Cloud – Digital IT News

Fortinet Boosts Cloud-Native Security with Lacework FortiCNAPP

Taylor Graham — Tue, 08 Oct 2024 17:00:18 +0000

Fortinet has launched Lacework FortiCNAPP, an AI-powered, all-in-one platform designed to secure everything from code to cloud, all through a single provider.

“Lacework FortiCNAPP is based on Lacework’s proven cloud-native application protection platform with tight integration with the Fortinet Security Fabric,” said John Maddison, Chief Marketing Officer at Fortinet. “We’re pleased to expand our cloud-native security offerings and provide the industry’s most comprehensive, full-stack cloud security platform that empowers teams to seamlessly eliminate risk across their multi-cloud environments.”

The introduction of Lacework FortiCNAPP offers additional benefits that extend beyond Lacework’s leading offering, such as automated remediation and blocking of active runtime threats, as well as enhanced visibility into FortiGuard Outbreak Alerts, which provide key information about new and emerging threats and the risk they pose within an organization’s environment.

Challenges Disrupting Cloud Adoption

As customers continue to adopt cloud infrastructure and services, they are quickly realizing that traditional security tools simply lack the native capabilities required to address the scale, velocity, and dynamic nature of the cloud. Security teams are fundamentally challenged by the lack of time to address cloud security at scale due to limited cloud security knowledge, a proliferation of cloud security products that do little to help customers resolve issues, and an overwhelming number of security and compliance alerts.

Fortinet Helps Accelerate Customers’ Cloud Journeys

With Lacework FortiCNAPP, Fortinet simplifies and strengthens cloud security with a unified platform from a single vendor that brings together multiple tools to significantly cut down the time to detect, prioritize, investigate, and respond to cloud-native threats. Lacework FortiCNAPP introduces a unique AI approach that never stops learning, maximizing cloud security with minimal time and effort for development, operations, and security teams by automatically connecting risk insights with runtime threat data, and ensuring that the most critical issues are prioritized and addressed.

Fortinet enables customers to address all their cloud security needs by delivering key features such as:

A unified platform: Fragmented tools create complex, expensive, and limited protection. As a platform, Lacework FortiCNAPP provides full visibility from code to cloud and correlates build and runtime risk and threat data to prioritize what matters most.
AI-based anomaly detection: Given that cloud threats evolve as quickly as the cloud itself, creating rules for every potential attack scenario is nearly impossible. Lacework FortiCNAPP’s AI-based anomaly detection allows security analysts to detect previously undefined attack patterns that traditional rules-based systems cannot accomplish.
Integrated code security: Code security integrated with cloud security empowers teams to address issues at the earliest and most cost-effective stage in the application life cycle. By offering code security as an integral capability within the platform, customers can save time and money by fixing security issues, and reduce the risk of vulnerable applications and infrastructure while maintaining developer productivity and innovation velocity.
Composite alerts: Lacework FortiCNAPP is unique in detecting early signs of active attacks by automatically correlating various signals into a single, high-confidence composite alert. The platform uses behavioral analytics, anomaly detection, in-house threat intelligence, and insights from cloud service provider activity logs and threat services to identify active attacks, including compromised credentials, ransomware, and cryptojacking.
Integrations with the Fortinet Security Fabric: Integrations with Fortinet solutions such as FortiSOAR enable customers to streamline their response to active runtime threats, such as compromised hosts and compromised access keys, through automated remediation playbooks. Additionally, its integration with FortiGuard Outbreak Alerts helps teams understand how Lacework FortiCNAPP delivers enhanced visibility and deeper insights into the latest threats and where the solution can disrupt potential attacks.
Cloud Infrastructure Entitlement Management (CIEM): Lacework FortiCNAPP provides CIEM for complete visibility into cloud identities and their permissions. It automatically discovers identities, assesses net-effective permissions, and highlights excessive ones by comparing granted versus used permissions. Each identity is assigned a risk score based on more than 30 factors, helping prioritize high-risk identities. Lacework FortiCNAPP also offers automated remediation guidance for right-sizing permissions, ensuring least-privileged access.

Third-Party Validation

Lacework FortiCNAPP is based on the industry-recognized technology from Lacework, which is consistently recognized as a leader and Representative Vendor in CNAPP and Cloud Workload Security by leading analyst firms, including Frost and Sullivan, Gartner^®, GigaOm, and KuppingerCole.

Supporting Quotes

“Lacework FortiCNAPP helped us deal with the massive amount of information that we were getting out of all the different systems, from the native security tools and logging and alerting tools that came from cloud providers to third-party tools that we had purchased to help solve these problems.”

– John Turner, Senior Security Architect, LendingTree

“Lacework FortiCNAPP automatically discovers and catalogs users, services, security groups, and secrets that are active within LawnStarter’s AWS environment and compares them against industry frameworks and compliance requirements. LawnStarter can quickly pull customized reports created by Lacework FortiCNAPP to see which resources are compliant. As a result, LawnStarter has seen a 75% decrease in compliance violations over the past year, saving the company significant time and money. LawnStarter now has a robust compliance practice that is essential to earning and maintaining trust with customers, providers, investors, and advisors.”

– Alberto Silveira, Head of Engineering, LawnStarter

To learn more about Lacework FortiCNAPP, visit the website here.

