About Us

Artera Partners With Deepwatch to Secure Its Infrastructure

Deepwatch declared Artera Services has chosen Deepwatch’s MDR solution to secure its operations.

Artera is a leading provider of comprehensive vital and critical infrastructure services in the United States, providing maintenance and construction to energy utilities, infrastructure businesses, municipalities, and cooperatives.

Artera began investigating MDR providers in 2021 to reduce the risk of business and consumer disruption. Artera chose Deepwatch for its MDR service, which includes 24/7/365 monitoring with a named squad of experts and integrations with security tools such as Splunk Enterprise and leading endpoint detection and response (EDR), vulnerability management, and firewall solutions, after evaluating several MSSP and MDR providers with the help of their trusted VAR partner, Defy Security.

Director of cyber security at Artera Services, Sean Fuller said, “The transfer of assets, data, and resources is complex, and requires expert-level integration to ensure business continuity and reliability are continuous for our utility customers. It’s very important that I’m able to determine when we are under attack. And that’s where the partnership with Deepwatch comes in. When something does happen, we are in a good position to respond to it, minimize the impact to the company, and restore our security posture as quickly as possible.”

Artera turned to Deepwatch after looking for an MDR supplier that could integrate with their preferred SIEM, Splunk. Artera now has Splunk Enterprise integrated and tailored to provide only high-priority warnings to their tiny in-house team, thanks to Deepwatch’s MDR solution. Through the Deepwatch platform, Artera has complete visibility across the whole security environment, thanks to this integration and powerful endpoint detection and response.

CEO at Deepwatch, Charlie Thomas said, “The security requirements Artera Services has as a supplier for the critical infrastructure and energy sectors are complex. Our mission is to help customers like Artera stay ahead of threats and mitigate risks that could impact its business and their customers’ businesses, which provide energy and utility services to consumers across the United States. Our named squad of security experts gives Artera an extended security team that monitors systems around-the-clock to protect Artera’s service reliability.”

“Artera’s requirements for advanced managed detection and response, including the ability to use a best-in-class security technology stack, led us to recommend Deepwatch. The ability to push data into the Splunk SIEM that was stood up immediately and managed by Deepwatch is a game-changer for Artera, and gives their in-house team opportunities to work on other strategic security projects,” said Justin Domachowski, president and founder of Defy Security.

Arista Enters Microsoft Intelligent Security Association To Help Improve Customer Security

Arista Networks has joined the Microsoft Intelligent Security Association (MISA), a community of independent software suppliers and managed security service providers that have integrated their products to better protect against an increasingly dangerous environment.

Arista was recognized for their NDR (Network Detection and Response) system’s integration with Microsoft Azure Sentinel. By integrating network context and threat detection with log-based and endpoint insights within Azure Sentinel, this integration provides faster threat mitigation.

Insider threat detection, threat hunting, digital forensics, and incident response are among the autonomous use cases enabled by Arista NDR, which analyses entire network packet data. The NDR platform detects, profiles, and classifies network items including as devices, users, and applications across campus, data center, IoT, and cloud networks using Arista AVA (Autonomous Virtual Assist), an AI-enabled decision support system.

AVA pre-computes answers to problems that an expert analyst would ask after analysing network data and querying threat intelligence sources, open source intelligence, and partner solutions within the MISA ecosystem and beyond. The platform uses this information to uncover weak and early signs of a network issue, as well as confirming data, in order to build conviction and determine the attack’s broader breadth. This allows the SecOps team to thwart an adversary’s goals at the very beginning of an attack.

“Customers have invested in a variety of security solutions in their battle against modern cyber threats. Responding to the adversary requires a coordinated effort across these solutions so that risks can be mitigated and impact minimized. Microsoft shares this vision and we are pleased to collaborate by bringing the high-fidelity detection and response signals from AVA and our NDR platform into Microsoft Azure Sentinel and MISA,” said Rahul Kashyap, VP/GM Arista NDR Security Division.

