Bricata

Columbia,  MD 
United States
  • Booth: 8500-39

We Simplify Network Threat Hunting by
  • Identifying Hidden threats using specifically designed hunting workflows that use detailed metadata provided clearly through…
  • An intuitive UX  that eases your transition from the known to unknown malicious activities…
  • In conjunction with a modern IDPS platform which detects zero-day malware conviction with AI


 Press Releases

  • Improved Metadata and Intelligent Packet Capture Associated with Security Alerts Provides Better Means to Visualize Scope, Severity and Conduct Event Correlation

    January 17, 2018 – Columbia, Md. – Bricata, Inc., a developer of next-generation network intrusion detection and prevention solutions (IDS/P), today announced a new dashboard capability that provides security operations centers (SOCs) with greater detail about network events and the ability correlate that information with security alerts.

    The latest edition of Bricata keeps a record of network transactions and associates them with security alerts to better understand which devices are communicating via what protocols and what they were doing. What this means conceptually, is that if a user downloads malware, this data helps the SOC very quickly and neatly answer critical triage questions including:

    • What behavior did the user exhibit prior to the infection?
    • What other network devices did the infected machine call next?
    • Is this threat spreading, and if so, how and where?

    “Many of the cybersecurity tools implemented today seem to treat the alert as an end, but the reality is the alert is just the beginning. It can easily take hours, sometimes even days, to collect the information necessary to discern the difference between true and false positives,” said Bricata CEO John Trauth. “What Bricata is doing is intelligently collecting just the relevant information so the SOC can quickly determine the scope and severity of a security alert.” 

    Research shows large enterprises, like financial services institutions, can easily have 25 or more security tools issuing in excess of 100,000 security alerts every day.  Despite the promise of security analytics, security information and event correlation have proven exceedingly challenging, in the absence of session and network metadata, of the type and quality Bricata provides. This results in a deluge of alerts that overwhelm the resources of even the most sophisticated business leaving it vulnerable.

    The data Bricata is providing with this latest update supports both proactive and reactive strategies for cybersecurity assurance.  The network monitoring solution examines traffic traversing a corporate network inside the firewall with three different detection engines as part of a layered security defense.

    Notably, it also supports proactive threat hunting, for example when Bricata detects network behavioral anomalies – an accounting server suddenly calling up a larger number of network devices than usual – its captures session level data for security personnel to easily and immediately examine as part of a rapid investigation.

    Among the new features and enhancements included in this software release are the following:

    1) New network metadata dashboard for threat hunting.

    The dashboard provides a visualization of the data associated with a network security alert.  For example, if a user downloads a file convicted as malware, the dashboard helps the SOC understand what transactions led to that user being infected – and what machines were touched in the process.

    This allows enterprise security to understand the extent of an incident very quickly. If unusual traffic patterns are identified, users can search for other devices exhibiting similar behavior that may have infections that have gone undetected.

    “That is the essence of threat hunting – security has a hunch it wants to investigate – and Bricata is providing a faster and more thorough way to do it,” added Trauth. “Collecting too much data becomes unwieldy, but taking an intelligent approach to data collection, makes it more accessible and searchable in the moment security needs it the most.”

    2) Passive DNS monitoring. 

    This provides security with the means to understand the DNS information around an alert without physical integration into other IT databases. This means Bricata can both detect malware and covertly trace its origin back to the host – even if it’s a temporary domain – without notifying the perpetrator.

    Previously to capture this type information, security tools would need integration with other databases, such as Active Directory, for example. The Bricata solution does not and may help resolve some of the territorial conflicts that sometimes occur in larger enterprises between security and IT operations staff.

    3) Smart packet capture and backtracing.

    In addition to metadata, Bricata has developed a smart packet capture (PCAP) feature to capture relevant raw data about packet transfers associated with security alerts.  For example, when the solution triggers an alert for unusual network activity such as a significant but unexpected software installation or disk erase operation, it will simultaneously begin smart PCAP targeting the packets in that stream of known interest.  What this PCAP provides for security in this context, is the means and workflow to immediately search packet data after receiving an alert and hunt down threats.

