Many companies are showcasing their cybersecurity products and services this week at the 2025 edition of the Black Hat conference in Las Vegas.
To help cut through the clutter, the SecurityWeek team is publishing a digest summarizing some of the announcements made by vendors at Black Hat USA 2025, including new products and services, updates to existing offerings, reports, and other initiatives.
This is the fourth and final roundup. You can also check out the first, second and third part.
Abnormal AI updates security posture management product
Human behavior security firm Abnormal AI has expanded its continuous security posture management solution to cover Microsoft 365 environments. The add-on continuously detects misconfigurations across users, apps, and tenants, and helps organizations prioritize issues and provides them with remediation guidance.
Black Kite launches Adversary Susceptibility Index (ASI)
Third-party risk intelligence firm Black Kite has launched Adversary Susceptibility Index (ASI), a product designed to help risk management teams identify which vendors in their ecosystem are most vulnerable to specific threat actors. Capabilities include threat actor intelligence for suppliers, vendor sorting by susceptibility, industry and geography-aware risk, and proactive vendor engagement.
CalypsoAI unveils upgraded solutions
CalypsoAI, which uses ‘agentic warfare’ to test and secure AI applications, has announced upgraded versions of its Inference Defend and Red-Team solutions. Red-Team now incorporates Agentic Fingerprints, a feature that gives customers observability into how attack agents behave. Defend now includes Outcome Analysis, a new feature that provides clear visibility into why prompts and responses are flagged or blocked.
CyberProof enhances Exposure & Defense Management capabilities
CyberProof has rolled out enhancements to its Exposure & Defense Management capabilities and announced the introduction of cyber asset Estate Management. The new threat-led defense capabilities enable organizations to prioritize threats and risks more effectively, and optimize defenses for faster response. Estate Management is a capability that gives organizations the ability to streamline the discovery of all assets across hybrid environments.
Drata unveils AI agent for vendor risk management
Drata has introduced an AI agent for vendor risk management, aimed at transforming how security and GRC teams manage trust. Drata leverages AI to create dynamic, autonomous trust management that adapts in real time and delivers ongoing validation of security, compliance, and risk.
Fenix24 publishes report on law firm cybersecurity
Fenix24 and the International Legal Technology Association (ILTA) have released their latest joint report, Security at Issue: 2025 State of Cybersecurity in Law Firms. The report offers a deep dive into the current cybersecurity practices, gaps, and risks facing legal organizations. A survey showed that phishing is the main concern in this sector, cited by 50% of respondents. The report’s key findings also focus on backups, MFA, security confidence, external assessments, and major weaknesses.
HPE expands cybersecurity, resiliency and compliance solutions
HPE has expanded its cybersecurity, resiliency and compliance solutions as part of its Aruba and Juniper secure networking portfolio. The company has advanced network security with a new SASE copilot for HPE Aruba Networking EdgeConnect. In addition, HPE Aruba Networking Central NAC expands zero trust policy enforcement to HPE Juniper Networking and third-party devices. HPE also unveiled the Alletra Storage MP X10000 data protection solution, and HPE Zerto Software, which offers a new integration hub to enable third-party applications to access HPE Zerto data. CrowdStrike is the exclusive integration launch partner.
Minimus product enhancements
Secure container images provider Minimus announced new product enhancements, including integrated Vulnerability Exploitability eXchange (VEX) support, new compliance dashboards and views, hardened helm charts for security deployment, and integration with Microsoft for Single Sign-On (SSO).
Pentera adds new attack surface testing capabilities
Automated security validation firm Pentera has launched AI-powered Web Attack Surface Testing, featuring AI-driven payload generation and adaptive testing logic to emulate sophisticated threats. The addition will enable more context-aware and adaptive attack emulation, helping security teams validate their abilities against AI-assisted threats.
Push Security introduces Phishing Detection Evasion Techniques matrix
Browser-based detection and response firm Push Security has published a Phishing Detection Evasion Techniques matrix, a resource designed to help security teams visualize and counter real-world identity threats by mapping TTPs across every phase of the phishing lifecycle, and providing real-world examples.
RedSeal announces new products
Exposure management firm RedSeal launched Risk Radius, a risk prioritization and impact analysis solution designed to help security teams identify and remediate dangerous exposures. The company also unveiled RedSeal One, an AI-enabled exposure management platform designed to help organizations reduce risk, streamline operations, and strengthen resilience across hybrid environments.
Sophos partners with Halcyon and Rubrik
Sophos announced a partnership with Halcyon for real-time threat intelligence sharing and implementation of anti-tamper protections so each platform can monitor and safeguard customers against ransomware. Sophos also announced a partnership with Rubrik to create an MDR-optimized Microsoft 365 backup and recovery solution. Sophos said these partnerships will enable greater resiliency to stop attacks in progress and accelerate recovery when an attack occurs.
SpyCloud enhances investigations platform
SpyCloud rolled out an AI-powered upgrade to its investigations platform. The new tool mirrors the tradecraft of elite cyber investigators, helping security and fraud teams automate and accelerate complex cybercrime investigations to surface insider threats. It rapidly correlates breach, malware, and phishing data with behavioral signals from infected devices, generating finished intelligence in seconds.
Sysdig launches agentic cloud security platform
Sysdig launched an agentic cloud security platform that leverages autonomous AI agents to analyze cloud environments for risks and threats. A fully integrated AI cloud security analyst named Sysdig Sage understands context from the entire business and provides contextual remediation recommendations.
Tenable unveils new solution for securing enterprise AI
Tenable announced a major expansion of its exposure management platform to secure the risks introduced by generative AI in the enterprise. Tenable AI Exposure is a comprehensive solution that provides an end-to-end approach to see, manage, and control the risks introduced by generative AI. The solution’s capabilities include comprehensive AI discovery, AI exposure management, and governance and control.
Tuskira upgrades Agentic AI Workforce
Autonomous security operations platform Tuskira has enhanced its Agentic AI Workforce, adding AI-powered threat investigation, preemptive remediation and response, application-aware defense, and an upgraded simulation engine.
Vanta announces partnership with XBOW
Vanta announced a partnership with XBOW to bring autonomous AI pentesting directly to its platform. The new capabilities enable organizations to run automated penetration tests without the need for outside consultants, and launch and complete tests directly within Vanta’s platform, streamlining testing into existing security and compliance workflows.
Vectra AI launches MCP server
Vectra AI has launched a Model Context Protocol (MCP) Server, which is available as early access for all customers. MCP enables integration between AI agents and other applications, and Vectra says its MCP server makes it easier for security teams to investigate threats and take action.
Zimperium publishes report on mobile infostealers
Zimperium has published a new report on mobile infostealers. The report focuses on five malware families: TriaStealer, TrickMo, AppLite, Triada, and SMS Stealer. The company found over 2,400 variants across 69 countries, with Southeast Asia identified as a major hotspot for infections. The most impacted industries were finance, retail, and software.
