participants

Private Industry Coalition

Operation Blockbuster sets a new precedent for private industry’s role in the changing dynamic of cyber defense. Industry is no longer only a watchdog. Novetta led a team of elite security professionals, each with unique skills and talents, working collaboratively, to take decisive action against the threat actor behind the Sony Pictures attacks. The formation of this industry coalition is significant not only because our team was able to help protect others against future Lazarus Group attacks, but also because we fought back against the attackers. Industry teams like ours can help customers protect critical business data, as well as educate the general public about modern cyber threats. Below is a list of participants who made significant contributions to the success of this ongoing operation.

*Participants listed below in no particular order.

About AlienVault

AlienVault has simplified the way organizations detect and respond to today’s ever evolving threat landscape. Our unique and award winning approach, trusted by thousands of customers, combines the essential security controls of our all-in-one platform, AlienVault Unified Security Management, with the power of AlienVault’s Open Threat Exchange, the world’s largest crowd-sourced threat intelligence community, making effective and affordable threat detection attainable for resource constrained IT teams. Learn more at www.alienvault.com.

Visit Website

About Invincea

Invincea is the leader in advanced endpoint threat protection for enterprises worldwide. The company provides the most comprehensive solution to contain, identify, and control the advanced attacks that evade legacy security controls. Invincea protects enterprises against targeted threats including spear-phishing and Web drive-by attacks that exploit Java, Flash, and other applications. Combining the visibility and control of an endpoint solution with the intelligence of cloud analysis, Invincea provides the only market-deployed solution that defends against 0-day exploits, file-less malware, and previously unknown malware. The company is venture capital-backed and based in Fairfax, VA. Learn more at www.invincea.com.

Visit Website

About Kaspersky Lab

Kaspersky Lab is a global cybersecurity company founded in 1997. Kaspersky Lab’s deep threat intelligence and security expertise is constantly transforming into security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.

Visit Website

About Novetta

Novetta is an advanced analytics company with over two decades of experience solving problems of national significance for government and commercial enterprises worldwide. Grounded in its work for national security clients, Novetta has pioneered disruptive technologies in four key areas of advanced analytics: data, cyber, open source/media and multi-int fusion. Novetta enables customers to find clarity from the complexity of ‘big data’ at scale and speed to help our customers detect threat and fraud, protect high value networks, and improve the bottom line. Learn more at www.novetta.com.

Visit Website

About PunchCyber

PUNCH is a consulting firm that provides advanced analytics and strategic support to government and commercial clients. Our primary focus is in improving an organization’s awareness of and ability to manage a growing cyber threat environment. We focus on bolstering cyber preparedness by improving an organization’s analysts and the tools at their disposal. Learn more at www.punchcyber.com.

Visit Website

About Symantec

Symantec Corporation is the global leader in cybersecurity. Operating one of the world’s largest cyber intelligence networks, we see more threats, and protect more customers from the next generation of attacks. We help companies, governments and individuals secure their most important data wherever it lives. Learn more at www.symantec.com.

Visit Website

About ThreatConnect

Founded by analysts fresh from the front lines of cyber defense, a visionary computer engineer and a successful business leader, ThreatConnect looks to take the vast potential of threat intelligence and make it accessible for Fortune 5000 organizations and allied government agencies around the globe. By building the only truly extensible platform in the industry and bringing together trusted communities of security professionals, they make every ThreatConnect user stronger and more agile to defend themselves. Learn more at www.threatconnect.com.

Visit Website

About Volexity

Volexity, a leading provider of threat intelligence and incident suppression services and solutions, is based in the Washington, DC area. The world class Volexity team has provided security and forensics services to Fortune companies, government agencies, presidential campaigns, celebrities, media outlets, technology companies, law firms, and leading security product vendors across the globe. Over the past decade, Volexity researchers pioneered the field of memory forensics, wrote best selling security books, and developed groundbreaking tools and technology that transformed the way modern digital investigations are performed. Volexity is building next generation solutions that will dramatically increase enterprise visibility and facilitate rapid intrusion suppression. The Volexity team leverages its extensive investigative experience, unique threat intelligence capabilities, and innovative technology to rapidly hunt for malicious actors hiding within the enterprise. Learn more at www.volexity.com.

Visit Website

About Trend Micro

Trend Micro Incorporated, a global leader in security software, strives to make the world safe for exchanging digital information. Built on 27 years of experience, our solutions for consumers, businesses and governments provide layered data security to protect information on mobile devices, endpoints, gateways, servers, and the cloud. Trend Micro enables the smart protection of information, with innovative security technology that is simple to deploy and manage, and fits an evolving ecosystem. All of our solutions are powered by cloud-based global threat intelligence, the Trend Micro™ Smart Protection Network™ infrastructure, and are supported by more than 1,200 threat experts around the globe. Learn more at www.TrendMicro.com.

Visit Website

About Risk IQ

RiskIQ provides organizations the visibility and intelligence they need to secure their Enterprise Digital Footprint and map their Adversaries’ infrastructure. RiskIQ’s external threat management platform, powered by a proprietary virtual-user technology, threat analysis engine, and global proxy network, enables an organization to defend against threats targeting its websites, mobile applications, brands, customers, and employees. Leading financial institutions, insurance providers and consumer as well as B2B brands use RiskIQ to protect themselves and their users from code level threats, malware, phishing, social media attacks and fraud. RiskIQ is headquartered in San Francisco and backed by growth equity firms Summit Partners and Battery Ventures. Learn more at www.riskiq.com.

Visit Website

About Carbon Black

Carbon Black leads a new era of endpoint security by enabling organizations to disrupt advanced attacks, deploy the best prevention strategies for their business, and leverage the expertise of 10,000 professionals from IR firms, MSSPs and enterprises to shift the balance of power back to security teams. Learn more at www.carbonblack.com.

Visit Website

About JPCERT/CC

JPCERT/CC is the first CSIRT (Computer Security Incident Response Team) established in Japan. The organization coordinates with network service providers, security vendors, government agencies, as well as the industry associations. Learn more at www.jpcert.or.jp/english.

Visit Website

About Netrisk

Novetta would like to thank Netrisk for their data analytics assistance, and for their continual help throughout the report generation process. Learn more about Netrisk’s capabilities at www4.netrisk.io.

Visit Website