Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Mobile

1/23/2014
12:44 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Cyber-Defense Specialist Gets Backing Of Major Smartphone Manufacturer And Launches New Approach To Mobile Security Threats

Zimperium launches two products to protect organizations from advanced persistent threats on mobile

SAN FRANCISCO – January 23rd, 2014 – Zimperium, creators of the world's first mobile intrusion prevention system&trade (IPS) powered by artificial intelligence (AI), is today announcing the launch of two new products to protect organizations from advanced persistent threats (APT) on mobile. The launch addresses a huge void in mobile security: more employees are bringing their personal devices to work, but there is no security solution to detect, notify, and protect against advanced cyber-attacks deployed through mobile devices.

Existing Security Solutions Are Not Adequate

Governments and enterprises are extremely vulnerable to cyber-attacks from devices such as smartphones and tablets, suggests a whitepaper published by Zimperium.

Top network and computer security vendors are not experts in mobile security. These providers can protect against network threats, but don't know how to protect mobile devices from cyber-attacks that can later comprise the entire corporate network. Meanwhile, current mobile security offerings are extremely limited in their scope of protection. These providers only offer protection against predefined types of threats. This protection is narrow, slow to adapt, and does not safeguard against simple tricks or cyber-attacks.

New Solution Sets New Standards

Zimperium is launching zIPS and zCONSOLE, offering organizations the first comprehensive mobile security solution zIPS is the world's first mobile IPS&trade that uses AI to detect advanced cyber-attacks. Leveraging algorithms and machine learning, zIPS monitors how a device behaves and is capable of recognizing unusual usage patterns and safeguarding the device.

zCONSOLE is an easily integrated, cloud-based, mobile unified threat management (UTM) platform that enables IT managers to monitor zIPS devices entering and leaving the network. Each device becomes a powerful sensor that IT managers can monitor using zCONSOLE to detect network attacks.

"Hackers are looking to exploit any weakness in your company's defenses to steal proprietary information--and mobile devices are one of the weakest links," say Kevin Mitnick, legendary security researcher. "zIPS is first mobile intrusion prevention system that stops hackers in their tracks, before they can damage your business."

Co-founded and led by Zuk Avraham, a former military and Samsung Electronics security researcher, and Elia Yehuda, an experienced hands-on security researcher, Zimperium is supported by Raymond Liao of Samsung, the world's most famous hacker Kevin Mitnick, and early-investors in Sourcefire: Mark Fernandes, Managing Director of Sierra Ventures, and Stephen Northcutt, former President of SANS Technology Institute.

"With zIPS, corporations will now have the opportunity to use BYOD as an advantage to their security. zIPS is the first security solution that can combat modern cyber-attacks on mobile. There is already evidence of attacks that are happening to infiltrate organizations, which only zIPS can prevent," says Zuk Avraham, Zimperium founder and CEO.

Today's launch of zIPS and zCONSOLE sets a new standard for mobile security. At just a fraction of the cost of top security solutions, CIOs and IT managers can expect the following groundbreaking features from zIPS:

· zIPS runs completely in user-mode – and can be deployed as a standard Android app

· zIPS is the first mobile IPS&trade

· zIPS is using a new technique called "non-intrusive packet monitoring" that protects a user's privacy

· zIPS is the only available solution that is capable of detecting malware running outside of its own sandbox – as seen in self modifying apps

· zIPS prevents advanced network attacks when a device is connected to public, uncontrolled networks

· zIPS does not rely on signatures to detect threats

· zIPS uses machine learning to detect IPv4, IPv6 and unknown attacks (0days)

zIPS is currently available for Android only, but will unveil an iOS beta soon.

Download zIPS for Android: https://www.zimperium.com/mobile-ips

Learn more about Zimperium, visit www.zimperium.com.

About Zimperium

Zimperium is a privately owned mobile security start-up based in San Francisco, with a R&D center in Tel Aviv. Its flagship solutions protect mobile devices from cybersecurity threats. The company was founded in 2011 by CEO Zuk Avraham, a highly regarded security expert and Elia Yehuda, an experienced hands-on researcher. Zimperium's mission is to secure organizations from daily cyber threats in an increasingly mobile world.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-29445
PUBLISHED: 2021-04-16
jose-node-esm-runtime is an npm package which provides a number of cryptographic functions. In versions prior to 3.11.4 the AES_CBC_HMAC_SHA2 Algorithm (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512) decryption would always execute both HMAC tag verification and CBC decryption, if either failed `JWEDe...
CVE-2021-29446
PUBLISHED: 2021-04-16
jose-node-cjs-runtime is an npm package which provides a number of cryptographic functions. In versions prior to 3.11.4 the AES_CBC_HMAC_SHA2 Algorithm (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512) decryption would always execute both HMAC tag verification and CBC decryption, if either failed `JWEDe...
CVE-2021-29451
PUBLISHED: 2021-04-16
Portofino is an open source web development framework. Portofino before version 5.2.1 did not properly verify the signature of JSON Web Tokens. This allows forging a valid JWT. The issue will be patched in the upcoming 5.2.1 release.
CVE-2021-29452
PUBLISHED: 2021-04-16
a12n-server is an npm package which aims to provide a simple authentication system. A new HAL-Form was added to allow editing users in version 0.18.0. This feature should only have been accessible to admins. Unfortunately, privileges were incorrectly checked allowing any logged in user to make this ...
CVE-2021-29444
PUBLISHED: 2021-04-16
jose-browser-runtime is an npm package which provides a number of cryptographic functions. In versions prior to 3.11.4 the AES_CBC_HMAC_SHA2 Algorithm (A128CBC-HS256, A192CBC-HS384, A256CBC-HS512) decryption would always execute both HMAC tag verification and CBC decryption, if either failed `JWEDec...