Companies are sometimes blind to 50% or more of their network, including IoT and contractor devices, as well as cloud workloads, as networks have developed. Adversaries target this larger attack surface, but because the underlying device lacks security agents or log sources, these attacks generally go unnoticed.

For this otherwise unmanaged infrastructure, integrating Arista NDR with Azure Sentinel provides extensive insight into network entities, threat detection, and incident response capabilities. Security teams benefit from comprehensive, entity-centric context that can be utilised to correlate data collected from other IT and security systems using Azure Sentinel workbooks.

“The Microsoft Intelligent Security Association has grown into a vibrant ecosystem comprised of the most reliable and trusted security software vendors across the globe. Our members, like Arista, share Microsoft’s commitment to collaboration within the cybersecurity community to improve our customers’ ability to predict, detect, and respond to security threats faster,” said Maria Thomson, Microsoft Intelligent Security Association Lead.

Stellar Cyber Raised $38 Million In Series B Funding Round To Grow Its Open XDR Success And Address Vital Demand To Provide 360-Degree Visibility Of Cyber Attack

Stellar Cyber, the maker of Open XDR, the only Everything Detection and Response platform, has raised $38 million in Series B funding round led by Highland Capital Partners, with active participation from all current investors Valley Capital Partners, SIG, and Northern Light Venture Capital, as well as new strategic investor Samsung. Stellar Cyber has already raised over $68 million in total funding.

“Today’s complex attacks are virtually impossible to rapidly detect with the traditional approach of using siloed, stand-alone tools, and our customers are tired of spending a fortune on tool collections that fail to cut off attacks. The Series B investment enables Stellar Cyber to continue leading the Open XDR market by driving innovation, increasing our market footprint, supporting partner expansion and hiring extraordinary talent,” said Changming Liu, CEO and co-founder of Stellar Cyber.

“Stellar Cyber offers the industry’s first Open XDR platform, and the only one that truly accepts security data from all tools and sources as well as its own sensors “A broad range of enterprises and MSSPs are deploying the Stellar Cyber platform at the center of their security operations because it shortcuts the time and effort to find in-progress cyberattacks or rogue insiders at work while fundamentally solving the problem of too many non-productive alerts,” said Corey Mulloy, partner at Highland Capital Partners.

“Today’s stone-cold reality requires a fundamentally different approach that breaks down traditional siloes of security to aggregate all data into a single plane for deep behavioral analysis that can find active attacks quickly and accurately. Stellar Cyber has taken the lead to break the necessary barriers to gain a proven 360-degree knowledge of attacks to get an upper hand on attackers,” said Raymond Liao, MD, Samsung Next.

“I am excited to see the tremendous growth Stellar Cyber has had since our initial investment. What we saw in Stellar Cyber’s early days is now clear to everyone. We welcome all the new investors to help Stellar Cyber reach its full potential to democratize cybersecurity for any enterprise,” said Raymond Choi, Managing Director at Valley Capital Partners and an existing board member of Stellar Cyber.

Palo Alto Networks Cortex XMDR Specialization Strengthens Customers’ Security Operations

Palo Alto Networks announced the launch of its Cortex eXtended Managed Detection and Response (XMDR) Partner Specialization, which will assist customers in detecting, investigating, and responding to cyberthreats across endpoint, network, and cloud assets.

The Cortex XMDR Specialization will facilitate MSSP partners to combine Cortex XDR with their managed services offerings, helping customers around the world streamline security operations centre (SOC) operations and rapidly mitigate cyberthreats, based on demand for Palo Alto Networks’ pioneering Cortex XDR 3.0 extended detection and response solution.

“Securing an enterprise is a massive undertaking. Organizations recognize the need for effective detection and response across the network, endpoint and cloud but often need help managing their deployment. The Cortex XMDR Specialization will give customers peace of mind that the services they are choosing will mitigate security gaps and alleviate churn to allow security teams to focus on the most critical threats,” said Karl Soderland, senior vice president, Worldwide Channel Sales at Palo Alto Networks.

