Blog

    Press releases

    Top caliber expert and practitioner on Spyderbat’s Advisory Board is latest validation of companies unique and powerful solution

    Spyderbat, Inc., a pioneer in securing Linux runtime environments, has appointed Linux and Unix expert Hal Pomeranz to its Advisory Board. Pomeranz joins based on his proficiency in cybersecurity and Open Source software. As his SANS Institute profile will tell you, “Nobody can show you how to forensicate with Open Source tools like Hal!”

    Hal Pomeranz has over 30 years of experience in the industry. He is the founder of Deer Run Associates, a SANS Institute Faculty Fellow, and SANS’ longest tenured instructor. He holds multiple industry certifications including GIAC Certified Forensic Analyst (GCFA), Network Forensic Analyst (GFNA), Malware Analyst (GREM), and Unix Security Administration (GCUX). He is a regular contributor to blogs, podcasts, and conferences worldwide.

    “We are looking forward to working with Hal and believe that his expertise in Linux and Unix security adds critical insights to our board of advisors,” adds Spyderbat CEO Marc Willebeek-LeMair. “Few people know as much as he does about these platforms, especially when it comes to finding digital clues that cyber criminals leave behind.”

    Spyderbat is the first and only to fuse ground-truth operation data with security context based on their causal connections to pinpoint and preempt attacks at extraordinary speed.

    “As a 30+ year veteran in the cyber security industry and having had operational experience with virtually every tool out there,” states Pomeranz. “I can tell you Spyderbat has broken through with an incredibly exciting approach to accurately and comprehensively detect and resolve attacks. I am looking forward to helping them add more capabilities to detect and fully mitigate threats within Linux runtime environments and to help them realize the truly game-changing possibilities of this technology.”

    About Hal Pomeranz

    Hal Pomeranz is a recognized expert in the analysis of Linux and Unix systems and has made key contributions in this domain. His EXT3 file recovery tools are used by investigators worldwide. His research on EXT4 file system forensics provided a basis for the development of open-source forensic support for this file system. Hal has also contributed a popular tool for automating Linux memory acquisition and analysis. But Hal is fundamentally a practitioner, and that’s what drives his research. His EXT3 file recovery tools were the direct result of an investigation, recovering data that led to multiple indictments and successful prosecutions.

    About Spyderbat

    Spyderbat provides Linux runtime security through its attack tracing and observability platform. The traditional approach of alerting on isolated unusual and malicious activity leads to a large volume of alerts, false positives, expert analysis, and ultimately little confidence that you are secure. This confidence is further strained by organizations’ growing dependence on Cloud and containers, where fast-moving workloads obscure attacker’s movements. Shifting to Spyderbat’s real-time tracing enables early detection of external attackers, insider threats, and misconfigurations.  By tracing all user activity through their causal relationships, Spyderbat automates root cause analysis and mitigation actions. The Spyderbat platform creates a bridge between Secops and Devops to effectively secure fast-moving cloud workloads.

    Get your Free Spyderbat Account.

    Get up and running in minutes across your Linux systems and devices. Included is Spyderbat’s free gamified training tool that exposes you to real attacks to quickly become an expert at detecting and defending your Linux environments.

    Visit us at https://www.spyderbat.com/

    Press releases

    Spyderbat has released a free system-level tool that scans for vulnerable versions of log4j on Linux systems.

    As the repercussions from the Log4j vulnerability unfolds, cybersecurity experts are debating what the future holds. The Log4j repercussions are bad and getting worse. According to VMware’s Head of Cybersecurity Strategy, Tom Kellermann, the Log4j vulnerability is one of the worst he has encountered in his career and has the potential to be one of the most serious flaws ever revealed.

    Log4j, developed by the Apache Software Foundation, is a Java library for recording error messages in applications with the sole aim of being a support for the bridge between applications and compute environments. Unfortunately, the Log4j exploitation will undermine this support and destabilize the digital structure that has been created in connection to it.

