $8.5 million in funding, including $6 million in seed funding led by Bain Capital Ventures. Additional participation came from Decibel, In-Q-Tel, Zetta Venture Partners, Step Function and Aviso Ventures, as well as angel investors. The new capital will fuel the expansion of Nebulock's autonomous threat hunting capabilities, enhance its cross-telemetry correlation engine, and scale its engineering and go-to-market teams. Nebulock was created to solve a glaring problem: organizations outside the Fortune 100 lack the resources and skills for proactive threat hunting. Threat hunting workflows take weeks to execute, and detection engineers today often spend more time triaging alerts or rewriting brittle detection logic than creating new threat hypotheses. Nebulock flips that model — giving threat hunters and detection engineers a proactive detection engine that writes and tests content automatically. Nebulock is built for the era of AI-enabled attackers and provides multi-threaded threat hunting continuously to ensure there's no single point of failure. This comes at a critical time when adversaries are equipped with AI to rapidly develop, adapt and deploy threats that evade traditional detections. Security teams, by contrast, are stuck with tools that react only after alerts fire, and 90% of companies say they're not ready for AI-powered threats. As attackers move faster and hide deeper, defenders need a system that can hunt without waiting for an alert. Nebulock helps organizations proactively understand and act on their own data. By using behavior-based threat hunting, the platform surfaces the findings others miss. Key features include: Proactive Insider Threat Detection: Nebulock identifies lateral movement, policy violations and attacker pre-positioning—surfacing insider threats before they escalate. Actionable Signal, Not Just Alerts: Nebulock continuously hunts across raw telemetry and delivers high-fidelity findings with true positive rates over 90%, no alert regurgitation. Feedback loops using LLMs refine detection quality over time. Fast, Seamless Deployment: Nebulock integrates directly with existing tools like CrowdStrike, Okta and Splunk via API. No agents or workflow disruptions. Natural Language Hunting and Detection Engineering: Write, test and iterate detections in plain English. Ask questions like 'who RDP'd into finance servers?' and get real answers—no SQL required. Continuously Learning Threat Engine: Every finding improves the next. Analyst feedback trains the system to reduce false positives and adapt to your environment in real time. 'Every organization deserves proactive detection, not just reactive alerts,' said Damien Lewke, founder and CEO of Nebulock. 'As adversaries increasingly use AI to their advantage, we built Nebulock to help defenders turn that technology into a practical asset. Our platform works around the clock as an autonomous threat hunter, using agentic AI to deliver high-fidelity alerts in real time. It enhances human judgment and enables security teams to stay ahead of emerging threats.' Enterprises across financial services, healthcare and technology are deploying Nebulock to bridge detection gaps and ensure that no threat goes unnoticed. With the new funding, Nebulock will double down on its AI capabilities, expand cross-telemetry coverage and scale the engineering team to meet demand. In addition, Nebulock will expand integrations with leading SIEM, EDR and IAM platforms. Nebulock was founded by Damien Lewke, a former security leader at Arctic Wolf, with experience at CrowdStrike, Palo Alto Networks and Northrop Grumman. His team includes alumni from leading companies such as CrowdStrike, Expanse, Expel, Dragos and Mandiant. 'Nebulock's AI agents don't just scan for known IOCs—they execute autonomous, behavior-based threat hunts that learn your environment,' said Rak Garg, partner at Bain Capital Ventures. 'In early deployments, that's led to real-world malware discovery, including dormant persistent threats and credential misuse that had evaded existing EDRs and SIEM detection rules. These are verified, actionable outcomes that security teams can act on immediately, without rewriting workflows or sifting through noise. Autonomous Nebulock agents are the future of threat hunting: essential virtual teammates for every security organization focused on detection and response.' For more information about Nebulock or to join the growing team, visit Nebulock is an AI-powered threat hunting platform designed to eliminate false negatives and automate threat detection across organizations. Built to integrate seamlessly with existing security infrastructure, Nebulock's platform leverages cross-telemetry correlation and AI to detect and respond to threats proactively. For more information, visit
TECHx
a day ago
- Business
- TECHx
Check Point Unveils MDR 360° and MXDR 360° Services
