Risk

2/26/2010
03:15 PM
50%
50%

HBGary Awarded Contract Extension by Department Of Homeland Security For Forensics Training

Company to conduct memory forensics and malware analysis training events with local, state, and federal law enforcement officials

Sacramento, California, February 24, 2010, Today HBGary (http://www.hbgary.com), a leading provider of best-in-class threat intelligence solutions for government agencies and Fortune 500 organizations, announced that the company has received an extension to their contract with the U.S. Department of Homeland Security to conduct a series of hands-on memory forensics and malware analysis training events with local, state, and federal law enforcement officials around the country.

Today organizations are increasingly turning to HBGary solutions not only to help detect the malware, but also to gather necessary threat intelligence " the author and operator behind the malware -- to better protect their confidential data and leverage their current defense-in-depth security solutions.

"It's a great thing having HBGary provide the training in this specific field since they are on the leading edge dealing with Enterprise-level malware. Also, they are the leader in live memory analysis research and applying that research in the field in the form of tools and training. The training is designed for both your average high-technology crime cop or seasoned government or corporate investigator. It is very practical with just the right amount technical data. I can't think of anyone who is better at doing what they do," said Mark Menz, a national leading expert in computer forensics, electronic discovery and information security and Chief Forensic Scientist for MyKey Technology, Inc.

As a result of this contract extension with the D.H.S., HBGary security experts will use the company's forensic product, HBGary Responder Field Edition, to conduct the two-day training sessions, which will begin next month starting in Washington, DC., and then roll out nationwide to Miami, New York, Philadelphia, and California. Additional training sites may be added this year.

"A computer's memory contains a treasure trove of vital confidential data. Social media technologies, keys, passwords, and complete Internet histories are just a few of the things that can be recovered in memory. As a result, it has become a top target for today's cybercriminals," said HBGary CEO and founder Greg Hoglund. "Originally funded by Air Force Research Labs and Department of Homeland Security, HBGary is pleased to continue to provide the necessary hands-on training to law enforcement officers who are out in the field every day trying to address this critical security issue."

About HBGary Responder Field Edition

Responder Field Edition provides the most thorough and comprehensive memory analysis capability in the industry. Responder virtually rebuilds all the underlying data structures in RAM. This includes all physical to virtual address mappings, recreates the object manager, exposes all objects, and enables investigators to perform a complete and comprehensive computer investigation. For more information on the product, please visit https://www.hbgary.com/products-services/responder-field-edition/

About HBGary, Inc.

HBGary, Inc. was founded in 2004 by renown security expert Greg Hoglund. HBGary is focused on delivering best-in-class threat intelligence solutions to Fortune 500 financial, pharmaceutical and entertainment companies as well as Department of Defense, Intelligence Community and other U.S. government agencies to meet their unique cybersecurity challenges and requirements. HBGary is headquartered in Sacramento and has offices in Washington D.C. For more information on HBGary, please visit http://www.hbgary.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Intel Says to Stop Applying Problematic Spectre, Meltdown Patch
Kelly Jackson Higgins, Executive Editor at Dark Reading,  1/22/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The Year in Security: 2017
A look at the biggest news stories (so far) of 2017 that shaped the cybersecurity landscape -- from Russian hacking, ransomware's coming-out party, and voting machine vulnerabilities to the massive data breach of credit-monitoring firm Equifax.
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.