Wikileaks DNC Email Dump Sparks Malware Fears

FOX NEWS | July 29, 2016

The trove of leaked Democratic National Committee emails posted to Wikileaks on July 22 has sparked concerns about malware as users access the vast trove of documents.

WikiLeaks posted close to 20,000 emails and 8,000 attachments that were sent or received from top Democratic officials, appearing to suggest that the committee’s chairwoman, Rep. Debbie Wasserman Schultz, and others favored Hillary Clinton over Sen. Bernie Sanders during the party’s primary. The release forced the resignation of Wasserman Schultz.

On the day of the leak, Google’s Transparency Report warned users of dangerous downloads from

Cybersecurity is Becoming an Unsustainable Tax on Business

ZDNET | July 28, 2016

The cost of cybersecurity has become a burdensome tax on business and with 1.5 million IT security jobs unfilled, US corporations are losing to sophisticated criminal gangs, said security experts at a recent event in San Francisco.

“Cyber is a tax on business. Jamie Dimon [JP Morgan Chase CEO] has had to double his cybersecurity budget to $500 million. Things can’t continue this way forever, we have to get ahead of the problem,” said Ray Rothrock (photo), a veteran VC, now chairman and CEO of RedSeal, a startup that measures the effectiveness of enterprise security.

2016 GOP Platform Endorsing Strike-Back Against Hackers

CNBC | July 27, 2016

The 2016 Republican Party platform contains a proposal that’s making many people in the tech sector and elsewhere uneasy, if not downright nervous.

Under a section titled “Facing 21st Century Threats: Cybersecurity in an Insecure World,” it suggests how the United States should retaliate against cyberattacks from China, Russia and other hostile actors.

RedSeal Records Strong Growth, New Clients and International Expansion in First Half of 2016

Cyber Analytics Company Expects to Reach Profitability in Second Half of Year

SUNNYVALE, Calif.— July 27, 2016 — RedSeal (, the cybersecurity analytics company, today announced it reached break-even in the first half of 2016 and projects profitability in the second half of the year. Demand for RedSeal’s analytics platform is steadily growing as digital resilience and cyberattack preparedness become a strategic priority in the C-suites of global 2000 companies and government agencies.

“The C-Suite is asking for more comprehensive and measurable results from their security and network organizations. This requires new thinking—and new behavior to support that thinking—not just better prevention,” said Ray Rothrock, chairman and CEO of RedSeal. “RedSeal’s proven network resilience technology has been implemented by over 40 government agencies and hundreds of commercial enterprises. Digital resilience is the new watchword in cybersecurity and RedSeal provides an essential element of resilience.”

Highlights of the company’s first-half performance include a 70 percent increase in bookings and a 110 percent increase in revenue over the first half of 2015. RedSeal acquired 19 new customers in the first half of 2016 from across government and commercial sectors, including several multinational technology companies and media conglomerates, an international consumer packaged goods manufacturer, a national health insurance plan provider, and a branch of the U.S. Armed Forces.

RedSeal’s second half has begun on a strong note. The company just closed a $6.3 million contract—the largest in its history—with an existing customer that was using RedSeal in just one part of its organization. The results demonstrated so much value, in the form of insights and the ability to prioritize its cybersecurity initiatives, that the customer is expanding use of RedSeal across its entire $65 billion enterprise.

RedSeal grew its international presence in the first half of the year, opening new offices in Japan and Canada, and accelerating its international traction in government and commercial segments across the globe. Overall, the company has increased headcount by 30 percent since the beginning of 2016 and has doubled its headcount in EMEA. This global momentum demonstrates an increasing demand from the people who run networks for more complete information of their infrastructures, which helps them prioritize their security activities and thus remain resilient against evolving threats.