    Kellermann stated, “My greatest concern is someone further weaponizing the vulnerability by creating a worm, like a polymorphic type of malware that has the capacity of spreading on its own.”

    Cybersecurity expert Marcus Hutchins wrote on Twitter “a worm would need a novel exploitation technique to gain any real value over scanning.”

    Tim Wade, CTO of Vectra, echoed “less direct attacks may cause greater long-term damage if they go undetected for an extended period of time.”

    Spyderbat, a pioneer in securing cloud-native environments,  recently released a free system-level tool that scans for vulnerable versions of Log4j on Linux systems [https://github.com/spyderbat/log4jtool]. This free system-level scan tool is a command-line that scans a Linux system and reports on any vulnerable versions.

    Spyderbat’s SAAS solution for Linux runtime security is designed to not only warn of these potential attacks, but also trace activity from the source in real-time, significantly reducing the time to detect and mitigate these types of attacks. Get a FREE Spyderbat account here https://www.spyderbat.com/

    About Spyderbat

    Spyderbat provides Linux runtime security through its alert tracing and visualization platform. The traditional approach of alerting on isolated unusual and malicious activity leads to a large volume of alerts, false positives, expert analysis, and ultimately little confidence that your network is secure. This confidence is further strained by organizations’ growing dependence on the Cloud and containers, where fast-moving workloads obscure attacker’s movements. Spyderbat’s real-time attack traces provide the most effective way to discover and validate threats, significantly reducing internal resource strains, allowing for fast intercept of intruders, cutting dwell time and ultimately damage to the organization.

    Get your Free Spyderbat Account.

    Get up and running in minutes across your Linux systems and devices. Included is Spyderbat’s free gamified training tool that exposes you to real attacks to quickly become an expert at detecting and defending your Linux environments.Visit us at https://www.spyderbat.com/

    Press releases

    Novel Approach Substantially Accelerates Threat Discovery, Investigation, and Triage

    Spyderbat, Inc., a trailblazer in Attack Tracing and Intercept (ATI), announces three ATI product versions – Community Edition, Professional Edition, and Enterprise Edition. 

    In a separate release the company announced the availability of their Defend the Flag Challenges, gamifying real attack traces to enable security analysts to become ATI experts in a matter of hours (Spyderbat Announces Defend the Flag Challenges).  

    “Spyderbat takes a whole new approach to alert triage and investigation.  Security analysts get to the answer in a fraction of the time compared to existing investigation tools,” according to Marc Willebek-Lemair, Spyderbat CEO.

    Spyderbat crushes alert triage and investigation time by fusing operational activities with security context based on their causal connections. With immediate access to the complete and accurate attack trace, security analysts no longer worry about what is missing. 

    “Spyderbat opens the doors to a new level of security and operational awareness. ,” said Aldo Gonzalez, CTO at Client Support Software and an early Spyderbat user.  “It reveals previous unknowns, allowing me to easily explore any event of interest and see the whole picture.”

    Attack, Trace, and Intercept Technology – Lightening Fast Alert Triage and Investigation

    Security analysts confront an insurmountable challenge from a high volume of alerts, mostly false positives, and investigations filled with missing or ambiguous data.  This manual workflow is time consuming and error-prone, leading to inconclusive results that allow attacks to go unnoticed until too late.

    Security Context Fusion

    Spyderbat’s ATI differs from existing solutions through their foundational Operations Plane, a system-wide real-time graph plotting every interaction to its causal precedents and outcomes. Fusing third-party alert data in realtime connects previously, undetected or investigated attack steps to current detections. The result is a focused causal trace for the security analyst, capturing emerging attacks from origin to current state, enabling rapid intercept and averting damage.

    “Spyderbat brings decades of experience working with CISOs and security analysts to solve one of the most challenging aspects of security investigations.” states Marc Willebeek-LeMair, CEO and Spyderbat co-founder. “ATI delivers this immediate, complete, accurate picture of the attack so security analysts can cut to the chase.”

