Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

Mu Security Lands $10M

Mu Security announced the company has raised an additional $10 million in a Series B funding round

SUNNYVALE, Calif. -- Mu Security, a pioneer in the new security analyzer market, today announced the company has raised an additional $10 million in a Series B funding round. Mu’s second round of financing was led by Duff, Alderman & Goodrich Ventures (DAG Ventures) and includes Series A investors Accel Partners and Benchmark Capital, bringing Mu Security’s total funding since inception to $14 million. Early customer acceptance of Mu’s approach to operationalizing security by large enterprises, service providers, product hardware or software developers and government agencies has accelerated this Series B round of funding.

Mu Security is also bolstering its executive management team with the strategic additions of Robert Geiger as vice president of engineering and Adam Stein as vice president of marketing, as well as the appointment of Amnon Landan, 2003 Forbes Entrepreneur of the Year and former chairman and CEO of Mercury Interactive, to Mu Security’s board of directors. Prior to joining Mu Security, Geiger was a senior director of product delivery at Symantec (NASDAQ: SYMC), managing the development of the company’s intrusion protection solutions. Stein was previously vice president of marketing programs with Fortinet, the market leader in multi-threat security systems.

“With only $4 million raised in our Series A round, Mu Security has successfully launched the industry’s first Security Analyzer, secured early revenue-generating customers, and has established the company as one of only 10 Startups to Watch in 2006 by Network World,” said Ajit Sancheti, CEO of Mu Security. “Customers are quickly responding to their newfound ability to verify the security readiness of any IP-based product or application during design, development and before production network deployment. The broad applicability of our security analysis methodologies is a major catalyst for the latest round of funding which will accelerate product development and marketing efforts to extend our leadership in the emerging security analyzer market.”

Mu Security is pioneering the new security analyzer market and is shipping the first commercially available systems that deliver a systematic and repeatable process for detecting known and unknown vulnerabilities in any IP-based application or device. One of the significant features of the Mu Security Analyzer is ethical attack mutations based on a patent-pending methodology called Protocol Spidering.™ This methodology generates millions of highly targeted permutations of improper or illegal protocol behaviors allowing customers to identify and remediate security vulnerabilities and robustness problems. "The Mu-4000’s extensible platform-based approach easily incorporates new security analysis applications to Mu Security’s existing analysis suite, ultimately offering higher levels of product security and robustness to end user and developer customers."

“The problem of product security is widespread. Without a systematic approach to reduce vulnerabilities for the coming IP device explosion, increased spending on point security products will continue to be an ineffective approach,” said Amnon Landan, the newest member of Mu Security’s board of directors. “The company packages a compelling security analysis suite whose underlying process provides immediate security relief for developers, service providers and enterprises alike.”

Mu Security Inc.

Comment  | 
Print  | 
More Insights
//Comments
Newest First  |  Oldest First  |  Threaded View
Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Improving Enterprise Cybersecurity With XDR
Enterprises are looking at eXtended Detection and Response technologies to improve their abilities to detect, and respond to, threats. While endpoint detection and response is not new to enterprise security, organizations have to improve network visibility, expand data collection and expand threat hunting capabilites if they want their XDR deployments to succeed. This issue of Tech Insights also includes: a market overview for XDR from Omdia, questions to ask before deploying XDR, and an XDR primer.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-28200
PUBLISHED: 2022-07-02
NVIDIA DGX A100 contains a vulnerability in SBIOS in the BiosCfgTool, where a local user with elevated privileges can read and write beyond intended bounds in SMRAM, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can ext...
CVE-2022-32551
PUBLISHED: 2022-07-02
Zoho ManageEngine ServiceDesk Plus MSP before 10604 allows path traversal (to WEBINF/web.xml from sample/WEB-INF/web.xml or sample/META-INF/web.xml).
CVE-2022-32411
PUBLISHED: 2022-07-01
An issue in the languages config file of HongCMS v3.0 allows attackers to getshell.
CVE-2022-32412
PUBLISHED: 2022-07-01
An issue in the /template/edit component of HongCMS v3.0 allows attackers to getshell.
CVE-2022-34903
PUBLISHED: 2022-07-01
GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line.