About RedSeal
RedSeal puts power in decision makers’ hands with the essential cybersecurity analytics platform for building digitally resilient organizations. RedSeal’s Digital Resilience Score, modeled after a creditworthiness score, measures how prepared an organization is to respond to an incident and quickly rebound. The company’s platform adds value to existing network devices by working with them and building a network model. With this, customers can understand the state of their networks, measure resilience, verify compliance, and accelerate incident response. RedSeal’s customers are Global 2000 corporations and government agencies that depend on the most sophisticated security. Founded in 2004, RedSeal is headquartered in Sunnyvale, California and serves customers globally through a direct sales and channel partner network.


Alexandra Laurelli
Finn Partners
+1 (303) 862-9530

DNC Email Scandal Shows What Must Be Done to Prevent Breaches, Leaks

eWEEK | July 25, 2016

As this is written, Debbie Wasserman Schultz, chairwoman of the Democratic National Committee, has resigned under pressure and effectively been forced off the stage of her party’s convention.

But the release of thousands of emails from the DNC showing how the party leadership conspired to keep Sen. Bernie Sanders from winning the presidential nomination is not all bad, because it revealed the fact that the breach took place.

RedSeal Cybersecurity Analytics Platform Achieves Rapid Success in Japan

RedSeal Announces Japan Subsidiary, Country Manager and Fujitsu Systems East Reseller Partnership

Sunnyvale, Calif. – July 21, 2016 –  RedSeal (, the cybersecurity analytics company, today announced it has established a Japanese subsidiary, RedSeal KK. Led by newly appointed country manager, Hiroki Inoue, RedSeal KK will provide sales, marketing and technical support to its growing customer and distribution base. The RedSeal cybersecurity analytics platform has achieved fast traction in Japan through a strong distribution network, which has now been further enhanced with the addition of Fujitsu Systems East Ltd. (FEAST).

The network resilience and cybersecurity preparedness that RedSeal provides is resonating well in the Japan market as attention and investment in cybersecurity across corporate and government agencies grows. IDC Japan predicts 19 percent growth in the Japanese Cyber Security Market in 2016, reaching $2.7 billion.

“Our customers expect us to provide the most advanced cybersecurity solutions,” noted Keiichi Yamamura, corporate executive officer of Fujitsu Systems East Ltd. “With the addition of RedSeal to our cybersecurity offering, we can now deliver network security consulting, digital resilience monitoring, and verification services to our customers, helping them build highly resilient digital networks and businesses.”

This growth in Japan has, in part, been spurred by a series of high profile attacks, awareness of increased exposure around the Tokyo 2020 Summer Olympics, and government initiatives including the Basic Act on Cybersecurity in 2013, and the recent creation of the National Center of Incident Readiness and Strategy for Cybersecurity (NISC) to coordinate government responses on cybersecurity-related issues.

“There is heightened awareness at the CEO level, and across government agencies in Japan, that measuring and maintaining digital resilience is a priority. RedSeal delivers exactly to this priority,” noted Ray Rothrock, chairman and CEO of RedSeal. “By providing organizations the tools to build digital resilience into their networks before attacks, we enable them to get ahead of the ongoing, automated, and ever more sophisticated attacks.”

The RedSeal cybersecurity analytics platform helps customers understand the state of their networks, measure resilience, verify compliance and accelerate incident response. It analyzes customers’ networks and automatically builds a virtual network model to provide continuous monitoring and visibility into potential vulnerabilities. The platform also delivers the RedSeal Digital Resilience Score, to measure, benchmark, and set targets to actively manage the digital resilience of a customer’s network and security infrastructure.

“We have built success on offering the best and most efficient network and security solutions available,” said Takao Tsubuki, president of Terilogy. “Partnering with RedSeal, we are now able to extend our solutions to include cybersecurity analysis solutions for network infrastructure.”

In addition, Susumu Watanabe, president of NVC (Network Value Components) commented, “NVC brings an unparalleled breadth and depth of world class network and security solutions to the Japan market. The RedSeal cybersecurity analytics platform is a valuable addition to our security portfolio.”


