News for today:
- [Tanium] Partnership with ServiceNow. Tanium and ServiceNow announced a partnership, where Tania’s autonomous IT platform (featuring real-time endpoint intelligence) will be combined with ServiceNow’s IT Operations Management solution. Tanium feeds real-time endpoint data into ServiceNow CMDB, allowing workflows to trigger against accurate asset state, and AI agents to make decisions grounded in real-time telemetry and remediation – including third-party and OS patching. This is executed through approved change processes without manual intervention. Tanium
- [CrowdStrike] Adds managed threat hunting for Microsoft Defender. CrowdStrike announced Falcon OverWatch for Defender, adding visibility, detection, and expert monitoring prowess to Defender deployments. For organizations standardized on Microsoft Defender, automated detections alone leave gaps that today’s AI-accelerated adversaries are built to exploit. Falcon OverWatch for Defender closes those gaps with continuous, expert-led hunting that identifies and stops threats before they escalate …. Falcon OverWatch for Defender uncovers subtle patterns of attack, escalates high-confidence threats, and guides response to disrupt sophisticated threats that might otherwise go undetected, without impacting existing protections …. Customer results show Falcon OverWatch can reduce alert volume up to 500x, with 98% true positives, and up to 95% reduction in threat hunting staffing costs. OverWatch for Defender brings these proven outcomes to Microsoft Defender customers. CrowdStrike
- [Qualys] Joint offering with Converge. Qualys and Converge announced a joint offering, which combines quantitative security posture details with Converge’s platform for cyber insurance. Traditional cyber insurers struggle to price and assess risk accurately against the backdrop of increasing ransomware attacks, data breaches, and supply chain incidents. Current cyber insurance applications rely on manual questionnaires, a process that is time-consuming, inconsistent, and easy to get wrong. The Qualys Converge Connect Insurance Report (CCIR) generated by ETM allows a company’s data to speak for itself, verifying vulnerability management, patch management, and endpoint detection controls in a standardized format that Converge underwriters can evaluate quickly and accurately. By providing underwriters with accurate insights into an organization’s security posture in real time, the Qualys CCIR results in a more objective and precise premium that reflects real risk levels rather than industry averages. Qualys
- [KnowBe4] Training on secure code development. KnowBe4 and Secure Code Warrior are working together, for the addition of secure coding content to KnowBe4’s attack simulation and training library. The partnership will provide 31 learning activities across nine comprehensive learning series …. The content includes a variety of both traditional and interactive learning and supports 10 different programming languages, allowing developers to learn within the context of the tools they use every day. To support global teams, the content is also available in eight spoken languages. KnowBe4