Tag Archives: Balbix

Uber Is Having a Really, Really Bad Day

Uber is already struggling to maintain a positive consumer image after a series of PR disasters over the last year.

Wait, what happened?
Yesterday was a tough day for Uber. Everyone’s favorite ride-hailing service was outed for attempting to hide the details of a massive hacking incident that occurred in 2016. This left the personal data of drivers and users exposed, including the names and drivers license numbers of nearly 600,000 Uber drivers in the US, along with the sensitive information of over 57 million Uber users globally.

But wait, there’s more!
So the company had an inept security system, what’s the big deal? Surely we’ve seen this story play out before? Whereas usually, a company would have a few bad days and a PR nightmare before journalists and bloggers slowly move on to the next story, this one is going to sting for a bit. Along with the data breach, the firms CTO was also shown to have paid off the two hackers who had accessed the data to the tune of $100,000 in order to keep the situation quiet. Ouch. We hope Uber’s PR team is ready to deal with the media.

Dig Deeper: BadRabbit is Crippling Networks, 10Fold Clients Have Answers

The Experts Weigh In
In the midst of this catastrophe there are experts cutting through the noise, and giving organizations the information they need in order for their company to not be the next big security breach story. Several 10Fold clients talked to Fox News about the event and how security failures like these are affecting the tech industry and beyond, as well as how firms can avoid or protect themselves from attacks in the future.

Stephan Chenette, CEO of enterprise security firm AttackIQ, gave Fox News a statement alongside several other 10Fold clients, saying that; “What makes this breach particularly damning is the failure of Uber to ethically disclose the breach to its customers.”

Manoj Asnani, vice president of product and design at network security firm Balbix, told Fox News that password security is an ongoing challenge for businesses. “Stolen passwords are one of the most common ways adversaries propagate through the enterprise to steal critical data.”

Zohar Alon, co-founder and CEO of cloud security specialist Dome9, added his comments as well, claiming; “This is yet another case of user error trumping the best security measures readily available today. For an organization as large as Uber, this is inexplicable. This is something that Uber, and any organization that is developing code, can and should implement whenever a software engineer checks in code to GitHub,” he added. “Relying on a developer or administrator to follow best practices is foolhardy at scale and the errors seem to be more egregious each and every time a breach makes the headlines.”

Looking for more great insights? Check out some of our other content here.

Bad Rabbit is Crippling Networks: 10Fold Clients Have Answers

Bad Rabbit is a ransomware system that has been tearing apart parts of Eastern Europe since Tuesday, including three Russian websites, an airport in Ukraine and an underground railway in the capital city, Kiev. It’s methods are quite similar to the Petya and WannaCry disasters from earlier this year, but as of now has not caused quite as much damage. But while the outbreak has not yet racked up as much damage as its predecessors, many experts are warning it’s practically anyone’s guess as to how far the malware could actually spread.

Security experts have been pushing the same ideas as with previous ransomware attacks regarding the need for enterprise users to better secure their networks. Bitglass CEO Rich Campagna told SiliconANGLE: “The danger in new ransomware variants is the potential for spread to vulnerable devices. Where endpoints are not yet updated to detect these zero-day attacks, cloud app threat protection can serve as an organization’s first line of defense. As ransomware evolves and becomes more potent, the ability to identify malware in the cloud based on the characteristics of a file as opposed to hash or signature-based scans can prove critical.”

RELATED: WiFi Systems Exposed with KRACK, 10Fold Clients Comment

VP of Product and Design at Balbix Manoj Asnani commented on the situation, claiming that organizations seeking a defense against attacks such as Bad Rabbit, must maintain “instant visibility” of which systems and assets are vulnerable to third party access or attack. He elaborates; “Security teams must have automated systems in place that can continuously monitor these type of attack vectors and provide vital information instantly when needed. Organizations without automation in place are at a huge defensive disadvantage against fast-spreading malware like this.”

