CLOUD SECURITY

Lightspin swipes $20M to enhance enterprise cloud security

Lightspin | June 24, 2021

The cloud security platform Lightspin declared that it raised $16 million in a Series A, led by Dell Technologies Capital, in the presence of Ibex Investors. In addition, co-founder and CEO Vladi Sandler declares that the company’s total funds raised to $20 million and will use it to increase Lightspin’s market reach and product proposals.

According to a 2020 survey from LogicMonitor, almost 83% of enterprise workloads have migrated to the cloud. However, the cloud remains susceptible to cyberattacks. Last year IBM found that the average time to identify an attack was 206 days. Further, Gartner predicts that 50% of organizations will unintentionally expose elements of their cloud applications and infrastructure to the internet in 2021, which was 25% in 2018.

Lightspin’s agentless security tools leverage framework to secure cloud and container environments, including the Kubernetes platform, during build and runtime. A container comprises an entire runtime environment, which needs the app and all of its dependencies, libraries, and other binaries and the configuration files to run it. Lightspin attempts to identify misconfigurations, malleable configurations, over-permissive policies, ordinary susceptibilities, and exposures using graph-based technologies. Further, it prioritizes critical issues, fixing some automatically.

Sandler established Tel Aviv, an Israel-based Lightspin, in 2020, and cloud security experts with experiences in infrastructure penetration testing. According to him, the COVID-19 pandemic fetched an eruption of online traffic, accelerating digital transformation and security threats. As a result, the demand for cloud security solutions increased.

A recent survey on global CEOs and chief information security officers (CISOs) conducted by cloud security company Forcepoint reveals that 74% of participants would reallocate funds to cybersecurity. In addition, the WSJ Intelligence report found that the pandemic has accelerated many of their plans, while analysts forecasted that enterprises would eventually adopt a range of cybersecurity solutions by 2025.

Graph-based approach

Lightspin’s platform engages graphs (mathematical objects that comprises nodes and edges) to analyze the complex relationships between security risks. For example, a node may represent a malicious intruder, while the edges represent the assets they target (e.g., a container).

According to Ciscos M’ichael Howe, “Graphs are a very spontaneous concept of how relationships exist. We can describe things for everyone’s familiarity. Besides, we don’t have to appeal to more detailed descriptions. For example, in the information security world, we have network-level data such as DNS records, IP addresses, domains, and WHOIS information. As we begin to populate that data into a graph model, we can see the gaps, and everyone can speak very clearly about what they understand.”

Lightspin enhances this graph information with external intelligence, analyzing the ways the intruders exploit misconfigurations and cross-verifying this with information from third-party threat intelligence providers. In addition, predictive analysis algorithms identify risky paths and potential attack vectors and highlight critical items based on the attack path context.

Sandler said, “As previous consultants and buyers, we recognize buyers’ primary needs by applying a profound understanding of attack strategies, resulting in an exclusive contextual approach to cloud security. Lightspin’s contextual algorithms constantly identify and regulate the risk of breaches to the cloud environments.”

Apart from this, Lightspin offers visualizations that let customers see cloud assets and relationships like attackers do. It’s developed to integrate with DevOps services like Jira, Slack, and ServiceNow via an API, Terraform, CircleCI, Jenkins, GitLab, and Bitbucket.

As per Alon Weinberg, director at Dell Technologies Capital, there is a “strong consensus”within the CISO network that technologies similar to those at Lightspin can help to detect the risks of potential attacks in cloud environments. In a press release, he said, “By providing clear background and actionable remedy options, Lightspin is bridging the gap between DevOps and security teams in the build stage and production.”

Lightspin’s latest capital flow comes after Ibex led a $4 million seed round to the company. This year, Lightspin plans to triple the workforce of around 20 people all over the U.S. and Israel to shift into new workplaces.

Spotlight

Everyone is talking about how cloud computing may bring considerable benefits to small and medium-sized businesses (SMBs). It allows even organizations with limited resources to store critical data or leverage considerable computing power without purchasing additional software and hardware. Cloud computing not only reduces overhead costs but also allows SMBs to to focus their resources on areas that need them most.

Spotlight

Everyone is talking about how cloud computing may bring considerable benefits to small and medium-sized businesses (SMBs). It allows even organizations with limited resources to store critical data or leverage considerable computing power without purchasing additional software and hardware. Cloud computing not only reduces overhead costs but also allows SMBs to to focus their resources on areas that need them most.