    Community Edition

    Spyderbat Community edition enables you to begin protecting your own environment with Attack Tracing & Intercept. Available now, free.

    Professional Edition

    Spyderbat Professional edition provides teams with a cost-effective ability to add and manage systems to crush your investigation and triage time. Available now, pricing by request.

    Enterprise Edition

    Spyderbat Enterprise edition enables enterprise-wide visibility with flexibility in data retention and payment terms to support each enterprises’ needs.Available now, pricing by request

    About Spyderbat

    Spyderbat introduces the industry’s first attack tracing and inception tool to radically change the way organizations handle early threat discovery and investigation. Spyderbat is backed by LiveOak Spyderbat introduces the industry’s first attack tracing and inception tool to radically change the way organizations handle early threat discovery and investigation. Spyderbat is backed by LiveOak Venture Partners, Benhamou Global Ventures, and cybersecurity veteran John McHale. To learn more, sign up for Spyderbat’s Community Edition, and play Defend the Flag Challenges, visit https://www.spyderbat.com.

    Press releases

    The Gamified use of Attack Tracing and Intercept Takes Security Analysts To A New Level of Alert Investigation

    Spyderbat, Inc., a trailblazer in Attack Tracing and Intercept (ATI), announces Defend The Flag Challenges. Spyderbat aims to improve the skills of blue teams and defenders  with quick, fun exercises that expose real threat actor techniques across one or more stages. Spyderbat’s free Defend the Flag Challenges are available now, allowing users to quickly get started wIth nothing to install or setup. Spyderbat encourages participants to join their ‘Spyderbat 100’,  the first one hundred participants who achieve a perfect score on their first ten challenges.

    In a separate release Spyderbat announced the availability of their full suite of products to enable security analysts to crush alert triage and investigation. Spyderbat Announces Full Suite of Attack Tracing and Intercept Products

    “While there are many capture-the-flag events for red teamers,” stated Brian Smith, CTO and co-founder of Spyderbat, “we wanted to create a challenge that captures real attacks and creates a fun experience for blue teamers. We want to partner with our users as we add more capabilities and robustness.  The best way to do that is to offer blue teamers something of value.”

    “These are really fun challenges and the tool is quite powerful,” said Glynn, a Senior Information Security Analyst. With each Challenge mapped to MITRE ATT&CK techniques, users learn how to quickly identify actual attack steps to bolster their defender skills.  For example, the Defend the Flag Challenge “Gotham – Privilege Access” created from a popular image on vulnhub.com, exposes techniques for credential access, privilege access, and defense evasion. Challenges put participants in the role of the security analyst, working against time to identify the threat actor’s next move and intercept the attack.

    Ready, Set, Trace

    As participants quickly master the Defend The Flag Challenges, they also have full access to Spyderbat’s free Attack Tracing & Intercept Community Edition (second link to product release).  Spyderbat’s Community Edition lets users take ATI to defend their own systems by immediately creating their own attack traces.

    About Spyderbat

    Spyderbat introduces the industry’s first attack tracing and inception tool to radically change the way organizations handle early threat discovery and investigation. Spyderbat is backed by LiveOak Venture Partners, Benhamou Global Ventures, and cybersecurity veteran John McHale. To learn more, sign up for Spyderbat’s Community Edition, and play Defend the Flag Challenges, visit https://www.spyderbat.com.

    Press releases

    Richard Stiennon joins in recognition of Spyderbat’s game-changing Attack Tracing and Intercept Tool

    Spyderbat, Inc., a trailblazer in Attack Tracing and Intercept (ATI) tools, has appointed cybersecurity veteran Richard Stiennon to its Advisory Board.  Stiennon joins based on his assessment that Spyderbat arms security analysts with the most unique and effective innovation in the industry for radically compressing their investigation time.

    “In my opinion, Spyderbat’s ATI tool is the first real cybersecurity breakthrough in over a decade,” states Stiennon. “ATI is a true game-changer that equips analysts with a stunningly fast and remarkably powerful investigation capability. In my line of work I see hundreds of products every year and rarely do I get this excited.”

