IoT
4/16/2018
03:35 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Red Balloon Security Announces Strategic Partnership with In-Q-Tel

New York City – Red Balloon Security, a world leader in universally compatible embedded security technology, today announced a strategic development agreement with and investment from In-Q-Tel, Inc. (IQT), the non-profit strategic investor that identifies and accelerates the development of innovative technologies to support the mission of the U.S. Intelligence Community (IC). The IQT partnership will enable Red Balloon Security to speed up the development of new government and commercial versions of the Symbiote Defense, its flagship security product for embedded devices. 

Symbiote Defense is a game changing technology that brings full-spectrum endpoint security to nearly all embedded devices in use today. The groundbreaking innovation at the heart of Symbiote Defense allows the technology to be universally compatible with nearly all embedded hardware, operating systems, and firmware stacks. Invented by Dr. Ang Cui at Columbia University’s Intrusion Detection Systems Lab, Symbiote Defense has already achieved over 14 billion hours of real-world operation without a single recorded failure. 

“We are honored to receive IQT’s support and look forward to working with them in the coming months and years to make embedded device security more broadly available to a wide range of industries, from the defense and governmental sectors to critical infrastructure, transportation, health care, consumer electronics and more,” said Ang Cui, founder and CEO of Red Balloon Security.

The Symbiote Defense is the world’s first viable embedded security solution capable of bringing much needed protection to the critical embedded devices used by dozens of industries. Prior to the strategic agreement with IQT, Red Balloon secured contracts for its technology with the U.S. Department of Defense and the Department of Homeland Security, as well as with organizations in commercial power, telecommunications, automotive, industrial control, and building control industries. It is also under license for use by Hewlett-Packard, Inc. and other consumer electronics manufacturers. 

“Red Balloon Security's solution is targeting previously unaddressed vulnerabilities in the IoT [Internet of Things] and connected device market,” offered George Hoyem, Managing Partner, IQT. “It has the potential to significantly improve the security posture of many embedded devices that are critical to our national security.” 

“The risks to embedded devices are increasing substantially year over year and we are in a unique position to solve this problem with Symbiote Defense. This technology represents the most promising approach to securing the world’s vulnerable embedded devices. It is a turnkey solution for any industrial, commercial, or military application that relies upon embedded devices. We see a strong future for Symbiote Defense and look forward to working with IQT to realize its potential,” stated Dr. Cui. 

About Red Balloon Security 

Red Balloon Security is a leading security provider for embedded devices across all industries. Founded in 2011 by Dr. Ang Cui, the company’s core technology, Symbiote Defense, was originally developed through Columbia University’s Intrusion Detection Systems Lab. After a decade of testing, billions of hours of error-free runtime and deployments in the US military, homeland security, critical infrastructure and consumer products, Symbiote Defense is the worlds most advanced and proven firmware defense system for embedded devices. Red Balloon Security’s pioneering industry research is led by a team of world-class academics, researchers and developers who have published seminal research papers in the fields of embedded security and intrusion detection, directed U.S. Department of Defense funded research activities, responsibly disclosed vulnerabilities within hundreds of millions of ubiquitous embedded devices and worked as embedded security researchers within various intelligence agencies. Website: http://www.redballoonsecurity.com 

About In-Q-Tel

In-Q-Tel is the not-for-profit, strategic investor that works to identify, adapt, and deliver innovative technology solutions to support the missions of the U.S. Intelligence Community. Launched in 1999 as a private, independent organization, IQT’s mission is to identify and partner with companies developing cutting-edge technologies that serve the national security interests of the United States. For more information, visit http://www.iqt.org.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
6 Security Trends for 2018/2019
Curtis Franklin Jr., Senior Editor at Dark Reading,  10/15/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-10839
PUBLISHED: 2018-10-16
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting in DoS.
CVE-2018-13399
PUBLISHED: 2018-10-16
The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.
CVE-2018-18381
PUBLISHED: 2018-10-16
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
CVE-2018-18382
PUBLISHED: 2018-10-16
Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" (aka user/edit-profile) action.
CVE-2018-18374
PUBLISHED: 2018-10-16
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.