IoT
4/16/2018
03:35 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Red Balloon Security Announces Strategic Partnership with In-Q-Tel

New York City – Red Balloon Security, a world leader in universally compatible embedded security technology, today announced a strategic development agreement with and investment from In-Q-Tel, Inc. (IQT), the non-profit strategic investor that identifies and accelerates the development of innovative technologies to support the mission of the U.S. Intelligence Community (IC). The IQT partnership will enable Red Balloon Security to speed up the development of new government and commercial versions of the Symbiote Defense, its flagship security product for embedded devices. 

Symbiote Defense is a game changing technology that brings full-spectrum endpoint security to nearly all embedded devices in use today. The groundbreaking innovation at the heart of Symbiote Defense allows the technology to be universally compatible with nearly all embedded hardware, operating systems, and firmware stacks. Invented by Dr. Ang Cui at Columbia University’s Intrusion Detection Systems Lab, Symbiote Defense has already achieved over 14 billion hours of real-world operation without a single recorded failure. 

“We are honored to receive IQT’s support and look forward to working with them in the coming months and years to make embedded device security more broadly available to a wide range of industries, from the defense and governmental sectors to critical infrastructure, transportation, health care, consumer electronics and more,” said Ang Cui, founder and CEO of Red Balloon Security.

The Symbiote Defense is the world’s first viable embedded security solution capable of bringing much needed protection to the critical embedded devices used by dozens of industries. Prior to the strategic agreement with IQT, Red Balloon secured contracts for its technology with the U.S. Department of Defense and the Department of Homeland Security, as well as with organizations in commercial power, telecommunications, automotive, industrial control, and building control industries. It is also under license for use by Hewlett-Packard, Inc. and other consumer electronics manufacturers. 

“Red Balloon Security's solution is targeting previously unaddressed vulnerabilities in the IoT [Internet of Things] and connected device market,” offered George Hoyem, Managing Partner, IQT. “It has the potential to significantly improve the security posture of many embedded devices that are critical to our national security.” 

“The risks to embedded devices are increasing substantially year over year and we are in a unique position to solve this problem with Symbiote Defense. This technology represents the most promising approach to securing the world’s vulnerable embedded devices. It is a turnkey solution for any industrial, commercial, or military application that relies upon embedded devices. We see a strong future for Symbiote Defense and look forward to working with IQT to realize its potential,” stated Dr. Cui. 

About Red Balloon Security 

Red Balloon Security is a leading security provider for embedded devices across all industries. Founded in 2011 by Dr. Ang Cui, the company’s core technology, Symbiote Defense, was originally developed through Columbia University’s Intrusion Detection Systems Lab. After a decade of testing, billions of hours of error-free runtime and deployments in the US military, homeland security, critical infrastructure and consumer products, Symbiote Defense is the worlds most advanced and proven firmware defense system for embedded devices. Red Balloon Security’s pioneering industry research is led by a team of world-class academics, researchers and developers who have published seminal research papers in the fields of embedded security and intrusion detection, directed U.S. Department of Defense funded research activities, responsibly disclosed vulnerabilities within hundreds of millions of ubiquitous embedded devices and worked as embedded security researchers within various intelligence agencies. Website: http://www.redballoonsecurity.com 

About In-Q-Tel

In-Q-Tel is the not-for-profit, strategic investor that works to identify, adapt, and deliver innovative technology solutions to support the missions of the U.S. Intelligence Community. Launched in 1999 as a private, independent organization, IQT’s mission is to identify and partner with companies developing cutting-edge technologies that serve the national security interests of the United States. For more information, visit http://www.iqt.org.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Crowdsourced vs. Traditional Pen Testing
Alex Haynes, Chief Information Security Officer, CDL,  3/19/2019
BEC Scammer Pleads Guilty
Dark Reading Staff 3/20/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
The State of Cyber Security Incident Response
The State of Cyber Security Incident Response
Organizations are responding to new threats with new processes for detecting and mitigating them. Here's a look at how the discipline of incident response is evolving.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-20031
PUBLISHED: 2019-03-21
A Denial of Service vulnerability related to preemptive item deletion in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier allows a remote attacker to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat between lmgrd and the vendor ...
CVE-2018-20032
PUBLISHED: 2019-03-21
A Denial of Service vulnerability related to message decoding in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier allows a remote attacker to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat between lmgrd and the vendor daemon t...
CVE-2018-20034
PUBLISHED: 2019-03-21
A Denial of Service vulnerability related to adding an item to a list in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier allows a remote attacker to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat between lmgrd and the vendor ...
CVE-2019-3855
PUBLISHED: 2019-03-21
An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server.
CVE-2019-3858
PUBLISHED: 2019-03-21
An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP packet is received from the server. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory.