Perimeter
3/27/2014
12:40 PM
Tim Wilson
Tim Wilson
Quick Hits
50%
50%

MACH37 Funds Six New Security Startups

The cyberaccelerator MACH37 begins work with six emerging cybersecurity firms.

MACH37, a business accelerator that funds and trains new startups to speed them to market, announced this week that it has accepted five cybersecurity companies into its program.

The MACH37 spring class, which it calls a "cohort," features startups in identity management, mobile security, risk management, and IPv6.

"We had over 40 applicants for this spring group, and we think we've identified an excellent group," says Rick Gordon, managing partner of MACH37. "We look for companies that not only have developed innovative, disruptive technologies, but have experienced people and are coachable in the areas that they need to learn to be successful in the market."

The six new companies are:

  • Axon Ghost Sentinel: Based in Harrisonburg, Va., Axon Ghost Sentinel's cybersecurity products provide lightweight, adaptive, scalable, and decentralized security for mobile and traditional devices and enterprise networks. Its products work with security suites to detect and pre-empt abnormal behavior instantly in devices and networks.
  • CardKill: Based in Herndon, Va., CardKill is a toolbox of applications and techniques for locating and terminating stolen ("cloned") credit and debit cards before they're used by fraudsters. CardKill uses proprietary analytics to reduce financial losses by accurately identifying compromised cards faster, speeding forensic investigations.
  • Disrupt6: Based in Herndon, Va., Disrupt6 uses next-generation networking (IPv6) and application techniques to provide real-time responses to threats across both IT infrastructure and cloud services.
  • Fast Orientation Inc.: Based in Menlo Park, Calif., Fast Orientation allows organizations to query, analyze, and respond to enterprise security events in real-time. These capabilities give enterprises the context they need to make responsive and timely security decisions.
  • IDentia Inc.: Based in Herndon, Va., IDentia specializes in identity and access control management (IdAM) and cloud security products and services. Integrating the latest industry open standards with PKI technologies, IDentia's IdAM technology is designed to maximize the security strength of enterprise systems in a cross-organizational environment.
  • MSB Inc.: Based in Alexandria, Va., MSB offers technology that automatically measures, analyzes, and reports mitigation efforts and provides a comprehensive view of enterprise security posture. The Security i-Cue technology uses a patented algorithm for risk-based security management to map controls against a robust organizational specific risk model.

MACH37 will provide the six startups with a 90-day training program and $50,000 in funding to help develop their technologies and strategies and turn them into emerging, investable companies, Gordon says.

Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
3/27/2014 | 3:02:34 PM
Pretty impressive cohort of startups
Tim, are there any recognizable names in cybersecurity today that got their start with MACH37?
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Title Partner’s Role in Perimeter Security
Title Partner’s Role in Perimeter Security
Considering how prevalent third-party attacks are, we need to ask hard questions about how partners and suppliers are safeguarding systems and data.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-9676
Published: 2015-02-27
The seg_write_packet function in libavformat/segment.c in ffmpeg 2.1.4 and earlier does not free the correct memory location, which allows remote attackers to cause a denial of service ("invalid memory handler") and possibly execute arbitrary code via a crafted video that triggers a use after free.

CVE-2014-9682
Published: 2015-02-27
The dns-sync module before 0.1.1 for node.js allows context-dependent attackers to execute arbitrary commands via shell metacharacters in the first argument to the resolve API function.

CVE-2015-0655
Published: 2015-02-27
Cross-site scripting (XSS) vulnerability in Unified Web Interaction Manager in Cisco Unified Web and E-Mail Interaction Manager allows remote attackers to inject arbitrary web script or HTML via vectors related to a POST request, aka Bug ID CSCus74184.

CVE-2015-0884
Published: 2015-02-27
Unquoted Windows search path vulnerability in Toshiba Bluetooth Stack for Windows before 9.10.32(T) and Service Station before 2.2.14 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.

CVE-2015-0885
Published: 2015-02-27
checkpw 1.02 and earlier allows remote attackers to cause a denial of service (infinite loop) via a -- (dash dash) in a username.

Dark Reading Radio
Archived Dark Reading Radio
How can security professionals better engage with their peers, both in person and online? In this Dark Reading Radio show, we will talk to leaders at some of the security industry’s professional organizations about how security pros can get more involved – with their colleagues in the same industry, with their peers in other industries, and with the IT security community as a whole.