News

Expert Insights Cybersecurity Vendor News Recap: November 21 –28, 2024 

10 big cybersecurity vendor headlines driving the news this week.

Last updated on Nov 28, 2024
Joel Witts Written by Joel Witts
Laura Iannini Technical review by Laura Iannini
News Update

Welcome to your weekly recap of the cybersecurity vendor news, M&As, and investments making headlines this week.

🦃 Wishing a very Happy Thanksgiving to all our readers from the Expert Insights team. 

🤔 Have any feedback or stories to share? Get in touch with [email protected]

💰Vendor M&As

  • Wiz has announced it will acquire Dazz, a channel-focused ASPM provider, in a deal reported at $450 million USD. The deal will extend Wiz’s cloud remediation capabilities. (CRN)
  • N-Able is set to acquire Adlumin, an XDR and MDR platform for MSPs. Adlumin is already a ‘strategic partner’ with N-Able. (MSSP Alert)
  • Bitsight, the cyber risk management provider, announced it will acquire Cybersixgill, a cyber threat intelligence platform, in a reported $115 million USD deal. (CRN)

📟 Releases & Patches

  • Microsoft has announced it will add support for third-party Passkeys to Windows 11, enabling users to choose their own Passkey provider, such as 1Password and Bitwarden. (Techradar)
  • Microsoft has released patches for vulnerabilities in Azure, Copilot Studio, and its Partner Network Website. Customers do not need to take any action, but CVEs and advisories have been released for transparency. (SecurityWeek)
  • IBM released patches for two high-severity remote code execution vulnerabilities in its Data Virtualization Manager and Security SOAR products. Details on how to download the fixes can be found here. (SecurityWeek)

🎣 Threats, Bugs & Hacks

  • ESET has discovered two zero-day security bugs found in Windows and Firefox which have been exploited by a Russian ATP group named ‘RomCom’. Fixes for both vulnerabilities have already been released. (TechRadar)
  • Trellix researchers identified a cyberattack leveraging an outdated and vulnerable driver from Avast to bypass detection and disable antivirus measures on targeted systems. (TechRadar)
  • Cloudflare announced that a bug this week caused 55% of all customer logs over a 3.5-hour window to be lost. The logs allow customers to analyze traffic to their websites and monitor security incidents. (BleepingComputer)
  • Meta has shut down two million accounts linked to ‘pig butchering’ scam campaigns run out of South-East Asia and the Middle East. Pig butchering scams involve using social engineering tactics to trick people, typically involving cryptocurrency. (Infosecurity Magazine)

🎙️ Expert Insights: Interviews

Don’t miss this week’s round of interviews with cybersecurity experts and thought leaders.

💡 We’ll be back next week with another roundup of the biggest cybersecurity vendor stories. Until then!

Expert Insights’ Cybersecurity Resources

Joel Witts
LinkedIn Email

Content Director

Joel Witts is the Content Director at Expert Insights, meaning he oversees all articles published and topics covered. He is an experienced journalist and writer, specialising in identity and access management, Zero Trust, cloud business technologies, and cybersecurity. Joel is a co-host of the Expert Insights Podcast and conducts regular interviews with leading B2B tech industry experts, including directors at Microsoft and Google. Joel holds a First Class Honours degree in Journalism from Cardiff University.
Laura Iannini Laura Iannini
Email

Cybersecurity Analyst

Laura Iannini is an Information Security Engineer. She holds a Bachelor’s degree in Cybersecurity from the University of West Florida. Laura has experience with a variety of cybersecurity platforms and leads technical reviews of leading solutions. She conducts thorough product tests to ensure that Expert Insights’ reviews are definitive and insightful.