Posts Tagged ‘Security’
Wednesday, April 20th, 2011
 CHANTILLY, VA – Digital Signal Corp., which sells three dimensional long-range facial recognition solutions to government and commercial clients, has raised a $15 million Series C financing led by new investors City Light Capital and SilverHaze Partners. Previous investors Novak Biddle Venture Partners and Paladin Capital Group participated.
Digital Signal’s 3D facial recognition technology precisely identifies and monitors moving non cooperative subjects at long range. Primarily used to detect criminal and or terrorist activity, the solutions can also be used to identify important customers, friendly soldiers, or frequent travelers.
The company says the capital raised enables DSC to increase infrastructure, including manufacturing, to meet market demands.
“DSC’s three dimensional biometric system provides a revolutionary tool across several industries, thus helping to protect our rapidly evolving and inter-connecting society. Given our focus on investing in breakthrough products and services that contribute to safe neighborhoods, workplaces, and networks, we see tremendous value in DSC’s offering,” said Tom Groos, City Light Capital partner and Digital Signal board member.
“In an increasingly uncertain world, leaders in the security industry are constantly seeking the most effective, state-of-the-art systems to support their objectives, whether it be clearly identifying known terrorists at an airport or tracking down a repeat shoplifter or member of an organized crime family,” said David Guttadauro , CEO, Digital Signal.
Jim Fleming, Columbia Capital; Tom Groos, City Light Capital; and Zeid Masri, SilverHaze Partners; and President and CEO Guttadauro have joined the company’s board.
TechJournal South is a TechMedia company. TechMedia presents the annual conferences:
SoutheastVentureConference: www.seventure.org
Internet Summit: www.internetsummit.com
Digital East: www.digitaleast.com
Digital Summit: www.digitalsummit.com
Tags: 3D facial recognition, City Light Capital, Columbia Capital, David Guttadauro, detecting terrorist or criminal activity, Digital Signal, facial recognition tech, Im Fleming, Security, SivlerHaze Partners, Tom Groos, Zeid Masri
Posted in Government/Defense, IT, Potomac, Security, Virginia | Comments Off
Tuesday, April 5th, 2011
By John L. Watkins
 John Watkins I recently attended an event that involved a discussion of current issues facing information technology, security, privacy, compliance and e-discovery experts. One of the subjects discussed is whether corporate America is entering a period of “convergence” of these areas.
The discussion was in reference to management issues in this context, so I will use the term “management convergence.” What does management convergence mean?
In a corporate governance sense, it means coordination of these areas in a business unit reporting to a single executive. At a minimum, it means the management personnel in these areas should at least talk to each other and understand the specific concerns and functions of each discipline.
Given that we are living in a time in which businesses are still being asked to do more with less, but with electronic information multiplying at an ever-increasing rate, the potential benefits of management convergence struck me — as perhaps the lone generalist in the room – as rather obvious.
Nevertheless, the discussion indicated that many businesses are still using a “silo” mentality, in which, for example, the compliance professionals work separately from the e-discovery professionals and there are multiple fiefdoms.
Upon further reflection, the predominance of the silo mentality is not surprising. Silos reflect the all too human characteristic of preferring to build and control a small empire rather than serving as a part of a larger organization. In addition, for many companies, silos simply reflect the way that business has always been done. Sometimes, for example, silos are adopted as a way to assuage the competing egos of executives.
Businesses continuing with a silo approach, however, are likely missing the boat both with respect to both minimizing costs potential liability. In many respects, a company using the silo approach is in a situation much like the U.S, intelligence agencies found themselves after 9/11: They did not talk to each other and share information, and hence no one “connected the dots.”
The common thread in all of these disciplines is the management and control of electronic information. The proper management of information is especially critical in the financial institution and healthcare sectors, but, in reality, it is important in almost any industry.
The benefits of management convergence would appear to be obvious:
- Compliance and security personnel would almost certainly benefit from tools developed for e-discovery.
- E-discovery personnel would benefit from understanding compliance and privacy concerns, which could lead to proper protection of sensitive information in discovery.
- Compliance personnel need to understand privacy issues in performing their jobs.
- Risk management personnel need to understand all of this and to make sure that risks are properly assessed and that insurance and risk controls are in place.
These are only a few examples why managers in these various areas should at least talk to each other. At an absolute minimum, the Chief Information Officer or Chief Technology Officer should be coordinating with the General Counsel. Even greater benefits might be achieved my managing these different, but related, disciplines in one unit reporting to one executive.
The C suite needs to consider these issues carefully. In the event of a class action lawsuit or governmental inquiry, it will be important for officers and directors to show that (a) they paid proper attention to all of these subjects; (b) considered carefully how these disciplines fit together; and (c) implemented a strategy for making sure that those involved in managing and controlling the company’s information work together.
A massive data breach will result in numerous issues. Those involved in IT management and security will be focused on the technical issues – determining why the breach occurred and what can be done to prevent it.
Regulatory and compliance personnel will be involved in, as may be necessary, reporting the breach and providing redress to those affected. Those involved in risk management will need to assess potentially available insurance coverage, and put carriers on notice. The legal department will, of course, have to be involved generally, and those involved in e-discovery will likely need to implement a hold to preserve information for litigation that is likely to follow.
The company will also probably be faced with a public relations emergency. The company will want to present a coordinated and transparent response. Mixed messages or incorrect publicly disseminated information will only make the situation worse. If the company has made no effort to coordinate among the involved disciplines, the chances of an effective public response are greatly diminished.
There is also the strong possibility of litigation. Potential claims include multiple claims or a class action by those affected. If the event resulted in financial loss to the company, there may be a class action against officers and directors. In the event of litigation, it is a virtual certainty that plaintiffs’ counsel will seek to depose not only the managers of the various disciplines, but those in the C suite.
If the officers and directors have not already asked questions regarding coordination of those involved in handling and managing electronic data, the plaintiffs’ lawyers surely will.
One of the companies represented at the event – a large financial services company – has already adopted a coordinated approach under which all of the affected disciplines report to one senior officer. Those companies stuck with silos should consider knocking them down and adopting a similar approach. Coordination and convergence of disciplines should decrease risks, make breaches or incidents that do occur more manageable, and may have the happy incidental effect of lowering total costs.
John L. Watkins is a partner in the Atlanta office of Barnes & Thornburg LLP, and a member of the firm’s Litigation Department. He currently focuses his litigation practice on complex litigation matters involving trade secrets and confidential information, insurance coverage and insurance bad faith, corporate disputes, and other commercial matters. He is with the firm’s cloud computing and cyber security practice.