    Bricata has also introduced network backtracing into this release.  Backtracing enables users to replay previous packet captures against the current set of threat intelligence to identify incidents that would only be visible to current threat intelligence.  Now, the solution can answer “if I knew then what I know now”, what might I have discovered?

    Bricata is a fast-growing network security provider breathing new innovation into the $1 billion intrusion detection and prevention market.  The company raised an $8 million-dollar growth round of funding in July led by Edison Partners. This round also included a strategic investment and development agreement with In-Q-Tel, the strategic investor that accelerates the development and delivery of cutting-edge technologies to support the mission of the U.S. Intelligence Community.

    Bricata has been named a “vendor to watch” by a reputable technology analyst firm in 2015 and 2016.  In addition, the news organization SDxCentral recently described it as one of “10 Security Startups to Watch” in 2017.

    About Bricata
    Bricata network security solutions deliver innovative next-generation intrusion prevention, advanced threat detection and analysis, and threat hunting to enable large organizations to actively pursue and identify advanced, persistent, and coordinated attacks. A specialized component-based approach to today’s attacks has left organizations with a stack of tools to manage that provide a patchwork of uncorrelated data, leaving penetrable gaps and inconsistent security policies. The Bricata platform provides organizations with process automation, streamlining operations with the most effective, affordable solution for situational awareness and proactive threat defense, reducing complexity, dwell time and time to containment. For more information visit www.bricata.com.

    Media Contact:

    Frank Strong
    202-352-5920
    media at bricata.com

  • As the Drumbeat of Data Breaches Brings Renewed Enthusiasm for Standalone Network Intrusion Prevention and Detection, the Company Scales to Meet Demand

    November 29, 2017 – Columbia, Md. –  Bricata, Inc., a developer of next-generation network intrusion detection and prevention solutions (IDS/P), announced today it has added a chief financial officer (CFO) and a new vice president of engineering to its management team.  Phil Salopek joins Bricata as CFO while Orville Pike joins as vice president of Engineering.  The announcement comes as the company seeks to grow to meet the demand for its network security product.

    “It’s no secret that the cybersecurity community is facing a talent shortage, which affects solution providers as well as enterprises,” said Bricata CEO John Trauth. “Our continued ability to attract top-tier leadership talent is further validation of the company’s potential and of the dire security problem we solve for our customers.”

    Salopek is a familiar face in the high-tech and cybersecurity community. Over his extensive career, he has served as an operationally-focused CFO at a number of businesses, both publicly-traded and privately-held, including Notable Solutions, BroadSoft and AXENT Technologies.

    As CFO of AXENT, Salopek was the financial steward during its $1 billion acquisition by Symantec at the height of the dot-com era.  At that time, he worked closely with John Becker, who has earned a reputation for successfully leading multiple cybersecurity companies, including Sourcefire, and who today serves on the Bricata board of directors.

    Pike joins Bricata from KoolSpan, where he spent the better part of a decade and rose through the ranks to become VP of Engineering.  As the top engineer at his previous company, he built and led a software team developing secure VoIP and messaging applications.  Pike brings a unique combination of industry expertise, technical abilities and the software skills necessary to drive the continuing development of the Bricata solution.

    While the standalone network security intrusion detection and prevention market is large and longstanding, many of the existing products are outdated or have been subsumed into corporate firewall products. Yet the pace of major data breaches persists, even as the vectors of attack grow, and the width of vulnerable surface area expands.  This is making a renewed focus on network security an essential component of a layered cybersecurity defense.

    Bricata has brought fresh thinking and new innovation through a modern solution that detects, hunts and prevents cyber threats. The Bricata software platform examines threats with three different detection engines including signature inspection, anomaly detection, and a malware conviction engine.

    Today’s news continues a series of announcements over the course of 2017 that counts opening an office in Boston, raising an $8 million round of growth funding, the previous addition of veteran security executives to its leadership team, and a software update with new threat hunting and detection capabilities. The company has been named a security startup to watch by SDxCentralGoBankingRates and a major technology analyst firm.

    “Bricata has a product installed and defending some of the largest and most sophisticated organizations in the world,” added Trauth. “The talent and experience Phil and Orville bring promise that Bricata will have the capacity and scale to provide network security in many more.”

