Las Vegas, NV―Black Hat 2024―The Readable spoke with entrepreneurs, IT professionals, and analysts at Black Hat 2024 to explore their efforts in enhancing global cybersecurity. In this article, we spotlight three vendors who stood out during our recent conversations. As a cybersecurity journalist, I selected these vendors based solely on their innovative contributions, without any sponsorship. This article aims to serve as a roadmap for our readers to discover the latest trends in cybersecurity, directly from the experts. Enjoy the read!
BlackCloak
Keyword: Concierge cybersecurity & privacy platform
BlackCloak is a leading provider of digital executive protection, specializing in safeguarding corporate executives and their families in their personal lives. The company offers comprehensive protection by enhancing privacy measures to reduce attack surfaces, securing personal devices through ongoing monitoring, and conducting weekly internal and external tests to fortify home networks. Additionally, BlackCloak provides real-time support for cybersecurity and privacy issues, including incident response. Chris Pierson, CEO of BlackCloak, explained to The Readable, “People receive phishing emails and calls. They need someone live and real-time to help, or an incident response team. We provide that, as well as other support.”
The company’s PR agency likens their services to “cyber-bodyguards.” With criminal hackers increasingly targeting high-profile individuals such as executives, elected officials, judges, and entertainment figures, the need for robust protection has grown. These attacks range from credential theft and Business Email Compromise (BEC) to more severe threats like doxing, cyber extortion (including sextortion), swatting, and threats of physical violence against family members. The agency explained that this rising threat has created a significant demand for around-the-clock digital executive protection services among large enterprises, Hollywood, and public officials. They attribute the increased urgency to the weaponization of data broker information, the growing use of physical threats and intimidation, and the broader impact on corporate and public sector cybersecurity, from elections to the courts.
Upwind
Keyword: Runtime security platform
In a 30-minute interview, Upwind CEO Amiram Shachar used the term “runtime” 20 times. Upwind, a cloud security company founded by Shachar in 2022, focuses on runtime security in cloud environments. “Working with DevOps teams, we wanted to simplify the process and create a secure platform for both security and DevOps teams. There’s a connection point that we call runtime,” Shachar explained to The Readable. Upwind’s foundation stems from Shachar’s first company, Spot, which began as his college graduation project and evolved into a cloud infrastructure optimization service. Spot was later acquired by NetApp for $450 million. In less than a year, Upwind secured $80 million in funding from investors, including the prominent VC firm Greylock. The company has expanded its team from 100 to over 130 employees as of August 7, with plans to double its size again by year’s end.
Upwind leverages runtime data not only for detection and response but also to enhance security practices across various areas, such as vulnerability management. According to Shachar, “It is critical to have the runtime context to secure the cloud effectively and efficiently.” The company’s name is inspired by windsurfing; specifically, by the technique that allows surfers to navigate towards the wind and return to their starting point. As Shachar explained, “As a runtime security platform, Upwind helps security professionals navigate effectively to the root cause of security issues,” adding, “We provide a powerful context for understanding applications and infrastructure behavior amid the chaos of cloud environments and alerting noise.”
Binary Defense
Keyword: Managed Detection and Response (MDR)
As a research-driven company, Binary Defense aims to maximize security for its clients with cost-effective services. John Dwyer, the Director of Security Research who joined the firm six months ago after leading research at IBM X-Force, explained what sets Binary Defense apart from other vendors. The company’s founder, Dave Kennedy, who became friends with Dwyer several years ago, established Binary Defense with a vision to revolutionize the market by making high-quality security services affordable for everyone. “The premise is that it shouldn’t be a pay-to-play scenario,” Dwyer said. “A school or a hospital should have access to the same level of cybersecurity services as a Fortune 100 company. When you design services with the client’s benefit in mind rather than just your own, you can create a cost-effective solution that is accessible to everyone. It shouldn’t be only the elite who can afford these advanced capabilities. This message resonates with me, and I love it,” Dwyer added.
Binary Defense designs and implements detection and response solutions for clients, offering 24/7 monitoring and response services. The firm excels in collecting and analyzing relevant data and develops security software that complements Endpoint Detection and Response (EDR) systems with highly customized detections, deception capabilities, and malware disruption. Specializing in early-stage threat detection, threat hunting, and digital risk protection, Binary Defense has become a partner of the Cleveland Browns. The NFL team utilizes the firm’s counterintelligence services to monitor emerging threats, including cyberattacks and physical security risks at stadiums.