TechJournal South is a TechMedia company. TechMedia presents the annual conferences:
SoutheastVentureConference: www.seventure.org
Internet Summit: www.internetsummit.com
Digital East: www.digitaleast.com
Digital Summit: www.digitalsummit.com
Tags: Atlanta, Barnes & Thornburg, compliance, e-Discovery, future of IT, John Watkins, Legal, privacy, Security, Viewpoint
Posted in Business advice, Internet/New Media, IT, Legal, Viewpoint | 1 Comment »
Monday, March 14th, 2011
 ATLANTA - Identity Forge, which sells l-time, bi-directional password and identity synchronization software, has raised $1 million in equity from eight investors, according to a regulatory filing.
The company sells identity & access management software for mainframe, midrange and legacy systems.
Its software provides, real-time, bi-directional password and identity synchronization allowing for native based secure communication between mainframe, midrange and legacy systems with identity management infrastructures, web services or enterprise applications.
Founder and chief technology officer Chad Cromwell has 12 years experience in identity management and mainframe systems.
Founded in 2001, the company says its solutions and services are used worldwide by enterprises, government agencies and service providers.
Identity Forge disclosed the raise in a filing with the US Securities and Exchange Commission.
Connect with the digital elite at TechMedia’s next Atlanta event, the Digital Summit at Cobb Galeria May 16-17.
TechJournal South is a TechMedia company. TechMedia presents the annual conferences:
SoutheastVentureConference: www.seventure.org
Internet Summit: www.internetsummit.com
Digital East: www.digitaleast.com
Digital Summit: www.digitalsummit.com
Tags: Atlanta, Chad Cromwell, Georgia, Identity Forge, mainframes, Money, Security
Posted in Georgia, IT, Money, Security | Comments Off
Tuesday, March 8th, 2011
 Symantec Corp. (NASDAQ: SYMC) and the Ponemon Institute today released the findings of the 2010 Annual Study: U.S. Cost of a Data Breach, which reveals data breaches grew more costly for the fifth year in a row. The average organizational cost of a data breach increased to $7.2 million and cost companies an average of $214 per compromised record, markedly higher when compared to $204 in 2009.
The study also found that for the second straight year organizations’ need to respond rapidly to data breaches drove the associated costs higher. The sixth annual Ponemon Cost of a Data Breach report is based on the actual data breach experiences of 51 U.S. companies from 15 different industry sectors.
“We continue to see an increase in the costs to businesses suffering a data breach,” said Dr. Larry Ponemon, chairman and founder of the Ponemon Institute. “Regulators are cracking down to ensure organizations implement required data security controls or face harsher penalties. Confronted with both malicious and non-malicious threats from inside and outside the organization, companies must proactively implement policies and technologies to mitigate the risk of costly breaches.”
Key findings from the study include:
- Rapid response to data breaches is costing companies 54 percent more per record than companies that moved more slowly. Forty-three percent of companies notified victims within one month of discovering the breach, up seven points from 2009. In 2010, these quick responders had a per-record cost of $268, up 22 percent from 2009; companies that took longer paid $174 per record, down 11 percent.
- Malicious or criminal attacks are the most expensive and are on the rise. In this year’s study, 31 percent of all cases involved a malicious or criminal act, up seven points from 2009, and averaged $318 per record, up 43 percent from 2009.
- Negligence remains the most common threat. The number of breaches caused by negligence edged up one point to 41 percent and averaged $196 per record, up 27 percent from 2009. This steady trend reflects the ongoing challenge of ensuring employee and partner compliance with security policies.
- Companies are more vigilant about preventing system failures. System failure dropped nine points to 27 percent in 2010. This trend indicates organizations may be more conscientious in ensuring their systems can prevent and mitigate breaches through new security technologies and compliance with security policies and regulations.
- Data breach costs have continued to rise. The average organizational cost of a data breach this year increased to $7.2 million, up seven percent from $6.8 million in 2009. Total breach costs have grown every year since 2006. Data breaches in 2010 cost companies an average of $214 per compromised record, up $10 (5 percent) from last year.
- Encryption and other technologies are gaining ground as post-breach remedies, but training and awareness programs remain the most popular. Sixty-three percent of respondents use training and awareness programs after data breaches, down four points from 2009. Encryption is the second most implemented preventive measure as a result of a data breach, with 61 percent. Both encryption and data loss prevention (DLP) solutions have increased 17 percent since 2008.
Symantec recommends organizations implement the following best practices, whether or not they have suffered a data breach:
1. Assess risks by identifying and classifying confidential information
2. Educate employees on information protection policies and procedures, then hold them accountable
3. Deploy data loss prevention technologies which enable policy compliance and enforcement
4. Proactively encrypt laptops to minimize consequences of a lost device
5. Integrate information protection practices into businesses processes
The study, sponsored by Symantec and independently conducted by the Ponemon Institute, takes into account a wide range of business costs, including expense outlays for detection, escalation, notification, and after-the-fact (ex-post) response. The study also analyzes the economic impact of lost or diminished customer trust and confidence as measured by customer churn or turnover rates.
The U.S. Cost of a Data Breach Study was derived from a detailed analysis of 51 data breach cases with a range of nearly 4,200 to 105,000 affected records. The study found there is a positive correlation between the number of records lost and the cost of an incident.
Companies analyzed were from 15 different industries, including finance, retail, healthcare, services, education, technology, manufacturing, research, transportation, consumer, hotels and leisure, media, pharmaceutical, communications and energy.
Companies can analyze their own risk by visiting Symantec’s Data Breach Risk Calculator. Based on six years of trend data, the calculator takes into account an organization’s size, industry, location and security practices to estimate how much a data breach would cost on both a per record and organizational basis.
Tags: Best Practices, data breaches, IT, Ponemon Institute, Security, Symantec Corp.
Posted in IT, Security | Comments Off
Friday, March 4th, 2011
 ORLANDO, FL – You don’t often hear good news about online security, but here’s some. Malware infections fell 11 percent last month, according to Orlando-based Panda Security.
Panda Security, a Cloud Security Co., says that during the month of February, data gathered by Panda ActiveScan, the company’s free online scanner, found that only 39 percent of computers scanned in February were infected with malware, compared to 50 percent last month.
Trojans were found to be the most prolific malware threat, responsible for 61 percent of all cases, followed by traditional viruses and worms which caused 11.59 percent and nine percent of cases worldwide, respectively.
Personally, I’ve noticed that Trojans targeting java have been prevalent.
