Hundreds of companies are showcasing their products and services this week at the 2025 edition of the RSA Conference (RSAC) in San Francisco.
To help cut through the clutter, the SecurityWeek team is publishing a daily digest summarizing some of the announcements made by vendors. Here is a roundup of the most important product and service announcements made on the second day of the event.
The announcements from the first day have also been summarized and we have also made a roundup covering the weeks leading up to the event (part 1, part 2, part 3).
Black Kite introduces Vulnerability Intelligence Brief
Black Kite has introduced a new Vulnerability Intelligence Brief (VIB) solution, which goes beyond cataloging CVEs by providing visibility into third-party risks, enabling security teams to discover a vulnerability’s severity, exploitability, and exposure, prioritize relevance, and engage vendors to mitigate risks.
Cloud Security Alliance launches Compliance Automation Revolution (CAR)
The Cloud Security Alliance (CSA) has launched the Compliance Automation Revolution (CAR), a coalition founded in partnership with Google, Oracle, Anecdotes, Coalfire, Deloitte Italy, Salesforce, Schellman, and Vanta. The organization says CAR aims to solve real-world compliance problems with practical and effective solutions.
Cyberhaven launches AI visibility and protection capabilities
Data security firm Cyberhaven has announced a major platform expansion designed to provide visibility and protection for AI. Security teams are provided with tools to identify grassroots AI innovation, scale AI workflows enterprise-wide, evaluate AI tools based on customizable risk criteria, and implement granular controls over data entering AI systems and AI-generated content flowing through business operations.
Diligent, Cloudflare, and Qualys partner for Cyber Risk Report
Diligent has teamed up with Cloudflare and Qualys to launch an enhanced Cyber Risk Report that integrates Cloudflare’s real-time threat intelligence and Qualys’ risk surface insights, with Diligent’s existing cyber risk dashboard. The Cyber Risk Report combines internal controls, external threat intelligence, and real-world asset vulnerability data into a single, executive-ready report.
Forescout publishes hacktivism report
Forescout’s Vedere Labs published a new report on hacktivism. The company’s analysis found that four state-aligned hacktivist groups (BlackJack, Handala Group, Indian Cyber Force, and NoName057) claimed responsibility for 780 attacks in 2024 alone. NoName057 took credit for a vast majority of attacks, but it was also caught falsely claiming responsibility for an attack. Forescout also found that hacktivist attacks spanned 40 countries, with Ukraine, Israel, and Spain most frequently targeted. Critical infrastructure was under fire, with 44% of attacks hitting government entities, 21% targeting transportation, and 13% aimed at financial services.
[ Related: Cybersecurity Firms Raise Over $1.7 Billion Ahead of RSA Conference 2025 ]
Forcepoint launched Data Security Cloud
Forcepoint has launched Forcepoint Data Security Cloud, a comprehensive, AI-powered platform delivering unified visibility and control over data across its entire lifecycle. The cloud-delivered platform unifies Data Security Posture Management (DSPM), Data Detection and Response (DDR), enterprise DLP, SaaS security, web security, and email security.
Huntress debuts managed SIEM
Huntress announced the general availability of a Managed Security Information and Event Management (SIEM) solution. Fully managed by Huntress’ 24/7 SOC, the SIEM solution removes the complexity, noise, and unpredictable costs. New and expanded functionality includes enhanced log ingestion, 24/7 detection, response and threat hunting, expanded detection rules, and extended data retention.
Legit Security adds ASPM AI capabilities
Legit Security has updated its ASPM platform with new functionalities designed to address multiple AI use cases, including AI-Remediation, AI-Discovery, and AI-Context, delivering enhancements that secure AI-developed and non-AI-developed applications.
LightBeam launches risk scoring for DSPM
LightBeam announced a major update to its Data Security Posture Management (DSPM) offering with the release of dynamic risk scoring capabilities designed to help organizations visualize the concentration and severity of risk across cloud, Saas, and on-premises data repositories.
Lumifi adds ShieldVision capabilities
Managed detection and response services provider Lumifi Cyber has announced new capabilities for its ShieldVision product to provide an improved, streamlined user experience with intuitive workflows, integrated automation, and guided investigation tools to minimize false positives and unnecessary alerts, optimize performance, and accelerate remediation without increasing headcount.
