(844) 627-8267
(844) 627-8267

The top new cybersecurity products at Black Hat USA 2023 | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware

Netrise: New SBOM features and KEV support

NetRise has added ingestion support for two major software bill of materials (SBOM) formats, SPDX and CycloneDX, to its namesake extended internet of things (XIoT) security platform. The features allow users to export data in either format and is designed to enrich SBOMs with vulnerability information. Overlaying CISA’s key exploited vulnerabilities (KEV) catalog data on the information gathered in the platform can help to simplify identifying, addressing, and prioritizing known exploits, according to the company. The new features are included in the current pricing model for no additional charges and will be available from August 9. The company showcased the features at booth #SC118.

ThreatConnect: Intelligence requirement capabilities

ThreatConnect has enhanced its machine-learning powered TI Ops Platform for threat intelligence operations with new intelligence requirement capabilities. The new feature is aimed at helping customers define, manage, and track their intelligence requirements (IRs), priority intelligence requirements (PIRs) and requests for information (RFIs), and solve the problem of threat intelligence being produced ad-hoc and siloed without input from stakeholders. It’s designed to give security professionals the ability to create optimally defined requirements and use them to identify relevant intelligence within the customer’s own threat library and ThreatConnect’s global intelligence system. The capability is included within the current pricing model and is available to existing and new customers from August 7. ThreatConnect demonstrated the capability from booth #2940 at Black Hat.

Ironscales: Phishing Simulation Testing, ADE

GPT-powered phishing simulation testing (PST), now in beta launch, is designed to help employers generate highly personalized spear-phishing simulation campaigns to combat hard-to-detect, advanced phishing attacks. Phishing simulation messages are crafted utilizing PhishLLM, Ironscales’ proprietary LLM trained on Ironscales’ community data, which is part of the Ironscales multimodule platform. Additionally, accidental data exposure (ADE) is being rolled out as Ironscales’ new capability for alerting employees when they send potentially sensitive information. Ironscales showcased the new capabilities in booth #2810D and has made them available under beta to limited users until general availability planned for later this year. Pricing for the capabilities is to be decided based on the feedback from the beta launch.

Bionic: ServiceNow integration, Bionic Events

Bionic’s application security posture management (ASPM) platform connector now integrates with Service Graph from ServiceNow to provide engineering teams a real-time configuration management database (CMDB) of their applications, microservices, and dependencies in production. Also added to the platform is Bionic Events, which correlates application changes to overall security risk, providing an inventory of specific events with which users can investigate security changes. All the new features are generally available for no additional cost and have been showcased at Black Hat USA at booth #2840.

ProtectAI: Huntr

Huntr is an machine-learning based, open-source bug bounty platform focused on protecting AI open-source software (OSS), foundational models, and ML Systems. The platform offers security researchers an AI/ML bug hunting environment with navigation, targeted bug bounties with streamlined reporting, monthly contests, collaboration tools, and vulnerability reviews. The first contest is focused on Hugging Face Transformers and offers an impressive $50,000 reward. ProtectAI exhibited Huntr at booth #2610 of BlackHat USA 2023.

Cybersixgill: Enhancements to Cybersixgill IQ

The generative-AI based threat intelligence platform Cybersixgill IQ embeds an attack surface management (ASM) module on an organization’s existing cyberthreat intelligence (CTI) workflow to deliver contextual business insights. The platform has now added a custom report builder to streamline data collection, analysis, and dissemination. The threat entity navigator has also been improved with correlation and cross-referencing feature for threat entities. Additionally, a credential module has been added to consolidate stolen credentials from repositories and stealer logs. All the enhancements are already available and were demonstrated at Black Hat USA at booth #485.


Click Here For The Original Source.

National Cyber Security