These figures have hardly changed compared to similar data collected in January. A graphical representation is available at: press.pandasecurity.com/wp-content/uploads/2011/03/FEB-Malware-ENG.jpg. The most prevalent malware specimens detected this February also remained consistent with last month’s findings. The CI.A, Downloader.MDW or Lineage.KDB Trojans continued to spread and infect systems in approximately the same numbers.
China, Ukraine, Thailand and Taiwan held the top four highest rates of infection (more than 50 percent of cases). Other countries such as Italy, the U.S. or France recorded rates below 40 percent, but ranked higher than last month.
Tags: Feb. 2011, FL, malware report, Orlando, Panda Security, Security
Posted in Florida, Internet/New Media, IT, Security | Comments Off
Thursday, February 24th, 2011
 ATLANTA -Mobile Application Development Partners (M.A.D.) has opened a $5 million equity financing, according to a regulatory filing. The company makes smartphone and tablet security software.
In 2010, the company, signed an agreement . (NYSE: SRX), a technology advisor to firms and the govcrnment, to reach federal customers using devices running Apple’s iPhone/iPad operating system and the Google Android operating system.
Company Chairman formerly founded American Computer Security, which made a hardware encryption device for computers. In 2008, he was named among the Top 25 Most Influential People for 2008 by Security Magazine, among other recognitions as an influential person in the security field.
The company disclosed the raise in a filing with the US Securities and Exchange Commission.
TechJournal South is a TechMedia company. TechMedia presents the annual conferences:
SoutheastVentureConference: www.seventure.org
Internet Summit: www.internetsummit.com
Digital East: www.digitaleast.com
Digital Summit: www.digitalsummit.com
Tags: financing, Mobile Application Development Partners, SEC, Security, smartphones, tablets
Posted in Georgia, Money, Security | 1 Comment »
Wednesday, February 23rd, 2011
 ORLANDO, FL – The lack of common interoperability standards and inconsistent approaches to security, privacy and trust are perpetuating an antiquated U.S. health care delivery system that has been largely unable to benefit from the widespread adoption of IT, according to Verizon’s top security and health care executive.
The executive, Dr. Peter Tippett, vice president of security and industry solutions for Verizon, called for the development of “simple, common-sense approaches to data security and interoperability” to help expand access to quality care, control costs and improve patient outcomes. He spoke Tuesday (Feb. 22) at the Health Information Management Systems Society annual conference.
In a “Views from the Top” address titled “Prescription for Health IT: What’s Holding Us Back,” Tippett said: ”The U.S. health care system is the envy of many countries around the world. However, there is much that needs to be done to bring the industry into the 21st century. Working together to tackle acknowledged industrywide challenges, we can foster an environment of change and through the pragmatic use of IT create a stronger and more viable health care system.”
Tippett outlined four key areas that he said will serve as the foundation for the future transformation of the health care system. The areas are:
- Built-in Security – The ability to share information in a secure and trusted manner is a vital cornerstone in health care. To be effective, security compliance programs should be intuitive, easy-to-use and uniform across the industry.
- Support for Structured and Unstructured Data – Due to a lack of common standards for its use and storage, data often remains in separate files rather than being combined to provide a holistic patient view. By redoubling efforts to tackle this issue, health care data can be easily shared among providers to help reduce medical errors and enable informatics and analytics to help improve treatment plans and patient outcomes.
- High-IQ Networks – Pervasive and interconnected IP and wireless networks are the essential platforms to connect providers to foster innovation. Secure, high-performance networks will serve as the underlying foundational platforms to help drive productivity and efficiency enhancements.
- Simplification – The U.S. health care system is diverse, ranging from large urban providers with thousands of physicians to small rural practices. Solutions must be affordable, consistent and, ultimately, simple. Leveraging current systems and data is an important first step and is essential for promoting usability and driving benefits to provide a solid foundation for future enhancements.
TechJournal South is a TechMedia company. TechMedia presents the annual conferences:
SoutheastVentureConference: www.seventure.org
Internet Summit: www.internetsummit.com
Digital East: www.digitaleast.com
Digital Summit: www.digitalsummit.com
Tags: common sense solutions for healthcare IT, Dr. Peter Tippett, healthcare IT, privacy, Security, simple, trust, Verizon
Posted in Florida, IT | Comments Off
Friday, February 4th, 2011
 CLEARWATER, FL – GFI Software, an IT solutions provider for small and medium-sized enterprises, says continuing high levels of rogue security products circulated during January.
It also says it sees a surge in malware that takes aim at vulnerabilities within Adobe Reader and the .pdf file format – two of the top 10 detections are aimed at exploiting holes within Adobe. The top 10 data is compiled from monthly scans performed by GFI’s award-winning anti-malware solution, VIPRE Antivirus, and its antispyware tool, CounterSpy, as a service of GFI Labs.
We find that staying aware of what cyber crooks and malware purveyors are doing is a good way to make sure we maintain vigilance, change our passwords to better ones, avoid using the same one for multiple services, and run quality security software.
As was the case in December 2010, seven of the top 10 malware detections were Trojans, with those seven accounting for almost 34% of all malware detections for the month. ThreatNet also revealed an increase in the FakeVimes rogues that were reported last month, when FraudTool.Win32.FakeVimes!delf (v) hit the number nine spot with .73 percent of all detections.
Twitter users fell victim to a fake antivirus software scam in January as a number of accounts began distributing links promoting rogue security software. The attack used Google’s Web address shortening service to conceal the links’ destination.
Twitter worked to reset passwords, but there is no telling how many users were led to malicious sites due to this phishing attack. GFI Software provided instructions on how to remove the Security Shield fake antivirus program in one of its support forums.
“Another indicator of increased rogue activity is the fact that we discovered, and blogged about, 22 new rogues on the GFI Rogue Blog in January. That’s a lot for one month, considering we’ve seen an average of between 13 and 14 new iterations per month for the last three years,” said Tom Kelchner, communications and research analyst for GFI Software.