Cyber Threat Landscape in Conflict Zones and Beyond

*Gartner, Gartner Market Guide for Cloud-Native Application Protection Platforms, Dale Koeppen, Charlie Winckless, Neil MacDonald, Esraa ElTahawy, 22 July 2024

The post Fortinet Boosts Cloud-Native Security with Lacework FortiCNAPP appeared first on Digital IT News.

Generative AI Driving YOY Cloud Spending 30% Higher

Taylor Graham — Wed, 02 Oct 2024 14:00:08 +0000

Cloud spending has risen by an average of 30%, primarily due to the influence of Generative AI and AI technologies, with 72% of IT and financial leaders agreeing that GenAI-driven cloud costs are becoming unsustainable. These insights come from a recent Vanson Bourne study, commissioned by Tangoe, a leader in expense and asset management solutions for over two decades.

“GenAI is creating a cloud boom that will take IT expenditures to new heights,” said Chris Ortbals, chief product officer at Tangoe. “With year-over-year cloud spending up 30%, we’re seeing the financial fallout of AI demands. Left unmanaged, GenAI has the potential to make innovation financially unsustainable.”

The study surveyed 500 IT and finance professionals across a wide range of business sizes and industries with the overwhelming majority (92%) reporting their cloud spending was on the rise. The top three reasons were listed as AI (50%), GenAI (49%) and automation (36%). On average, companies spend $40M on cloud services with a surprisingly even split among categories: SaaS (28%), private cloud (28%), IaaS (25%), and UCaaS (19%).

Key Challenges in Private Clouds, Software, Cost Allocations

The findings also spotlight the complexity of cloud financial management, highlighting specific challenge areas.

• Hybrid Cloud Cost Management is Rising in Criticality: 80% say private cloud cost management is tricky compared to public, yet 95% plan to repatriate their resources from public to private clouds with 47% of resources slated for repatriation.
• Software is a Key Contributor to Overspending: 38% of SaaS spending comes from Shadow IT, and 67% admit their productivity software licenses (like Microsoft 365® and Google® Workspace) go to waste.
• Sharing Cloud Expenses is Important but Difficult: 93% agree shared cloud expenses should be allocated across the organization, and yet, 53% find chargebacks challenging and time consuming.

Preparing Companies to Handle Rising Cloud Expenditures

In addition to putting context around the challenges associated with cloud financial management, the study also reveals the best practices helping accelerate results.

• FinOps Coverage Has to Expand: A decisive 94% of cloud cost practitioners assert that FinOps must evolve to incorporate SaaS, and not just focus on Infrastructure as a Service (IaaS). Learn how Tangoe’s FinOps solution helped a manufacturer reduce Microsoft 365 spending.
• More than Cost Cutting – It’s about Productivity and Security: 94% of respondents consider increased productivity a derived value of cloud cost management. Enhancing productivity and security have emerged among the top three benefits of effective cost management, highlighting the need for FinOps solutions that do more than just pinpoint ways to save but also advance financial operations and risk management practices.
• Popular Approaches Leave Leaders Worried: In controlling spending, a collective 62% of respondents use either manual processes (21%) or native tools from cloud service providers (42%), rather than adopting specialized FinOps software. These approaches correspond with a lack of confidence and higher concerns that costs will spiral out of control.

“The cloud’s hidden costs and unpredictable invoices can become the silent killer of GenAI,” added Ortbals. “The more urgently companies adopt comprehensive cost management FinOps strategies, the easier it is for them to turn GenAI’s promise into lasting innovation instead of runaway expenses and technical debt.”

To review the Tangoe report: “State of Cloud: The Critical Role of Third-Party FinOps in Cloud Spending Control”, visit the website here.

IT Expense Management Costs 5X Less When Fully Outsourced

The post Generative AI Driving YOY Cloud Spending 30% Higher appeared first on Digital IT News.

Apono Raises $15.5M in Series A Newly Secured Funds

Taylor Graham — Mon, 30 Sep 2024 14:00:02 +0000

Apono announced the successful close of its Series A funding round, securing $15.5 million. The round was led by New Era Capital Partners, with additional support from Mindset Ventures, Silvertech Ventures, and its initial seed investors, among others.

The newly secured funds will be used to advance Apono’s mission of providing AI-driven, simple, innovative, and secure solutions that organizations need to manage access in complex, distributed cloud environments. Additionally, these newly secured funds will be used to accelerate product development and enable Apono to continue its growth, deliver unparalleled value to its customers, and solidify its position as a leader in the identity security space. This latest round brings the total investment from new and current investors to $20.5 million, underscoring strong investor confidence in Apono’s vision and capabilities.

Apono is a next-gen solution for cloud access governance. The company is committed to delivering capabilities that meet the dynamic needs of modern enterprises and support the development, operations and security teams responsible for securing and maintaining cloud environments they depend on. Apono’s innovative approach provides organizations with a deep understanding of privileged access within their cloud environments, enforces robust security guardrails, and leverages AI-driven least privilege and anomaly detection capabilities to enhance security measures while providing a frictionless experience for end-users.

“Today, more than ever, we are seeing a shift in the identity space,” said Apono’s Co-Founder and CEO Rom Carmel. “Privileged access management and identity governance are converging, driving the need for more holistic identity and access security solutions, particularly within today’s dynamic cloud environments in which modern businesses operate. As we continue our rapid growth, this funding will enable us to maintain our momentum and continue delivering cutting-edge solutions to our clients. Our investors were drawn to Apono’s unique AI-driven product offering, innovative approach, and its swift adoption by enterprises, recognizing the company’s potential to lead the identity security market.”