“PwC is thrilled to have the opportunity to further expand our strong alliance with Palo Alto Networks through the delivery of best-in-class managed security services for our high value, joint customers.The Managed Cyber Defence service fuses the power of PwC’s global threat intelligence, thousands of hours of incident response expertise, and advisory services with Cortex XDR and XSOAR,” said Colin Slater, Partner at PwC UK

“We are excited to partner with Palo Alto Networks to help transform the MDR space together. As a Cortex XMDR Specialization partner we combine the power of best in class Cortex XDR with our MicroSOC services to relieve the day-to-day burden of security operations for customers with 24/7 coverage. Cortex XDR’s integration of endpoint, network, cloud and third-party data enables us to enhance the service that we provide to our customers as our analysts have visibility across an enterprise’s entire infrastructure and can more quickly focus on real threats,” said Laurent Lemaire, Chief Business Officer, Orange Cyberdefense.

“As a Cortex XMDR specialization partner, we are thrilled to be part of this launch. The powerful analytics and automation that Cortex XDR provides, combined with the cloud-native Trustwave Fusion platform, significantly enhances the capabilities of our detection, hunting and response teams to pinpoint anomalies quickly, provide deeper investigations, or if necessary, immediately eradicate the threat,” said Spencer Ingram, Senior Vice President of Operations, Trustwave.

“Cloud-delivered services on the Cortex platform allow us to reduce the time to deploy and configure our offerings while streamlining operations to focus on securing customers’ critical assets. As a Cortex XMDR Specialization partner, CRITICALSTART has the ability to provide our customers monitoring, analysis and coordinated response across network, endpoint and cloud environments, for a comprehensive view of an attack,” said Randy Watkins, Chief Technology Officer, CRITICALSTART.

AT&T Cybersecurity Offers New SASE Solution to Connect and Protect the Multi-Cloud, Hybrid Enterprise

AT&T is adding a new product to its global, managed Secure Access Service Edge (SASE) portfolio. AT&T SASE with Cisco is a converged network and security management platform that contains software-defined wide area networking (SD-WAN) technology and security capabilities to connect and protect businesses. Expert policy design and configuration, as well as 24/7 network control, are all included in the full package. Organizations may boost cloud adoption with AT&T SASE with Cisco by providing efficient, highly secure, and dependable digital experiences.

Why is this important?

The requirements for business connectivity are evolving. Employees are connecting from more locations and devices, whether it’s to assist the remote workforce during a worldwide pandemic or to link and defend branch offices, labs, or manufacturing facilities. Expectations on experiences are rising and IT teams are pushed. Networks must be able to meet increased bandwidth demands, which are being driven mostly by new cloud applications and edge computing. Companies must also be able to track and protect sensitive data throughout the network while providing an excellent user experience.

Company must be able to innovate in this new mixed workplace. This implies allowing people to connect and collaborate at any time and from any location.

What makes this new SASE solution different?

AT&T and Cisco’s combined networking and security expertise offer a unique perspective, providing a future-ready, unified solution from a single source. AT&T SASE with Cisco allows for site-by-site network optimization and dynamic traffic routing over numerous wide area network connections. These features, when combined with unified security controls, enable businesses to cut the time and cost of provisioning, managing, and scaling new connections to meet business objectives.

Organizations can regulate access for any device connected to any network via centralised visibility. In businesses such as healthcare, this functionality is crucial for validating user access to patient data. The AT&T SASE with Cisco solution delivers accurate, identity-based permissions for every session to confirm the health of devices. For the hybrid workforce, AT&T SASE with Cisco enables highly secure, direct connectivity to the web and SaaS applications. Remote users get a quick, reliable path to the cloud for enhanced computing experiences thanks to performance improvements at the edge.

AT&T Cybersecurity Consulting provides professional services to assist customers in through the SASE process.

