Analytics
11/8/2012
10:54 AM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Security Company IID Expands Executive Team/Security Luminary And Liason To FBI Joins Company

Paul Ferguson appointed as first VP of threat intelligence

TACOMA, Wash. – November 7, 2012 – IID (Internet Identity®), a provider of technology and services that help organizations secure their Internet presence, today announced the expansion of its executive team with the appointment of Paul Ferguson as its first ever Vice President of Threat Intelligence. Ferguson has been widely recognized for decades as a security industry luminary and has been fighting malware since the days of the earliest attacks in 1987.

"IID's pioneering approach to securing the Internet through secure DNS resolution and collective intelligence will help protect organizations and their customers in this new age of everywhere connectivity," said Ferguson. "It's an exciting time as IID builds out a new approach to securing business online, and therefore making the move from Silicon Valley to Tacoma was a no brainer."

While a Senior Threat Researcher at Trend Micro, Ferguson evaluated the entirety of the technology landscape for security vulnerabilities. Further, he tracked and correlated criminal operations across the Internet. This included communicating information about the latest variants of malware targeting the world's largest businesses and federal agencies to the security community, and to law enforcement worldwide. He provided key evidence to the FBI that helped them arrest the creators of the DNSChanger malware in Operation Ghost Click. Ferguson also has held positions at Northrop Grumman Corporation, Cisco Systems, Inc., Sprint, Computer Sciences Corp. (CSC) and AT&T.

"It is no secret that Paul is one of the foremost experts in identifying the latest malicious threats on the Internet, and helping law enforcement identify and bring those criminals to justice. It is with great pride and excitement that I am introducing him as part of the IID executive team today," said IID President & CTO Rod Rasmussen. "As we build out offerings that will bring private and public enterprise together to share and collaborate about the latest malicious threats, Paul will play a vital role that will prove crucial to our company's growth and help protect the Internet from malicious actors."

About IID

IID (Internet Identity) offers products and services that combat and mitigate cyber attacks in order to protect the growth plans, assets, and customers of enterprises and government entities. Armed with collective intelligence regarding the latest Internet risks, IID secures the networks of the top banks in the U.S., the largest government agencies worldwide, and many of today's leading financial services firms, e-commerce companies, social networks and ISPs. IID protects its customers with its mitigation products, threat intelligence data and takedown services. The company is headquartered in Tacoma, Washington. More information can be found at www.internetidentity.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6335
Published: 2014-08-26
The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5.x and 6.x before 6.1.5.6 on Solaris and HP-UX, does not preserve file permissions across backup and ...

CVE-2014-0480
Published: 2014-08-26
The core.urlresolvers.reverse function in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3 does not properly validate URLs, which allows remote attackers to conduct phishing attacks via a // (slash slash) in a URL, which triggers a scheme-relative URL ...

CVE-2014-0481
Published: 2014-08-26
The default configuration for the file upload handling system in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3 uses a sequential file name generation process when a file with a conflicting name is uploaded, which allows remote attackers to cause a d...

CVE-2014-0482
Published: 2014-08-26
The contrib.auth.middleware.RemoteUserMiddleware middleware in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3, when using the contrib.auth.backends.RemoteUserBackend backend, allows remote authenticated users to hijack web sessions via vectors relate...

CVE-2014-0483
Published: 2014-08-26
The administrative interface (contrib.admin) in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x before 1.6.6, and 1.7 before release candidate 3 does not check if a field represents a relationship between models, which allows remote authenticated users to obtain sensitive information via a to_field ...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.