With this investment, Apono is set to significantly expand its US sales and marketing teams, while also expanding investments in research and development. After the company recorded a 300% increase in revenue the last 3 quarters, Apono has welcomed several key industry executives, further bolstering its market position and enhancing its ability to support a rapidly growing customer base. Customers can anticipate new AI-based access product offerings and improved support from Apono’s sales engineering and customer success teams, which have tripled in size in the US. Additionally, to meet the needs of new enterprise customers, the company has added enterprise support teams who will deliver the scale of service today’s enterprises require. These strategic developments will ensure seamless onboarding and continuous support for Apono’s expanding clientele.

“We are thrilled to support Apono in their mission to revolutionize identity and access security,” said Ziv Conen, Partner at New Era Capital Partners. “Apono’s innovative solution addresses critical challenges in the cloud access management space, providing organizations with robust, scalable solutions. This investment reflects our confidence in Apono’s vision and their ability to lead the market with cutting-edge technology and exceptional customer focus. We look forward to supporting Apono’s continued growth and success as they redefine how businesses manage and secure access in today’s dynamic environments.”

“We were able to self-service Apono in minutes, which significantly enhanced customer trust in our global multi-cloud platform. This seamless integration allows our teams to work without friction, ensuring efficiency and productivity. Moreover, it helps us maintain a least-privilege cloud environment, which is crucial for our security and compliance standards,” said Arthur Goren, Director of Cloud Engineering at Hewlett Packard Enterprise.

Apono is devoted to addressing the evolving needs of the identity and access security landscape, particularly as it has grown to play a more significant role in today’s modern cloud environment. Apono’s solution was built from the ground up to empower organizations to deliver just-in-time, just-enough access management at scale by bridging the security-operational gap in identity and access management. With a focus on innovation and customer success, Apono is poised to redefine how organizations manage and secure access, ensuring robust protection and seamless operations in an ever-changing digital world.

“In response to the growing complexity and security threats associated with cloud adoption, forward-thinking organizations are increasingly aligning the goals and workflows of their security and engineering teams,” said Katie Norton, Research Manager, DevSecOps and Software Supply Chain Security at IDC. “Cloud identity and privilege management are central to these alignment efforts. Apono’s approach to cloud privileged access management aligns with these goals and helps bridge the gap between security and engineering teams.”

For more information on Apono and what the newly secured funds will be used for, visit the website here.

Cloud Storage Trends to Stay on Top Of

The post Apono Raises $15.5M in Series A Newly Secured Funds appeared first on Digital IT News.

Salt Security Launches Integration with Google Apigee API Management

Taylor Graham — Wed, 25 Sep 2024 15:00:59 +0000

Salt Security announced its integration with Google Cloud’s Apigee API Management platform. This collaboration enables customers to identify all their APIs, including shadow and deprecated ones, enforce posture rules, detect non-compliance issues, and prevent API-based attacks at their source.

The security landscape is witnessing an unprecedented reliance on APIs. Now more than ever, organizations need comprehensive API security mechanisms that proactively detect and prevent threats. Salt Security, a pioneer in API security, along with Apigee delivers comprehensive API security that combines Salt’s AI-powered API discovery and runtime protection the robust with Apigee API gateway and traffic management capabilities.

Proactive Threat Prevention and Detection:

Salt uses AI and ML to detect anomalies and potential attacks, identifying and blocking malicious API calls in real time.
Apigee adds policy enforcement and AI-powered monitoring, further strengthening security by ensuring compliance and identifying common threats.

Enhanced Visibility and Control:

The Salt platform automatically discovers all APIs, including shadow and deprecated ones, providing comprehensive visibility.
Apigee acts as a single entry point, managing traffic and protecting APIs from abuse and ensuring fair usage.

Improved Incident Response:

Salt provides detailed forensic analysis of API attacks, helping organizations understand attack vectors and improve their security posture.
Apigee’s detailed analytics and monitoring capabilities allows organizations to gain insights into API usage patterns, performance metrics, and potential security threats.

This combined solution provides end-to-end API security, from discovery and threat detection to prevention and incident response, safeguarding sensitive data and ensuring the integrity of digital services in today’s dynamic threat landscape. Leveraging Apigee’s built on security, scalability, and reliability, the combined solution facilitates a more secure environment for API deployment and management.

“In today’s digital age, APIs are the backbone of modern applications. Protecting these critical assets is paramount,” said Roey Eliyahu, CEO of Salt Security. “Our integration with Google Cloud’s Apigee API Management platform seamlessly blends together each of our individualized expertise in API security into one powerful solution. Our collaborative approach is built on a foundation of security, scalability, and reliability, ensuring that businesses can confidently embrace the power of their APIs.”

The powerful synergy between Salt Security and Apigee creates a comprehensive API security solution. Salt Security’s threat detection expertise complements Apigee’s policy enforcement and traffic management, resulting in a robust and secure approach. Automated API discovery and efficient traffic management streamline operations, while detailed forensic analysis and analytics enable faster incident response. Salt’s API Posture Governance engine treats APIs as IT assets, facilitating comprehensive risk management and proactive security. This ensures the API landscape aligns with the organization’s overall posture governance strategies, enabling customers to prioritize remediation efforts and optimize the security of their most valuable resources.