“While SASE continues to generate significant interest in the market, the nature of the initiative leaves many users wondering where to begin and which vendors to engage with. Choosing proven network and security technologies is a good start, but working with managed service providers, especially those offering strategy, design, and implementation services, can help organizations accelerate their adoption of SASE and ultimately reduce time to value,” said John Grady, Senior Analyst, Enterprise Strategy Group.

“As a leading MSSP and trusted advisor, it’s important to provide customers with a choice of managed SASE solutions to meet their unique needs. Through our collaboration with Cisco, we’re offering an integrated, modern solution that addresses the connectivity and security demands of a multi-cloud, network environment while enabling innovation,” said Rupesh Chokshi, VP, AT&T Cybersecurity.

“The shift to remote work has accelerated the need for SASE solutions, so that users and devices are secure anywhere they work. The AT&T SASE with Cisco offer will provide customers with an innovative way to gain seamless, secure access to any application, from any location in a way that is straightforward to procure, easy to set up, and simple to use and manage through a single cloud dashboard,” Shailaja Shankar, Senior Vice President and General Manager, Cisco Security Business Group.

Stellar Cyber’s Open XDR strengthens security operations for Barracuda users

Stellar Cyber has announced the integration of its security platform with Barracuda CloudGen Firewall, Barracuda Total Email Protection, and Barracuda Web Application Firewall, offering managed security service provider (MSSP) clients and prospects with improved visibility, cyber threat hunting, automated incident correlation, and remediation.

“Our customers know that Barracuda delivers best-of-class email, network, and web application security solutions. When it comes to defending against today’s sophisticated cyber threats like ransomware and data breaches, they are looking for full visibility and automation,” said Fleming Shi, CTO at Barracuda Networks.

“We already offer Barracuda SKOUT Managed XDR optimized for our MSP customers. This new integration with Stellar Cyber gives our enterprise customers a holistic view of their infrastructure and the capabilities to coordinate incident response to attacks in real time.”

The Stellar Cyber platform integrates the XDR Kill Chain and AI-driven correlation of detection techniques and warnings into automatically generated incidents on an incredibly simple dashboard with visibility all over the attack surface, so analysts know precisely what to look into and how to look into it.

Furthermore, the inbuilt multi-tenant functionalities of Stellar Cyber find things simpler for Barracuda’s MSSP partners to offer SOC-as-a-service to its end-user customers.

“The Stellar Cyber Open XDR platform brings additional value to existing Barracuda product investments by ingesting their logs, enriching the captured data, analyzing that data for threats, and then automatically remediating attacks through the firewall as well as other systems,” said Zeus Kerravala, principal analyst at ZK Research. “It’s great to see this level of integration to protect customers.”

“By integrating our Open XDR AI-powered cybersecurity platform with Barracuda’s popular solutions, we deliver a new level of visibility and SOC capabilities, such as correlated threat analysis, threat hunting, and automated remediation, to Barracuda customers,” said Paul Jespersen, Senior Vice President of Global Business Development at Stellar Cyber.

“Our purpose-built platform collects and ingests data from all existing security tools and presents a single dashboard that clearly identifies and prioritizes security threats, all the way from individual alerts to sophisticated incidents or attack stories, in a way that maximizes efficiency in SOC operations.”

Barracuda is focusing on strengthening its integrations with Open XDR systems such as Stellar Cyber. Clients of Barracuda will be able to more effectively block ransomware and stay ahead of attackers that use credential theft and account takeover in email security to stop further penetration.

Valeo Networks Acquires On Time Tech

Valeo Networks, a leading Managed Security Service Service Provider (MSSP), announced the acquisition of another MSSP company On Time Tech, based in California (MSP). The financial details of the acquisition are kept private.

Valeo Networks has added two more California sites as a result of its current acquisition of another highly recognised MSP. This acquisition furthers Valeo Networks’ mission of developing a national network of IT and cybersecurity specialists to holistically support and secure its client base.

