Top 10 Cloud Security Software

Important news about Cloud Security Software

2024. Google injects generative AI into its cloud security tools


Google has rolled out a suite of new cloud-based security offerings alongside updates to its existing lineup, targeting enterprises handling extensive, multi-tenant networks. Among these introductions is Gemini in Threat Intelligence, a fresh addition to Google's Mandiant cybersecurity platform, harnessing Gemini's capabilities. Currently available for public preview, Gemini in Threat Intelligence empowers users to analyze significant volumes of potentially malicious code, conduct natural language searches for ongoing threats or signs of compromise and distill insights from open source intelligence reports across the internet. And in Security Command Center, Google’s enterprise cybersecurity and risk management suite, a new Gemini-driven feature lets security teams search for threats using natural language while providing summaries of misconfigurations, vulnerabilities and possible attack paths.


2024. Zscaler buys Avalor to bring AI risk management into its security tools



In a move that might be described as “mostly harmless” by the more jaded, cloud security firm Zscaler has cheerfully plunked down a cool $310 million to acquire cybersecurity startup Avalor, in an effort to sprinkle some shiny new features onto its platform. These include, but are not limited to, making the tedious business of reporting and mitigating security incidents a bit less like trying to herd particularly uncooperative cats. Avalor, which functions as a sort of intergalactic hitchhiker's guide for cybersecurity assets—ranging from vulnerabilities to identities and more—lets security teams do something fairly miraculous: gather, tidy up and track risk data from first glimpse to final fix. While other startups like Securiti and Dig Security might fancy themselves cosmic troubleshooters of similar woes, Avalor has the rather nifty ability to handle an impressive array of data sources and formats, with a uniquely clever toolkit for vulnerability risk management and prioritization that makes it, well, a bit of a star.

2023. Palo Alto Networks buys Dig Security for $400M



In a move that would likely confuse and delight security-conscious spacefaring dolphins everywhere, Palo Alto Networks has happily announced its acquisition of Dig, a rather clever Israeli startup with a knack for “where-did-I-put-that?” technology, otherwise known as data security posture management (DSPM). Dig's tools possess the uncanny ability to peer across vast cloudscapes, helping the poor, harried security teams keep track of data as it flits about like a paranoid time-traveler. Should something unfortunate occur (like a breach), these tools offer an elegant map of “places you really ought to have secured better.” Soon, Dig’s hard-won expertise will meld into Palo Alto Prisma, a dedicated cloud security realm. Here, it will empower customers to lord over their sprawling data repositories with something akin to divine providence—ideally stopping breaches before they even know they were on the guest list.


2023. Sweet Security raises $12M for its cloud security suite



In a small corner of the universe—specifically, Tel Aviv—a plucky cloud security startup called Sweet Security has managed to wrangle $12 million in seed funding, presumably by deftly navigating the galaxy of venture capital with a glint in its eye. Sweet Security is on a mission (the type with lowercase letters, so you know it’s serious) to provide enterprises with a security suite so sharp and shiny it practically hums. Its pièce de résistance is a rather clever use of eBPF technology, which, rather like an improbability drive, enables tiny programs to run securely within the Linux kernel—floating around, gathering crucial metrics on network traffic and resource usage, all while avoiding the gravitational drag of massive overhead. Traditional security measures, weighed down by such overhead, are often as appealing as a Vogon poetry reading to your average IT department. But Sweet Security, using the cunning powers of eBPF, hopes to offer a cloud security solution that’s both lightweight and impressively responsive, giving companies a real-time view of their vulnerabilities without all the usual fuss.


2023. IBM acquires Polar Security for $60M to automate cloud data management



IBM, in what one might describe as a characteristically grand gesture, has cheerfully announced the completion of its acquisition of Polar Security, an Israeli startup that, with the sort of enthusiasm typically reserved for caffeine-powered inventors, has developed a platform specializing in "data security posture management" (which, if you imagine it, sounds quite impressive, really). Polar’s technology offers an agentless approach—yes, agentless, like a spy story without the spies—to audit and monitor the bafflingly complex flow of cloud data across both cloud applications and a company's tangled, labyrinthine network. As the adoption of cloud services gallops along at a bewildering pace, the sheer bewilderment of managing said data has skyrocketed, with companies juggling challenges such as: "Where on Earth (or indeed off it) is this data stored?" "Who's poking around in it?" "Should they be?" and "How on several thousand galaxies do we stay compliant with regulations that change more often than a Vogon poet changes verses?" Polar, mind you, is not alone in this data security escapade; a veritable constellation of startups, such as Laminar, CrowdStrike, Check Point, Zscaler, and a few others who remain suspiciously quiet in the corner, are also valiantly tackling these digital dilemmas.