NetApp announces cyber resilience advancements
NetApp has introduced new data security advancements that embed cyber resilience directly into enterprise storage, empowering organizations to stay ahead of evolving threats. New capabilities include proactive threat defense, AI-driven threat detection and response at the storage level, and next-generation encryption.
OpenSSF launches free course
The Open Source Security Foundation (OpenSSF), in collaboration with LF Education, has launched a free online course designed to help developers understand and comply with the EU Cyber Resilience Act (CRA), a sweeping regulation that will affect nearly all software distributed in the EU. The course is called LFEL1001 and it’s tailored to software developers and technical leads. It provides concrete, actionable guidance on CRA requirements, including how they impact open source projects.
Qualys announced updates to its TotalAI solution
Qualys announced major updates to its TotalAI solution to secure organizations’ complete MLOps pipeline. Organizations will now be able to rapidly test their LLMs, even during development testing cycles, with stronger protection against more attacks and on-premises scanning powered by an internal LLM scanner. TotalAI delivers automatic prioritization of AI security risks, faster and safer AI application development, enhanced defense against emerging AI threats, and protection from cross-modal exploits with multimodal threat coverage.
Rapid7 enhances Command Platform
Rapid7 announced a series of enhancements to its Command Platform, including unified threat-informed remediation to offer security teams platform-level remediation capabilities across exposure management and threat detection and response.
Recorded Future unveils Malware Intelligence
Threat intelligence company Recorded Future has introduced Malware Intelligence, a product designed for proactive threat prevention by automating the identification of emerging malware threats, accelerating threat hunting, and streamlining incident response. Malware Intelligence delivers real-time insights by connecting malware samples to threat actor infrastructure, attack patterns, and the global threat landscape.
RSA announces new ISPM capabilities
RSA announced new Identity Security Posture Management (ISPM) capabilities designed to help enterprises find and resolve security risks across hybrid and cloud environments. Built into the RSA Governance & Lifecycle identity governance and administration solution, the new features address critical cybersecurity risks that result from cloud computing, remote work, and the growth of human and non-human identities.
Saviynt launches Identity Security Posture Management solution
Saviynt has launched an AI-powered Identity Security Posture Management (ISPM) as part of its converged Identity Cloud platform. Saviynt’s ISPM provides actionable insights into an organization’s identity and access posture, offering an intelligent starting point to prioritizing and remediating risks. Built on zero trust principles, the ISPM solution incorporates all identity, access, activity, policies, configurations, events, and security signals into an enterprise-grade identity security data lake.
Salt Security launches MCP server for API security
Salt Security launched the Salt Model Context Protocol (MCP) Server, which gives enterprise teams a novel access point of interaction with their API infrastructure, leveraging natural language and AI. Salt’s MCP Server enables AI agents to discover, understand, and analyze API behavior with contextual awareness and enterprise-grade precision.
Securonix introduces gen-AI agents for the SOC
Securonix has released eight new gen-AI agents to reduce analyst workload by up to 50% in the SOC. The agents streamline detection, investigation, and response and serve as the foundation for an open agentic mesh – a self-orchestrating interconnected system of agents that allows SOC analysts to focus on what matters most.
Silent Push unveils threat intelligence management module enhancements
Silent Push has unveiled enhancements to its threat intelligence management module, enabling organizations to preemptively identify emerging threats. The company has released a new feed scanner interface, customer feeds API, and threat check API/DNS-based lookups.
Sonatype enhances predictive malware protection
Sonatype introduced major enhancements to its Repository Firewall to expand proactive malware protection across the software development lifecycle. Key features include Zscaler integration for protection at every ingestion point, Docker support for security at container speed, support for Hugging Face AI models for shifted-left scanning and blocking, and automated malware detection at scale.
Trellix publishes CyberThreat Report
Trellix has released its latest CyberThreat Report, which found that we may be in the most active moment in history for cyberattacks targeting the US, as APT detections more than doubled in Q1 2025 alone. The report also shows that China-linked threats are increasingly intense, and that Russia-linked activity is on the rise. The telecom and technology sectors saw the highest increases in APT detections from Q4 2024 to Q1 2025.
Vectra AI launches new AI agents
Vectra AI announced new AI agents designed to eliminate SOC practitioners’ concerns about potentially missing a critical alert due to noise. The agents think and act like a trained security analyst, but faster and at scale. The agents should increase security teams’ productivity and workflow efficiencies, allowing analysts to detect, investigate, and respond to the most urgent and critical threats.
Related: JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference
