Arctic Wolf this week published its 2024 Human Risk Behavior Report, and it may (or may not) come as a surprise that, despite the continued focus on AI, many organizations are neglecting their basic security practices. That includes executive leadership!
One example from Arctic Wolf’s report found that 80% of IT leaders are confident their organization won’t fall for a phishing attack, but 64% have clicked on phishing links themselves. Despite this, 27% of IT leaders have terminated an employee for falling victim to a scam.
Additionally, Arctic Wolf’s report found:
- 68% of IT and cybersecurity leaders admit to reusing system passwords.
- More than a third (36%) of IT leaders have disabled security measures on their systems.
- 60% of IT leaders say their organization has an AI policy—but less than a third (29%) of end users are aware of it.
- While 85% of IT leaders think employees feel comfortable reporting security incidents to the appropriate channels, in reality, only 77% of end users do.
Check out the full report here.
As always, drop me a line at [email protected] if you have news to share or want to say hi!
Grab your coffee. Here's what you need to know today.
Today’s Tech, Channel and MSP News
1. Red Sift now available on Pax8 Marketplace: Red Sift announced it has teamed up with Pax8 to make its cybersecurity solutions more accessible to MSPs globally, the company said in a statement. The new partnership means that MSPs can now easily access and deploy Red Sift solutions—including OnDMARC, Certificates, and Brand Trust—directly through the Pax8 cloud marketplace, helping more businesses secure their emails, manage certificates, and protect against brand impersonation threats.
2. Endor Labs scores Hugging Face AI models: Endor Labs this week released Endor Scores for AI Models, a new capability helping organizations find the safest open source AI models on Hugging Face for their needs, based on a risk score encompassing security, popularity, quality and activity, the company said. One of the challenges with open source models is that they can contain malicious code, have exploitable vectors for attack, or rely on other models that can expose an organization to even greater risks. The new Endor Labs capability helps address those issues, the company said.
3. DeNexus lands $17.5 million in Series A for OT cyber risk management: Operational technology (OT) cyber risk management startup DeNexus has raised $17.5 million in a Series A funding round, which the firm will use to accelerate its growth and expand its innovative product offerings and market reach, the company said in a statement. The funding round was led by Punja Global Ventures, with investment also from AXA XL, Prosegur/SegTech and HCS Capital. As part of this investment, Rimmo Jolly, co-founder at Punja Global Ventures, will join DeNexus' Board of Directors, while Libby Benet, Global Chief Underwriter Officer at AXA XL, will join as a Board Observer.
4. Cyera acquires Trail Security: Cyera will acquire Trail Security for $162 million, the companies announced today, to advance AI-powered data security. The acquisition will create the industry's first-ever unified solution that integrates data security posture management (DSPM) with advanced data loss prevention (DLP) capabilities, according to a statement. This marks a key milestone for Cyera, a three-year-old unicorn valued at over $1.4 billion, as it continues to expand its AI-driven platform.
5. Akamai releases behavioral DDoS engine: Cloud provider Akamai this week announced its Behavioral DDoS Engine for its App & API Protector solution. This new capability leverages machine learning for automatic, proactive protection against application-layer DDoS attacks, the company said in a statement. Behavioral DDoS Engine uses machine learning to analyze anomalies and correlate multidimensional traffic data to defend against DDoS threats. Behavioral DDoS Engine remains in limited availability for a select set of customers, with platform-wide access available in 2025, Akamai said.
In-Person MSP and Channel Partner Events
- Canalys North America Forum, October 22-24, Miami, Florida
- Kaseya Dattocon, October 28-30, 2024, Fontainebleau, Miami Beach, Florida
- Ingram Micro One, November 6-8, Gaylord Resort, Washington DC
- IT Nation Connect, November 6-8, Orlando, Florida
- OpenText World, November 19-21, The Venetian Resort, Las Vegas, Nevada