To learn more about the Salt Security integration with Google Cloud’s Apigee API Protection Platform or to request a demo, please visit the website here.

OAuth Implementations Security Flaws Remedied with Salt Security

The post Salt Security Launches Integration with Google Apigee API Management appeared first on Digital IT News.

Salesforce Data Cloud Grows with Rising Adoption and Innovations, Delivering Trusted Data to Agentforce

Taylor Graham — Tue, 17 Sep 2024 18:00:44 +0000

Salesforce is gaining significant traction with Data Cloud, the core of the Salesforce Platform and the backbone of Agentforce. This growth is driven by strong business demand for integrated data, enabling more personalized, timely, and contextually relevant customer experiences across Customer 360 applications, Flow, analytics, and Agentforce—Salesforce’s innovative suite of autonomous AI agents.

Building on that momentum, Salesforce introduced several new Data Cloud innovations that advance an organization’s ability to transform the customer experience using data and AI. They include: additions to unstructured data support including native processing of audio and video content — such as webinars and calls — to unlock deeper customer insights; a standardized semantic data model that enables Agentforce Agents and humans to interpret and use data consistently; improved search capabilities that factor in customer context and allow for quicker information discovery; real-time data activations to respond instantly to changing customer needs; and additional data security and governance features to safeguard operations and prevent unnecessary data exposure.

As the fastest-growing organic product in Salesforce’s history with 130% YoY growth in paid customers, Data Cloud has shown impressive scale, processing 2.3 quadrillion records (+147% YoY) in the second quarter alone. Companies like The Adecco Group, Air India, Aston Martin, FedEx, Kawasaki Motors Corp., and Wyndham Hotels & Resorts rely on Data Cloud daily to help strengthen customer relationships, boost productivity, and improve their bottom lines. Air India, in particular, is unifying its data across loyalty, reservations, and flight systems. Now, the airline has a single source of truth to handle more than 550,000 service cases each month.

“In this new era of AI and Agents, customer data and metadata are the new gold for the enterprise,” said Rahul Auradkar, EVP and GM for Data Cloud at Salesforce. “Every day, more companies are using Data Cloud to unify all their data—from customer interactions and product usage to IoT and social media data—to gain deeper customer insights across all touchpoints and channels. Because Data Cloud is the foundation of Salesforce, companies can act on data to create the most personalized and meaningful customer experiences.”

Data Cloud + Customer 360 + Agentforce: Data Cloud surfaces trusted customer data in all Salesforce Customer 360 applications, Agentforce, Flow, and analytics — creating a foundation for personalized customer experiences and real-time analytics, triggering data-driven actions and workflows, and safely driving AI across all Salesforce apps. With its zero-copy technology and MuleSoft connectors, Data Cloud can ingest data from hundreds of diverse data sources, including data lakes and warehouses. Its built-in vector database converts various data formats — PDFs, texts, calls, voicemails, often trapped in 90% of customer data — into readily usable data and harmonizes it with structured data to create comprehensive customer profiles that are stored as metadata in a unified data foundation. Because it’s fully integrated in the Salesforce Platform, this metadata can flow seamlessly into any Salesforce application based on set governance policies. This gives every team a 360-degree view of the customer to power trusted AI and drive automation and analytics across every touchpoint — without compromising data security.

Data Cloud provides the vital customer data that grounds Agentforce, making agents more contextually aware, knowledgeable, and adaptable to customer needs. For example, when a frustrated customer contacts Agentforce Service Agents, Data Cloud’s built-in Retrieval Augmented Generation (RAG) capabilities add real-time insights and context from past emails, support tickets, product photos, voicemails, and any sources as defined by governance policies to help Agentforce better understand the customer perspective. Data Cloud’s hybrid search then identifies the right knowledge article based on customer context to help Agentforce resolve the issue accurately. As customer requests evolve, Data Cloud guides Agentforce with next-best steps, like automating follow-up emails or passing detailed chat summaries to support human representatives. Finally, Tableau Semantics facilitates a seamless transition between AI and employees by ensuring they speak, understand, and operate using the same definitions of data.

New innovations and additions: Data Cloud customers now have access to new capabilities and enhancements that make data accessible and actionable across every Salesforce activation, including:

Support for unstructured audio and video content: With 90% of customer data trapped in unstructured formats, businesses and AI can now analyze and extract customer data from previously inaccessible audio and video sources like customer calls, training sessions, product demos, feedback surveys, voicemails, and webinars. This content, now searchable, enriches customer profiles, reveals deeper intent behind customer preferences and behaviors, and improves Agentforce’s accuracy.
- For example, by analyzing recorded sales calls, a sales team can pinpoint common objections and refine their pitch to address them more effectively, leading to higher conversion rates.

Data Cloud connectivity ecosystem expansion: Building on Data Cloud’s promise to be open and extensible, organizations can bring their own data using additional pre-built Data Cloud connectors for apps like Square, Stripe, Meta, Splunk and more, adding to the rapidly growing connector ecosystem that already supports various data lakes, warehouses, and third-party systems. They can also tap into unstructured data from Google Drive, Microsoft SharePoint, Confluence, and Sitemap in Data Cloud using pre-built integrations provided with MuleSoft Direct for Data Cloud. This means data can be pulled in and unified from wherever customers interact, then used to power agentic experiences.

