Latest news with #BitdefenderGravityZone
Channel Post MEA
27-06-2025
- Business
- Channel Post MEA
Bitdefender Launches External Attack Surface Management Solution GravityZone EASM
Bitdefender has announced Bitdefender GravityZone External Attack Surface Management (EASM), a new solution that gives businesses, managed service providers (MSPs) and their customers comprehensive visibility into their internet-facing assets and associated vulnerabilities. GravityZone EASM dramatically reduces threat exposure and strengthens security operations through centralized discovery, monitoring, and management of expanding attack surfaces. The attack surface, encompassing all potential entry points for adversaries, is rapidly expanding due to digital transformation, cloud adoption, remote work, and increased connectivity with third-party infrastructure, including partners and customers. Without centralized oversight, assets such as unused domains, misconfigured cloud instances, and expired certificates often go unnoticed—leaving organizations vulnerable to attackers who continuously scan the internet for exposed systems. According to Gartner®, 'Through 2029, more than 60% of security incidents will be traced to misconfigured technical security controls.'¹ Additionally, a recent survey of 1,200 cybersecurity professionals found that reducing the attack surface is a top priority in their security operations. Bitdefender GravityZone EASM is agentless, requiring no endpoint deployment, and delivers a powerful, proactive approach to identifying and understanding external risks while reducing the attack surface. It continuously discovers, maps, and analyzes internet-exposed assets from an attacker's perspective, enabling organizations to quickly assess risk, identify vulnerabilities, and take action before they are exploited. The solution is available as an add-on to Bitdefender GravityZone, the company's unified security, risk analytics, and compliance platform that delivers advanced endpoint protection (EPP), endpoint detection and response (EDR), extended detection and response (XDR), and cloud-native security. GravityZone EASM scans a wide range of asset types, including IPv4 and IPv6 addresses, IP blocks, email addresses, and domains. From these scans, it delivers comprehensive asset discovery by detecting publicly exposed IPs, expiring or expired certificates, vulnerable public services, open ports, and more—ensuring no asset is overlooked. Key Benefits of Bitdefender GravityZone EASM: Fast internet-facing asset discovery – GravityZone EASM scans and maps all internet-facing assets including devices, domains, subdomains, applications, certificates, third-party connections, shadow IT, and more—in as little as 30 minutes. It delivers comprehensive visibility into a business's attack surface, even for unmanaged or forgotten assets. – GravityZone EASM scans and maps all internet-facing assets including devices, domains, subdomains, applications, certificates, third-party connections, shadow IT, and more—in as little as 30 minutes. It delivers comprehensive visibility into a business's attack surface, even for unmanaged or forgotten assets. Continuous vulnerability monitoring, alerting, and prioritization – GravityZone EASM continuously monitors and detects vulnerabilities and misconfigurations across internal and external assets, including those managed by partners, customers, and supply chain vendors. It delivers immediate, context-rich alerts for exposed systems, expired certificates, and high-risk threats. Alerts are prioritized by severity (e.g., CVE scores) to streamline response and remediation. – GravityZone EASM continuously monitors and detects vulnerabilities and misconfigurations across internal and external assets, including those managed by partners, customers, and supply chain vendors. It delivers immediate, context-rich alerts for exposed systems, expired certificates, and high-risk threats. Alerts are prioritized by severity (e.g., CVE scores) to streamline response and remediation. Unified security, risk management, and compliance – Seamlessly integrated with Bitdefender GravityZone, combining security, risk analytics, and compliance—GravityZone EASM supports both strategic and operational use cases. Security analysts can leverage it for threat analysis and vulnerability prioritization, while administrators benefit from broader security management capabilities such as policy enforcement and access control configuration—all within a single platform. 'Security teams across businesses and MSPs face increasing pressure to keep pace with expanding attack surfaces, driven by digital transformation and complex third-party ecosystems,' said Andrei Florescu, president and general manager at Bitdefender Business Solutions Group. 'Effective defense-in-depth security starts by reducing the attack surface as much as possible before threats reach the detection and response layers. GravityZone EASM is a critical part of our vision for unified security, risk management, and compliance, enabling proactive discovery and control of internet-facing assets that could serve as potential entry points for attackers.' Availability Bitdefender GravityZone EASM is available now for select GravityZone license tiers, and Bitdefender MDR services. For more information, visit here.
