Newsroom
In The News
GoSecure Named to JMP Securities Elite 80 List of Hottest Privately Held Companies
JMP Securities has released its eighth annual JMP Securities Elite 80 report where they highlight the most interesting and strategically positioned private companies in the Cybersecurity and IT Infrastructure industries. The Elite 80 represents not only a compendium of the technology leaders in their respective markets but the future titans of the IT infrastructure and cybersecurity markets.
GoSecure is honored to be listed for the fourth year in a row.
MFA fatigue attacks: Users tricked into allowing device access due to overload of push notifications
Malicious hackers are targeting Office 365 users with a spare of ‘MFA fatigue attacks’, bombarding victims with 2FA push notifications to trick them into authenticating their login attempts.
This is according to researchers from GoSecure, who have warned that there is an increase in attacks that are exploiting human behavior to gain access to devices.
Multi-factor authentication (MFA) fatigue is the name given to a technique used by adversaries to flood a user’s authentication app with push notifications in the hope they will accept and therefore enable an attacker to gain entry to an account or device.
In a blog posted earlier this week, GoSecure described the attack as “simple”, given that “it only requires the attacker to manually, or even automatically, send repeated push notifications while trying to log into the victim’s account”.
AWS patches bug that left its WAF customers exposed to SQL injection
Researchers reported this week that they found a bug in MySQL that left AWS Web Application Firewall (WAF) customers exposed to an SQL injection.
In a blog post, GoSecure’s ethical hackers also confirmed that upon further testing, ModSecurity, a popular WAF for Apache and nginx, were also exposed to an SQL injection.
The researchers said the bug, which they trace back to a Black Hat presentation in 2013, was fixed by AWS on Oct. 1, with public disclosure coming on Wednesday.
Press Releases
GoSecure powered by CounterTack: Transforming Cloud-based Endpoint Security
SAP NS2®and GoSecure announce the release of the CounterTack Endpoint Protection Platform on SAP HANA®. The platform is available via SAP NS2 Secure Cloud, delivering an effective, easy to implement, and scalable solution for enterprise-wide security. Commercial and federal security teams can purchase the CounterTack Platform direct from SAP NS2 and SAP commercial sales teams.
GoSecure powered by CounterTack Featured in Three Technical Sessions at 2019 RSA Conference
GoSecure will be hosting two technical sessions at the 2019 RSA Conference. Join our Red Team and Research and Development Team leaders for insightful presentations on Social Network Manipulation, Honeypots and Pentesting.
CounterTack Rebrands. Now “GoSecure powered by CounterTack”
CounterTack completed the acquisition of GoSecure with the announcement a full stack platform integrating Endpoint and Network threat detection, Managed Detection and Response services, and Cloud delivery. The new company name, “GoSecure powered by CounterTack” signals the transition to a Cloud/SaaS security platform delivered by MDR. The CounterTack brand will remain as the platform name.
CounterTack Platform Leads with Fast, Automated Detections in MITRE ATT&CK Evaluations
The CounterTack Platform led the recently completed MITRE ATT&CK Evaluations with the best performance for automated detection, solely relying on behavior-based detection with fast alerting and response. The MITRE ATT&CK Evaluation focused on a the APT-3 attack containing a variety of adversary behaviors representative of real-world attacks.
CounterTack Platform Receives Recommended Rating in NSS Labs 2018 Group Test of Endpoint Detection and Response Products
The CounterTack Platform received a Recommended Rating in a recently completed group test of EDR products conducted by NSS Labs, the most trusted source for independent, fact-based cybersecurity guidance. The results are aggregated on NSS Labs Security Value Map™, which shows performance of tested products by Security Effectiveness and Operating Expense per System.