Sub-second real-time layer: With 62% of IT leaders noting the need for real-time data to stay competitive, organizations can now ingest, unify, analyze, and act upon data in real-time across Salesforce. This powers Einstein Personalization, now built on Data Cloud, along with real-time AI recommendations, analytics, and automations to enable faster decision-making and instant personalization across customer touchpoints.
- For example, a support agent assisting a customer with equipment issues can access real-time sensor data, recent maintenance records, and past support tickets directly in Service Cloud. If the equipment’s sensor stops sending data, a triggered alert notifies the agent, allowing them to quickly diagnose the issue and recommend targeted solutions to minimize downtime.

Governance and security for trusted data and AI: To safeguard operations, manage governance at scale, and prevent exposure to unauthorized parties while using AI, these new features improve how structured and unstructured data are managed, protected, and securely shared with AI applications and across the platform.
- AI tagging and classification automate the labeling and organization of unstructured data per business policies. Data becomes consistent, governance is easier to apply, and both AI and users can easily search and analyze the data.
- Policy-based governance helps achieve access governance at scale by creating granular security policies that grant appropriate access to user groups based on tags, metadata, and user attributes. This simple experience ensures that users, including AI, can only access the data it’s permitted to see across the platform.
- Customer-managed keys allow organizations to manage their own encryption keys, ensuring data stays encrypted and secure regardless of how it’s used.
- Private Connect for Data Cloud enables organizations to safely share and integrate their data between Data Cloud and public cloud environments by establishing secure, direct network connections between them. This means data can be safely shared across network boundaries without compromising its integrity.

Tableau Semantics: Organizations can organize data based on its meaning and relationships, creating a standardized semantic model that allows anyone to understand, use, and act upon data consistently, regardless of origin.
- For example, a hospital can standardize data across departments, ensuring that a patient’s test results, X-rays, and doctor’s notes are all linked and understood in the same context regardless of how they are written (abbreviations, typos, synonyms, etc).

Hybrid search: Organizations can find the most relevant information in the company’s knowledge base by combining semantic capabilities of vector search with the exact match capabilities of keyword search, which are critical to deal with specific domain terms like product names or acronyms. This makes it faster and easier to find information across any medium, such as PDFs, pictures, audios, and videos.
- For example, Agentforce can use part numbers found in customer-sent photos to pull up relevant knowledge articles for that product category and help support representatives resolve customer issues faster.

Data Cloud One: Organizations can now connect multiple Salesforce orgs that may be siloed across different departments, regions or business units and extend all of Data Cloud’s functionalities across all Salesforce instances using a no-code, point-and-click setup. This allows them to create a single Data Cloud instance as the source of truth, enabling data sharing and actions, like automation, calculated insights, and more across all Salesforce orgs, without creating new Data Clouds for each org.
- For example, a sales leader looking to enrich sales leads with a 360-degree view of customers no longer needs to have their team write custom code to integrate Data Cloud data across multiple Salesforce orgs. Instead, a single central Data Cloud can now power each org with its features, seamlessly enriching sales profiles across all Salesforce orgs.

A new data community: Salesforce also announced its new Datablazer community, an online platform to connect IT and business leaders, developers, and Data Cloud enthusiasts. It provides space to learn, share insights, and stay informed on the latest best practices, trends, and tools to maximize the value of data.

The customer perspective:

“Salesforce allows us to fuse together our trusted data from across our business to deliver tailored quality experiences to every current and future Aston Martin customer while creating the personalized, VIP experience they expect, as we look to grow and succeed in the AI era,” said Matthew Randall, Head of Software and Integration, Aston Martin.

“As a professional recruiting, staffing and consulting business, we match talent to the most exciting companies and opportunities around the world. On any given day, we connect 700,000 people with fulfilling opportunities to match their skills. We are redefining the future of work by enabling augmented recruiter experiences thanks to AI, connecting employees to the right data at the right time. Today, Data Cloud gives 27,000 employee users seamless access to key information to match skills to specific roles,” said Caroline Basyn, Chief Digital and IT Officer, The Adecco Group.

“Each and every one of Wyndham’s hundreds of millions of guests wants to be seen and heard on an individual level. Salesforce gives our reservation agents a comprehensive view of the specific guest they’re serving so they can receive a personalized experience based on context about their stay history, loyalty service, and notes from past requests. This is made possible by the suite of products with Salesforce, including Data Cloud, which harmonizes data and unifies guest profiles from our reservation platform. With this data aggregated, agents can now access guests’ booking histories at any franchise property, such as accessible room requests, loyalty status or milestones, personalizing every interaction,” said Scott Strickland, Chief Commercial Officer, Wyndham Hotels & Resorts.

Expected availability: New innovations will be available in pilot, beta or general availability within the below time frames.

Now:
- Customer-managed keys is generally available.
- Sub-second real-time layer is generally available and can be enabled through sub-second real-time profiles add-on consumption SKU.
- MuleSoft Direct for Data Cloud will be in beta in late Sept ‘24 and require a MuleSoft Anypoint Platform license to use.
- A comprehensive list of pre-built connectors generally available and in beta can be found in Data Cloud Connectors Directory.
In October ‘24:
- Support to process unstructured audio and video content, currently in pilot, will be generally available.
- Data Cloud One will be generally available.
In November ‘24:
- Hybrid search, currently in pilot, will be generally available.
- AI tagging and classification will be in beta.
- Policy-based governance will be in beta.
- Private Connect for Data Cloud will be generally available.
In February ‘25:
- Tableau Semantics, currently in pilot, will be generally available.