ThreatNet is GFI Lab’s monitoring system that retrieves real-time data from VIPRE installations. Statistics come from tens of thousands of machines running VIPRE.
| Top 10 detections for December |
| Detection |
|
Type |
|
Percent |
| Trojan.Win32.Generic!BT |
|
Trojan |
|
21.38 |
| Trojan.Win32.Generic.pak!cobra |
|
Trojan |
|
3.71 |
| Trojan-Spy.Win32.Zbot.gen |
|
Trojan |
|
3.69 |
| INF.Autorun (v) |
|
Trojan |
|
1.68 |
| Trojan.Win32.Generic!SB.0 |
|
Trojan |
|
1.59 |
| Worm.Win32.Downad.Gen (v) |
|
Worm.W32 |
|
1.47 |
| FraudTool.Win32.FakeAV.hdd (v) |
|
Trojan |
|
1.06 |
| Exploit.AbobeReader.Gen (v) |
|
PDF Exploit |
|
1.06 |
| Exploit.PDF-JS.Gen (v) |
|
PDF Exploit |
|
0.80 |
| Trojan.ASF.Wimad |
|
Trojan |
|
0.73 |
A graphical comparison of the top 10 most prevalent malware infections between December 2010 and January 2011.
Tags: Adobe Reader, GFI, Pdf, Security, trojans, Twitter phishing attack, Two top malware attacks exploiting holes in Adobe
Posted in Florida, IT, Security | Comments Off
Tuesday, February 1st, 2011
 Corey Owens, Facebook Public Policy Associate By Allan Maurer
RALEIGH, NC – The mass protests in Egypt, revolt in Tunisia, and last year’s public uprisings in Iran, all demonstrated the power of new social media such as Twitter and Facebook to have world-shaking effects. But, says Corey Owens, a Public Policy Associate with Facebook, “It’s not Facebook and Twitter—it’s the network effect. When you connect people as frictionlessly as possible, participation in your own government gets a lot easier.”
Owens, in North Carolina in conjunction with Facebook’s construction of a data center in Rutherford County in the Western part of the state, said he appreciated the improvement in the weather from that of Facebook’s DC offices and plans to try some North Carolina BBQ. We asked him what his mission was in visiting the state.
“My mission is world domination generally,” he quipped, tongue-firmly-in-cheek. He added that Facebook wants to “Make sure people in Raleigh know what Facebook is up to.”
Construction generating business
It’s up to an average of 200 to 250 construction workers a day at the Rutherford data center site, which is also generating quite a bit of business for a variety of local merchants.
Campbell’s Cleaning and Restoration Service, a Forest City stalwart for 30 years, began cleaning a single construction office on the site, but now handles multiple locations — adding up to a significant engagement involving 14 employees.
“This is really helping our economy,” says owner Terry Campbell, who grew up in Rutherford County.
“Our county has suffered pretty badly since the textile industry started to shut down. I had to lay off some of my staff, but now, with this
project, I’ve been able to hire them back.” The project has also tapped more than 60 local businesses for goods and services since construction began shortly after the groundbreaking in late November.
Owens said Facebook chose the location for a number of reasons, including the availability of fiber optic connectivity and a tech savvy work force in the state. It will employ about 30 to 40 people fulltime when up and running, but its economic impact, like that of other such projects, spreads downstream to include maintenance workers, janitorial services, landscaping, even to restaurants, banks, and dry cleaners.
Owens points out that the Rutherford data center is intended to carve out a leadership position for the company in green energy design. “Data centers are huge energy hogs,” he says. Facebook counters that with code that is processor efficient and customized cooling systems and servers. “We’re working to decrease energy consumption as much as possible.”
A disruptive product
The “network effect” is not all that easily shutdown, as the Egyptian government is learning, Owens notes. Facebook itself, he says, “is a disruptive product. It disrupts whole industries by tapping into the Network effect. When one person is connected to 200, each connected to 200 others, that’s powerful. It’s geometric. People who want to stifle connectivity may succeed in stopping me, but they only have to miss one of the 200 I’m connected to and they’re thwarted.”
But all this new social media disrupts personal privacy some too. “Our goal is to give people control over their information,” Owens says of Facebook. While he says the company provides users with the tools they need to decide on how much they want to share, “It’s their responsibility to use them,” he adds.
“Control is better than all or nothing. You choose what to share and with whom. Facebook makes people more willing to share.”
We’re just getting started
While Facebook appears unassailable as the social media leader with more than 500 million users, Owens notes, “That’s what they said about My Space and Friendster. What we worry about is some kid in a dorm saying Facebook could be better and they’re not. Take your pick of the technology, but some breakthrough moment tends to disrupt an industry. That’s a strong incentive for us to keep innovating.”
Facebook has 4.5 million users in North Carolina, including, Owens says, Gov. Bev Perdue.
The number of Facebook users 18 or older in NC total 3.9 million – coincidentally the same number of people who voted in the last Presidential election in the state. “That means that elected and appointed officials have an interest in the safety and security of those people,” says Owens. “So we want to make sure people understand our products, our business decisions, and hear what people want that we are not doing and what they want that we are doing.”
He admits that means the company reps “Get an earful sometimes. With more than 500 million users, it’s impossible to please everyone all the time. Our goal is to make a product most people enjoy using most of the time.”
And, he says, he hears more from people who enjoy using Facebook personally and professionally than from those with negative views.
That doesn’t mean anyone at Facebook is sitting around taking pats on the back. “People look at 500 million users and figure we’re the 800-pound gorilla in the space. I guess we are. But this is a space with a lot of potential and we think we’re just getting started.
Tags: Corey Owens, Egypt, Facebook data center, Iran, NC, privacy, public policy associate, Raleigh, Rutherford, Security, the network effect, Tunisia, twitter
Posted in Carolinas, Economic Development, Internet/New Media, North Carolina | Comments Off
Friday, January 28th, 2011
 FAYETTEVILLE, NC – The Partnership for Defense Innovation (PDI), which promotes economic development, has increased the amount of economic development grant money being awarded through the PDI Call for Technologies Competition, from $32,000 to $65,000 in cash and client services. The PDI Fusion Grant is funded by the State of North Carolina and is designed to assist in improving the success rate of early-stage defense and security technology companies.
The winners will be announced in conjunction with the North Carolina Defense Business Association’s (NCDBA) 1st Annual Symposium and Exposition being held April 19-20, 2011 at the Pinehurst Resort in Pinehurst, NC.
Those companies interested in competing should have a working prototype or are currently developing a product or services for use in the areas of defense, security and intelligence. The technologies and the companies will be screened for business potential, scientific merit and commercial viability, as well as the quality of the management team.
Scott Perry, PDI President, stated, “We’re excited to make this a part of the NCDBA’s Annual Symposium and Exposition. During a time of economic distress, it is important to continue to seek out technologies for our war fighter by infusing our small businesses to promote revenue and jobs for the state.”
Initial executive summaries are due by Friday, February 25, 2011 by 5:00pm EST. Semi-finalists will be announced on March 7, 2011. All semi-finalists will be required to submit a full business plan by Friday, April 8, 2011 by 5:00 pm EST.
A total of five finalists will be chosen to give a presentation on their technology to a panel of judges on Tuesday, April 19, 2011 at the NCDBA’s 1st Annual Symposium and Expo.
First place award will be a $37,000.00 Fusion Grant awarded to promote economic development as well as a $13,000 client services package from the PDI DSTA program. The second place award will be a $10,000.00 Fusion Grant awarded to promote economic development, as well as a $5,000.00 PDI DSTA client services package. Both awards will be announced live on Wednesday, April 20th, 2011 at the NCDBA Symposium.
To complete an application and for a complete list of eligibility rules and requirements, see: www.ncpdi.org
Tags: defense, Economic Development, Fayetteville, intelligence, NC, Partnership for Defense Innovation, PDI Technologies Competition, Security
Posted in Carolinas, Economic Development, Events, Government/Defense, Money, North Carolina, Security | Comments Off
Wednesday, January 26th, 2011
 RALEIGH, NC -The operating system (OS) is the backbone of your computer. If the OS is compromised, attackers can take over your computer – or crash it. Now researchers at North Carolina State University have developed an efficient system that utilizes hardware and software to restore an OS if it is attacked.
At issue are security attacks in which an outside party successfully compromises one computer application (such as a Web browser) and then uses that application to gain access to the OS. For example, the compromised application could submit a “system call” to the OS, effectively asking the OS to perform a specific function.
However, instead of a routine function, the attacker would use the system call to attempt to gain control of the OS.
“Our goal is to give the OS the ability to survive such attacks,”
says Dr. Yan Solihin, an associate professor of electrical and computer
engineering at NC State and co-author of a paper describing the new
system. “Our approach has three components: attack detection; security
fault isolation; and recovery.”
The concept is to take a snapshot of the OS at strategic points in time
(such as system calls or interrupts), when it is functioning normally
and then, if the OS is attacked, to erase everything that was done since
the last “good” snapshot was taken – effectively going back in time
to before the OS attack. The mechanism also allows the OS to identify
the source of the attack and isolate it, so that the OS will no longer
be vulnerable to attacks from that application.
The idea of detecting attacks and re-setting a system to a safe state
is a well-known technique for restoring a system’s normal functions
after a failure, but this is the first time researchers have developed a
system that also incorporates the security fault isolation component.
This critical component prevents the OS from succumbing to the same
attack repeatedly.
The concept of taking snapshots of the OS and using it to replace the
OS if it is compromised was previously viewed as impractical, since
taking these snapshots and running such a system significantly slowed
computer operating speeds. “But we’ve developed hardware support
that allows the OS to incorporate these survivability components more
efficiently, so that they take up less time and energy,” Solihin says.
The researchers say the survival system takes up less than 5 percent of
the OS’s operating overhead.
The paper, “Architectural Framework for Supporting Operating System
Survivability,” was co-authored by Solihin and former NC State Ph.D.
student Xiaowei Jiang. The paper will be presented Feb. 16 at the IEEE
International Symposium on High-Performance Computer Architecture in San
Antonio, Texas. The research was supported, in part, by the National
Science Foundation.
Tags: NC, NCSU, operating system backup, Raleigh, Security, University research
Posted in Carolinas, IT, North Carolina | Comments Off
Tuesday, January 18th, 2011
 While the movie version of Facebook’s creation, “The Social Network,” just won four top Golden Globes awards and is likely to grab several Oscar nominations, the hugely popular website just stirred up privacy concerns once again. Friday, the site disclosed that it had modified its platform to allow developers of third party apps to see phone numbers and addresses, a move it has already has already stepped back from following consternation in the blogosphere.
Douglas Purdy, writing on the Facebook developer’s blog wrote that:
“Over the weekend, we got some useful feedback that we could make people more clearly aware of when they are granting access to this data. We agree, and we are making changes to help ensure you only share this information when you intend to do so. We’ll be working to launch these updates as soon as possible, and will be temporarily disabling this feature until those changes are ready. We look forward to re-enabling this improved feature in the next few weeks.”
I just went to my Facebook account and double-checked to make sure I had not put contact information other than email in my profile. Users can also change privacy settings to disallow app access to personal data now, but the best route for those concerned would be to delete phone numbers or addresses if they’re included in a profile.
Some security experts have said that giving developers access to a home address and phone number, along with other information that can be extracted from profiles, increases opportunities for identity theft.
I’ve noticed that many users among my friends have stopped using third-party apps such as games – or at least they have stopped sharing them (which I appreciate, because while I love my friends, I really don’t care about their position in Mafia Wars, what they bought on Farmville, or how they did at Scrabble).
Privacy tone deaf or just for open sharing?
It’s amazing that Mark Zukerberg and his talented team at Facebook seem so continually deft to the privacy concerns of users. If the “Social Network” and the book “Accidental Billionaires: The Founding of Facebook: A Tale of Sex, Money, Genius and Betrayal,” by Ben Mezrich got it right, that may be because Zuckerberg has a passion for sharing information freely. He gave away his first program and was enthralled by Napster’s Sean Parker, who became a top exec at Facebook and is a major character in both the book and movie.
On the other hand, both the book and film appear based on a somewhat one-sided view of Facebook’s creation. Court transcripts from the Winklevoss twins and others suing Zuckerberg and Facebook helped. But Mezrich has been criticized for making up characters and scenes in his best-selling book “Bringing Down the House,” and “Accidental Billionaires” is obviously imagined narrative at times.
Some sections of the book start off, “It isn’t difficult to imagine…” and proceed to describe an event in dramatic narrative, complete with so-called “reconstructed dialog.” S0 it is difficult to give it complete credibility.
No US investors due to SEC worries
Nevertheless, it is surprising that Facebook is not more sensitive to the privacy concerns of its users. In some ways, it appears to be a communications problem.
None of this appears to have slowed the social behemoth’s growth. The company’s previous privacy fracas led to an attempt by some to boycott the site – with no noticeable success. We know one user who said he would abandon the site, but following the day everyone was supposed to kill their accounts, he was still there, pumping out status updates.
Meanwhile, on another front, The Wall Street Journal reports that Goldman Sachs Group has shut US clients out of its private offering of Facebook shares. It says the harsh media spotlight on the firm could put the offering in danger of violating US securities law.
–Allan Maurer
Email TJS Editor Allan Maurer: Allan at TechJournal South dot com.
