All about Virtualization and Cloud Security | Recent Articles:

Come August, the Bitdefender team – along with some 20K security and InfoSec professionals – will descend on Las Vegas for four days of revelry on and about the latest security risks, research, and trends.

Update: July 13, 2021 -- Kaseya issued a critical security update for VSA users that is available on their site - Kaseya Critical Security Update. We recommend users follow Kaseya's recommended updates as soon as possible. 

- - - - - - - - - - - - - - -

We continue to monitor and analyze the attack using Kaseya Software to deploy a variant of REvil ransomware into a victim’s environment. The attack targeted Kaseya’s managed service provider (MSP) customers, which often provide IT support to small- to medium-size businesses. By targeting MSPs, attackers also seek to access and infiltrate the MSP’s customers computer networks.  

Implementing and managing security is not easy for any organization. We recently had the opportunity to (virtually) sit down with key analysts from IDC including Martha Vazquez, senior research analyst, IDC Security Services, Craig Robinson, program director, IDC Security Services, and Philip Harris, research director, risk, advisory, management and privacy. These analysts are on the front lines of cybersecurity research, advising organizations on security strategy. Our Q&A session covered topics like, “Do organizations still view MDR as just advanced EDR?”, “What are the top priorities for the modern CISO today?” and “What does it mean to be a resilient organization?”

• IT security teams face the challenge of a complex, evolving threat landscape 
• Threats are increasing in sophistication and the attack surface is expected to grow 
• Security tipping point is determined by gaps in time, skills, efficiency and outcomes 
• EDR and MDR represents two viable paths you can take to achieve solid security defenses 

This week Bitdefender was named in a press article regarding our decision to release a free decryptor in January 2021 to help those affected by Darkside ransomware. The authors of the article assert that publicly releasing a ransomware decryptor enables malicious actors to modify their methods to evade future decryption, thus increasing the risk of successful future attacks.

We did it! Five of our talented, channel focused ladies including Anamaria Diaconu, Heather Harlos, Paula Enache, Randi Fleming and Samantha Sisk have been honored by CRN in the 2021 Women of the Channel list.

On May 12, 2021, U.S. President Biden signed the highly anticipated Executive Order (EO) on Improving the Nation’s Cybersecurity (and the government issued a fact sheet summary of the contents). U.S. Presidents use Executive Orders (EO) to provide guidance to federal agencies as part of enforcing laws passed by Congress and managing the executive branch of the U.S. Government. This EO is the most detailed ever issued on the topic of cybersecurity in the nation’s history. It has global implications because of the size of the U.S. Federal Government and its purchasing authority for cybersecurity solutions – estimated to be nearly $20 billion annually.

We understand the public announcement of several critical zero-day vulnerabilities in Microsoft Exchange server is concerning for our customers. This communication details how Bitdefender is responding to ensure customers are protected and provides recommended mitigation steps you can take against this threat.

As 2020 is finally and fortunately coming to an end, here at Bitdefender, we’re already exploring what will happen next year and getting our defenses ready. While our crystal ball might not be perfect, here is a shortlist of what we expect in the 2021 cyber-threat landscape:

The recent breaches making headlines is a stark reminder that no organization is immune to cyberattacks. We firmly stand by FireEye and SolarWinds and commend them for their transparency and rapid response to help minimize impact to those affected. Like us, they fight the good fight.

• Bitdefender Endpoint Detection and Response is our new EDR product that supplements any third-party endpoint security solution
• GravityZone gets a new executive dashboard and an enhanced SIEM connector
• All Bitdefender EDR products now feature custom EDR detection rules capabilities