IOActive Launches New Security Intelligence Service

PRESS RELEASE

Seattle, USA -- August 7, 2013 – IOActive, Inc., the leading global provider of specialist information security services, today announced the launch of its new Security Intelligence Service, to help arm organizations with prioritized critical security insights based on their unique business in light of the ever growing threat landscape.

World-renowned research capabilities and extensive experience providing security-related consulting to many of the world's largest and most demanding companies makes it possible for IOActive to offer a Security Intelligence Service like no other. Unlike typical vulnerability feed services, IOActive uses its unique industry- and customer-centric experience to deliver highly customized attack information that is tailored to the specific industries and businesses of its customers. Additionally, the information is prioritized based on the customer's particular business dynamics and delivered as actionable intelligence. IOActive can also support customers with response, remediation, and prevention capabilities based on the intelligence provided.

IOActive is perennially recognized around the world for its cutting-edge security research, and first to release data on a wide range of industries and topics, including most recently:

• Vulnerabilities in automobiles, medical devices, and wireless devices for industrial automation and control systems (IACS);

• Radio Frequency Identification (RFID) access control limitations;

• Critical flaws in global Domain Name System (DNS) infrastructure;

• Smart Meter worms;

• "Jackpotting" automated teller machines;

• Breaking Semiconductors;

Recent IOActive research garnering widespread acknowledgement from around the world includes being the first to identify vulnerabilities in the United States Emergency Alert Systems; TURCK industrial automation devices; pacemakers and ICDs (Implantable Cardioverter Defibrillators); and major manufacturer automobile ECUs (Electronic Control Units). This research helps further solidify IOActive's expertise in the field of security intelligence.

The real-time human intelligence gathering, combined with analysis from IOActive's acclaimed security research team and the unique knowledge gained from a deep understanding of customer needs from IOActive consultants enables a highly focused and robust Security Intelligence capability. This service gives customers critical insight that simply cannot be effectively extrapolated for their specific business from even the best data feeds or big data crunching solutions, much less have it before it's actually public. Customised and prioritized early warning data enables organizations to better implement action plans and apply resources more efficiently and appropriately based on the threat(s) identified and the potential business impact(s).

IOActive's Security Intelligence Service is headed by Chris Valasek, who was recently widely acclaimed for his ground-breaking work on vulnerabilities in the Electronic Control Units (ECU) used by all major automobile manufacturers to control many of the primary functions of the vehicles they produce. Chris was able to demonstrate how these core systems can be manipulated to debilitate or even entirely remove the driver's control of steering, braking, and other highly central functions to basic automobile usage and safety.

Supporting Quotes

• Chris Valasek, director of security intelligence for IOActive

"Today, there is an overabundance of security information available to organizations. While most organizations have a security team to assess this information, they might not have the expertise to filter and refine the information to know what to do with it. IOActive's new Security Intelligence Service arms our clients with the information they need to remediate and activate defenses, while also providing the distillation and projection of threats that executive management teams require."

• Chris Valasek, director of security intelligence for IOActive

"With our new Security Intelligence Service we can provide unprecedented detail into our current research without having to divulge it all to the general public. For example, an organization with strong interest in medical devices can get in touch with us and receive the information directly from the researcher focused on that area, instead of having to rely on what the mass media provides them."

• Chris Valasek, director of security intelligence for IOActive

"We have researchers on the cutting edge of identifying security issues that can have damaging or even catastrophic impacts to businesses and this new Security Intelligence Service puts that talent to work to identify, advise, prioritize and mitigate risks to clients. We aim to provide insight into security threats directly from the people who fully understand the issues."

Supporting Resources

IOActive: www.ioactive.com/

IOActive News: www.ioactive.com/news.html

Twitter: twitter.com/IOActive

LinkedIn: www.linkedin.com/company/ioactive-inc

Facebook: www.facebook.com/IOActive

About IOActive

IOActive is a comprehensive, high-end information security services firm with a long and established pedigree in delivering elite security services to its customers. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment through to semiconductor reverse engineering. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in in 1998, IOActive is headquartered in Seattle, USA, with global operations through the Americas, EMEA and Asia Pac regions. Visit www.ioactive.com for more information.

###

Craig Brophy

Global Public Relations Manager

IOActive, Inc.

M: +44.779.566.2888

T: +1.206.462.2291

"Using our past to secure your future"

The Americas | EMEA | AsiaPac

The contents of this email are legally privileged and confidential, and are intended for the use of the intended addressee(s) only. If you are not an intended addressee, any disclosure, copying, distribution, or use of the contents of this message is prohibited. This email does not, in any case, constitute a binding offer or acceptance for IOActive unless so set forth in a separate document. If you have received this e-mail in error, please contact me at [email protected], and delete the original message.