The IT Nerd

Cyware, the leading provider of threat intelligence management, low-code/no-code security automation, and cyber fusion solutions, today announced an important collaboration with Team Cymru to pre-configure Team Cymru’s industry-leading threat feeds into Cyware’s Threat Intelligence Platform (TIP). This packaged solution delivers real-time visibility into botnets, malware, command and control (C2) infrastructure, and external malicious activity, empowering organizations to detect and respond faster to even the most sophisticated adversaries.

By incorporating Team Cymru’s threat feeds—including the Botnet Analysis and Reporting Service (BARS) feed and the Controller (C2) Feed—into Cyware’s advanced TIP, organizations gain access to more accurate and up-to-date intelligence. This enhanced intelligence is designed to allow security teams to identify, analyze, and mitigate malware and botnets with precision and speed to help fortify their defenses against cyberattacks.

With this solution, customers benefit from approximately 10,000 unique IPs daily and the processing of approximately 6-7 million unique events, providing detailed threat indicators and attributes that are often missing in traditional threat feeds. When combined with Cyware’s operationalized threat intelligence capabilities, it is designed to enable security teams to:

• Stop malware and DDoS attacks before they impact networks and infrastructure
• Harden network defenses by integrating threat indicators with firewalls, intrusion prevention systems (IPS), and intrusion detection systems (IDS)
• Automate threat hunting for DNS-based attacks and monitor malicious communications
• Gain geolocation, victimology information, and detailed campaign histories to contextualize threats

The combined solution also offers unique and critical insights into malware families, unique control protocols, and encryption mechanisms, allowing organizations to prioritize and block malicious activity more effectively. With these capabilities, Cyware and Team Cymru are redefining what it means to stay ahead of cyber threats as global adversaries gear up for disruption.

For more information on Cyware and Team Cymru’s integration, visit https://www.cyware.com/partners/technology-alliances/team-cymru.

 Cyware, the leading provider of threat intelligence management, low-code/no-code security automation, and cyber fusion solutions today announced the launch of its Healthcare Threat Intelligence Platform (HC-TIP), a solution specifically designed to facilitate accelerated cyber response in the healthcare sector. With healthcare systems increasingly targeted by sophisticated cyberattacks, including ransomware and medical device exploits, Cyware’s HC-TIP offers a robust platform for healthcare organizations to more efficiently and effectively defend against the specific threats targeting their industry.

The healthcare industry faces unique cybersecurity challenges, including the protection of sensitive patient data, safeguarding connected medical devices, and ensuring the continuous operation of critical healthcare services. The Cyware HC-TIP is tailored to these needs, leveraging healthcare-specific threat feeds, real-time dashboards, and advanced threat intelligence tools to provide a comprehensive security solution.

Pre-configured, the platform integrates industry-specific threat feeds from leading sources along with healthcare-focused feeds like HHS.gov and Healthcare InfoSecurity. These resources help organizations track healthcare-specific threats, including vulnerabilities in electronic health records (EHRs) and medical devices. Additionally, Cyware’s HC-TIP offers built-in tagging for healthcare and pharmaceutical threats, making it easier for organizations to categorize and analyze data.

Key features of Cyware’s Healthcare Threat Intelligence Platform include:

●    Healthcare-Specific Threat Feeds: Aggregates threat intelligence related to ransomware, medical device vulnerabilities, and compliance threats.

●    Industry-Specific Tagging and Saved Searches: Pre-configured tagging and searches to streamline access to relevant data for threat hunting and investigation.

●    Healthcare Threat Landscape Dashboard: A real-time view of threats, vulnerabilities, and ongoing alerts specific to the healthcare sector.

●    Automated TTP Mapping MITRE ATT&CK: Automated mapping to the MITRE ATT&CK framework, with support included for Cyber Kill Chain, and Diamond Model of Intrusion Analysis

By offering these healthcare-focused capabilities, Cyware’s HC-TIP provides timely and accurate threat detection, helps organizations maintain compliance with regulations such as HIPAA and GDPR, and enables faster, data-driven decision-making. The platform is designed to streamline workflows, prioritize high-severity threats, and reduce the attack surface across healthcare networks.

Cyware’s HC-TIP will be available later this month for healthcare organizations looking to fortify their cybersecurity posture with a solution that delivers rapid time-to-value and robust industry-specific protection.

For more information on Cyware’s Healthcare Threat Intelligence Platform, register for their December 17 virtual event or learn more https://www.cyware.com/healthcare.

 Cyware, the leading provider of threat intelligence management, low-code/no-code automation, and cyber fusion solutions, today announced that it has again been named to the Deloitte Technology Fast 500™, a ranking of the 500 fastest-growing technology, media, telecommunications, life sciences, fintech, and energy tech companies in North America. 

About the 2024 Deloitte Technology Fast 500

Now in its 30^th year, the Deloitte Technology Fast 500 provides a ranking of the fastest-growing technology, media, telecommunications, life sciences, fintech, and energy tech companies — both public and private — in North America. Technology Fast 500 award winners are selected based on percentage fiscal year revenue growth from 2020 to 2024.

