Content by Michael Novinson

Snyk Lays Off Another 128 Staffers as Economic Woes Persist

Michael Novinson  •  April 14, 2023

Snyk has executed its third round of layoffs since June 2022, axing 128 workers amid projections of challenging market conditions persisting into early 2024. The Boston-based application security vendor revealed Thursday plans to reduce its more than 1,200-person staff by an estimated 11%.

National Guardsman Arrested for Military, Intelligence Leaks

Michael Novinson  •  April 13, 2023

A member of the Massachusetts Air National Guard has been arrested for leaking highly classified military and intelligence documents. The U.S. Department of Justice announced that Jack Teixeira, 21, was taken into custody by FBI agents following the leaking of more than 100 documents.

CISA, Others Unveil Guide for Secure Software Manufacturing

Michael Novinson  •  April 13, 2023

Cybersecurity authorities issued a road map Thursday detailing how software manufacturers should go about baking security into their design processes. The document details how manufacturers should adjust their design and development programs to ensure software is secure.

Will Generative AI's Use in Cyber Tools Exceed Expectations?

Michael Novinson  •  April 12, 2023

The launch of Microsoft's Security Copilot may have attracted the most attention in the market since it was developed by the company that brought generative AI chatbots to the masses, but it's neither the first nor the only security product to incorporate OpenAI's ChatGPT into its design.

Feds Call for Certifying, Assessing Veracity of AI Systems

Michael Novinson  •  April 11, 2023

The Biden administration plans to develop a road map for certifying and assessing that artificial intelligence systems work as intended without causing harm. The Commerce Department has asked for public input on top policies to support the development of AI audits, assessments and certifications.

How Much Damage Would US Action Against Kaspersky Inflict?

Michael Novinson  •  April 10, 2023

Further punishment of Moscow-based Kaspersky by the Biden administration could be the final nail in the coffin of the company's deeply wounded North American business. The U.S. Commerce Department is weighing enforcement action against the Russian cybersecurity giant under its online security rules.

Netography Brings Data Science, Detection to Monitoring Tool

Michael Novinson  •  April 7, 2023

Netography has added more detection features and data science capabilities to help large enterprises better understand what's on their networks, according to CEO Martin Roesch. The Annapolis, Maryland-based company over the past 12 months has quintupled the amount of data ingested into its system.

Forrester Expert Explores Latest Supply Chain Attack Trends

Michael Novinson  •  April 6, 2023

Supply chain attacks have evolved from exploiting organizations with unpatched vulnerabilities in open-source libraries to proactively injecting malicious code into a victim's IT environment, according to Janet Worthington, senior analyst at Forrester.

OpenText, Google, Varonis Lead Data Security Forrester Wave

Michael Novinson  •  April 5, 2023

OpenText, Varonis and Forcepoint joined Google and Microsoft atop Forrester's data security rankings, while Trellix and Broadcom fell from the leaders category. Data protection historically focused on delivering security controls, but firms are increasingly looking to address adjacent use cases.

Rising Industrial Attacks Require Suppliers With OT Smarts

Michael Novinson  •  April 4, 2023

More threat actors are dedicated to attacking industrial organizations, and that increasing volume and sophistication of attacks has left organizations clamoring for suppliers with expertise in safeguarding OT infrastructure, said Rockwell Automation's Mark Cristiano.

Cradlepoint Buys Ericom to Fuel Cloud Defense in 5G Settings

Michael Novinson  •  April 4, 2023

Cradlepoint has bought seasoned Israeli security veteran Ericom Software to bring SASE, zero trust and cloud security to hybrid 5G and wireline environments. The deal will help Cradlepoint's SASE and zero trust technology portfolio cover fixed-site, remote worker, in-vehicle and IoT use cases.

Cybereason Taps SoftBank's Eric Gan to Replace CEO Lior Div

Michael Novinson  •  April 3, 2023

For the first time in its 11-year history, endpoint security vendor Cybereason will have a new leader. Upon receiving a $100 million cash infusion from SoftBank, the Boston-based firm announced that longtime SoftBank executive Eric Gan will take over as CEO to replace co-founder Lior Div.

SEC Eyes Final Rules on Incident Disclosure, Board Expertise

Michael Novinson  •  March 31, 2023

Rules coming in April could require publicly traded companies to disclose a breach within four days of deeming it material as well as board member cybersecurity expertise. The SEC in March 2022 proposed a mandate that companies disclose "material" incidents within four business days of discovery.

Airbus, Atos Ax Deal for Minority Stake in Evidian Cyber Arm

Michael Novinson  •  March 29, 2023

Airbus has halted efforts to buy a 29.9% stake in Atos' $5.76 billion Evidian cybersecurity, big data and digital business. The aircraft manufacturer walked away from the transaction after determining it "does not meet the company's objectives in the current context and under the current structure."

Cisco Buys Startup Lightspin to Address Cloud Security Risks

Michael Novinson  •  March 29, 2023

Cisco plans to purchase its second cloud security startup in two months to deliver context, prioritization and remediation recommendations for cloud-native resources. The networking giant said its proposed buy of Lightspin will allow clients to identify and address key cloud security risks.