About RedSeal
RedSeal puts power in decision makers’ hands with the essential cybersecurity analytics platform for building digitally resilient organizations. RedSeal’s Digital Resilience Score, modeled after a creditworthiness score, measures how prepared an organization is to respond to an incident and quickly rebound. The company’s platform adds value to existing network devices by working with them and building a network model. With this, customers can understand the state of their networks, measure resilience, verify compliance, and accelerate incident response. RedSeal’s customers are Global 2000 corporations and government agencies that depend on the most sophisticated security. Founded in 2004, RedSeal is headquartered in Sunnyvale, California and serves customers globally through a direct sales and channel partner network.


Alexandra Laurelli
Finn Partners
+1 (303) 862-9530

Digital Defense: Cybersecurity and the Wendy’s Hack


Fast food chain Wendy’s is the industry’s latest cyberattack victim. In fact, more than 1,000 of Wendy’s 6,500 locations across the United States were hit in a widespread credit/debit card hack.

It’s not an uncommon scenario: malware infects network; over a long period of time, said malware morphs, and spreads broadly and deeply throughout the network. It’s almost unavoidable these days, but a good digital defense can help.

“Cyberattacks are so advanced these days that if a hacker sets his sights on your network, you can bet he’ll get in,” said Ray Rothrock, CEO of RedSeal, a cybersecurity company. “Being prepared when they get in is the essence of resilience.”

RedSeal and ForeScout Federal CTOs Explain how They Jointly Map, Identify and Increase the Resilience of Public Sector Networks

Last month, Wallace Sann, the Public Sector CTO for ForeScout, and I sat down to chat about the current state of cybersecurity in the federal government. With ForeScout, government security teams can see devices as they join the network, control them, and orchestrate system-wide responses.

Many of our customers deploy both RedSeal and ForeScout side by side. I wanted to take a look at how government security teams were dealing with ongoing threats and the need to integrate difference cybersecurity tools into the “cyber stack.”

Our conversation is lightly edited for better clarity.

Wayne:  Describe the challenges that ForeScout solves for customers.

Wallace:  We help IT organizations identify IT resources and ensure their security posture. There’s always an “ah-ha moment” that occurs during a proof of concept. We see customers who swear by STIG, and will say they only have two versions of Adobe. We’ll show them that there are 6-7 versions running.  We tell you what’s on the network and classify it.

Wayne:  We often say that RedSeal is analogous to a battlefield map where you have various pieces of data coming in to update the topography map with the current situation. By placing the data into the context of the topography, you can understand where reinforcements are needed, where your critical assets are and more.

RedSeal’s map gives you this contextual information for your entire enterprise network. ForeScout makes the map more accurate, adapting to change in real time. It lets you identify assets in real time and can provide some context around device status at a more granular or tactical level.

Wallace:  Many companies I speak to can create policies on the fly, but ensuring that networks and endpoints are deployed properly and that policies can be enforced is a challenge.

Wayne:  Without a doubt. We were teaching a class for a bunch of IT professionals, telling them that RedSeal can identify routes around firewalls. If the networking team put a route around it, the most effective firewall won’t work. The class laughed. They intentionally routed around firewalls, because performance was too slow.

Endpoint compliance typically poses a huge challenge too. RedSeal can tell you what access a device has, but not necessarily when it comes online. Obviously, that’s one of the reasons we’re partnering with ForeScout.

Wallace:  ForeScout can provide visibility that the device is online and also provide some context around the endpoint. Perhaps RedSeal has a condition that DLP is running on the endpoint. ForeScout could tell you that DLP is not loaded, and therefore no access allowed.

Wayne: Inventory what’s there. Make sure it’s managed. If not managed, you may not know you were attacked and where they came in or went. If you have that inventory, you can prevent or at least respond quicker.

