News for today:
- [Pathlock] Nexus for ERP security. Pathlock introduced Pathlock Nexus, for governing access, controls, identity, and application security across ERP platforms. Pathlock Nexus is an AI-native platform purpose-built to govern access, controls, identity and security across complex multi-ERP environments of modern AI-powered enterprises. Nexus delivers real-time intelligence on every transaction — performed by users, bots, and AI agents — across mission-critical systems, whether an organization needs to support continuous controls monitoring, conduct an investigation, or satisfy an auditor request. Pathlock
- [Horizon3.ai] Rapid Response. Horizon3.ai launched a new rapid response capability, for identifying, prioritizing, and responding to AI-driven emerging threats. The principle behind Rapid Response is simple: focus on what attackers can actually exploit. As AI accelerates vulnerability discovery and exploit development, security teams need a faster way to separate real risk from noise, verify exposure, and prove risk reduction. Rapid Response is the signal in the vulnerability noise, helping organizations hack, fix, verify, and repeat on-demand against the threats that matter most. Horizon3.ai
- [Absolute Security] Lenovo ThinkShield TraceLock. Absolute Security introduced capabilities for locating and controlling Lenovo PCs, even if offline. Powered by the Absolute Security Cyber Resilience Platform, customers can leverage this innovation to locate, wake, connect, control, and restore supported devices through a firmware-embedded, persistent connection, even when they are powered off or disconnected from WiFi or local area networks. With the ability to locate and control offline, lost, missing, or stolen PCs, security and IT teams can help ensure their networks, systems, and data remain protected and resilient against threats, theft, compromises, negligence, and downtime caused by software failures and cyber disruptions. Absolute Security
- [BeyondTrust] Expanded identity security risk assessment. BeyondTrust improved its identity security risk assessment approach, via a new five-pillar analysis framework. The rise of non-human identities is a key driver for the expansion. The enhanced assessment delivers deeper visibility into identity hygiene risks, effective privilege, AI security exposures, and emerging attack pathways across domains, while helping organizations align remediation efforts to frameworks including NIST 800-53 and MITRE ATT&CK. BeyondTrust
- [Sophos] Backup and recovery with Rubrik inside. Sophos released a new solution for rapidly recovering Microsoft 365 data after any sort of disruption; technology from Rubrik is part of the offering. With Sophos Backup and Recovery Powered by Rubrik Cyber Resilience now generally available, organizations can move beyond fragmented workflows and manage both threat response and data recovery within a single platform. By bringing recovery into the same platform used for threat detection and response, organizations can quickly understand what was affected and restore clean, trusted data without leaving Sophos Central. Sophos
- [Commvault] Four steps for resilience with Frontier AI. Commvault recommended a four step process for organizations to stay resilience as frontier AI reshapes the threat landscape. Steps: [1] evaluate recovery risks; [2] make isolated recovery and air gapping the baseline; [3] prioritize systems the business cannot operate without; and [4] automate resilience and test continuously. Commvault says the operationalization of this is called ResOps – for resilience operations. Commvault
- [DigiCert] Visibility blind spots for certificates. New research from DigiCert says that only 34% of organizations have a complete and current view of their digital certificates. Without centralized visibility into certificates and machine identities, organizations struggle to detect security gaps, prevent outages, and respond to rapidly evolving cryptographic requirements. DigiCert