In order to be eligible for Technology Fast 500 recognition, companies must own proprietary intellectual property or technology that is sold to customers in products that contribute to a majority of the company’s operating revenues. Companies must have base-year operating revenues of at least US$50,000, and current-year operating revenues of at least US$5 million. Additionally, companies must be in business for a minimum of four years and be headquartered within North America.

Cyware, the leading provider of threat intelligence management, low-code/no-code automation, and cyber fusion solutions, today announced the appointment of Jawahar Sivasankaran as President, marking a pivotal step in Cyware’s mission to empower organizations with advanced threat intelligence and security solutions. 

Jawahar brings 25+ years of experience fostering security product innovation, growth leadership, and customer success at Cisco, Splunk, and Appgate. Most recently, as President and COO of Appgate, Jawahar led all go-to-market functions including sales, marketing, and customer success and served as a Section 16 public company officer. 

Previously at Splunk, Jawahar played a key leadership role in transforming specialization sales for Splunk’s advanced security offerings, driving growth and customer intimacy. Before that, he held various leadership positions in go-to-market and product functions at Cisco. 

Over the past year, he has served as an advisor to leading consulting and private equity firms, including with Advent International as an Industry Operating Advisor. Jawahar is active in the startup ecosystem as an investor and advisor focused on scale-up activities. 

With this appointment, Cyware reaffirms its commitment to innovative cybersecurity and customer-centered solutions, positioning itself for accelerated growth and industry leadership.

Cyware, the leading provider of threat intelligence management, low-code/no-code automation, and cyber fusion solutions, today announced that it has achieved Federal Risk and Authorization Management Program (FedRAM^®) Ready status.

FedRAMP is the government-wide program supporting the adoption of secure cloud services across the federal government through a standardized approach to security and risk assessment for cloud technologies and federal agencies. FedRAMP Ready Status confirms that a third-party assessment 3PAO attests to Cyware’s readiness for the comprehensive, meticulous authorization process, having met additional recently introduced and rigorous requirements issued by The Joint Authorization Board (JAB).

Cyware’s threat-driven automation is designed to ensure that actionable cyber threat intelligence (CTI) promptly reaches individuals and teams who can act on it to swiftly identify, understand, and mitigate threats. Cyware’s Cyber Fusion Center (CFC) simplifies and substantially advances intelligence actioning – breaking through the barriers that have long prevented or delayed intelligence-sharing across entities.

Cyware delivers an innovative approach to cybersecurity that unifies threat intelligence, automation, threat response, and vulnerability management with data insights gleaned from assets, users, malware, attackers, and vulnerabilities. Cyware’s Cyber Fusion platform integrates SOAR and TIP technology, enabling collaboration across siloed security teams. Cyware is widely deployed by enterprises, government agencies, and MSSPs and is the leading threat-intelligence sharing platform for global ISACs and CERTs.

Cyware, the leading provider of threat intelligence management, low-code/no-code automation, and cyber fusion solutions, and ECS, a leader in advanced technology solutions for U.S. public sector customers, including defense and intelligence organizations, today announce their design partnership which will serve to enhance Cyware’s Intel Exchange product enabling government entities to improve their security posture. This partnership aims to leverage ECS’s deep public-sector knowledge and cybersecurity expertise to tailor Cyware’s Intel Exchange to address the unique needs of government entities, with a focus on strengthening collective defense and securing the nation’s critical infrastructure.

To address the security challenges that impact federal entities, Cyware and ECS are working together to:

• Enhance Intel Exchange’s automated Threat Intel Risk Score engine to bring flexibility and advancement in the algorithm to accommodate time sensitive government CTI operations and workflows. The new risk score is customizable based on the weightage given to the quality, credibility, relevance, and confidence level of the threat data sources, enrichment sources, and attributes of threat objects.
• Introduce a custom scoring module in addition to the above Risk Score engine that will allow CTI teams to design scoring parameters tailored for government use cases for any threat data ingested into the platform and enable them to prioritize relevant threats for actioning.
• Simplify triaging and operationalization of the large volume of threat data in the platform with automated rules leveraging the newly introduced scoring modules. CTI analysts can now create custom rules to score threat data depending on different priorities and perspectives.

The full range of enhanced capabilities for Intel Exchange are expected to be unveiled for the public sector in early November 2024. Cyware and ECS remain committed to supporting federal agencies through innovative and tailored cybersecurity solutions that promote collective defense and protect the nation’s most critical infrastructure.

Cyware, the leader in threat intelligence management, security collaboration, and orchestrated response, today announced its membership in the Coalition for Secure AI (CoSAI), an international alliance dedicated to promoting the development and deployment of secure, ethical, and transparent AI technologies. By joining CoSAI, Cyware reinforces its commitment to fostering innovation in AI while ensuring that safety, privacy, and security remain at the forefront of technological advancement.

CoSAI is a collaborative open-source initiative designed to give all practitioners and developers the guidance and tools they need to create Secure-by Design AI systems. Three strategic workstreams have been established within CoSAI, with plans to add more over time: software supply chain security for AI systems, preparing defenders for a changing cybersecurity landscape, and AI risk governance.