Valeo Networks’ fifth acquisition will continue to function under the name DBA On Time Tech (A Valeo Networks Company).  On Time Tech focuses on providing IT solutions for customers in financial services, healthcare, architectural, and non-profit businesses.

“As we continue to advance our nationwide growth strategy, working with outstanding companies like On Time Tech will help us achieve that goal. This acquisition further strengthens our well-established California presence, and expands our resources in the areas of cybersecurity, managed services, cloud solutions, and compliance. With their customer-centric approach, the On Time Tech team is an excellent fit within our organization,” said Travis Mack, CEO, Valeo Networks.

Lance Stone, President, On Time Tech said, “I am excited for On Time Tech to join forces with Valeo Networks and be part of something bigger. With a nationwide presence, focus on cybersecurity, and breadth of resources to pull from, we will be able to better serve our clients and give our staff additional opportunities for growth. While getting to know Valeo’s leadership team, I found that they are also passionate about providing top-tier services for clients and especially appreciate that the company culture and vision is a solid match to ours. I look forward to the next chapter of our journey!”

AI Phishing Defense Firm SlashNext Raised $26 Million Series B Funding

SlashNext, the SaaS leader in spear-phishing and human hacking defence stated it has raised $26 million in venture capital funding Series B. The round brings total SlashNext funding to $ 43 million, thanks to new investors Tom and Matt Gallo, Telia Group and the Ayala Group ACTIVE fund, as well as early investor participation by Norwest, Wing and Alter Ventures. 

Majority of cyber breaches are successful like ransomware and theft of data. SlashNext’s patented AI cloud and device protection extends over and across popular communication and collaboration applications to stop spear phishing, the social engineering industry and other targeted human threats. SlashNext protects companies from the malignant user threats from legitimate, trustful sites that easily escape current SEG, proxy, SASE and endpoint security tools, with its pinnacle accuracy and 48 hour detection time.

“When cybercriminals launch successful multi-channel phishing and social engineering attacks, the results are massively disruptive to people, organizations, and the economy. This is the number one cyber challenge that organizations face globally, and bad actors are only increasing their attacks in Linkedin, MS Teams, Messenger and Slack and becoming more sophisticated at taking advantage of the most vulnerable part of organizations – its people. This is why we saw considerable growth this past year with over 600% increase in customers and a 750% growth in ARR since the introduction of our multi-channel AI defense service,” said Patrick Harr, SlashNext CEO.”

SlashNext will scale-up its domestic and international acquisition and operations with new investments. Besides driving important distribution partnerships with MSSP, embedded OEMs and carriers, including their new strategic investors Telia Telecom and APAC Globe Telecom, representing over 40 million mobile subscribers in Europe. SlahNext will further lead the AI cloud and multi-channel, multi-language device detection of any type of phishing targeting — SMiShing, Vishing, BEC, fraudulent banking, scams, scam browsers, credential stealing, ransomware, social engineering or other malicious digital user attack from legally hosedt or trusted supply chain vendors.

SlashNext has the potential to prevent billions of dollars in damages to organizations by combatting the rise of spear phishing and other targeted attacks,” said Promod Haque, Senior Managing Partner at Norwest. “This funding will enable SlashNext to expand its footprint globally, making it the clear choice for organizations looking for protection against malicious digital attacks that current SEG, proxy, and endpoints solutions cannot defend.”

“The many recent headlines about ransomware attacks continue to confirm that no industry is immune to cybercriminal spear phishing attacks and the results of a successful attack are incredibly disruptive to operations. We consider these threats daily in all our operations – from transportation to production to growth. Our strategic investment in SlashNext strengthens our defenses, and we are excited to partner with them to grow and innovate to stop this multi-billion-dollar cybersecurity problem,” said Thomas Gallo.

