In the enterprise security news,
- new startup funding
- what happened to the cybersecurity skills shortage?
- tools for playing with local GenAI models
- CVE assignment drama
- a SIEM-agnostic approach to detection engineering
- pitch for charity
- a lost dog that doesn’t want to be found
All that and more, on this episode of Enterprise Security Weekly.
Identiverse 2025 is returning to Las Vegas, June 3-6. Hear from 250+ expert speakers and connect with 3,000+ identity security professionals across four days of keynotes, breakout sessions, and deep dives into the latest identity security trends. Plus, take part in hands-on workshops and explore the brand-new Non-Human Identity Pavilion. Register now and save 25% with code IDV25-SecurityWeekly at https://www.securityweekly.com/IDV2025
Adrian Sanabria
- FUNDING: Courtesy of the Security, Funded newsletter, #188 – When Tariffs Hit the Fan
Last week's vibe check asked, "what's the first sign a security tool won't deliver value?"
Dead even were the answers, "team sticks to manual work", and "no clear owner after purchase". Less concerning were "integration delays or issues" and "no early value shown".
In this week's funding:
- ReliaQuest, a Florida-based SOCaaS vendor raised a $500M Private Equity Round from EQT, FTV Capital, and Kohlberg Kravis Roberts.
- Cyberhaven, one of a handful of new DLPv2 startups, raised a $100M Series D from StepStone Group.
- Portnox, a modern NAC vendor, raises a $37.5M Series B led by Updata Partners
- Reality Defender, a deepfake defense platform, raised an undisclosed venture round from Fusion Fund, Samsung NEXT, and BNY Mellon
- JOBS: Lesley, What Happened to the “Cybersecurity Skills Shortage”?
- AI TOOLS: Introducing Docker Model Runner
Docker is the latest to offer a free LLM inference engine. If you haven't tried any of these out, they're a great way to get comfortable with the technology, for free, in the comfort of your own home lab.
I'm pretty basic, so I'm just looking for a nice UI, though there are some significant differences between these. All of these have their own model repos, and make it easy to download and start using a model. With that said, here's some I tried out that worked and didn't totally suck, and one or two I haven't tried yet, but look nice:
- Ollama - the UI is Powershell if you're using it on Windows. Very basic UI, though it can be connected to fancier front ends.
- GPT4all - looks like this UI got an overhaul! I haven't used this version yet. Looks nice.
- Jan - haven't tried yet, looks nice
- LM Studio - powerful UI with a learning curve
- Anaconda AI Navigator - very polished, nice UI, highly recommend.
- DRAMA: Two CVEs, One Critical Flaw: Inside the CrushFTP Vulnerability Controversy
- HOWTO: My SIEM-Agnostic Creative Process to Detection Engineering
- CHARITY: Security Tinkerers Hosts “Pitch for Charity” Event cosponsored by Okta and SentinelOne at Okta Headquarters in San Francisco
- REPORTS: CISO MindMap 2025: What do InfoSec Professionals Really Do?
- SQUIRREL: This Eight-Pound Miniature Dachshund Survived 16 Months on a Rugged Australian Island. But She’s Still Evading Rescuers