As AI technologies become increasingly integral to cybersecurity, the need for secure AI has never been more critical. Cyware’s AI-driven cyber fusion solution features are already revolutionizing how organizations detect, respond to, and mitigate cyber threats. Through its membership in CoSAI, Cyware aims to contribute its expertise in AI-enabled security solutions to help set industry standards that prioritize safety, ethics, and transparency in AI development.

For more information about Cyware and its commitment to secure AI, please visit www.cyware.com.

Cyware today announced the appointment of Terrence Driscoll as Chief Information Security Officer.

Terrence is an accomplished cybersecurity expert with an exceptional record of execution and leadership. He most recently served as Managing Director, Global Head of Security and Controls Assurance for JP Morgan Chase & Company where he led a global team responsible for Security Architecture, Security Testing, Technology Resiliency, and Control Management.  He brings Cyware deep knowledge of Cyber Operations, Threat Intelligence, Security Assurance, and Resiliency. 

At Cyware, Terrence will be responsible for Product and Internal Security and will be working with Cyware’s customers and partners to drive adoption of Cyber Fusion Center Platforms.

He previously served as Senior Director at PayPal, Business Information Security Officer at Citadel, Advisory Board Member at CrowdStrike, and CISO at MacAndrews & Forbes, which owns and operates a diverse array of businesses in the consumer goods, defense, education, entertainment, financial services, gaming, and pharmaceutical industries.  He also spent nine years at Lockheed Martin working on the internal security team and working with Lockheed’s US Government, International and commercial clients to drive adoption of intelligence driven cyber defense.

He holds an B.S. in Mechanical Engineering from Lehigh University, an M.S. in Systems Engineering from the University of Pennsylvania, and an M.B.A. from the Wharton School of Business.

To learn more about Terrence’s role at Cyware, join their September 5 webinar, Navigating Cybersecurity Challenges: Insights from a Cybersecurity Executive.

Cyware has today released the findings of its anonymised 2024 Threat Intelligence and Collaboration Survey. Conducted with security professionals at the recent Infosecurity Europe 2024 exhibition, the research reveals that the overwhelming majority of organisations recognise the crucial importance of collaboration and information sharing in the fight against cybercrime, but most struggle to effectively combine insights across teams and security platforms. 

Specifically, 91 percent of respondents said collaboration and information sharing are very important or absolutely crucial for cybersecurity. In addition, 70 percent believe their organisation could improve threat intelligence sharing, with 19 percent saying they could share significantly more. However, over half of the research respondents (53 percent) said their organisation does not currently utilise an Information Sharing and Analysis Centre (ISAC), underlining the shortcomings of the way most security teams approach threat intelligence. Over a quarter (28 percent) said they were unaware of the existence and role of ISACs altogether. This is despite the proven value ISACs deliver in enabling organisations to manage risk, backed by trusted analysis and effective coordination. 

When asked to identify the weakest link in their approach to cybersecurity information sharing and collaboration, over half (51 percent) said people are the main barrier to improvement, followed by processes (21 percent) and technologies (11 percent). Taking all these factors into account, nearly half of the survey respondents (49 percent) said that their organizations struggle to combine and derive actionable insights across multiple security tools, such as threat intelligence platforms, SIEM, asset management, and vulnerability management platforms. 

Looking at the emerging role of AI in improving or reducing an organization’s ability to share threat intelligence, 65 percent thought it would improve their organization’s ability to share information, with over a third (35 percent) saying the technology is already having an impact. 

Other key research findings include: 

• 70 percent said their organisations could share more threat intelligence, while only 23 percent said they are currently sharing the right amount of information. Only 2percent thought they were sharing too much. 
• Asked which teams are least likely to share threat intelligence with other departments, DevOps (31 percent) emerged as the top answer, followed by Security Ops (17 percent), Threat Intelligence (16 percent) and IT Ops (15 percent). 
• 23percent of teams share threat intelligence on a daily basis, 21percent in real-time, 17 percent weekly and 14 percent monthly. 

Cyware today announced that CRN, a brand of The Channel Company, has named Matt Courchesne, Head of Channel–North America, as a 2024 Inclusive Channel Leader. In its second year, the list recognizes executives from vendor, distributor, and solution provider organizations who are dedicated to making a positive impact across the IT channel through inclusive leadership.

The CRN 2024 Inclusive Channel Leaders honorees are passionate about advancing equity and diversity within their organizations, the channel, and across the greater technology industry. With this recognition, CRN highlights these executives for their desire to foster inclusion and belonging.

With nearly a decade of senior leadership experience, Matt has consistently championed inclusivity. His dedication fosters a culture where diverse opinions, backgrounds, and experiences are valued, and team members are empowered to approach problems as business owners. This holistic approach not only enriches the workplace but also drives sustainable, long-term.

The 2024 Inclusive Channel Leaders list will be featured in the August issue of CRN Magazine, with online coverage starting July 8 at www.CRN.com/Inclusive-Leaders.