cyber-security series #3 : A brief coverage of some interesting news from cyber-security space

While it is not easy to maintain the blogging discipline. I am making an attempt in this post to list down all things linked to cyber-security I came to know in last few weeks:
1. Earlier this month as Estonian business delegation was visiting the city. One of the company represented in the delegation was GuardTime ( http://www.guardtime.com/ ). The company works in the space of cyber security. The linkage to cyber-security got me interested in the delegation.
Turns out a Prof. from my master studies days from University of Tartu, Estonia is one of the co-founders of the company. They are working on something known as keyless security infrastructure. The impact of their work seems to be huge and they have chosen a model of an open innovation in order to make a dent in the field.

As I get to know more about cyber-security companies interested in Indian market and also thought leaders in the Indian market. I would like to compile a list at some point and circulate it so that it is easy to follow the developments. 
2. In a regular mail that I receive from crunch base there was a mention of ( http://threatstream.com/) Threat Stream which seems to crowd source the cyber-security threats and they have raised money from Google Ventures. It sounds interesting from the brief description and I will need to investigate it more and the company is also offering a free public cloud signup. (it reminded me of a Finnish startup similarly trying to crowd source harmful websites known as Web of Trust, WOT)
I also did some more research on crunch base on new companies that are funded in 2014 (last 2 months) and here is the list covering some of the interesting ones:

1. http://www.voltage.com/
2. http://www.thetaray.com/ (automated algorithms for threat alerts)
3. http://www.alienvault.com/ (crowd sourced threat intelligence exchange)
4. http://www.norse-corp.com/ (live threat intelligence, has also a nice widget on the website for number of attacks country wise, China is leading 🙂  http://www.norse-corp.com/#top_attack_countries_anchor)
5.  https://www.ionicsecurity.com/ (unified data security platform)
6. http://www.integratasecurity.com (wireless security solution )
7. https://www.bit9.com/  (endpoint and server security)
8. http://www.fireeye.com/ (virtual machine based security platform)
9. http://www.SecureRF.com/ (secure communication with RF/NFC tags)
10. https://prevoty.com/ (web application security)
11. http://bounce.io/ (this one is really interesting, turning SPAM into $$$)
12. https://www.mocana.com/ (mobile application security platform)
13. http://www.cloudpassage.com/ (security for cloud)
14. http://www.powerfingerprinting.com/ (prevents hardware damage from cyber attacks!)
15. http://www.fixmestick.com/ ( I wrote about this concept to F-Secure in 2008 during my malware course and Mikko H shot it down quoting the USB transfer speed as a bottleneck!, my deck on this from 2009: http://www.slideshare.net/sachingaur/iscan )
16. https://www.sitelock.com/ (website and server security)
17. http://www.bluebox.com/ (mobile data security)
18. http://cylance.com/ (web security)
19. http://www.nativeflow.com/ (mobile data security)
20. http://commonkey.com/ (team passwords management solution)
21. https://www.trustev.com/ (preventing e-commerce fraud using social networking solutions)
22. http://www.panopticonlabs.com/ (video game security)

So, in nutshell what is the pattern when you browse last 2 months of newly-invested companies:

• crowd sourcing of cyber security intelligence
• mobile data security
• website/end point and server security

3. Apple SSL Bug: There are lot of interesting tweets and other social media updates talking about the latest patch from Apple about their SSL bug. One from my network that  really liked was:
“Don’t worry. The security update used to patch Apple’s iOS SSL authentication flaw will be delivered to you securely via a SSL connection.” – Christopher Soghoian (Taken from Nagasai’s wall!)