Home » Emerging technologies » Cyber Security » Check Point Unveils MDR 360° and MXDR 360° Services Check Point® Software Technologies Ltd., has announced the launch of Check Point MDR 360° and MXDR 360°. The new suite of managed detection and response (MDR) services is designed to streamline security operations and reduce response times. It also enhances visibility across endpoint, identity, cloud, and network environments. These services are part of the Check Point Infinity Global Services portfolio. They reflect the company's focus on delivering vendor-neutral cyber security solutions tailored for modern enterprises. Check Point revealed that MDR 360° and MXDR 360° offer 24/7 protection and expert-led incident response through a fully managed Security Operations Center (SOC). This is especially valuable in today's threat landscape, where organizations face growing risks, compliance demands, and a shortage of skilled professionals. The company emphasized its identity-first approach to threat detection. The new services offer full visibility, real-time monitoring, and misconfiguration detection across Microsoft Active Directory (AD), Entra ID, Okta, and other SSO platforms. This helps detect credential abuse, lateral movement, and privilege escalation early. Check Point reported that the services support a wide range of third-party tools across cloud, endpoint, identity, and SaaS environments. The open garden model allows customers to retain control and optimize existing investments. New integrations with industry leaders such as Amazon, Microsoft, and Wiz enhance the threat response process. For example, Wiz exposure alerts are transformed into prioritized incidents for faster investigation. Key capabilities include:• Vendor-neutral integrations across cloud, endpoint, firewall, and SaaS tools• Built-in identity threat detection for Microsoft AD, Entra ID, and Okta • Enterprise-grade SIEM and data lake support in the MXDR tier Check Point stated that MXDR 360° includes managed SIEM and a data lake, supporting compliance and cost-effective threat analytics. Meanwhile, MDR 360° adds identity-layer protection and expanded integrations, and the base MDR tier focuses on core detection using endpoint agents and APIs. The services come with over 100 expert-led incident response hours annually. These include planning, tabletop exercises, and root cause analysis, helping organizations strengthen their cyber resilience. According to Eitan Lugassi, VP of Infinity Global Services at Check Point, the integration of AI, threat intelligence, and identity protection allows faster, high-confidence responses from the 24/7 SOC. He noted that Check Point supports over 160 integrations to simplify operations and scale cyber defense across hybrid infrastructures. The company added that the services address growing identity-based attacks and support organizations with actionable intelligence and strategic security partnership. Check Point Infinity Global Services continues to deliver end-to-end managed security solutions, serving more than 5,000 organizations worldwide.
Channel Post MEA
a day ago
- Business
- Channel Post MEA
Check Point Software Launches Vendor-Neutral Managed Detection & Response Services
Check Point Software Technologies has announced the launch of Check Point MDR 360° and MXDR 360°, a new suite of managed detection and response (MDR) service packages. These offerings simplify security operations, reduce response time, and enhance visibility across endpoint, identity, cloud, and network environments. Part of the Infinity Global Services portfolio, Check Point MDR 360° and MXDR 360° reflect the company's commitment to delivering open garden, vendor-neutral cyber security services tailored to the needs of modern enterprises. As organizations face rising threats, compliance pressures, and a shortage of skilled talent, the services provide 24/7 protection and expert-led incident response through a fully managed SOC. With built-in identity protection, deep integrations, and enterprise-grade data capabilities, they help secure infrastructure and close critical security gaps across complex environments. 'With security teams under pressure, Check Point MDR 360° and MXDR 360° are designed to reduce operational burden with real-time, outcome-driven detection and response that is both flexible and vendor-agnostic,' said Eitan Lugassi, VP Infinity Global Services at Check Point Software Technologies. 'Check Point is unique in terms of our seamless integration of AI, threat intelligence, and identity protection, enabling faster, high-confidence decisions and stronger response actions by our 24/7 SOC and expert IT teams providing proactive services and crisis containment expertise when it matters most. With identity-focused threat detection and an open integration model, we're helping organizations cut through complexity and scale protection across hybrid infrastructures.' As attackers increasingly target users, identity protection has become essential. Check Point delivers full visibility, real-time monitoring, and misconfiguration detection across Microsoft AD, Entra ID, Okta, and other SSO platforms. This enables early detection of credential abuse, lateral movement, and privilege escalation. The new services are designed for interoperability, supporting a broad range of third-party tools across cloud, endpoint, identity, and SaaS environments. This open garden approach allows organizations to optimize existing investments without sacrificing control or visibility. New integrations with partners like Amazon, Microsoft and Wiz and other industry security organisations further enhance response workflows, for example, by transforming Wiz exposure alerts into prioritized incidents for faster investigation. Key Capabilities Include: Vendor-Neutral Integrations: Broad support across cloud, endpoint, firewall, and SaaS tools Broad support across cloud, endpoint, firewall, and SaaS tools Built-In Identity Threat Detection: Native support for Microsoft AD, Entra ID, and Okta, included as a core service Native support for Microsoft AD, Entra ID, and Okta, included as a core service Cost-Effective SIEM & Data Lake (MXDR Tier): Delivers enterprise-grade data management and compliance support while optimizing cost through a co-managed approach — using SIEM for high-value security analytics and Data Lake for cost-efficient data retention, threat hunting, and investigations. Delivers enterprise-grade data management and compliance support while optimizing cost through a co-managed approach — using SIEM for high-value security analytics and Data Lake for cost-efficient data retention, threat hunting, and investigations. Proactive and Reactive Incident Response: Includes 100+ expert-led IR hours annually, spanning crisis management, tabletop exercises, planning, and runbooks meant to help organizations prepare for, respond to, and recover from cyber incidents, with flexible hours leveraged for compromise assessments, root cause analysis, and other tailored support to strengthen cyber resilience. Includes 100+ expert-led IR hours annually, spanning crisis management, tabletop exercises, planning, and runbooks meant to help organizations prepare for, respond to, and recover from cyber incidents, with flexible hours leveraged for compromise assessments, root cause analysis, and other tailored support to strengthen cyber resilience. 24/7 Threat Detection and Response: Unified detection, investigation, and response across the full attack surface driven by alerts to proactively identify threats and escalate to IR when an active attacker is confirmed, enabling faster, higher confidence verdicts and actions across the threat lifecycle, unlike Incident Response which focuses on crisis management during an active breach. Check Point MDR and MXDR 360° are available via three flexible subscription tiers. The MDR tier provides core detection and response using endpoint agents and APIs. MDR 360° adds identity-layer protection, expanded integrations, and access to Infinity XDR/XPR for AI-driven incident enrichment and threat intelligence. MXDR 360° delivers a full-scale solution with managed SIEM and a data lake for compliance and co-managed SOC operations. Check Point Infinity Global Services provides end-to-end managed security solutions used by over 5,000 organizations worldwide. From proactive assessments and threat intelligence to professional services and SOC-as-a-service, the services help customers strengthen their security posture, reduce risk, and drive long-term resilience, supported by real-time AI-driven threat intelligence and a global team of experts. Part of the Infinity Global Services portfolio, MDR 360° and MXDR 360° reflect Check Point's commitment to delivering open garden, vendor-agnostic cyber security services tailored to modern enterprise needs. In today's world of growing cyber threats, compliance demands, and talent shortages, the new services boost security by providing 24/7 protection and expert incident response through a fully managed SOC. They include enriched integrations, identity threat detection, and data lakes, protecting the data plane and infrastructure while adding a crucial new layer focused on identity threat detection. 'With security teams stretched thin, MDR 360° and MXDR 360° are designed to ease the load by delivering real-time, outcome-driven detection and response services that's both flexible and open,' said Eitan Lugassi (Gilad), VP Infinity Global Services at Check Point. 'With native identity threat and attack detection and over 160 integrations, we're helping organizations streamline complexity and scale their cyber security strategy faster.' As attackers increasingly target people over systems, identity protection has become essential. Check Point provides full visibility, real-time monitoring, and misconfiguration detection across platforms like Microsoft AD, Entra ID, and Okta, and other SSO tools. This enables early detection of credential-based attacks, lateral movement, and privilege abuse, helping organizations stay one step ahead. Built for cross-platform functionality, the solution integrates with over 160 third-party tools across cloud, endpoint, identity, and SaaS environments. This open approach enables organizations to maximize existing investments without sacrificing control or visibility. 'Organizations aren't just looking for alerts – they want actionable intelligence and strategic partnership,' Eitan Lugassi (Gilad). 'Our mix of AI-driven detection and human expertise helps organizations respond faster and build long-term resilience.'