Related News

CLOUD DEPLOYMENT MODELS

Lumigo's serverless observability platform supports current cloud apps

Lumigo | June 17, 2022

Lumigo, the modern cloud application observability platform, has announced the addition of containers and Kubernetes support to its main offering. Lumigo now provides true end-to-end observability for the whole range of cloud services used in modern applications, including AWS Lambda, serverless services like DynamoDB, and containers. Modern cloud applications are primarily developed utilising microservices, with many essential services being entirely handled by cloud providers or third parties rather than being coded or controlled by app developers. A single user request in this architecture typically spans multiple services. Distributed tracing – connecting the executions from a request such that a single continuous path can be tracked across services — is required for understanding the whole path of a request or diagnosing why one failed. To deal with massively distributed serverless applications, Lumigo created best-in-class distributed tracing methods. The same technology can now be used to track and monitor apps built on Kubernetes or containers. "Observability solutions that aren't built from the ground up for modern cloud environments struggle to deal with today's highly distributed applications. Lumigo is the first solution to ensure you always get a unified end-to-end story of the request, even across asynchronous managed services, for example AWS Step Functions or EventBridge," Erez Berkner, Lumigo's CEO and co-founder Lumigo's solution may be deployed without requiring any code changes in most current setups. This allows for the correlation of executions across fully managed services where app developers do not have access to deploy agents, modify code, or update APIs. Lumigo's staff, which has extensive experience in cybersecurity, chose an approach that was influenced by this field. It generates "virtual unique identities" that are used to correlate executions using existing data (raw data, computed metadata, and extra signals from the dataflow of the services). With cloud controlled services, such as S3 buckets, where the code or APIs cannot be changed, the traditional way of propagating trace context fails. "Developers prefer to focus on building their unique app logic and not reinvent the wheel. In the past, fully managed services were mostly found at the edge of a request, like when using Stripe for managed payments. It's now common for multiple managed services to be at the core of nearly every request, as is the case with apps that use the managed database DynamoDB. Inadequate observability solutions leave developers attempting to manually piece together four or five separate parts of a request, costing precious time during critical production issues. With Lumigo, you go from an alert to debugging the error in a single click, and can reliably follow the request upstream to get to the root cause, cutting resolution time from hours to minutes," said Aviad Mor, CTO of Lumigo.

Read More

CLOUD DEPLOYMENT MODELS

SentinelOne Announces Amazon S3 Storage Sentinel for Complete Cloud Protection

SentinelOne | July 29, 2022

SentinelOne an autonomous cybersecurity platform company, today announced Storage Sentinel for Amazon S3, a high-performance malware prevention solution for industry-leading Amazon Simple Storage Service (Amazon S3). Storage Sentinel harnesses the power of SentinelOne’s patented AI to prevent, detect, and respond at machine speed to malicious files entering Amazon S3. “SentinelOne is committed to protecting our customers’ evolving cloud footprints - whether storage, compute, or containers - from threats like ransomware, With Storage Sentinel for Amazon S3, global enterprises can proactively curtail the lateral spread of malware, better manage the risk of disruption to business operations, and stay one step ahead of cyber criminals.” Rick Bosworth, Director of Product Marketing, SentinelOne Advanced threat actors easily evade legacy protection solutions which still rely on signatures. Storage Sentinel is powered by SentinelOne’s patented AI to prevent and detect malicious files and activity. On-access and on-demand file scanning detects malware in milliseconds and scales to secure even the most active storage, without latency. Automated quarantine and metadata for threat enrichment streamline incident response and provide holistic cloud visibility. With Storage Sentinel for AWS S3, SentinelOne customers can now manage a new enterprise cloud attack surface within the Singularity XDR platform alongside their enterprise assets. For organizations already using Singularity Cloud for runtime protection of cloud workloads in Amazon Elastic Cloud Compute (Amazon EC2), Amazon Elastic Container Service (Amazon ECS), or Amazon Elastic Kubernetes Service (Amazon EKS), Storage Sentinel is an easy addition to a cloud-first defense-in-depth security strategy. SentinelOne will be demonstrating Storage Sentinel for Amazon S3 at AWS re:Inforce in Boston, MA at Booth #208. To learn more now, request a demo here. About SentinelOne SentinelOne’s cybersecurity solution encompasses AI-powered prevention, detection, response across endpoints, containers, cloud workloads, and IoT devices in a single autonomous platform.

Read More

CLOUD STORAGE

ISC High Performance 2022: QCT Helps Users Accelerate HPC/AI Transformation

ISC | May 30, 2022

Quanta Cloud Technology (QCT), a worldwide data center solution supplier, will exhibit its cutting-edge HPC and AI solutions with vertical applications at Booth D412 at the ISC High-Performance Conference 2022 in Hamburg, Germany from May 29 to June 2. These one-of-a-kind solutions combine QCT's advanced hardware infrastructures with software technologies to help build scalable, converged HPC and AI environments across a wide range of industries, all while reducing project implementation time and allowing researchers to focus entirely on their research. The following solutions and servers from QCT will be on display: QCT Platform on Demand (QPOD) is a workload-driven and purpose-built solution for universities, research institutes, and medical facilities that are entirely integrated with hardware infrastructures, cluster deployment, monitoring, and administration tools to meet HPC and AI workloads. QCT has worked with application ISVs to guarantee that the solution is pre-configured and pre-validated for HPC applications in addition to the infrastructure. Distributed Asynchronous Object Storage (DAOS), enabled by Intel® OptaneTM permanent memory, significantly improves storage I/O to expedite HPC, AI, analytics, and cloud workloads. As ranked on the IO500 and 10-Node Challenge during SC21, QCT's sophisticated storage servers equipped with the DAOS open-source software-defined object store delivered world-class IOPS and bandwidth. QuantaGrid D53X-1U is a 1U compute node server that uses Intel® Xeon® Scalable processors with built-in AI Accelerators and Intel® OptaneTM permanent memory 200 series to power DAOS and support AI, HPC, and virtualization applications. QuantaGrid D53XQ-2U is a 2U server with DAOS on the Intel Xeon Scalable platform and acceleration card expansion slots for AI, analytics, bioscience, HPC, and even cloud computing workloads. "QCT is excited to bring our latest HPC solutions built for compute and graphic-intensive workloads to ISC 2022. As an infrastructure builder, QCT leverages our robust R&D capabilities and strong software ecosystem support to tune our solutions all the way from hardware to the software stack, accelerating digital transformation in fields across weather forecasting, NGS, molecular dynamics and more" QCT President Mike Yang.

Read More