Tags: blogosphere, Douglas Purdy, facebook, Facebook developer's blog, Mark Zuckerberg, privacy, Security
Posted in Internet/New Media | Comments Off
Monday, January 17th, 2011
By David J. Maloney
 So, now that we’ve discussed what a Bug Bounty program is not, (see Bug Bounties: Part One) we are left with the question of what it, in fact, is. I believe the program is a natural response to the Full Disclosure debate. There has been an ongoing debate in the security community around the concepts of Full and Responsible Disclosure. Full Disclosure, in simplest terms, is the practice of publicly releasing all data about vulnerability before the vendor has rectified the issue.
This can occur for a number of reasons, including unwillingness on the part of the vendor to acknowledge the finding. The proposed alternative is the Responsible Disclosure argument. This involves working with the vendor as much as possible to get the issue identified and addressed. After a fix has been created, the security researcher is then usually given credit for the finding. If the vendor is uncooperative, or attempts to reach that vendor have failed, it is then generally considered acceptable, under Responsible Disclosure, to resort to Full Disclosure.
Many vendors are adamantly against the practice of Full Disclosure, claiming that it is potentially harmful. I mention this debate, not to rehash the controversy but to illustrate how it relates to the bug bounty programs. Google is one such vendor that has been strongly against Full Disclosure and for Responsible Disclosure practices.
The creation of their bug bounty program is a means of adding incentive to the Responsible Disclosure path as it pertains to their products. This is an attempt to win the Security Community over to their side by creating a ‘same team’ atmosphere. This is a valid and natural response to this debate, and one that surely wins them some points in the eyes of researchers.
The bug bounty concept is also a natural next step of an SDL. Microsoft’s SDL includes a final and continual phase titled “Support and Servicing”. In this phase, Microsoft maintains that it is nearly impossible to identify and eliminate all risk before a product ships. Therefore a security team must be ready to identify new vulnerabilities, react to them, and learn from the experience to improve future development practices.
A bug bounty program allows these security teams to also build a relationship with a community of security researchers to perform this task more effectively. They are, in effect, crowd sourcing part of these operations.
Security exists to serve the Business
This crowd sourcing aspect is really all about the business aspect of security. The one overriding fact that security professionals must always remember, is that information security is all about business risk. We return to the concept of the cost/benefit analysis. When addressing a security flaw within a system or application, two costs get assigned to that flaw. It may not be obvious that it is occurring, but it is occurring. The first cost, is the cost of the vulnerability if it were not addressed and were then exploited.
The second cost, is the cost of actually identifying the cause of the vulnerability and fixing it. These costs are weighed against each other. This has, no doubt, led to certain vulnerabilities being left to be exploited until public outcry forced action. This is because the cost ratios have shifted. There is now reputational damage added into the cost equation, and the company must be seen acting in their customers’ best interest. This, incidentally, has been a part of the argument for Full Disclosure in the past.
Now businesses are faced with a question. How do they reduce the operational costs of these bugs? One of the prime costs in identifying and fixing a security bug is calculated in man-hours. Through the use of Bug bounties, as a crowd sourcing technique, they can offset some of the man-hour cost. They are paying a relatively minor stipend to independent professionals for their time.
This cost is likely far less than the cost of man-hours for consultants or on-staff professionals looking for these same vulnerabilities. You are also pulling in a diverse talent-pool without any of the overhead management cost of actually hiring them. It is all about getting the most ‘bang for your buck’.
So what does this all mean? It means that the bug bounty programs serve less of a security function, and more of a business function. These programs, theoretically, are increasing the efficiency of the Support and Servicing phase of a Security Development Lifecycle.
This of course brings us back to the earlier points about making an analysis of whether such a program is right for your company. It is, and always has been, a business decision. If a Bug Bounty program is right for your company, then it is because the Security and business implications of such a program make sense after a careful risk return analysis.
David J. Maloney is a professional Security Engineer and Penetration Tester. He also acts as an independent security researcher in his spare time. He is a founding member of Hackerspace Charlotte and writes a small security blog at http://cosine-security.blogspot.com .
Tags: a crowd sourcing technique, Bug bounties, David J. Maloney, part two, Security
Posted in Carolinas, IT, North Carolina, Security | Comments Off
Friday, January 14th, 2011
 By David J. Maloney
Controversy has sprung up around the concept of bug bounties recently. This most notably occurred when Barracuda Networks announced their Bug Bounty program. They joined the ranks of companies like Google and Mozilla. This practice involves the offering of monetary rewards to security researchers who privately disclose vulnerabilities back to the vendor.
The researcher is paid according to the severity of the security vulnerability disclosed. There seems to be some contention that, while this was okay for Google and Mozilla, a security vendor such as Barracuda has no business doing such a thing. Rather than steep ourselves in that controversy, let us take a look at the practice of the Bug Bounty itself.
What it isn’t
To begin our analysis of these bug bounty programs, we will identify what they are not. The first and foremost thing a bug bounty program is not, is a replacement for a proper Security Development Lifecycle (SDL). The practice of an SDL has been a fairly recent development. It has been heavily pushed by Microsoft to address the development practice shortcomings that resulted in so many security vulnerabilities in the past.
An SDL involves including Security concerns into every phase of the System Development Life Cycle (SDLC). This means security should be considered and discussed everywhere from the Requirements Phase all the way to the Sustainment or Servicing phase. For more information on Security Development Lifecycle, I would suggest consulting some of Microsoft’s writings on the subject (e.g., www.microsoft.com/security/sdl/ ). They have freely available materials on the MSDN, as well as books on the subject.
The Bug Bounty concept is also not new or revolutionary. Mozilla and Google have been carrying out such programs for many years. In fact Netscape initiated “Bugs Bounty” program in 1995 (see: web.archive.org/web/19970501041756/www101.netscape.com/newsref/pr/newsrelease48.html) .
In addition, security company TippingPoint began its Zero Day Initiative (ZDI) in 2005 (see: www.informationweek.com/news/windows/security/showArticle.jhtml?articleID=192300822) .
The ZDI paid researchers to perform responsible disclosure to their third party vulnerability brokerage. This was to help foster and encourage responsible disclosure and control the flow of vulnerability information. On an even more simple and benign point, bug trackers have existed for quite some time on the internet. While they did not strictly reward disclosers in a monetary sense, they often credited those who found bugs in software. They also served to keep bug finders and researchers involved in the process of improving software.
Bug bounties are not a source of increased risk from Black Hat or malicious hackers. If you are a major software company or vendor such as Google, Microsoft, Mozilla, etc, you are already a target. Malicious hackers are already chewing away at your products looking for any weakness they can exploit. Some of them will sell these vulnerabilities on the black market, others will write malware, or carry out attacks on your customers based on these discoveries.
