News for today:
- XM Cyber deepens partnership with Google Cloud. XM Cyber announced that its continuous exposure management solution is newly integrated with Google Cloud, specifically Google Security Operations. The integration means that logs and alerts from Google Cloud are enriched by XM Cyber and made available in Google Security Operations for SOC analysts. The results are prioritized SOC alerts, events, and cases which reduce alert fatigue, allowing teams to focus on what matters most, as well as more efficient and accelerated threat hunting and incident investigation, and faster mean-time-to-remediation. XM Cyber
- Stamus Networks Clear NDR Community 1.0 released. Stamus released version 1.0 of Clear NDR Community, its open-source network-based threat detection and response system for small and medium sized organizations that aren’t ready for Stamus’s Enterprise edition. Built on Suricata 8.0 and with MCP support for integration with AI systems. Available immediately. Stamus Networks
- Menlo Security partners with Google Cloud on phishing prevention. Menlo Security expanded its partnership with Google Cloud, with Menlo’s HEAT Shield AI newly integrated with Google’s Vertex AI platform and Google Gemini to strengthen defenses against phishing and credential theft. This new integration allows Menlo HEAT Shield AI to leverage the advanced capabilities of Google’s Gemini models to deliver a new level of in-browser threat detection with even greater accuracy. Menlo also released Menlo Sidekick, to improve security workflows for security teams. Menlo Security
- Horizon3.ai released Threat Actor Intelligence. Horizon3.ai released a new capability in its NodeZero platform that shows whether weaknesses are being actively exploited by ransomware groups, nation-states, or financial crime syndicates. Called Threat Actor Intelligence, the intent is to help security leaders differentiate between noise and risk – and prioritize / respond accordingly. Available immediately. Horizon3.ai
- Dope integration with CloudStrike. Dope announced that security data from its endpoint gateway can be ingested into CrowdStrike Falcon, for a unified view of threat signals. Dope’s fly-direct architecture operates side-by-side on the device and feeds web security telemetry into Falcon Next-Gen SIEM without the performance headaches of legacy SWGs. Available immediately. dope.security