Tag Archives: rpd

CyberArk Pulls Symantec, Intel, FireEye Onto Platform Bandwagon

CyberArk Software ( CYBR ) launched an alliance Wednesday, tapping FireEye ( FEYE ), Intel ( INTC ) and Symantec ( SYMC ) for what it called tighter best-of-breed integration, which offers an alternative to security platforms from such companies as Palo Alto Networks ( PANW ), Check Point Software Technology ( CHKP ) and Fortinet ( FTNT ). In total, the C3 Alliance has 15 members across cybersecurity, enterprise software and infrastructure. They include  Qualys ( QLYS ), Rapid7 ( RPD ), Varonis Systems ( VRNS ) and Belden ( BDC )-owned Tripwire. CyberArk tech will be integrated into the partners’ software. Megabreaches like that of retailer Target ( TGT ) in 2014 have highlighted the need to secure credentialed accounts, says Adam Bosnian, CyberArk’s executive vice president of global business development. Privileged account protection is at CyberArk’s core. “We saw more and more organizations becoming aware of being exposed by these power accounts,” Bosnian told IBD. The C3 Alliance aims to “solve these challenges and leverage the valuable data that comes off that security.” CyberArk’s technology will be integrated in a variety of ways, Bosnian said. C3 member Tenable Network Security, a continuous monitoring and vulnerability management company, requires credentialed access to perform deep-dive hunting for vulnerabilities, Tenable strategist Cris Thomas told IBD. A hacker needs only one credential to wreak havoc. “When a hacker attacks an organization, they compromise one specific point,” Thomas said. “To move, they need a Zero Day (vulnerability). … The easiest way to do it is to steal credentials. Those are the prized goals of an attacker.” Integrating technology from CyberArk and Tenable lets Tenable’s 20,000 customers store credentialed passwords using CyberArk software, he said. It also gums up any holes existing between the vendors’ software, making intrusion that much more difficult. Bosnian doesn’t foresee “one-off, snowflake” integrations. He sees CyberArk tech, in conjunction with partners’ software, providing a platform-like infrastructure, constantly evolving as new integrations are added to the mix. Customers are still leery of the platform, which might be “best-of-breed in one piece of the platform but not in another,” Bosnian said. The C3 Alliance, however, is comprised of best-of-breed tech woven into one unified solution that shares data bidirectionally, he says. C3 is not a monolithic alliance, he said. “These partners are improving how they use privileged accounts in their environment,” he said. “The real magic is when there are use cases built on top of that to solve real problems. That’s what we’re trying to do.” CyberArk stock was up 2% in midday trading in the stock market today .

Software Updates To Thump ‘Motivated’ Internet Of Things Hackers

SAN FRANCISCO — Gemalto exec David Etue hinged the success of the nascent Internet of Things industry — and its 30 billion connected devices in four years — to an efficient software update process. Because when 30 billion devices are connected to the Internet, there’s a lot that can go wrong … and fast. “Our adversaries are highly motivated,” Etue told attendees at the RSA Conference in San Francisco, a major annual gathering of security companies. “But if we can get a secure software update process right, at least we can make changes.” He added: “If we get this right, this puts us in a position for long-term success.” France-based Gemalto competes in the software application and secured devices market, and therefore has a big dog in the upcoming Internet of Things fight for market share. Although the IoT presents a huge market opportunity for tech and pure cybersecurity players, its mass scale also terrifies chief information security officers, Etue said. “We don’t generally intentionally put our IoT-connected devices in hostile territory,” he said. “We might put them on the local Starbucks ( SBUX ) Wi-Fi. … That’s not that scary when it’s your fitness meter. It’s pretty scary when it’s a pacemaker.” On the business side, retail stores use sensors to count shoppers — information hedge funds used to pay people to gather outside brick-and-mortar establishments. Farmers use devices to track the development of seeds. Tesla Motors ( TSLA ), Apple ( AAPL ), Toyota ( TM ), Alphabet ( GOOGL ) and Ford ( F ) are already racing toward autonomous vehicles. “So we’re seeing a lot of demand to monetize this data,” Etue said. But on the flip side, consumers are spooked after a fault in Fiat Chrysler ‘s ( FCAU ) Jeep Cherokee GPS system allowed it to be hacked,  Rapid7 ( RPD ) researchers were able to hack baby monitors and Santa Cruz, Calif., residents protested smart meters. “We get really excited about the device, but forget about where that data is from and how it’s being managed,” Etue said. He suggests consumers and developers ask themselves a series of questions before taking on Internet of Things devices. Most of those questions center on how, where and what data are stored; whether it’s accessible by a third party; and who manages the accessibility. “We’re never going to get this right the first time,” he said. “We’re going to have to change.” Image provided by Shutterstock .