To learn more about Salesforce Data Cloud, Customer 360 applications, Flow, analytics, and Agentforce, visit the website here.

Cloud Storage Trends to Stay on Top Of

The post Salesforce Data Cloud Grows with Rising Adoption and Innovations, Delivering Trusted Data to Agentforce appeared first on Digital IT News.

The Apono Platform Enhancements to Cloud Privilege Access Announced

Taylor Graham — Thu, 05 Sep 2024 15:00:15 +0000

Apono unveiled a set of key features in the Apono platform, enhancing user capabilities and providing the innovative, secure solutions organizations require to manage access in complex, distributed cloud environments.

The Apono Platform significantly enhances resource visibility and discovery, empowering users to continuously monitor activity across their expanding cloud environments. This amplified visibility and additional context fuel the refinement of automated access policies within Apono. Furthermore, augmented integrations and automated access provisioning enable Apono to more effectively leverage existing tools, allowing for more agile access management of cloud resources and the escalation of privileges during security incidents.

Key Features of the Apono Platform Include:

Continuous Discovery – Use real time discovery of cloud resources and infrastructure to maintain visibility and build dynamic access policy.
Access Threat Detection and Response – Continuously detect anomalous and potentially malicious cloud access attempts. Quickly block and revoke access with a single click.
Access Activity Audit – Streamline incident response and simplify compliance reporting with complete visibility into who accessed what resource when.
Least Privilege Recommendations – Protect cloud data and resources without promising productivity with intelligent access right sizing that optimizes privileges and balances risk with business needs.
Automated Provisioning of Time-Bound Access Privileges – Minimize approval wait times while reducing access risk with self-serve requests and automated, context-based provisioning.
Context Integrations – Pull context from your existing toolstack to quickly escalate permissions for key personnel during incident response.

Identity continues to be the most critical threat vector for high impact cybersecurity incidents. Forrester found that identity and privileged access credentials now account for 61% of all data breaches. Additionally, the growing adoption of cloud computing has created a critical need for securing access to sensitive cloud data and resources. Apono’s Just-In-Time, Just-Enough approach to cloud privilege access offers organizations a simple, scalable solution to address this challenge without hindering business operations.

“With Apono, we’ve reduced the time it takes for our team to access essential resources, freeing up valuable time and preventing potential data breaches worth tens of millions of dollars,” said Drew O’Connor, Director of Cloud Infrastructure, Labelbox. “We are thrilled by the capabilities that Apono has enabled for our team and look forward to the innovation and security that Apono continues to deliver for our organization.”

Apono provisions access directly at the resource level, consolidating cloud policy management for the entire customer environment onto a single platform. This results in faster deployment, reduced management overhead, and significantly finer-grained control. Today’s update demonstrates the company’s continued commitment to providing the most comprehensive and advanced solution for organizations seeking to secure their cloud environments and resources while maintaining efficiency.

“We come with the message that business productivity should not come at the cost of security, nor should security come at the cost of productivity. Our clients come to us because they are tired of compromising,” said Rom Carmel, CEO & Co-Founder, Apono. “Organizations that use Apono reduce their cloud attack surface by an average of 94%. These features will help take the guesswork out of building secure policy and add an additional layer of protection against data breach.”

To learn more about the Apono Platform, visit the website here.

Related News:

Cloud Storage Trends to Stay on Top Of

Cloud PAM Essentials Solution Offered by Partners Verinext and One Identity

The post The Apono Platform Enhancements to Cloud Privilege Access Announced appeared first on Digital IT News.

Executive Protection Service Launched by SlashNext

Taylor Graham — Wed, 28 Aug 2024 14:30:14 +0000

SlashNext announced the launch of its Executive Protection Service, a comprehensive solution providing 360-degree protection across email, mobile/SMS, and web communication apps for highly targeted employees. Tailored for an organization’s most critical members, this AI-native service defends against advanced phishing, social engineering, ransomware, fraud, and reputation scams in both business and personal communication apps. Designed for CXOs, executive officers, and other high-value targets, it offers full protection within minutes and includes a 24/7/365 concierge help desk and SOC-as-a-service support.

“AI-generated phishing and social engineering attacks targeting executives and high value employees has grown exponentially since the release of ChatGPT,” said Patrick Harr, CEO of SlashNext. “Our Executive Protection Service fights AI with AI and ensures organizations of any size can protect their most targeted individuals against advanced phishing, social engineering and cybercrime threats responsible for the vast majority of successful ransomware, financial fraud and data breaches.”

SlashNext’s Executive Protection Service offers unparalleled security for designated employees, including Board Directors, Executive Officers (e.g., Section 16 Officers defined in The Securities Exchange Act of 1934), Accounts Payable, HR, and other business leaders. The service provides complete protection against sophisticated attacks in:

Email: Blocks executive impersonation attempts, account takeovers, supply chain attacks, business email compromise (BEC), and targeted spear-phishing campaigns designed to steal credentials and personal information or induce fraudulent wire transfers.
Mobile Apps: Secures against SMS phishing (smishing) and mobile web phishing threats in text, WhatsApp, LinkedIn Messenger, Telegram, Outlook and more that highly-targeted individuals may encounter no matter their location. This service eliminates the risk of Executive Impersonation, Credential Phishing, Malware Exploits, Investment/Bitcoin/Financial Fraud, and more.
Web-based Communication Apps: Blocks sophisticated phishing in browsers and collaboration platforms such as Teams, Slack, Zoom, SharePoint and others. Protects against emerging threats like Midnight Blizzard attacks and novel vectors targeting high-value individuals.

