Analytics
11/8/2012
10:54 AM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Security Company IID Expands Executive Team/Security Luminary And Liason To FBI Joins Company

Paul Ferguson appointed as first VP of threat intelligence

TACOMA, Wash. – November 7, 2012 – IID (Internet Identity®), a provider of technology and services that help organizations secure their Internet presence, today announced the expansion of its executive team with the appointment of Paul Ferguson as its first ever Vice President of Threat Intelligence. Ferguson has been widely recognized for decades as a security industry luminary and has been fighting malware since the days of the earliest attacks in 1987.

"IID's pioneering approach to securing the Internet through secure DNS resolution and collective intelligence will help protect organizations and their customers in this new age of everywhere connectivity," said Ferguson. "It's an exciting time as IID builds out a new approach to securing business online, and therefore making the move from Silicon Valley to Tacoma was a no brainer."

While a Senior Threat Researcher at Trend Micro, Ferguson evaluated the entirety of the technology landscape for security vulnerabilities. Further, he tracked and correlated criminal operations across the Internet. This included communicating information about the latest variants of malware targeting the world's largest businesses and federal agencies to the security community, and to law enforcement worldwide. He provided key evidence to the FBI that helped them arrest the creators of the DNSChanger malware in Operation Ghost Click. Ferguson also has held positions at Northrop Grumman Corporation, Cisco Systems, Inc., Sprint, Computer Sciences Corp. (CSC) and AT&T.

"It is no secret that Paul is one of the foremost experts in identifying the latest malicious threats on the Internet, and helping law enforcement identify and bring those criminals to justice. It is with great pride and excitement that I am introducing him as part of the IID executive team today," said IID President & CTO Rod Rasmussen. "As we build out offerings that will bring private and public enterprise together to share and collaborate about the latest malicious threats, Paul will play a vital role that will prove crucial to our company's growth and help protect the Internet from malicious actors."

About IID

IID (Internet Identity) offers products and services that combat and mitigate cyber attacks in order to protect the growth plans, assets, and customers of enterprises and government entities. Armed with collective intelligence regarding the latest Internet risks, IID secures the networks of the top banks in the U.S., the largest government agencies worldwide, and many of today's leading financial services firms, e-commerce companies, social networks and ISPs. IID protects its customers with its mitigation products, threat intelligence data and takedown services. The company is headquartered in Tacoma, Washington. More information can be found at www.internetidentity.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, September 16, 2014
Malicious software is morphing to be more targeted, stealthy, and destructive. Are you prepared to stop it?
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2012-1032
Published: 2014-09-17
Cross-site scripting (XSS) vulnerability in the Euroling SiteSeeker module 3.x before 3.4.5 for EPiServer allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inf...

CVE-2012-1417
Published: 2014-09-17
Multiple cross-site scripting (XSS) vulnerabilities in Local Phone book and Blacklist form in Yealink VOIP Phones allow remote authenticated users to inject arbitrary web script or HTML via the user field to cgi-bin/ConfigManApp.com.

CVE-2012-1506
Published: 2014-09-17
SQL injection vulnerability in the updateStatus function in lib/models/benefits/Hsp.php in OrangeHRM before 2.7 allows remote authenticated users to execute arbitrary SQL commands via the hspSummaryId parameter to plugins/ajaxCalls/haltResumeHsp.php. NOTE: some of these details are obtained from th...

CVE-2012-1507
Published: 2014-09-17
Multiple cross-site scripting (XSS) vulnerabilities in OrangeHRM before 2.7 allow remote attackers to inject arbitrary web script or HTML via the (1) newHspStatus parameter to plugins/ajaxCalls/haltResumeHsp.php, (2) sortOrder1 parameter to templates/hrfunct/emppop.php, or (3) uri parameter to index...

CVE-2012-2583
Published: 2014-09-17
Cross-site scripting (XSS) vulnerability in Mini Mail Dashboard Widget plugin 1.42 for WordPress allows remote attackers to inject arbitrary web script or HTML via the body of an email.

Best of the Web
Dark Reading Radio