Techday NZ
26-06-2025
- Business
- Techday NZ
Bitdefender unveils EASM for proactive attack surface security
Bitdefender has launched a solution designed to provide managed service providers, businesses, and their customers with comprehensive oversight of internet-facing assets and related vulnerabilities. The release of GravityZone External Attack Surface Management (EASM) comes amid growing focus on attack surface reduction, a strategic priority identified by cybersecurity experts and highlighted in recent industry research. Gartner forecasts suggest that, through 2029, over 60% of security incidents will be linked to misconfigured technical security controls. A recent survey of 1,200 cybersecurity professionals also places attack surface reduction at the forefront of their operational concerns. The evolving digital landscape, fuelled by ongoing digital transformation, widespread cloud adoption, remote work trends, and increased integration with third-party infrastructure, is expanding the range of potential entry points that adversaries could exploit. Bitdefender pointed out that, without effective oversight, assets such as abandoned domains, improperly configured cloud resources, and expired digital certificates may go unnoticed, potentially leaving organisations exposed to attackers who habitually probe the internet for vulnerabilities. The EASM module is designed to work without requiring deployment on endpoints, providing a proactive mechanism for identifying and assessing external risks while aiming to minimise the scope of possible attack vectors. By continually discovering, mapping, and analysing internet-exposed assets from the same perspective as potential attackers, organisations are positioned to assess risk, identify vulnerabilities, and take remedial actions before any potential exploitation. GravityZone EASM is provided as an add-on to Bitdefender GravityZone, which is the company's platform for endpoint protection, endpoint detection and response, extended detection and response, and cloud-native security. The system scans a wide range of asset categories, such as IPv4 and IPv6 addresses, IP blocks, email addresses, and domains. Comprehensive asset discovery is achieved by identifying public IPs, alerting to expiring or expired certificates, highlighting vulnerable public services, and recognising open network ports. This asset review process is intended to ensure that all relevant systems are accounted for in centralised monitoring and management. Features Bitdefender highlighted that GravityZone EASM delivers rapid discovery and visibility by scanning and mapping all internet-facing assets—including devices, domains, subdomains, applications, certificates, connections to third parties, and instances of shadow IT—within as little as 30 minutes. Organisations are provided with a full view of their attack surface, extending even to assets that are unmanaged or no longer in regular use. The solution incorporates continuous vulnerability monitoring and alerting. It detects vulnerabilities and misconfigurations across both internal and external systems, including assets managed by external partners, customers, and entities within the supply chain. Immediate, context-rich alerts for exposed systems, expired certificates, and high-risk threats are generated. Alerting is prioritised according to severity, such as CVE scores, to optimise the response processes and remediation actions. GravityZone EASM forms part of a unified approach for security, risk management, and compliance within the GravityZone platform. By integrating these functionalities, both security analysts and administrators can leverage the solution for use cases such as threat analysis, vulnerability prioritisation, policy enforcement, and configuration of access controls. All operations are managed within a single platform. "Security teams across businesses and MSPs face increasing pressure to keep pace with expanding attack surfaces, driven by digital transformation and complex third-party ecosystems," said Andrei Florescu, President and General Manager at Bitdefender Business Solutions Group. "Effective defence-in-depth security starts by reducing the attack surface as much as possible before threats reach the detection and response layers. GravityZone EASM is a critical part of our vision for unified security, risk management, and compliance, enabling proactive discovery and control of internet-facing assets that could serve as potential entry points for attackers." Bitdefender GravityZone EASM is available as an option to select license tiers of GravityZone and for use in conjunction with the company's managed detection and response services.