The Executive Protection Service integrates directly into corporate and personal email, messaging and communication apps used by executives and high value targets and is backed by a 100% guaranteed privacy policy ensuring that communication is strictly secure and private.

“With the launch of its Executive Protection Service, SlashNext is addressing a critical need in the cybersecurity landscape,” said Ken Buckler, Research Director, Security and Risk Management, at Enterprise Management Associates (EMA). “High-value employees are prime targets for cybercriminals, and this innovative solution offers them robust, multi-channel protection. Integrating email, mobile, and browser security as a service that is both simple and fast to deploy keeps organizations and their most valuable assets safe.”

To learn more about SlashNext’s Executive Protection Service, visit the website here.

Mid-Year Assessment on The State of Phishing Report Released

The post Executive Protection Service Launched by SlashNext appeared first on Digital IT News.

Morpheus Will Enhance HPE GreenLake by Adding Multicloud Automation

Taylor Graham — Fri, 16 Aug 2024 17:00:07 +0000

Hewlett Packard Enterprise (HPE) has confirmed a definitive agreement to acquire Morpheus Data. This acquisition highlights HPE’s dedication to reducing IT complexity by enhancing the hybrid operations features offered through its HPE GreenLake cloud platform. Integrating comprehensive hybrid capabilities within a single platform like HPE GreenLake is increasingly vital as enterprises face the challenge of managing more diverse and complex IT environments.

Morpheus will enhance HPE GreenLake by providing multi-vendor, multicloud application provisioning, orchestration and automation, as well as FinOps capabilities for cloud cost optimization. Morpheus complements HPE’s successful acquisition of IT operations management leader OpsRamp in 2023. These capabilities will solidify HPE as the first vendor to provide a full suite of enterprise-grade capabilities and services across the hybrid cloud stack(1⁾and will make HPE GreenLake the future-proof hybrid cloud destination for enterprises.

To prevent IT complexity from being an innovation bottleneck, HPE GreenLake is evolving into the future-proof platform for managing virtualized, cloud-native and AI workloads. Morpheus advances this vision by enabling customers to orchestrate and automate the full lifecycle management of applications across hybrid environments. HPE GreenLake customers will be able to seamlessly provision and manage almost any workload across traditional and modern cloud environments including brownfield private and public infrastructure.

HPE GreenLake will also help enterprises optimize spending across cloud environments through extensive FinOps capabilities. HPE will combine its multi-vendor, multicloud IT data with Morpheus’ FinOps capabilities to enable customers to understand their cloud spend, put guardrails around usage and optimize their workloads to lower costs.

“This acquisition is the result of a long-term relationship between HPE and Morpheus Data that has already proven successful with customers. Together we will be able to help more customers transform their multicloud, multi-vendor IT estates to thrive and innovate in this increasingly complex and fragmented IT landscape,” said Brian Wheeler, co-founder and CEO, Morpheus Data.

HPE portfolio integration and availability
The transaction is expected to close early in the fourth quarter of the HPE 2024 fiscal year, subject to customary closing conditions. Morpheus Data’s technology will be integrated with HPE GreenLake cloud and HPE’s private cloud portfolio and continue to be offered as standalone software. HPE will support existing customers and partnerships.

To learn more about HPE’s acquisition of Morpheus Data here.

HPE GreenLake Block Storage Builds Base for Next-Gen Data Management

Reference
¹Based on an analysis of the hybrid cloud market and core capabilities including infrastructure (comprehensive computing, networking, storage and private cloud – both hyperconverged and disaggregated architectures), hybrid cloud management (provisioning and orchestration), network virtualization and segmentation, data mobility across private and public clouds, complete set of runtimes (VMs, containers, bare metal and AI frameworks), a unified platform-based cloud control plane, enterprise-grade services (advisory, professional, managed and financial) and multi-vendor, multicloud services for IT operations management, AIOps, observability, cyber resiliency and security, sustainability reporting and FinOps.

The post Morpheus Will Enhance HPE GreenLake by Adding Multicloud Automation appeared first on Digital IT News.

Cohesity Data Cloud Updates and GenAI Detection and Recovery

Taylor Graham — Tue, 30 Jul 2024 17:30:28 +0000

Cohesity has strengthened its first-mover advantage in GenAI detection and recovery with major upgrades to the Cohesity Data Cloud. These enhancements enable customers to leverage Cohesity’s built-in AI features to quickly detect, investigate, and respond to potential threats, allowing for faster operational recovery. The updates include advancements in threat detection, data security posture, and a cyber recovery assistant tool, along with a new clean room design environment. These tools offer a guided incident response wizard, helping customers move from alert to recovery with confidence and efficiency. This builds on the earlier release of Cohesity Gaia, the RAG-based AI solution introduced in February.