“Unlike in the past, where cybersecurity breaches mainly focused on email through business devices, attacks now occur on different applications installed on endpoint devices like mobile phones and tablets, which can be personal and less protected. The ACTIVE Fund investment in SlashNext recognizes the evolving nature of communication for work and life – data-driven and digital, collaborative, and accessible anywhere any time and on any device. SlashNext’s superior technology will fortify enterprises’ defenses, allowing them to operate with speed, scale, and security, protecting both their customers and their shareholders. We’re keen to support SlashNext’s mission to stop this global problem,” said Minette Navarrete, President of Kickstart Ventures.

DesktopReady introduces comprehensive DaaS solution for MSPs market

DesktopReady has officially launched its much-anticipated DaaS Solution for MSPs. As a result of the pandemic, the need for digital transformation has grown even more. Now, Virtual Desktops have become standard, safe and scalable ways to satisfy the requirement of a distributed workforce.

DesktopReady is the go-to solution for MSPs looking to take advantage of this rapidly expanding industry. MSPs launched DesktopReady, a fully managed Desktop as a Service (DaaS) for MSPs. It offers a comprehensive range of technologies and services, ranging from design implemention, migration and continuous monitoring and service support, to suit MSPs’ skill and resource requirements.

To assist their clients in the digital transformation path, MSPs have begun to navigating the pandemic and DesktopReady’s Virtual Desktop solution is a critical component of that plan. DesktopReady and Microsoft have strategically formed partnership to build on top of Azure Virtual Desktop (AVD), integrating Microsoft Azure’s scale and customization with the DesktopReady DaaS solution.

DesktopReady provides MSPs with the tools they need to deliver a Virtual Desktop solution to their customers, as well as support services that can help them launch a successful DaaS strategy.

“MSPs are the trusted advisors for their customers and as a global leader in VDI design, and implementation, we know it takes more than technology to earn that trust. DesktopReady combines technology with value-added services designed to allow MSPs to focus on their customers. With the launch of this white-label MSP DaaS Solution, we help accelerate the adoption of Microsoft Azure in SMB through MSP channels and enable modern workspaces for their clients’ distributed workforce,” says Ashish Bambroo, Chief Revenue Officer, DesktopReady.

Untangle Selects Brigantia Partners To Grow SMB Security Distribution in the UK

Untangle Inc., a specialist in network security for SMBs and distributed businesses, announced a partnership with Brigantia Partners to market its award-winning SMB security solutions in the United Kingdom.

“Our partnership with Brigantia will enable us to reach MSPs with specific needs that Brigantia understands. Brigantia has a deep understanding of IT Managed Services within the UK, and together with Untangle, will be able to provide the best in class products, support and services. Untangle is energized by Brigantia’s approach to building their UK business and we look forward to a successful partnership where we grow together,” said Scott Devens, CEO at Untangle.

Brigantia is an award-winning managed services distributor that offers comprehensive, cost-effective IT solutions. Brigantia Distribution, Brigantia Consulting, and Brigantia Enhance are three distinct business sectors aimed to provide maximum value to the companies of its reseller, MSP, MSSP, and consultant partners. Clients now have access to a strong product stack that includes comprehensive security, deep analysis and insights, network orchestration, reliable connectivity, and network performance as a result of cooperation with Untangle.

“After years of searching for a next-generation firewall solution that is clearly aimed at the SME and MSP marketspace, Brigantia Partners is excited to be launching the award-winning range from Untangle. With this new addition to our portfolio, we are providing our partners with an enterprise-level firewall and VPN solution that is simple to deploy and manage, while also fitting into SME budgets,” said Martin Wright, Managing Director at Brigantia Partners Limited.

Untangle makes use of a cloud-based console that delivers daily analysis and alerts to assure that clients are informed of any malicious behaviour. Clients can now be assured that they are receiving the full advanced security of the Untangle Network Security Framework thanks to MSPs’ use of NG Firewall, which provides highly customizable protection and extensive filtering capabilities.

Brigantia and Untangle are both dedicated to defending SMBs and distributed enterprises from cyber threats. Brigantia, in collaboration with the Untangle SD-WAN product range, can provide end users with a unified, professional solution for SMEs with many locations.