Another important component is assessing risk and knowing what is important to protect. Let’s say we have two hosts of equal value. If Host 1 is compromised, you can’t leapfrog any further. No other systems will be impacted. If Host 2 is compromised, 500 devices can be compromised including two that may have command and control over payroll or some critical systems. Where do you want to put added security and visibility? On the hot spots that open you up to the most risk!  We put things into network context and enable companies to be digitally resilient.

Wallace:  With so many security concerns to address, prioritization is critical.

Wayne:  IoT is obviously a trend that everyone is talking about and is becoming an increasing concern for agency IT Security orgs. How is ForeScout addressing IoT?

Wallace:  ForeScout provides visibility, classification and assessment. If it has an IP address, we can detect it. Classification is where we are getting better. We want to be able to tell you what that device is. Is it a security camera? A printer? A thermostat? We can classify most common devices, but we want to be 75-90% accurate in device classification. The problem is that many new devices are coming out every day. Many you can’t probe traditionally; it could take the device down.  And, you can’t put an agent on it.  So, we’re using other techniques to passively fingerprint a device (via power over Ethernet, deep packet inspection, and more), so we can get to 95% accuracy.

Wayne:  Do you see a lot IoT at customer sites, and are they concerned?

Wallace:  Some don’t realize they have an issue. Many don’t know that IoT devices are on their networks. We are seeing more cases where we are asked to assess IoT environments and address it. Before, we weren’t asked to take action. We used to be asked how many Windows and Mac devices there were. Now, there is a movement by government agencies to put anything with an IP address (the OT side) under the purview of the CISO.

Wayne:  We see a lot of devices – enterprise and consumer – that aren’t coded securely. IoT devices should be isolated, not connected to your mission critical operating environment.

Wallace:  I was curious how RedSeal handles IoT?

Wayne:  If there is vulnerability scan data, it tells us what OS, applications running, active ports, host name, MAC address, etc.  Without that data, we can grab some device data, but with ForeScout, can get more context/additional data about the device. ForeScout can tell you the devices are there. RedSeal can ensure that it’s segmented the way it should be. We can tell you it’s there and how you can get to it, people need to make decisions and act. We show IoT devices as a risk.

Wayne:  What are some of the trends that you are seeing that need to be addressed at customer sites?

Wallace:  From a native cloud perspective, we are working on extending the customer on-premise environment and bringing visibility and control to the cloud.   We are also working on making it easier to get security products to work together.  People don’t have the resources for integration and ongoing management.  We’re working to orchestrate bi-directionally with various toolsets to provide actionable intelligence – advanced threat detection, vulnerability assessment, etc.

We can take intel from other vendors, and ForeScout gives us the who, what, when, where from an endpoint to determine if that device should be on a network.

For example, an ATD vendor can detect malware (find it in their sandbox).  They will hand us an incident of compromise (hash, code, etc.).  We’ll look for those IoCs on devices on the network and then quarantine those devices.

Wayne: Security vendors need to work together.  Customers don’t want to be tied to a single vendor.  Thanks for your time today.


For more information, visit our websites at RedSeal and ForeScout.

EU Parliament Approves New Cybersecurity Rules

POWER | July 8, 2016

The European Union (EU) parliament on July 6 approved the first community-wide rules designed to bolster cybersecurity throughout the EU.

According to the official statement, the new law “lays down security and reporting obligations for ‘operators of essential services’ in sectors such as energy, transport, health, banking and drinking water supply. EU member states will have to identify entities in these fields using specific criteria, e.g. whether the service is critical for society and the economy and whether an incident would have significant disruptive effects on the provision of that service.”

Let Legacy IT Systems Just Die

SIGNAL | July 8, 2016

Upgrading the federal IT infrastructure is urgent, but invest in next-generation networks.

Federal agencies need to address their aging legacy systems and need to do it now. The situation is so dire that some systems are more than 50 years old and running on 8-inch floppy disks, according to a report by the Government Accountability Office.