    “We are honored to work with Richard and gain his insights and endorsement as we bring our solution to market”, adds Spyderbat CEO Marc Willebeek-LeMair. “Combining Richard’s input with what we are learning from our ongoing Design Partner program, we are set up well to tackle the complexity of security operations and come to market with a solution that has immediate impact and value for security analysts.”  

    Spyderbat’s Spydertrace is the first and only to fuse ground-truth operation data with security context based on their causal connections to pinpoint and preempt attacks at extraordinary speed. According to Stiennon, “ATI is not incremental technology. The Spydertrace technology goes far beyond machine learning and AI. It pre-maps all your computing processes, network connections, and file access by their causal connections so that all preceding activity related to an alert is immediately available for fast remediation.” 

    About Richard Stiennon

    Richard Stiennon (@stiennon and @cyberwar) is one of the foremost industry analysts in cybersecurity and founder of industry research firm IT-Harvest.  Mr. Stiennon began his own career in cybersecurity in 1995 at Netrex, one of the first Managed Security Service Providers (MSSPs) and covered the network security industry as a Gartner analyst for four years.  He has held positions across several security product companies including Webroot Software as VP of Threat Research, Fortinet as CMO, and Chief Strategy Officer at data erasure company, Blancco Technology Group. In addition, Stiennon is the author of several books on the cybersecurity industry including Secure Cloud Transformation: The CIO’s Journey, Security Yearbook 2020: A History, and most recently, Curmudgeon: How to Succeed as an Industry Analyst.

    About Spyderbat

    Spyderbat introduces the industry’s first attack tracing and inception tool to radically change the way organizations handle early threat discovery and investigation. Spyderbat is backed by LiveOak Venture Partners, Benhamou Global Ventures, and cybersecurity veteran John McHale. Spyderbat is currently seeking like-minded mavericks to join our Design Partner program.  To learn more, sign up for Spyderbat’s Community Edition, and play Defend the Flag Challenges, visit https://www.spyderbat.com.

    Press releases

    Startup Spyderbat adds new independent board member and product management leadership, strengthening its cybersecurity and cloud-native expertise

    Spyderbat, Inc., has appointed serial entrepreneur and cybersecurity veteran John McHale to the company’s board of directors while also expanding the product team with cloud design expert Jon Reeve. Mr. McHale previously served in executive and board roles in highly disruptive and successful technology companies including NetWorth, NetSpeed, TippingPoint and BreakingPoint. With Spyderbat, Mr. McHale provides integral advice and guidance to Spyderbat’s company and product strategies.

    “I am excited to join Spyderbat as they embark on the critical need of transforming security operations,” states John McHale. “Spyderbat’s platform accomplishes what has seemingly been impossible, a way to present analysts with a guided path that connects the dots of their investigation.”

    Spyderbat also expands their expertise in cloud-native architectures with VP of Product Management, Jon Reeve. Dr. Reeve brings over twenty years serving in product management leadership positions spanning systems/network management, virtualization, cloud and container technologies. In his most recent role, Jon led product management for Cloud Native offerings at Oracle Cloud including managed Kubernetes, serverless Functions and other key capabilities.

    “I am honored to join Spyderbat as we pioneer a new approach for security operations,” says Jon Reeve. “Enterprises are depending on security solutions architected to meet the highly dynamic and ephemeral nature of their cloud-native environments. Spyderbat’s platform demonstrates their early recognition of the uniqueness delivered by virtualization and containers, in addition to the challenge of spanning across traditional and multiple cloud environments for accurate visibility into threats and their root cause.”

    “By adding John’s deep cybersecurity leadership and Jonathan’s cloud-native experience, we further strengthen our position to execute on our vision,” stated Spyderbat CEO, Marc Willebeek-LeMair.