    About Bricata 
    Bricata network security solutions deliver innovative next generation intrusion prevention, advanced threat detection and analysis, and threat hunting to enable large organizations to actively pursue and identify advanced, persistent, and coordinated attacks. A specialized component-based approach to today’s attacks has left organizations with a stack of tools to manage that provide a patchwork of uncorrelated data, leaving penetrable gaps and inconsistent security policies. The Bricata platform provides organizations with process automation, streamlining operations with the most effective, affordable solution for situational awareness and proactive threat defense, reducing complexity, dwell time and time to containment. For more information visit www.bricata.com.

    Media Contact:

    Frank Strong

    202-352-5920

    media@bricata.com

  • Company Looks to Thriving Talent Hub Along Rte. 128 High Tech Corridor to Help it Fuel Sales Following $8 Million Growth Equity Investment

    September 6, 2017 – Columbia, Md. – Bricata, Inc., a developer of next generation network intrusion detection and prevention solutions (IDS/IDP), today announced the opening of a sales office in Woburn, Ma., just outside of Boston. The company, which recently announced an $8 million growth round, aims to hire about a dozen new staff by year’s end, and could potentially double headcount to 25, in that new office, over the next 12-18 months.

    While the company’s headquarters will remain in Maryland, the sales office in Boston opens access to talent in a second geographic region that has earned a reputation for technology chops. Specifically, Rte. 128 is a thriving tech hub for talent, because of its proximity to downtown Boston, the abundance of academic and technical institutions in the area, and the accessibility endeared by the area’s airports including Logan International, T.F. Green, and Manchester.

    “The equity round we just announced provides us with the capacity to accelerate our business plan and we are betting Boston is a great place to help us do just that,” said Bricata CEO John Trauth. “It’s important to underscore the emphasis on growth – while investment in R&D is a continuous process, Bricata already has a product in market solving critical security problems for large financial services and health care customers.”

    Market research estimates put the size of the global IDS/IDP market at more than $1 billion, though much of the investment has flowed to end-points or security analytics at the expense of network sensors. Bricata is different because it is breathing new innovation into this underserved segment of the cybersecurity market. The solution enables enterprise security analysts to examine threats from different perspectives. This provides better visibility to prevent known threats, detect anomalies that could be threats, and hunt for those threats that are hiding inside a network and biding time before detonating.

    The new office will be led by Randy Fallis, who joined the Bricata management team in May 2017 as vice president of Sales and Customer Strategy.  Fallis comes with impressive experience in building enterprise sales organizations in rapidly growing businesses that are already familiar to the Boston community, including Cybereason and Rapid7.

    “This is a chance to get in early at a fast-growing company, with a promising trajectory in a hot market – and with a proven product that already has a line-item in the budget for most large enterprises,” said Fallis. “Bricata is addressing a well-defined but previously unsolved problem with a compelling new platform that combines hardware and software, including modern applications of machine learning and artificial intelligence.”

    The company was named a “vendor to watch” by a reputable technology analyst firm in 2015 and 2016. In addition, the news organization SDxCentral recently described it as one of “10 Security Startups to Watch.”

    The open positions in Boston include account executives, inside sales, business development representatives, and technical resources supporting sales such as sales engineers. For additional information on open positions at Bricata, or to submit an application, please visit www.bricata.com/careers.

    About Bricata 
    Bricata network security solutions deliver innovative next generation intrusion prevention, advanced threat detection and analysis, and threat hunting to enable large organizations to actively pursue and identify advanced, persistent, and coordinated attacks. A specialized component-based approach to today’s attacks has left organizations with a stack of tools to manage that provide a patchwork of uncorrelated data, leaving penetrable gaps and inconsistent security policies. The Bricata platform provides organizations with process automation, streamlining operations with the most effective, affordable solution for situational awareness and proactive threat defense, reducing complexity, dwell time and time to containment. For more information visit www.bricata.com.

    Media Contact:

    Frank Strong

    202-352-5920

    media@bricata.com

Click here to email our support team: support@a2zinc.net