Yahoo
4 days ago
- Business
- Yahoo
Buy 3 Cybersecurity Stocks to Strengthen Portfolio Security in 2H25
Cybersecurity encompasses comprehensive security measures designed to protect systems, networks and programs from digital attacks. These attacks often aim to access, alter, or destroy sensitive information, extort money from users through ransomware, or disrupt the integrity of normal business operations. This space focuses on companies that offer integrated protection against evolving security threats while simplifying IT security infrastructure. Cybersecurity companies provide solutions to safeguard applications, networks, and cloud computing environments. Their offerings include application-specific integrated circuits, hardware architecture, operating systems, and associated security and networking functions, ensuring robust defenses against cyberattacks. The widespread adoption of artificial intelligence (AI), IoT devices, and increased digitization across both public and private sectors has heightened vulnerabilities and expanded attack surfaces, necessitating the development of advanced security solutions. We recommend three cybersecurity stocks for the rest of 2025 to strengthen your portfolio. These are CyberArk Software Ltd. CYBR, Okta Inc. OKTA and Fortinet Inc. FTNT. Each of our picks carries either a Zacks Rank #1 (Strong Buy) or 2 (Buy). You can see the complete list of today's Zacks #1 Rank stocks here. The chart below shows the price performance of our three picks in the past three months. Image Source: Zacks Investment Research CyberArk Software Ltd. Zacks Rank #1 CyberArk Software is benefiting from the rising demand for cybersecurity and privileged access security solutions due to the long list of data breaches and increasing digital transformation strategies. A strong presence across verticals, such as banking, healthcare, government and utilities, is safeguarding CYBR from the adverse effects of softening IT spending. CYBR's strategic mix shift toward software-as-a-service and subscription-based solutions is driving top-line growth. CyberArk is gaining customer accounts, which contributes to its revenues. The vast customer base presents the company with an opportunity to upsell products within its installed user base. Furthermore, in the last few quarters, CYBR has been able to close a significant number of seven-figure deals. The growing number of large deals in the revenue mix is helpful as it increases deferred revenues and visibility. Moreover, any product refresh brings in additional dollars as every enterprise attempts to keep its threat management infrastructure updated. These factors in turn support CYBR's top line. CyberArk Software has an expected revenue and earnings growth rate of 31.9% and 26.4%, respectively, for the current year. The Zacks Consensus Estimate for current-year earnings has improved 4.9% in the last 60 days. Okta Inc. Zacks Rank #2 Okta operates as an identity partner in the United States and internationally. OKTA offers a suite of products and services used to manage and secure identities, such as Single Sign-On, which enables users to access applications in the cloud or on-premises from various devices. OKTA also provides Universal Directory, a cloud-based system of record to store and secure user, application, and device profiles for an organization. OKTA's Adaptive Multi-Factor Authentication provides a layer of security for cloud, mobile, web applications, and data, while API Access Management enables organizations to secure APIs. Access Gateway allows organizations to extend Workforce Identity Cloud, and Okta Device Access enables end users to securely log in to devices with Okta credentials. OKTA has expected revenue and earnings growth rates of 9.4% and 16.7%, respectively, for the current year (ending January 2026). The Zacks Consensus Estimate for current-year earnings has improved 2.8% over the last 60 days. Fortinet Inc. Zacks Rank #2 Fortinet is benefiting from rising demand from large enterprise customers and growth in the company's security subscriptions. FTNT is also gaining from the robust growth in Fortinet Security Fabric, cloud and Software-defined Wide Area Network offerings. Higher IT spending on cybersecurity is further expected to aid FTNT in growing faster than the security market. We expect 2025 net sales to rise 13.1% from 2024. FTNT has a strong balance sheet that bodes well for investors. The focus on enhancing its unified threat management portfolio through product development and acquisitions is a tailwind for the company. Fortinet has expected revenue and earnings growth rates of 13.3% and 4.6%, respectively, for the current year. The Zacks Consensus Estimate for current-year earnings has improved 0.4% over the last 60 days. Want the latest recommendations from Zacks Investment Research? Today, you can download 7 Best Stocks for the Next 30 Days. Click to get this free report Fortinet, Inc. (FTNT) : Free Stock Analysis Report CyberArk Software Ltd. (CYBR) : Free Stock Analysis Report Okta, Inc. (OKTA) : Free Stock Analysis Report This article originally published on Zacks Investment Research ( Zacks Investment Research Sign in to access your portfolio