    About Spyderbat

    Spyderbat develops innovative solutions to radically change the way organizations handle early threat discovery and investigation. Spyderbat is backed by LiveOak Venture Partners and Benhamou Global Ventures. To track our progress, follow us at: https://www.spyderbat.com

    Press releases

    Spyderbat Raises $4.2M to accelerate development of its product launch pioneering a new approach to reimagine security operations.

    Spyderbat, Inc. announced today that it has raised $4.2M in seed funding led by LiveOak Venture Partners and Benhamou Global Ventures with participation from cybersecurity veteran, John McHale. The company will use the capital to accelerate development of its product launch later this year.

    The Spyderbat founding team includes cybersecurity pioneers Marc Willebeek-LeMair and Brian Smith, former founders and executives of Click Security and TippingPoint. Venu Shamapant from LiveOak Venture Partners and Venkat Raghavan from Benhamou Global Ventures have joined the company’s board of directors.

    “Security operations today lack clear information to identify and resolve early indications of a threat,” states Spyderbat’s CEO Marc Willebeek-LeMair. “Shifts to cloud-native environments exacerbate this challenge. Today, triage and investigation are painfully complex, time-consuming, and often lead to erroneous or inconclusive results. We realized an entirely new approach was needed to revolutionize security operations to radically improve its efficiency.”

    “Marc and Brian are addressing one of the biggest challenges in security operations,” says Venu Shamapant, Founding Partner at LiveOak Venture Partners. “We recognize the experience of the founders to deliver market-changing innovations and are excited to accelerate their efforts.”

    Long-time cybersecurity veteran John McHale adds, “I have known Marc and Brian for a long time and am continually impressed with their ingenuity, passion, and inventiveness they bring to each of their companies. With TippingPoint, they realized an entirely new solution was needed for recognizing network-borne threats and invented the IPS. Similarly, they have wiped the board clean and invented entirely new capabilities with Spyderbat.”

    “Security analysts are forced into bad tradeoffs from lack of time, inexorable alert volumes and ambiguous context, which lead to missed early warning signals from ignored alerts and inconclusive investigations. Marc and Brian are pioneering a new approach to reimagine security operations in the Cloud Native world,” says Venkat Raghavan from Benhamou Global Ventures.

    “We are grateful to have the backing of LiveOak Venture Partners, BGV, and John McHale,” adds Marc Willebeek-LeMair. “Their wisdom and support strengthens our ability to continue innovating and delivering high-value solutions to enterprise customers.”

    About Spyderbat

    Spyderbat develops innovative solutions to radically change the way organizations handle early threat discovery and investigation. To track our progress, follow us at: http://www.spyderbat.com

    About LiveOak Venture Partners

    LiveOak Venture Partners is a venture capital fund based in Austin, Texas. With 20 years of successful venture investing in Texas, the founders of LiveOak have helped create nearly $2 billion of enterprise value. While almost all of LiveOak’s investments begin at the Seed and Series A stages, LiveOak is a full life cycle investor focused on helping create category leading technology and technology-enabled service companies headquartered in Texas. LiveOak Venture Partners has been the lead investor in over 30 exciting high-growth Texas-based companies in the last seven years including ones such as CS Disco, Digital Pharmacist, OJO Labs, Opcity and TrustRadius.

    About Benhamou Global Ventures

    BGV is an early-stage venture capital firm with deep Silicon Valley roots and an exclusive focus on digital transformation of enterprise with a cross-border innovation theme. The BGV team has successfully built and implemented a cross-border venture investing model with companies from Israel, Europe and Asia. BGV currently has 21 active companies in its portfolio with a majority conceived outside Silicon Valley, and now headquartered in the US. The fund was founded by Eric Benhamou, former chairman and CEO of 3Com, Palm and co-founder of Bridge Communications. Comprised of an experienced partnership team of global operating executives and investors, BGV is often the first and most active institutional investor in a company, leveraging a powerful network of technical advisors, executives and functional experts who actively engage with portfolio companies. The firm has offices in Palo Alto, California, Tel Aviv, Israel and presence in France and in India through the Arka Venture Labs.

Solutions

Use cases