Gain some good insights from this piece? Check out some of our other content here.

WiFi Systems Exposed with KRACK, 10Fold Clients Comment

“Recent WiFi exploit causes reflections on internet security”

What is KRACK?

A recent security flaw in WPA2, the security protocol for most modern WiFi systems, could allow an attacker to steal sensitive data including emails, credit card numbers and passwords. The exploit was found and announced by researchers at Belgian university KU Leuven reported Monday.

Depending on the network configuration, the flaw also could allow an attacker to inject or manipulate information in the system — for example, inject ransomware or other malware into websites being used.

RELATED: 10Fold Clients Weigh in on Yahoo’s Ultimate Failure

10Fold Clients and security experts commented on the security flaw:

Fundamental flaws that impact all Web users like KRACK are “incredibly rare” but not unprecedented, said Rich Campagna, CEO of Bitglass. The Heartbleed vulnerability, which surfaced in 2014, is another example of a flaw that had widespread impact across the spectrum, he told TechNewsWorld.

He elaborated in the SiliconAngle: “This vulnerability speaks to the importance of ensuring that all connections from endpoints leverage strong encryption, such as the latest versions of Transport Layer Security,” he said. “Intermediary proxies can ensure that regardless of what the application supports, all connections from end-user devices leverage strong encryption.”

Gaurav Banga, CEO of Balbix, also discussed the attack exploiting the WPA2 flaw would require an adversary to be close to the target: “Remember that many public networks are wide open anyway, and enterprises expect TLS (HTTPS) and VPNs to provide the real protection, even if WiFi is open wide,” he told TechNewsWorld. “Perhaps this is why the vulnerability disclosure was not taken very seriously until this week.”

Bitglass is a total data protection company, a global cloud access security broker (CASB), and agentless mobile security company based in Silicon Valley.

Balbix produces a predictive breach risk platform to leverage predictive analytics and AI to provide enterprises with a comprehensive and continuous risk and resilience calculation.

Enjoy your read? Check out our other content here.

Into the Fold – Balbix

Balbix’s provides the security industry’s first predictive breach risk platform. It leverages predictive analytics and artificial intelligence (AI) to give businesses a comprehensive and continuous risk and resilience assessment that is visualized with a searchable heat map. The Balbix system can predict critical breach scenarios, help users prioritize security operations and projects, and ultimately improve cyber-resilience. Before assuming the role of CEO at Balbix, Gaurav Banga was the co-founder & CEO of Bromium and led the company from its founding for over five years. Before that, he served in various executive roles at Phoenix Technologies, Intellisync Corporation, among others.

Investment group Mayfield is aiding Balbix in making its innovative service into a reality. Mayfield has invested in more than 500 companies with over $2.6 billion under management and a 45-year history of championing entrepreneurs.

Find recent press coverage of Balbix here.

Enjoy your read? Check out our other content here.

10Fold Clients Weigh in on Yahoo’s Ultimate Failure

“See what these security experts have to say about the Yahoo breach”

But first, some context

In 2013 a hack of the Yahoo network affected all company accounts. The breach was officially disclosed in December of 2016, and Yahoo said the breach affected one billion accounts. While this still led to a huge amount of compromised data, the story would only get worse for the company.

However, now they’re singing a different tune. On Tuesday the firm reported that the data breach was far larger, wherein every single account on their servers had been breached. This is obviously quite a difference, and unprecedented in security failures for firms of yahoo’s size.

RELATED: WiFi Systems Exposed with KRACK, 10Fold Clients Comment

Here’s what some security big shots (and 10Fold clients) recently said about the recent Yahoo debacle.

“Back when the breach was first disclosed, we noted that many large enterprises lack the necessary controls to limit unauthorized access. While this remains the case, a breach where virtually all Yahoo users are affected is unprecedented,” said Bitglass CEO Rich Campagna. “It’s difficult to imagine any circumstance in which an organization committed to security could have all network segmentation, policies, and security measures bypassed completely. Even over a prolonged period of time, it is exceedingly difficult to exfiltrate 3 billion records without setting off a single actionable alarm.”

