Nyotron is an information-security company. It was established in 2009 by brothers Nir and Ofer Gaist. Nir Gaist is the CTO, and Sagit Manor (a former executive at

Verifone Verifone is an American multinational corporation headquartered in Coral Springs, Florida. Verifone provides technology for electronic payment transactions and value-added services at the point-of-sale. Verifone sells merchant-operated, consum ...

) became the CEO in 2017. The company is based in

Santa Clara, CA Santa Clara (; Spanish for " Saint Clare") is a city in Santa Clara County, California. The city's population was 127,647 at the 2020 census, making it the eighth-most populous city in the Bay Area. Located in the southern Bay Area, the cit ...

, with an R&D office in

Herzliya, Israel Herzliya ( ; he, הֶרְצְלִיָּה ; ar, هرتسليا, Hirtsiliyā) is an affluent city in the central coast of Israel, at the northern part of the Tel Aviv District, known for its robust start-up and entrepreneurial culture. In it h ...

History

In 2006 18-year-old Nir Gaist created the original concept for the technology that became Nyotron's flagship product, Paranoid. In 2007, he and Ofer traveled to

Bucharest, Romania Bucharest ( , ; ro, București ) is the capital and largest city of Romania, as well as its cultural, industrial, and financial centre. It is located in the southeast of the country, on the banks of the Dâmbovița River, less than north of ...

to develop the prototype, in partnership with Matrix Rom In 2008 he returned to

Israel Israel (; he, יִשְׂרָאֵל, ; ar, إِسْرَائِيل, ), officially the State of Israel ( he, מְדִינַת יִשְׂרָאֵל, label=none, translit=Medīnat Yīsrāʾēl; ), is a country in Western Asia. It is situated ...

seeking support from investors. Major General (ret.) Amos Malka, former director of intelligence of the

IDF IDF or idf may refer to: Defence forces * Irish Defence Forces * Israel Defense Forces *Iceland Defense Force, of the US Armed Forces, 1951-2006 * Indian Defence Force, a part-time force, 1917 Organizations * Israeli Diving Federation * Interac ...

, was among the first investors and served as Nyotron's first chairman of the board. In 2014, the first official version of Paranoid was shipped. In 2016, Nyotron moved its headquarters to Santa Clara, CA. The company launched the Global War Room SOC console in 2017 and began offering Paranoid as a service. This "Managed Detection and Response" (MDR) service, provided a solution for companies that require protection against advanced attackers and unknown threats but have limited security staff. In 2018, Nyotron signed a distribution agreement with

Ingram Micro Ingram Micro is an American distributor of information technology products and services. The company is based in Irvine, California, U.S. and has operations around the world. History Ingram Micro's origins trace back to the founding of distrib ...

. The company published an in-depth research report on the activities of the OilRig nation-state actor (aka APT34). Nyotron also joined the Anti-Malware Testing Standards Organization ( AMTSO).

Paranoid Technology

Paranoid's

anti-malware Antivirus software (abbreviated to AV software), also known as anti-malware, is a computer program used to prevent, detect, and remove malware. Antivirus software was originally developed to detect and remove computer viruses, hence the name. ...

and Endpoint Detection and Response (EDR) technology are grounded on three realizations: * There are a handful of major Operating Systems. * Their designed (good) behavior is finite. * Their core functionality changes infrequently. Nyotron created a map of the known good behavior of the

operating system An operating system (OS) is system software that manages computer hardware, software resources, and provides common services for computer programs. Time-sharing operating systems schedule tasks for efficient use of the system and may also in ...

in the areas where malicious activity would attempt access, such as

file system In computing, file system or filesystem (often abbreviated to fs) is a method and data structure that the operating system uses to control how data is stored and retrieved. Without a file system, data placed in a storage medium would be one larg ...

process A process is a series or set of activities that interact to produce a result; it may occur once-only or be recurrent or periodic. Things called a process include: Business and management *Business process, activities that produce a specific se ...

and

thread management In computer science, a thread of execution is the smallest sequence of programmed instructions that can be managed independently by a scheduler, which is typically a part of the operating system. The implementation of threads and processes dif ...