Business Wire
18-06-2025
- Business
- Business Wire
Bitdefender to Acquire Mesh Security, Expanding its Email Security Capabilities
BUCHAREST, Romania & SAN ANTONIO--(BUSINESS WIRE)--Bitdefender, a global cybersecurity leader, today announced it has agreed to acquire Mesh Security Limited (Mesh), a provider of advanced email security solutions. Through the acquisition, Mesh's email security technology and capabilities will be integrated into Bitdefender's extended detection and response (XDR) platform and managed detection and response (MDR) services. 'We are pleased to announce our intent to acquire Mesh, a strategic move that will complement our GravityZone XDR platform and power our MDR service to help businesses combat email-borne threats as they continue to evolve.' The transaction is subject to customary closing conditions, including regulatory approvals. Email remains the most exploited attack vector and serves as an entry point for ransomware, phishing, and business email compromise (BEC). According to the FBI Internet Crime Report 2024, businesses reported nearly $2.8 billion in losses due to BEC scams in 2024. Additionally, the 2024 Bitdefender Cybersecurity Assessment Report (based on a global survey of 1,200 cybersecurity professionals) identified phishing and social engineering as the top threats impacting their organization. The acquisition will incorporate Mesh's email security capabilities into Bitdefender GravityZone, the company's flagship unified security, compliance, and risk analytics platform. Mesh employs a dual-layered approach to email security, combining perimeter-based protection via a secure email gateway (SEG) with mailbox-level defense through API-based deployment. This model expands visibility into threat activity across all vectors and contributes high-quality telemetry to Bitdefender's global threat intelligence network. A cornerstone of Bitdefender's continued growth is through its global network of over 41,000 channel and MSP partners. Mesh enhances this value by offering a centralized platform optimized for MSPs, enabling efficient multi-tenant email security management. Its solution provides 24x7 protection while reducing operational overhead. With automated policy enforcement, real-time threat insights, and seamless integration into existing workflows, Mesh empowers MSPs to deliver effective, scalable protection to customers. 'We are pleased to announce our intent to acquire Mesh, a strategic move that will complement our GravityZone XDR platform and power our MDR service to help businesses combat email-borne threats as they continue to evolve,' said Andrei Florescu, president and general manager of Bitdefender Business Solutions Group. 'Mesh brings leading-edge innovation from a deeply experienced team that shares our commitment to effective, real-world security. Together, we will further strengthen our ability to provide proven and trusted email protection to our global customer base.' Founded in 2020 and backed by investors Elkstone and Enterprise Ireland, Mesh has established itself as a trusted email security provider for hundreds of MSP partners and thousands of end customers globally. Known for its detection efficacy, MSP-centric architecture, and operational simplicity, Mesh has earned recognition for addressing the unique challenges of email-based threats with precision and ease of use. 'This is the beginning of something even bigger,' said Brian Byrne, chief executive officer and co-founder of Mesh. 'We've always focused on building practical, powerful email security that just works—and Bitdefender shares that same mindset. We're excited to join forces and bring stronger protection to even more organizations.' The terms of the transaction were not disclosed. About Bitdefender Bitdefender is a cybersecurity leader delivering best-in-class threat prevention, detection, and response solutions worldwide. Guardian over millions of consumer, enterprise, and government environments, Bitdefender is one of the industry's most trusted experts for eliminating threats, protecting privacy, digital identity and data, and enabling cyber resilience. With deep investments in research and development, Bitdefender Labs discovers hundreds of new threats each minute and validates billions of threat queries daily. The company has pioneered breakthrough innovations in antimalware, IoT security, behavioral analytics, and artificial intelligence and its technology is licensed by more than 180 of the world's most recognized technology brands. Founded in 2001, Bitdefender has customers in 170+ countries with offices around the world. For more information, visit Trusted. Always.
Scoop
06-06-2025
- Business
- Scoop
Bitdefender Launches Powerful Compliance Management Solution Unified With Endpoint Security
Designed as an add-on to Bitdefender GravityZone, the companys flagship unified security and risk analytics platform, GravityZone Compliance Manager minimises complexity by unifying compliance, risk, and security operations in a single platform. GravityZone Compliance Manager Reduces the Cost and Complexity of Regulatory Compliance Requirements Across All Environments and Industries Bitdefender, a global cybersecurity leader, today announced GravityZone Compliance Manager, a new addition to its GravityZone platform that helps organisations reduce the burden of compliance and streamline audit readiness. Designed specifically for today's complex regulatory landscape, the solution provides real-time visibility, automated remediation, audit-ready reports, and one-click compliance documentation fully integrated with Bitdefender endpoint security and risk analytics. 