Calling the incident “an epic failure,” Carl Wright, CRO at AttackIQ, called for companies to “seriously, find protection failures before the adversary does.”

Consumers worldwide as well as shareholders “deserve better,” he said. “It is one thing to deploy security controls, it is completely another thing to know that they are working correctly.”

Find more information: Yahoo Says All 3 Billion Accounts Compromised in Breach

Enjoy your read? Check out our other content here.

September 10Fold Client Coverage

A roundup of some of the big pieces 10Fold helped to secure our clients in September. 

What is Cyber-Resilience?

“Balbix CEO talks cyber-resilience in this contribution to DZone”

If you are a CxO, Board Member, or in the cybersecurity business, you have probably seen the word cyber-resilience popping up in your conversations, news, and social media feeds. To a business-person, resilience is a powerful word, and you have perhaps wondered how your organization can become more cyber-resilient. If you have been around the cybersecurity business for a while, cyber-resilience might remind you of another widely-used term, “defense-in-depth.”

For those who came in late, the backdrop of thinking about cyber-resilience is this: our enterprise networks contain large amounts of insecure software (and hardware) and lots of imperfect human beings — entities that fail at a fairly high frequency from a security standpoint. The enterprise attack surface is vast, constantly growing, and poorly understood, and the threat landscape is constantly evolving. The objective of security teams is to implement mitigations that give us a cyber-resilient enterprise on top of insecure components. This is kinda like building a RAID array with 5 nines of availability from inexpensive and failure-prone disks.

The abstract notion of resilience is appealing, of course, and relates to one of the best qualities we associate with members of the human species— our ability to succeed in the face of adversity. But how exactly does it apply to cybersecurity?  Is it different from defense-in-depth? How does one measure cyber-resilience for an enterprise? Or improve it?

Itron Acquires Silver Spring Networks for $830 Million, Eyes Broader Smart City, Smart Grid Developments

Silver Spring is a smart city and mesh network player. The two see more Internet of Things (IoT) grid and city connections.”

Under the terms of the deal, Itron will acquire Silver Spring for $16.25 a share in cash. The price tag is a 25-percent premium to Silver Spring’s closing price on Friday.

Silver Spring offers Internet of Things platforms for utilities and cities. The company has about $311 million in annual revenue. Silver Spring connects 26.7 million smart devices and manages them through a Software-as-a-Service (SaaS) platform. For instance, Silver Spring offers a wireless smart street lighting platform as well as services for other end points.

Augment Raises $5 million to Help Customer Service Agents With AI

The startup had operated in stealth for 10 months prior to launch.”

The company joins competitors like Mattersight, DigitalGenius, LivePerson, and others in its efforts to train AI using conversations between customers and businesses in order to better guide customer service agents.

The money will be used to bolster the Augment AI platform, which is trained by an aggregated dataset made up of 100 million conversational interactions at large companies, including Dyson. Augment makes no attempt to replace human agents, only to make them more efficient.

“We can increase the number of interactions, the number of conversations an agent can have in a given window,” CEO Matt Swanson told VentureBeat in a phone interview. “Where most people are trying to deflect away conversations from humans, we’re just simply providing [assistance] throughout the conversation to make the agents better.”

Startup Netsil Introduces ‘Google Maps of Microservices Applications’

“Startup Netsil launches out of stealth”

Startup Netsil Inc. has come out of stealth with a monitoring and visualization platform for cloud applications that enables DevOps teams to see all services and their dependencies on a network without the need for additional coding.

Calling its service a “Google Maps of microservices applications,” Netsil said its Application Operations Centeris a troubleshooting tool for organizations that make extensive use of containers, which allow applications to be moved among different computers, and microservices, or software components that can be combined to form full applications.