As cyber threats such as ransomware continue to proliferate, organizations are handicapped by a lack of expertise in responding to these threats. According to the World Economic Forum’s 2024 Global Cybersecurity Outlook, 36% of executives said that skills gaps are the main challenge they face in achieving their cyber-resilience goals. The Cohesity Data Cloud updates solve a very real and vexing industry challenge: constrained by IT budgets and cybersecurity expertise shortages, organizations need comprehensive data security, management, and recovery solutions that simplify the process of identifying actionable threats and events, mitigating issues, and recovering quickly from incidents.

To aid these customers, Cohesity enhanced its AI-powered cyber recovery assistant tool for the Cohesity Data Cloud, providing expert guidance on the appropriate response. Using security context as input to GenAI and complementing this multiple sources including threat hunting scans, ransomware detection, data risk and posture, among others, customers can receive an alert to anomalous behaviors. They are then able to have a conversation to assess the impact of the anomaly and correlate events, and get direction on the right next steps on investigation and any remediation that could be needed–all from within the wizard without the need for specialized cyber response expertise. This expert guidance helps give customers a better understanding of the anomaly and its impact and enables them to engage the Security Operations team with confidence for a timely incident response so companies can quickly return to normal business operations.

“Threat actors are increasingly relying on AI to not only create more sophisticated attacks, but to also increase their volume drastically,” said Craig Martell, Chief Technology Officer, Cohesity. “We’re giving our customers the tools to fight fire with fire, helping them take on these threats to their environment and move on from them quickly, ensuring business goes on as usual. The enhanced cyber recovery assistant and clean room design will make our customers more resilient, and we’re continuing to innovate more responsible, AI-powered capabilities to the Cohesity Data Cloud.”

Cohesity’s clean room design provides a trusted and proven foundation that speeds incident recovery and augments investigations by Security Operations teams while minimizing the risk of secondary attacks. The modular design helps isolate the attack or breach within minutes and provides several native capabilities to support the SecOps team’s needs in the clean room investigation. Cohesity Data Cloud’s threat-hunting capability provides incident responders with a curated feed, helping the organization understand the adversary’s techniques throughout the attack’s lifecycle, interacting with engineers in real-time and real-language. DataProtect delivers rapid access to system snapshots over the incident timeline, allowing forensic analysis of filesystems and evidence collection. With a better understanding of the incident’s full scope, teams can mitigate threats faster, allowing customers to return to normal business as quickly as possible.

“We’re always looking for new opportunities to bolster our cyber resilience and ensure we’re well-prepared to endure threats that are only growing in volume and sophistication,” said Tim Fleming, Director of Technology Services, Forsyth County Schools. “Cohesity is constantly innovating and giving us new tools to secure and manage our data. That’s why we believe they’re the perfect partner to help simplify and optimize our security operations so we can stay focused on what matters to our district: driving value for our students.”

The cyber recovery assistant and clean room design are available in the Cohesity Data Cloud.

To learn more about Cohesity Data Cloud, visit the website here.

Confidential Computing Capabilities with Cohesity and Intel Collaboration

The post Cohesity Data Cloud Updates and GenAI Detection and Recovery appeared first on Digital IT News.

IONOS Cloud and CloudCasa Partner for Kubernetes Data Protection

Taylor Graham — Tue, 16 Jul 2024 17:30:56 +0000

CloudCasa by Catalogic is thrilled to announce a strategic partnership with IONOS. This collaboration intends to provide improved Kubernetes data protection, migration, and disaster recovery solutions for IONOS Cloud platform users, ensuring their cloud-native applications are protected against data loss and cyber threats.

Under this partnership, CloudCasa will integrate its state-of-the-art cloud data protection and migration service with the robust and scalable cloud infrastructure of IONOS Cloud. The partnership offers users seamless, automated backup, recovery, migration and replication for Kubernetes and cloud-native applications, providing an unmatched level of security and reliability.

“We are thrilled to partner with IONOS,” said Ryan Kaw, VP of Sales for CloudCasa by Catalogic. “Our mission is to provide comprehensive and intuitive data protection solutions that address the unique needs of cloud-native environments. By joining forces with IONOS, we can offer their users unparalleled protection and peace of mind, knowing their critical data and applications are secure and recoverable.”

This partnership will provide IONOS Cloud users with several key benefits:

Enhanced Data Protection and Disaster Recovery: Advanced backup and recovery options tailored for Kubernetes environments, ensuring that data is safe from accidental deletion, corruption, and cyber threats.
Scalability and Flexibility: Seamless integration with IONOS Cloud’s infrastructure, allowing users to scale their data protection as their business grows.
Migration/Replication: Reliable data movement solutions that ensure smooth migration and replication processes, enhancing Kubernetes flexibility and continuity.
Simplified Management: A user-friendly interface that simplifies the management of backup and recovery tasks, reducing the administrative burden on IT teams.
Cost Efficiency: Cost-effective solutions that optimize storage usage and reduce overall data protection costs.

As organizations continue to migrate to cloud-native environments, the combined expertise of CloudCasa by Catalogic and IONOS will provide the required tools to safeguard their data, ensure business continuity, and enhance their cybersecurity posture.

For more information about the partnership and how it can benefit your organization, visit the IONOS Cloud website here.

Related News:

Cloud Storage Trends to Stay on Top Of

CloudCasa by Catalogic Accessible in the Microsoft Azure Marketplace

The post IONOS Cloud and CloudCasa Partner for Kubernetes Data Protection appeared first on Digital IT News.