Palo Alto Networks Nabs Cisco, Juniper Market Share … Again

Palo Alto Networks ( PANW ) last quarter again nabbed market share from rivals  Cisco Systems ( CSCO ), Check Point Software Technologies ( CHKP ) and Juniper Networks ( JNPR ), a Piper Jaffray analyst wrote Monday ahead of Palo Alto’s fiscal Q2 earnings late Thursday. In a survey of third parties selling Palo Alto products, half said Palo Alto is most consistently beating out Check Point, Piper Jaffray’s Andrew Nowinski wrote in a research report. “Cisco, Check Point and Juniper have consistently been called out by resellers as the vendors most frequently losing to Palo Alto,” he wrote. “These are also the top vendors in the firewall market, suggesting Palo Alto continues to gain share at the expense of all the major vendors in the space.” That’s sure to rile Cisco, which last week  unveiled a next-generation firewall in direct competition with Palo Alto, Check Point, Fortinet ( FTNT ) and Intel ( INTC )-owned McAfee. It was also the first time that Check Point was cited as the vendor Palo Alto beats most often, Nowinski wrote. Nowinski retained his rating on Palo Alto Networks stock to overweight, with a 208 price target. At least three other analysts, however, cut their price target on Palo Alto stock Monday ahead of the Thursday earnings report. Sales, EPS Seen Decelerating Palo Alto stock was up 1% in afternoon trading on the stock market today , but rival  FireEye ( FEYE ) was up 9%. FireEye announced Hewlett Packard Enterprise ( HPE ) as its global alliance partner of the year. For fiscal Q2 ended in January, Palo Alto Networks is expected to report $318.3 million in sales and 39 cents earnings per share ex items, up 46% and 105%, respectively, vs. the year-earlier quarter. It would be its first quarter eclipsing the $300 million-mark. But sales and EPS minus items are expected to decelerate for the second consecutive quarter, according to the consensus of 40 analysts polled by Thomson Reuters. The consensus model is in line with Palo Alto’s earlier guidance for $314 million to $318 million and 38 cents to 39 cents. Palo Alto stock is down 28% this year, slightly worse than IBD’s 25-company Computer-Software Security industry group, which is 24% off its 2015 closure. Cybersecurity stocks were pounded in January on a perceived slowdown in spending after gloomy reports from firms like Tableau Software ( DATA ) and LinkedIn ( LNKD ). Neither Nowinski nor Dougherty analyst Catharine Trebnick see that slowdown for Palo Alto. Trebnick maintained her buy rating and 215 price target on Palo Alto stock. She urged investors to compare Palo Alto to direct next-generation firewall vendors. Firewall Vendors Outperform Peers Barracuda Networks ( CUDA ), CyberArk Software ( CYBR ), Proofpoint ( PFPT ), Imperva ( IMPV ), Rapid7 ( RPD ), Qualys ( QLYS ), Splunk ( SPLK ) and FireEye “have provided a seemingly negative read-through for Palo Alto Networks,” Trebnick wrote in a research report. “Unlike elsewhere in security, next-generation firewall vendors that cater to enterprises have all managed to produce good enough results for investors.” Trebnick expects Palo Alto to beat consensus expectations. Wildfire and Traps are driving higher attach rates, she wrote. Wildfire is Palo Alto’s cloud-based malware-analysis system, which competes with FireEye. Traps is an endpoint-security product. Over the past 12-16 months, Palo Alto has expanded its suite of products to seven from four, Trebnick wrote. Together, Palo Alto touts them as a “next-generation security platform.” “Our sources have indicated that they are now seeing increased success from this approach as enterprises are broadening their purchases to include more of the auxiliary software subscriptions,” she wrote. Trebnick and Nowinski alike see a strong April-quarter pipeline for Palo Alto. Nowinski said he expects a 3%-4% upside to Q3 guidance despite typical seasonal weakness.