5 things

Channel Brief: Compliance Scorecard Pledges ‘Secure by Design,’ 4me Rebrands to Xurrent

Adobe Stock

It seems like there's recognition for all kinds of 'cyber holidays' lately (it's Insider Threat Awareness Month, and Cybersecurity Awareness Month is coming up in October) and this week, September 9 through 13, Xage Security is declaring it Privilege Escalation Week to highlight the importance of protecting privileged access and raise awareness about the risks associated with these attacks.

Privilege escalation is one of the most common and dangerous tactics used by threat actors, and recent incidents, such as the Microsoft Exchange Server hack and the SolarWinds supply chain attack, underscore the devastating consequences of compromised privileged access. Ultimately, both the attacks resulted in widespread disruption and significant financial losses. 

Privileged access management (PAM) is an essential tool for mitigating privilege escalation risks. By implementing robust PAM solutions, organizations can reduce the attack surface, enhance visibility, enforce least privilege access and implement strong authentication. These measures ensure that only authorized individuals have access to privileged accounts and that their activities are closely monitored and audited, Xage says. If nothing else, it's a good time to double-check your access policies and make sure you're not vulnerable.

As always, drop me a line at [email protected] if you have news to share or want to say hi!

Grab your coffee. Here's what else you need to know today.

Today’s Tech, Channel and MSP News

1. 4me rebrands to Xurrent: MSP and IT services management (ITSM) platform 4me has rebranded and is now Xurrent, the company said in a statement. Xurrent is a low-code, AI-enabled service delivery and collaboration platform for MSPs, MSSPs and IT services professionals.

2. Governance-as-a-service solutions provider Compliance Scorecard signs CISA pledge: Compliance Scorecard, a governance-as-a-service (GaaS) solutions provider, has signed on to the  Cybersecurity and Infrastructure Security Agency (CISA) Secure By Design Pledge, the company said in a statement. Signing the pledge underlines the company's commitment to safeguard the digital landscape for MSPs and SMBs. CISA’s Secure by Design pledge is a voluntary pledge that commits technology manufacturers to seven distinct goals, each of which is designed to increase the safety and security of software solutions before they reach the market.

3. iGrafx partners with Cornerstones on digital transformation and ERP: iGrafx is partnering with digital transformation and ERP solutions consultancy Cornerstones to bring modern business process management capabilities to customers, the companies said. The partnership with iGrafx will allow Cornerstones to offer its clients advanced BPM solutions, and iGrafx’s scalable and innovative tools will support Cornerstones in delivering comprehensive BPM solutions that enhance ERP implementations and ongoing process optimization, the companies said.

4. Secureframe launches free compliance gap assessment tool: Compliance automation company Secureframe is launching a free Gap Assessment tool to help service partners, including MSPs, MSSPs, vCISOs and IT security consultants, identify gaps in security posture or compliance status, offering clear insights into improvement areas, the company said. The Gap Assessment tool is an enhancement to Secureframe's comprehensive Service Partner Program that offers compliance automation tools, resources and global support. Launched in June 2024, the program already has 200 partners from 25 countries around the globe.

5. Mattermost appoints new SVP of engineering: Mattermost today announced the appointment of Pavel Zeman as senior vice president of engineering. Zeman brings more than 20 years of experience to the team, with a distinguished background in security, critical infrastructure, mobile security and large-scale engineering leadership. His appointment is expected to drive engineering innovation and accelerate technical collaboration with Azure, Microsoft Teams and Microsoft 365 platforms, the company said.  

In-Person MSP and Channel Partner Events

  1. AppDirect Thrive! September 17-19, Chicago, Illinois
  2. MSSP Alert Live, October 14-16, Austin, Texas
  3. Canalys North America Forum, October 22-24, Miami, Florida
  4. Kaseya Dattocon, October 28-30, 2024, Fontainebleau, Miami Beach, Florida
  5. Ingram Micro One, November 6-8, Gaylord Resort, Washington DC
  6. IT Nation Connect, November 6-8, Orlando, Florida
  7. OpenText World, November 19-21, The Venetian Resort, Las Vegas, Nevada
Sharon Florentine

Sharon is a master technology storyteller and editor with omnichannel experience: books and print magazines, digital, webcast, blogging, podcast, live events and video and associated brand-specific social media content. From 1999 to 2003, she acquired and edited technology books and certification exam prep guides.

After a year spent in publicity and editorial at mass-market book publishers, she returned to tech publishing and, since 2004, explored B2C and B2B news, issues and trends in consumer, lifestyle, software, software development, AI, ML, networks, big data, hardware, security, storage, cloud, equity, inclusion, diversity, women in tech, career development, IT management, H-1B visa issues and immigration, education, training and learning.

Her previous role was as the managing editor at Techstrong Group in charge of Cloud Native Now, DevOps.com, Security Boulevard and Techstrong ITSM and their brand-specific social media. She currently serves as editorial director for CyberRisk Alliance’s channel brands, ChannelE2E and MSSP Alert and acting editorial director for SC Media UK. Drop me a note and let’s talk!

You can skip this ad in 5 seconds