News for today:
- Obsidian SaaS supply chain security. Obsidian Security announced a new SaaS supply chain security solution that integrates risk visibility, proactive prevention, early breach detection, and impact forensics in a unified platform. The new platform unifies identity, permissions, OAuth scopes and activity data into a single coherent model, allowing organizations to not only see what an app can access but how it behaves across users, geographies and services. With this clarity, teams can quickly identify risky or inactive integrations, prioritize integrations in order of criticality, and safely take action like revoking access or blocking integrations before they are abused. Organizations can now reduce exposure at the source by identifying and restricting which users are able to grant and authorize new SaaS integrations, enforcing least privilege and limiting the introduction of risky connections before they spread. Obsidian
- AI-driven exposure management from Check Point. Check Point announced a new Exposure Management offering powered by AI, which integrates data from multiple security tools for unified visibility, context, and remediation. Designed to operate across existing environments, Check Point Exposure Management integrates with more than 75 security controls across approximately 90 percent of the largest security vendors, spanning network, endpoint, cloud, email, identity, and operating system layers. This breadth of integration reflects Check Point’s Open Garden approach, enabling organizations to reduce risk using the tools they already rely on while minimizing operational complexity. Together, these capabilities enable organizations to move from visibility to validated action across their entire attack surface. Check Point
- Ping Identity Universal Services. Ping Identity announced a new centralized trust and control layer in its Identity Platform, to provide continuous trust – rather than point-in-time authentication – across multiple identity providers, and hence strength identity security. Universal Services were developed in response to customer demand for stronger identity assurance in complex, multi-provider environments. Rather than introducing another silo, Ping designed them to unify identity, security, and fraud signals across existing stacks. This approach supports workforce, customer, partner and agentic AI identities from a single orchestration layer. Available immediately. Ping Identity
- Delinea partnership with NCC Group. Delinea announced a partnership with NCC Group, to combine Delinea’s identity security capabilities with NCC’s resilience-focused service offerings. By combining Delinea’s advanced PAM technology with NCC Group’s people-powered expertise, the partnership delivers a high-quality managed service for securing critical systems. NCC Group’s unified framework enables organizations to run PAM effectively, mitigating risks, supporting compliance, and enhancing user experience, all while supporting Zero Trust Architecture design principles and operational resilience. Delinea
- Zurich acquisitive for Beazley. Zurich Insurance Group offered US$10.3 billion for Beazley, a London-based insurer for cyber and other specialist risks. If consummated, the combination would have major implications for organizations seeking cyber cover, e.g., tighter control by Zurich of response protocols, identity security posture. Zendata