Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Mobile

3/25/2019
04:10 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

FirstPoint Announces $2.5M in Seed Funding

funding will enable FirstPoint to bring its cellular cybersecurity-as-a-service products to market.

Netanya (Israel), March 25, 2019: FirstPoint Mobile Guard (FirstPoint), global innovators in cellular cybersecurity-as-a-service, announced today it has received $2.5M of seed funding led by the Berlin-based innogy Innovation Hub and included the Stolero Group, Gideon Argov, and other private investors. The funding will enable FirstPoint to bring its products to market, to expand in selected international markets and to offer the solution for additional use cases.

FirstPoint’s network-level protection shields all cellular devices against hidden network vulnerabilities that stump security teams: IMSI catchers (fake base stations), malicious SMSs, location trackers, and other tactics that can steal sensitive communications and data.

This military-grade, proven cybersecurity-as-a-service detects, alerts, protects and deceives, without requiring user intervention to install or update anything. It’s easy for organizations to deploy, manage and operate; they can also customize protection by defining and modifying policies per device, which cannot be achieved with other solutions.

FirstPoint’s solutions fill the cybersecurity gap faced by many security-sensitive organisations and individuals, including enterprises and global corporations looking to secure unprotected employee Bring Your Own Devices (BYODs), business travelers requiring protection against surveillance and eavesdropping, and governments and militaries safeguarding sensitive missions and other activities. In addition to mobile devices, FirstPoint protects Internet of Things (IoT) devices, such as connected cars, smart utilities and payment terminals, which are vulnerable to attack.

“We’re very pleased to announce this round of funding, which further validates the great need for a comprehensive cellular protection solution that protects security-sensitive customers,” said FirstPoint CEO and co-founder Prof. Dror Fixler, PhD. “Hackers are everywhere and can be anyone, from a private individual, to governments so the need for cellular protection has become increasingly more critical”

Commenting on the investment, Dr. Christof Kortz, Director Strategic Cyber Security Venturing at the innogy Innovation Hub, said: “In an increasingly decentralized and mobile-enabled energy world, FirstPoint’s SaaS technology secures the reliable operation of a highly interlinked infrastructure with simple deployment. We are excited by the potential for their technology and look forward to supporting Dror and the team as they extend their cybersecurity-as-a-service to any future IoT application.”

FirstPoint covers the full spectrum of targeted and random cellular cyber-attacks, including:

√ Fake cell towers (including IMSI catchers)

√ Cellular man-in-the-middle attacks

√ SS7 & Diameter loopholes

√ Malicious & binary SMS

√ Malware, data leakage and backdoors, bad links

It has identified and blocked IMSI catchers, which trick cellular devices into choosing them as a cell tower. The catcher then gains access into devices, retrieves identities, eavesdrops and can perform an array of other malicious activities that compromise sensitive corporate and personal information. FirstPoint has identified and blocked IMSI catchers in 54% of countries, in an ongoing initiative.

About FirstPoint

Israel-based FirstPoint protects any cellular device against hidden vulnerabilities in the network. Our agent-less, cellular network-based approach to cybersecurity identifies known and unknown attacks 24/7, instantly activating protective measures. FirstPoint solutions are completely transparent to the user/device, with no device installations, updates or slowdowns, protecting any device; e.g., mobile phones, M2M, security sensitive IoT and connected systems). Our team experts comprise cybersecurity and telecom veterans, with decades of experience in interception, communications intelligence and cyber technologies.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How Attackers Could Use Azure Apps to Sneak into Microsoft 365
Kelly Sheridan, Staff Editor, Dark Reading,  3/24/2020
Malicious USB Drive Hides Behind Gift Card Lure
Dark Reading Staff 3/27/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
6 Emerging Cyber Threats That Enterprises Face in 2020
This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!
Flash Poll
State of Cybersecurity Incident Response
State of Cybersecurity Incident Response
Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-10940
PUBLISHED: 2020-03-27
Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER through 3.0.7 when installed to run as a service.
CVE-2020-10939
PUBLISHED: 2020-03-27
Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT through 1.14 allow for local privilege escalation.
CVE-2020-6095
PUBLISHED: 2020-03-27
An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerability.
CVE-2020-10817
PUBLISHED: 2020-03-27
The custom-searchable-data-entry-system (aka Custom Searchable Data Entry System) plugin through 1.7.1 for WordPress allows SQL Injection. NOTE: this product is discontinued.
CVE-2020-10952
PUBLISHED: 2020-03-27
GitLab EE/CE 8.11 through 12.9.1 allows blocked users to pull/push docker images.