Addressing the issue proactively
These people are already making money by discovering these vulnerabilities and not disclosing them to you. By offering a monetary reward for responsible disclosure, you are not somehow inciting them to target you more. What you are doing, is incentivizing legitimate security researchers to focus their efforts on your products, and taking a responsible disclosure approach. In theory, this means that it is more likely that a legitimate researcher will discover the same flaws as the malicious hackers and report them to you, the vendor.
This gives you an opportunity to address the issue in a more proactive manner, and shorten the duration of exposure of these malicious activities. The idea that being more open and transparent exposes you to greater risk is nothing more than the old “security through obscurity” idea. Anyone who still espouses this philosophy has failed to learn some very important lessons in the past 20 years.
The final thing that bug bounties are not is right for every company. Information Security is not just about finding vulnerabilities and technical flaws. At its heart, Information Security is Business Security.
Business Security centers on the concept of Risk Management. When deciding whether a bug bounty program is right for your company, you need to evaluate the risk. This involves, among other things, a cost/benefit analysis. What is the potential cost of running such a program?
Cost of not running suuch a program?
What is the potential cost of not running such a program? What is the benefit that is derived from this program? The answers to these questions are different for every company. In addition to the risk analysis for the company as a whole, these decisions apply on a more granular level. You must make decisions on what products are to be included in this program.
The cost/benefit equation will be different between a system that is designed to store or transit sensitive data and one that performs a trivial maintenance task. These answers are not always obvious at the vendor level though, which is why a Bug Bounty program is far from a magic bullet. There are many other things that need to be in place.
An SDL should be a top priority if it is not already in place. A relationship needs to be maintained with your customers so that you understand how your product is being used. Your customers may also have IT Security teams that perform internal assessments.
You should have channels open to these customers to allow them to easily report any findings back to you, as well as a process for working with them to assure their concerns are addressed. In short, a Bug Bounty program is not a magic solution to the security dilemma.
Look for part Two: What it is, Monday.
David J. Maloney is a professional Security Engineer and Penetration Tester. He also acts as an independent security researcher in his spare time. He is a founding member of Hackerspace Charlotte and writes a small security blog at http://cosine-security.blogspot.com
[wpsqt_survey name="s001"]
Tags: Barracuda Networks, Black Hat, Bug bounties, Charlotte, David J. Maloney, Google, Hackerspace, Microsoft, Mozilla, NC, SDL, SDLC, Security, Viewpoint
Posted in Business advice, Columns, IT, Security, Viewpoint | Comments Off
Tuesday, January 11th, 2011
By Allan E. Alter, fellow at the Accenture Institute for High Performance in Boston.
 Allan Alter Over the holiday, millions of people received smart phones, Apple and Android tablets, and other Internet-connecting gadgets. The recipients will love them. And their employers ought to be pleased too, if they view these gifts as potential opportunities rather than problems.
The holiday season gifts will accelerate the penetration of the buttoned-down world of business technology by the freewheeling, fast-paced one of consumer IT. Information and technology are the lifeline of business today.
But it’s the consumer – not the CIO – who is reshaping the face of corporate computing. The six to seven million iPads and 99 million smartphones Wall Street expects to be sold will not only be used to play games, watch videos or use Facebook.
Their owners will also use them to get work done. Even before Christmas day, 13 percent of companies were already using iPads, typically because employees were using their own to do their jobs. And a survey of “information workers” by IDC and Unisys found that 55 percent of those who utilize smart phones use them for both business and personal uses.
Employees will be logging into company networks
That means millions of employees will soon log onto their corporate networks with their new Christmas gifts, and use them to get onto the Internet, write email, and keep themselves organized. And if they aren’t already using Facebook, Twitter, Skype or other social media sites for work, they will probably want to.
The latest generation of smartphones is designed with these popular consumer applications in mind, and the Android Marketplace and Apple’s App Store make it easy to download them.
Most of these employees will run into opposition from their own company. According to IDC’s estimates, 80 percent of IT professionals oppose the use of consumer IT in the workplace in the name of security, or are willing to provide support only on a limited, informal, special case basis.
Don’t be self-defeating
While these technologies do create real security and management issues, playing the Grinch is a self-defeating way for organizations to respond. First, it won’t hold many employees back from using their gifts, especially those in their twenties. Accenture’s research on millennial generation workers has found that 66 percent don’t abide by corporate IT policies anyway.
Some of that young talent will start looking for jobs elsewhere: 37 percent of millenials say state-of-the-art technology is a vital consideration in selecting an employer. In addition, executives, customers and clients are also receiving and giving these same devices as gifts. They too will find these devices are easier to use, offer more features and flexibility, and do a better job of organizing their personal and work lives than the computers and cell phones their companies provide them.
These pressures will only intensify after the holidays. IDC predicts 330 million smart phones and 42 million tablet computers like the iPad and Samsung’s Android-based Galaxy Tab will be sold worldwide in 2011. And there’s no end in sight to the new mobile apps that are being offered.
The pace of technology innovation and acceptance has quickened for good. Enterprises must learn how to adopt. They can start now by treating these gifts as if they were given to your company.
Taking a supportive but careful approach
Our own company is taking a supportive but careful approach. We have 60,000 employee-owned devices connecting to our network, and we are experimenting with how they can help us simplify our employees’ lives. For example, we are about to pilot an app that will let employees enter expenses directly into our expense tracking system on their smart phone, rather than have to boot up their laptop.
The new system will also enable employees to send in a snapshot of their receipts. The idea is to take advantage of what smart phones are especially good at doing – quickly getting tasks done while on the run — rather than try to duplicate what laptops do.
Don’t be the Grinch
Retailers are now considering how to take advantage of their employees’ smart phones. Providing smart phone apps for store employees makes sense, given their high turnover and their need to wander the aisles. One possibility that Accenture’s retail practice is working on is a task management app that provides store associates with a daily to-do list.
For example, when an associate at a discount store starts his shift, the app would indicate he’s expected to set up a display of Blu-Ray disc players in front of the electronics aisle. The app might provide a picture of how the display should look, instructions on how to set it up and which brand to display, a button for contacting a manager who can answer questions, and another button to click when the task is done.
Besides helping the associate, such an app would give store and district managers a way to monitor when tasks were completed, assign new tasks and view metrics from their own mobile devices.
Don’t be the Grinch who stole Christmas. Instead of trying to remove these gifts from the workplace, figure out how to take advantage of them. Both your company and your employees will benefit if you do.
