SAN FRANCISCO — The expo at the 25th annual RSA Conference here officially opened yesterday with more than 500 sponsors and exhibitors from the global security industry vying to show off solutions of all kinds — from data protection and cybersecurity classes to application security and analytics.
Cyber threats and cyber attacks are growing exponentially in a digital world fueled by the cloud and mobile, and RSA President Amit Yoran warmed yesterday that the industry has "no actual magic" to address them.
But that is not stopping anyone from trying, from enthusiastic startups to longtime industry players. RSA Conference organizers said the exhibitors can show the latest technological solutions, provide hands-on learning opportunities and demonstrate how they can help you better secure your organization.
Sydney, Australia-based Nuix, which produces a software platform for indexing, searching, analyzing and extracting knowledge from unstructured data, is rolling out new intelligence products as part of Nuix Insight.
“A lot of people focus on tools [for cybersecurity]. We focus on the holistic approach,” said Nuix SVP Keith Lowry, who was once Chief of Staff to the Deputy Under Secretary of Defense for Human intelligence, Counterintelligence and Security at the Pentagon.
Nuix serves about 1,500 clients in forensics, government and business. They’re doing things the old-school way, added CTO Stephen Stewart.
“You know those guys in the movies with a cork board? You can’t arrest a computer,” Stewart said.
So when it comes to finding attackers, Steward says analysts rely on evidence to tell the whole story. The company's database examines people, objects, locations and events and connects these pieces to identify possible issues. By looking at data to “infer relationships,” analysts can build a profile of threats and attackers based on information like social media scrapings, file downloads and various other endpoints. Nuix looks for suspicious patterns, such as a person sending a file through email and then deleting it right away.
The Dark Web
New York City-based Flashpoint exclusively targets deep and dark web data. “We’re basically the Google of Dark Web,” Lance James, chief scientist at Flashpoint, explained. “This is stuff Google doesn’t know about … Until you have analysis, you don’t have intelligence.”
With a staff of about 37, Flashpoint services clients in health care, finance, law enforcement and government. Most clients at Flashpoint have “high-maturity” security infrastructure, according to James.By monitoring Tor, an open network that enables anonymous online browsing, as well as about 260 criminal forums and other Dark Web content, the team of analysts and developers can warn customers about criminal activity, James said. “I mean, bad guys make mistakes,” he said. The Flashpoint portal also allows users to search the database. A bitcoin number, for example, can be tracked to monitor a criminal, and seeing the datasets in one portal makes it possible to watch them preemptively, rather than reacting when they strike, James suggested.