“We give you a real-time map of all the component containers along with their communications structure,” said Arvind Soni, vice president of product at the San Francisco-based company. “We tell you where there are traffic jams or failures.”

4 Hacks Your Service Business Needs for Internet of Things Security

“Manuel Grenacher, CEO of Coresystems, emphasizes the importance of securing your data—especially personal data.” 

Grenacher says the extent of how secure you need to be comes down to what kind of data is being sent back and forth. “If it comes to data about persons, then it’s highly critical, because of privacy issues, like location and such. If you only have sensor data, it’s less critical.”

Enjoy your read? Check out our other content here.

Balbix: Predicting Data-Breaches Before They Happen

WannaCry and Petya are the names of two particularly damaging types of ransomware. Ransomware is a type of malware that infects computer systems, encrypts the data on those systems and doesn’t relinquish it until a ransom is paid. My fellow 10Fold colleague Kory Buckley recently wrote a blog on the topic.

Many of the organizations that were affected with these latest ransomware versions had adequate network security measures in place, including firewalls and antivirus, but the attack still managed get though most defenses. Much of that has to do with how the security stack around endpoint protection is configured. Balbix, a San Jose, CA-based network security company believes they have developed an innovative solution that will help organizations better protect potential endpoint vulnerabilities. And they’re doing it using advances in artificial intelligences (AI).

On June 6, Balbix emerged from stealth with the industry’s first predictive breach-risk platform that is able to predict and prevent an attack before it happens.Balbix was founded by Gaurav Banga, former CEO of Bromium, with the mission to measure risk and give enterprises the confidence they need with increasing their cyber-resilience.

In addition to launching their security platform, the company announced $8.6 million in investor funding from Mayfield.

How does Balbix work?

Balbix has built the market’s first platform to use predictive analytics and Artificial Intelligence to automatically measure breach risk and calculate resilience. Balbix also uses specialized sensors across the enterprise to continuously discover and monitor all devices, apps and users across hundreds of potential attack vectors. These sensors allow security teams to visualize their breach risk and quickly prioritize operations and projects.

The Balbix’s platform features:

  1. Comprehensive risk heat-map: Balbix has created a system that automatically monitors and analyzes the enterprise network 24/7/365 across hundreds of attack vectors. This helps overburdened security teams prioritize mitigation projects by identifying areas of highest risk and surfacing actionable insights.
  2. Predictive risk analytics: Balbix predicts breach scenarios by analyzing indicators of risk, factors that point to the future likelihood of occurrence of security incidents, e.g., user clickthrough behavior indicating high phishing risk. In contrast, existing products rely on indicators of attack or compromise based on security events that have already happened.
  3. Effectiveness of mitigations and cyber-resilience: Balbix can compute the effectiveness of security mitigations already implemented and help prioritize planned security projects. The system also measures organizations’ cyber-resilience – the ability to limit the impact of security incidents.

In a recent eSecurity Planet article, Balbix founder and CEO, Gaurav Banga said, “AI and automation offer two key advantage in security: they’re very good at dealing with large vectors of data across hundreds of dimensions, and they provide the ability to understand and report the level of confidence in any conclusions reached in order to avoid false positives. Because of these two advantages, AI, when correctly implemented, can provide super-powers to cyber defenders, who now have the ability to come to the best conclusions given large amounts of fuzzy security data from their operating environment.”

In my eyes, Balbix is a network security company to watch. But don’t just take my word for it, read a few of the following stories to see what the media are saying about the company.

  1. eSecurity Planet
  2. eWeek
  3. Dark Reading
  4. SiliconTap
  5. Beta News
  6. FinSMEs
  7. Silicon Angle
  8. VMBlog
  9. SDxCentral
  10. IT Pro Portal
  11. FOX News
  12. IT Business Edge
  13. Channel Partners
  14. Virtual Strategy Magazine

Enjoy your read? Check out our other content here.