Tags: Accenture Institute for High Performance, Christmas gifts, iPads, Security, smartphones, taking advantage of employee smartphones, Viewpoint
Posted in Business advice, Internet/New Media, IT, Security, Telecommunications | Comments Off
Thursday, October 28th, 2010
 HERNDON, VA – Reality Mobile, a company selling software that transmits live video from any camera source to a network, has raised $6.05 million in a mixed securities offering, according to a regulatory filing.
The company raised $6.5 million in 2009 in a financing led by Energy Venures, with participation from CTTV Investments.
The company makes Reality Vision software that lets users stream video from any source, even a cell phone or from their computer screen to anyone on a network for collaboration with field workers, public event security, and other uses.
Customers include the U.S. Department of Defense, U.S. Department of Homeland Security, U.S. State Department, DC Metropolitan Police Department, Port of Los Angeles, Kentucky State Police, and Consolidated Edison, among others.
It has also been deployed at major events, from the Academy Awards presentation to the NFL Superbowl and the Papal visit to DC.
The company disclosed the raise in a filing with the US Securities and Exchange Commission.
Contact TJS editor/writer Allan Maurer: Allan at TechJournalSouth dot com.
Tags: collaboration, financing, Herndon, Reality Mobile, Security, VA, video transmission software
Posted in Internet/New Media, IT, Money, Potomac, Telecommunications | Comments Off
Thursday, October 28th, 2010
 ATLANTA – Endgame Systems, which sells cybersecurity services, has raised a $29 million first round from Bessemer Ventures, Columbia Capital, Kleiner Perkins Caufield & Byers(KPCB), and TechOperators. David Cowan of Bessemer Venture Partners and Arun Gupta of Columbia Capital join the board.
With the funding, the company has launched its ipTrust cloud-based botnet and malwre detection service. It says ipTrust distills hundreds of terabytes of security events into usable intelligence and information, helping companies quickly assess the security of their systems without depending on access to internal network traffic, or requiring any hardware or software installation.
Tracking botnets across the Internet is an ambitious undertaking,” saidDavid Cowan, a partner of Bessemer and the co-founder of VeriSign. “Based on their experience leading ISS X-Force, the preeminent security research group in the industry for many years, this is probably the one team in the world that can pull it off.”
Tracking botnets across the Internet is an ambitious undertaking,” said David Cowan, a partner of Bessemer and the co-founder of VeriSign. “Based on their experience leading ISS X-Force, the preeminent security research group in the industry for many years, this is probably the one team in the world that can pull it off.”
There should be a considerable market for this. Over 280,000 organizations and more than 250 million IP addresses have been infected with botnets, worms, viruses and other malware threats. The most dangerous of these infections are designed to harvest a network for malicious use, or to access private data. While attacks are becoming smarter every day, so are tools that organizations can use to protect themselves.
We’re glad to see a number of Southeast companies taking innovative approaches to battling malware and botnets. They’re a scourge that can affect us all.
Tags: Atlanta, Bessemer Ventures, botnet, cloud computing, Colubia Capital, Endgame Systems, financing, ipTrust, KPCB, malware, Security, TechOperators
Posted in Georgia, Internet/New Media, IT, Money, Security | Comments Off
Thursday, October 21st, 2010
 ALEXANDRIA, VA – Digital Signal Corp., which is developing 3D facial recognition systems for the Department of Defense and other federal agencies, has raised $4 million of a targeted $10 million equity round, according to a regulatory filing.
The company disclosed the financing in a filing with the US Securities and Exchange Commission, which cites E. Rogers Novak of Novak Biddle Venture Partners, Dr. Alf L. Andreassen and Dr.l H. Lee Buchanan of Paladin Capital Partners as company directors.
Founded in 2001, the company’s work is largely top secret and not much information about it is available publicly. It does seem to be looking at potential commercial applications for its technology in addition to its work for the DOD.
Email TJS editor/writer Allan Maurer: Allan at Techjournalsouth dot com.
Tags: Alexandria, Digital Signal Corp., DOD, facial recognition systems, financing, Security, VA
Posted in Government/Defense, IT, Money, Potomac, Security, Virginia, Washington, DC | Comments Off
Monday, September 20th, 2010
 Last week a friend of ours fired up a new laptop and tried to log into her Facebook account. Facebook, not recognizing the new PC, asked her to identify photos of some Facebook “friends” as a security check. One of the photos was of a person in a dark bar, unrecognizable even if she actually knew the person.
Facebook introduced the security feature in May and a number of users have complained the feature is not only annoying, it prevents them from getting to their account entirely.
Like many of us, our friend has numerous Facebook “friends” she knows only casually, but certainly not well enough to identify photos of them in dark bars, wearing funny hats, or other photos they may have tagged, such as food or pets. She’s a writer who has many “friends” she does not know personally.
You can try the security check again after waiting an hour. Uh huh.
Facebook told ReadWriteWeb that only a small percentage of its useer have a problem with the photo security check. That may be because only a small percentage have encountered it thus far, or that many users have only a handful of friends they who post photos they would easily recognize. It said it finds the method more effective than other types of checks.
We suspect this will become another headache for the 500 million strong social network, which has made a series of decisions that drove users crazy.
We think that if a social network ever arises to really challenge Facebook, it will be one that does not arbitrarily make decisions affecting its users’ privacy, ability to access their accounts or pretend it knows more about which status updates users want to see than the users do.
Facebook has added a question to its FAQ where users who continue to have troubles with the security check can submit a report. No telling how long getting a response to that and fixing the problem may take.
–Allan Maurer
Contact TechJournal South editor/writer at Allan at TechJournalSouth dot com.
ReadWriteWeb
Tags: facebook, Security, social media, Viewpoint
Posted in Internet/New Media, Security, Viewpoint | 1 Comment »
Thursday, September 16th, 2010
 LENIOR CITY, TN – EOD Technology Inc., a professional services company providing strategic stability operations support to governments and corporations, has raised $65.3 million in a mixed securities offering, according to a regulatory filing.
The company provides security; munitions management, response and range maintenance; expeditionary construction; tactical IT/communications; logistics and life support; and disaster response in austere and hostile environments.
EOD is employee owned.
Two retired U.S. Marine explosive ordinance disposal (EOD) sergeants foudned the company in1987.
The company disclosed the funding in a filing with the US Securities and Exchange Commission.
Tags: EOD, financing, goverment and corporate logisticcs, IT, Lenoir, munitions management, Security, TN
Posted in Government/Defense, Money, Other SE, Tennessee | Comments Off
|
|
|
