IoT
4/16/2018
03:35 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Red Balloon Security Announces Strategic Partnership with In-Q-Tel

New York City – Red Balloon Security, a world leader in universally compatible embedded security technology, today announced a strategic development agreement with and investment from In-Q-Tel, Inc. (IQT), the non-profit strategic investor that identifies and accelerates the development of innovative technologies to support the mission of the U.S. Intelligence Community (IC). The IQT partnership will enable Red Balloon Security to speed up the development of new government and commercial versions of the Symbiote Defense, its flagship security product for embedded devices. 

Symbiote Defense is a game changing technology that brings full-spectrum endpoint security to nearly all embedded devices in use today. The groundbreaking innovation at the heart of Symbiote Defense allows the technology to be universally compatible with nearly all embedded hardware, operating systems, and firmware stacks. Invented by Dr. Ang Cui at Columbia University’s Intrusion Detection Systems Lab, Symbiote Defense has already achieved over 14 billion hours of real-world operation without a single recorded failure. 

“We are honored to receive IQT’s support and look forward to working with them in the coming months and years to make embedded device security more broadly available to a wide range of industries, from the defense and governmental sectors to critical infrastructure, transportation, health care, consumer electronics and more,” said Ang Cui, founder and CEO of Red Balloon Security.

The Symbiote Defense is the world’s first viable embedded security solution capable of bringing much needed protection to the critical embedded devices used by dozens of industries. Prior to the strategic agreement with IQT, Red Balloon secured contracts for its technology with the U.S. Department of Defense and the Department of Homeland Security, as well as with organizations in commercial power, telecommunications, automotive, industrial control, and building control industries. It is also under license for use by Hewlett-Packard, Inc. and other consumer electronics manufacturers. 

“Red Balloon Security's solution is targeting previously unaddressed vulnerabilities in the IoT [Internet of Things] and connected device market,” offered George Hoyem, Managing Partner, IQT. “It has the potential to significantly improve the security posture of many embedded devices that are critical to our national security.” 

“The risks to embedded devices are increasing substantially year over year and we are in a unique position to solve this problem with Symbiote Defense. This technology represents the most promising approach to securing the world’s vulnerable embedded devices. It is a turnkey solution for any industrial, commercial, or military application that relies upon embedded devices. We see a strong future for Symbiote Defense and look forward to working with IQT to realize its potential,” stated Dr. Cui. 

About Red Balloon Security 

Red Balloon Security is a leading security provider for embedded devices across all industries. Founded in 2011 by Dr. Ang Cui, the company’s core technology, Symbiote Defense, was originally developed through Columbia University’s Intrusion Detection Systems Lab. After a decade of testing, billions of hours of error-free runtime and deployments in the US military, homeland security, critical infrastructure and consumer products, Symbiote Defense is the worlds most advanced and proven firmware defense system for embedded devices. Red Balloon Security’s pioneering industry research is led by a team of world-class academics, researchers and developers who have published seminal research papers in the fields of embedded security and intrusion detection, directed U.S. Department of Defense funded research activities, responsibly disclosed vulnerabilities within hundreds of millions of ubiquitous embedded devices and worked as embedded security researchers within various intelligence agencies. Website: http://www.redballoonsecurity.com 

About In-Q-Tel

In-Q-Tel is the not-for-profit, strategic investor that works to identify, adapt, and deliver innovative technology solutions to support the missions of the U.S. Intelligence Community. Launched in 1999 as a private, independent organization, IQT’s mission is to identify and partner with companies developing cutting-edge technologies that serve the national security interests of the United States. For more information, visit http://www.iqt.org.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security 2018
This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-0624
PUBLISHED: 2019-01-17
A spoofing vulnerability exists when a Skype for Business 2015 server does not properly sanitize a specially crafted request, aka "Skype for Business 2015 Spoofing Vulnerability." This affects Skype.
CVE-2019-0646
PUBLISHED: 2019-01-17
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team.
CVE-2019-0647
PUBLISHED: 2019-01-17
An information disclosure vulnerability exists when Team Foundation Server does not properly handle variables marked as secret, aka "Team Foundation Server Information Disclosure Vulnerability." This affects Team.
CVE-2018-20727
PUBLISHED: 2019-01-17
Multiple command injection vulnerabilities in NeDi before 1.7Cp3 allow authenticated users to execute code on the server side via the flt parameter to Nodes-Traffic.php, the dv parameter to Devices-Graph.php, or the tit parameter to drawmap.php.
CVE-2018-20728
PUBLISHED: 2019-01-17
A cross site request forgery (CSRF) vulnerability in NeDi before 1.7Cp3 allows remote attackers to escalate privileges via User-Management.php.