'GravityZone Compliance Manager performed well for us during early access. The continuous monitoring and assessment feature reduced our reliance on manual scans, saving valuable time. Because it's integrated into our existing security stack, we've avoided the additional cost and complexity of using external tools. It has simplified our operations by eliminating the need for multiple point solutions,' stated Alin Paunescu, chief information security officer at Patria Bank. In recent research, Gartner® recommends that organisations, 'Combine compliance and risk management effectively by prioritising the implementation of impact-based assessments and automated, continuous monitoring capabilities¹.' With regulations like GDPR, PCI DSS, NIS2 and DORA introducing stricter penalties, organisations can no longer afford fragmented or manual compliance approaches. The financial consequences of non-compliance are severe with fines up to €20 million or four per cent of global annual turnover under GDPR and US$100 thousand per month under PCI DSS. These penalties come in addition to significant reputational damage organisations face that often follows regulatory violations. Regulatory demands are increasing, but most organisations still rely on fragmented tools and manual processes. Designed as an add-on to Bitdefender GravityZone, the company's flagship unified security and risk analytics platform, GravityZone Compliance Manager minimises complexity by unifying compliance, risk, and security operations in a single platform. It delivers real-time compliance scoring, automated reporting, and guided remediation, all without the need for specialised in-house expertise. Key Benefits of GravityZone Compliance Manager: Automated Audit-Ready Reports in Seconds –Instantly generate compliance reports aligned with auditor requirements using existing Bitdefender tooling. GravityZone Compliance Manager simplifies audit preparation by automating evidence collection and removing reporting complexity. Reports are structured for auditor review and include an executive summary of the organisation's overall compliance score, a breakdown of compliant versus non-compliant checks, and a risk overview detailing the severity of high, medium, and low risks. One Platform for Security, Risk Management, and Compliance – GravityZone Compliance Manager builds on Bitdefender's unified platform by adding compliance management to a foundation that already includes prevention, detection, response, and risk analytics. Combined with Bitdefender Proactive Hardening and Attack Surface Reduction (PHASR), which proactively reduces exposure by disabling unused or risky system tools, organisations can both harden their environments and stay continuously aligned with compliance requirements. When risks are resolved, compliance status updates automatically which streamlines operations and improves organisations' cybersecurity posture. Supports Major Industry and Geo Specific Compliance Standards – GravityZone Compliance Manager provides immediate visibility into endpoint compliance posture and streamlines regulatory alignment with out-of-the-box support for major frameworks—including region and industry-specific standards such as GDPR, HIPAA, DORA, NIS 2 Directive, PCI DSS, SOC 2, ISO 27001, CISv8, CMMC 2.0 and more. Businesses quickly identify and remediate compliance gaps with a single click and can drill down further into specific standards or benchmarks to view detailed information on associated risks and affected assets. 'The consequences of non-compliance, including financial loss, operational disruption, and reputational damage, rival those of a data breach or ransomware attack, yet most businesses lack the resources or specialised talent needed to manage compliance with confidence,' said Andrei Florescu, president and general manager of Bitdefender Business Solutions Group. 'GravityZone Compliance Manager is a game-changer that consolidates compliance, risk management, and endpoint security on a single platform, enabling businesses to meet regulatory demands effortlessly and reduce complexity to strengthen cyber resilience.' Availability Bitdefender GravityZone Compliance Manager is available now for new and existing customers. All Risk Management users receive automatic access to a basic standard with real-time insights and best-practice guidelines. A full Compliance Manager add-on license unlocks support for advanced compliance frameworks, detailed scoring, full compliance visibility, and exportable reports. For more information visit here. Notes: ¹Gartner, 2025 Strategic Roadmap for Cyber GRC, Jie Zhang, Michael Kranawetter, October 4, 2024. Gartner is a registered trademark of Gartner, Inc. and/or its affiliates and is used herein with permission. All rights reserved. * Legal Notice Bitdefender GravityZone Compliance Manager features and reports are designed to help organisations with compliance-related security activities, in particular with assessing and helping maintain compliance with its listed standards and baselines but can neither fully replace internal efforts nor guarantee that an organisation will pass a compliance audit. Bitdefender recommends working with an approved auditor to obtain any official compliance certifications. About Bitdefender Bitdefender is a cybersecurity leader delivering best-in-class threat prevention, detection, and response solutions worldwide. Guardian over millions of consumers, enterprises, and government environments, Bitdefender is one of the industry's most trusted experts for eliminating threats, protecting privacy, digital identity and data, and enabling cyber resilience. With deep investments in research and development, Bitdefender Labs discovers hundreds of new threats each minute and validates billions of threat queries daily. The company has pioneered breakthrough innovations in antimalware, IoT security, behavioural analytics, and artificial intelligence and its technology is licensed by more than 180 of the world's most recognised technology brands. Founded in 2001, Bitdefender has customers in 170+ countries with offices around the world. For more information, visit