, networking and registry, and partition modification. This approach is called OS-Centric Positive Security, or automatic OS behavior

whitelisting A whitelist, allowlist, or passlist is a mechanism which explicitly allows some identified entities to access a particular privilege, service, mobility, or recognition i.e. it is a list of things allowed when everything is denied by default. It is ...

. The language used for describing these “maps” is called Behavior Patterns Mapping (BPM). This patented language does not require

machine learning Machine learning (ML) is a field of inquiry devoted to understanding and building methods that 'learn', that is, methods that leverage data to improve performance on some set of tasks. It is seen as a part of artificial intelligence. Machine ...

artificial intelligence Artificial intelligence (AI) is intelligence—perceiving, synthesizing, and inferring information—demonstrated by machines, as opposed to intelligence displayed by animals and humans. Example tasks in which this is done include speech re ...

or any other statistical or math-based algorithm. Instead, it is deterministic. Its algorithm's

complexity Complexity characterises the behaviour of a system or model whose components interaction, interact in multiple ways and follow local rules, leading to nonlinearity, randomness, collective dynamics, hierarchy, and emergence. The term is generall ...

O(1) Big ''O'' notation is a mathematical notation that describes the limiting behavior of a function when the argument tends towards a particular value or infinity. Big O is a member of a family of notations invented by Paul Bachmann, Edmund Land ...

, which means the performance doesn't degrade with the volume of input. As its OS-Centric Positive Security approach focuses only on the “good” behavior of the operating system, Paranoid detects and blocks both known and unknown

malware Malware (a portmanteau for ''malicious software'') is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, depri ...

(including zero-day exploits). The company calls this “threat-agnostic defense”. In addition to protection, Paranoid provides visibility into the attack's timelines, root cause and attacker's methods (TTPs).

Funding

In 2015 the company raised $10 million from Mivtach Shamir Holdings and other investors. In 2017, $21 million was raised by Douglas and Sandra Bergeron, founders of DGB Investments, with other investors. In 2018

made a strategic investment of $10 million.

Certifications, reviews and awards

In July 2017, Paranoid was a part of ''

SC Magazine Haymarket Media Group is a privately held media company headquartered in London. It has publications in the consumer, business and customer sectors, both print and online. It operates exhibitions allied to its own publications, and previously o ...

s Endpoint Security Group Test and received 5 out of 5 stars. The publication stated, “from the perspective of breadth and depth of analytical capability, it is one of the best, if not the best, displays of its type that we have ever seen.” In September 2017, Nyotron was labeled as a “Vendor to Watch” by Enterprise Management Associates. Nyotron was also named as a Top 50 Cyber Security Leader of 2017 by ''Cyber Defense'' magazine. In 2018, Paranoid was named “The Innovator in Endpoint Security for 2018” by ''Cyber Defense''. In September 2018, ''IT Central Station'' released a review of Paranoid, giving it 4 out of a possible 5 stars, stating “All the

ransomware Ransomware is a type of malware from cryptovirology that threatens to publish the victim's personal data or permanently block access to it unless a ransom is paid off. While some simple ransomware may lock the system without damaging any files, ...

that is now happening in many companies, this product is a solution for that. Ransomware is like a virus and transforms - it's changing every day. This product really is the best solution for this security issue. It's protecting the end-point from a ransomware threat.” In October 2018,

ICSA Labs ICSA Labs (International Computer Security Association) began as NCSA (National Computer Security Association). Its mission was to increase awareness of the need for computer security and to provide education about various security products and te ...

released a report, stating Nyotron's Paranoid was ICSA Labs certified in Advanced Threat Defense. The report goes on to say that Nyotron detected 100% of the 441 malicious samples tested, and had only 1 false positive out of 721 innocuous apps in the test. In February 2019, Nyotron won silver Cybersecurity Excellence Awards in the categories of Most Innovative Cybersecurity Company and Advanced Persistent Threat Protection. In February 2021, the company's "Vaccine for Ransomware" spam campaign caused recipients to submit the sending emails & domains to Microsoft as spam.

References

{{reflist Companies based in Herzliya Companies based in Santa Clara, California Computer security organizations