2023. Google brings generative AI to cybersecurity



In a move that would have made paranoid androids feel right at home, Google has unveiled the Cloud Security AI Workbench, a collection of cybersecurity tools so advanced it might even detect existential dread. This dazzling suite is powered by Sec-PaLM, a cleverly engineered AI language model that’s basically Google’s original PaLM model, but armed to the digital teeth with security intelligence. Sec-PaLM has been finely tuned with arcane knowledge from software vulnerability research, malware analysis, threat indicator deciphering, and even dossiers on behavioral threat actors who have far too much time on their hands. This Workbench boasts a medley of AI-driven marvels, like Mandiant’s Threat Intelligence AI, designed to pinpoint, condense, and, in a manner vaguely reminiscent of a well-meaning yet harassed bureaucrat, respond to threats. VirusTotal, that faithful old ally, will also leverage Sec-PaLM to demystify the antics of rogue scripts for its subscribers. And not to be left out, Chronicle—Google’s cloud cybersecurity guru—will use Sec-PaLM to navigate security event searches while engaging in interactions so "conservative" you’d think they were hosting a tea party with only the best-behaved results.


2023. Coro raises $75M to grow its all-in-one cybersecurity platform



Imagine a universe where cybersecurity wasn’t a labyrinthine puzzle of cosmic proportions, but rather an elegantly wrapped gift basket of digital defense—enter Coro, a startup boldly asserting itself as the towel you never knew you needed for the unruly mess that is AI-based cybersecurity. Having charmed $75 million out of investors' pockets, Coro presents a cloud-based SaaS fortress that promises to diligently mind everything from your email and devices to user antics and sneaky cyber-creeps lurking in your data. It’s particularly aimed at those mid-sized businesses: those unfortunate Goldilocks organizations that find SMB offerings too flimsy and enterprise solutions too pricey and sophisticated, struggling to navigate a market that seems custom-built to irritate them. Coro’s mission, quite heroically, is to make sure these beleaguered companies don’t have to spend their time waving helplessly at passing cyber-threats from a sinking ship of inadequate software.


2023. Push Security raises $15M to help SaaS users lower their online vulnerability



Push Security, a startup that enables employee's cloud security not by blocking online activity and app usage, but by monitoring when users are making iffy choices with web-based apps and showing how to fix them, has raised $15M. Push utilizes various methods to ensure secure app usage. Firstly, it observes how employees interact with apps and sends automated suggestions to them when it detects they are using them in insecure ways, such as selecting weak passwords. Secondly, it sends notifications to IT and security teams, providing them with a summary of the app activity to keep them informed. Lastly, it adds the app to a dashboard for the teams to monitor and alerts them when the app poses a threat due to its own security vulnerabilities and blocks those that are considered to be particularly risky.


2023. Cloud security vendor Mitiga lands $45M



Mitiga, a cloud security company that provides a subscription-based service to assist businesses in preparing for cloud and software-as-a-service (SaaS) attacks, has secured $45 million in a Series A funding round. Mitiga adopts a “modern” method for cloud incident response. The service examines cloud forensics data for investigation, storing forensics information from various cloud environments and SaaS applications. Leveraging a library of cloud attack scenarios, Mitiga searches for threats in the forensics data, coordinating and managing the response in real time. Naturally, there is no lack of competing vendors offering solutions to protect organizations’ cloud resources: Wiz, Sentra, Dig Security, Laminar and Opus Security have also raised funding recently.


2023. Cloud security startup Wiz raises $300M



Wiz, which asserts that it is the world’s largest cybersecurity unicorn, has secured $300 million in a Series D funding round. Wiz is a cloud security platform that, like other similar solutions, evaluates the risk factors of infrastructure hosted in public cloud services such as AWS, Azure and Google Cloud to prevent hackers from taking control of assets and accessing sensitive customer data. To accomplish this, the company employs a security graph that links data across various areas requiring protection, including the network, identity, secrets and workloads. Unlike the traditional agent-based security model, Wiz utilizes an agentless, API-focused approach to efficiently scan cloud workloads, resulting in a more effective and rapid solution for detecting and addressing security issues. The Wiz security graph is central to the product and replaces context-free alerts, aiding in the identification of security gaps and problems more effectively than other solutions.