Seculert is a cloud-based

cyber security Computer security, cybersecurity (cyber security), or information technology security (IT security) is the protection of computer systems and networks from attack by malicious actors that may result in unauthorized information disclosure, the ...

technology company based in Israel. The company's technology is designed to detect breaches and

Advanced Persistent Threat An advanced persistent threat (APT) is a stealthy threat actor, typically a nation state or state-sponsored group, which gains unauthorized access to a computer network and remains undetected for an extended period. In recent times, the term may ...

s (APTs), attacking networks. Seculert's business is based on

malware Malware (a portmanteau for ''malicious software'') is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, depri ...

research and the ability to uncover malware that has gone undetected by other traditional measures. In 2012, the company was named one of the hottest new security start-ups by

The New York Times ''The New York Times'' (''the Times'', ''NYT'', or the Gray Lady) is a daily newspaper based in New York City with a worldwide readership reported in 2020 to comprise a declining 840,000 paid print subscribers, and a growing 6 million paid ...

, and a finalist in the

SC Magazine Haymarket Media Group is a privately held media company headquartered in London. It has publications in the consumer, business and customer sectors, both print and online. It operates exhibitions allied to its own publications, and previously on ...

awards for Rookie Security Company of the Year.

History

Seculert was founded in 2010 by former RSA FraudAction Research Lab Manager Aviv Raff, former

SanDisk SanDisk is a brand for flash memory products, including memory cards and readers, USB flash drives, solid-state drives, and digital audio players, manufactured and marketed by Western Digital. The original company, SanDisk Corporation was acquire ...

Product Marketing Manager Dudi Matot and former

Finjan Finjan Holdings (Finjan) is a company that focuses on the licensing of intellectual property. Finjan claims to own patented technology used in enterprise web security tools. Formerly a publicly traded company on NASDAQ (FNJN), it was acquired by t ...

VP of Operations Alex Milstein. In 2011, the company launched their first offering, Seculert Echo. Their Seculert Sense, traffic log analysis, was released in October 2012. At the

RSA Conference The RSA Conference is a series of IT security conferences. Approximately 45,000 people attend one of the conferences each year. It was founded in 1991 as a small cryptography conference. RSA conferences take place in the United States, Europe, Asia ...

in February 2013 Seculert unveiled the beta version of Seculert Swamp, a malware analysis sandbox. Seculert is privately funded and headquartered in

Petah Tikva Petah Tikva ( he, פֶּתַח תִּקְוָה, , ), also known as ''Em HaMoshavot'' (), is a city in the Central District (Israel), Central District of Israel, east of Tel Aviv. It was founded in 1878, mainly by Haredi Judaism, Haredi Jews of ...

Israel Israel (; he, יִשְׂרָאֵל, ; ar, إِسْرَائِيل, ), officially the State of Israel ( he, מְדִינַת יִשְׂרָאֵל, label=none, translit=Medīnat Yīsrāʾēl; ), is a country in Western Asia. It is situated ...

. In July 2012, the company announced $5.35M in venture funding from

YL Ventures YL Ventures is an American-Israeli venture capital firm that specializes in seed stage cybersecurity investments. Investment Firm YL Ventures is a seed-stage venture capital firm led by managing partner Yoav Leitersdorf, who founded the firm w ...

and

Norwest Venture Partners Norwest Venture Partners (Norwest) is an American venture and growth equity investment firm. The firm targets early to late-stage venture and growth equity investments across several sectors, including cloud computing and information technology, ...

. In July 2013, Seculert announced that they raised an additional $10 million in Series B funding fro
Sequoia Capital
On January 31, 2017, Seculert was acquired by

Radware Radware Inc. is an American provider of cybersecurity and application delivery products for physical, cloud and software-defined data centers. Radware's corporate headquarters are located in Mahwah, New Jersey. The company also has offices in Eur ...

, a company based out of

Mahwah, New Jersey Mahwah is the northernmost and largest municipality by geographic area () in Bergen County, in the U.S. state of New Jersey. As of the 2020 U.S. census, the population of the township was 25,487, a decline of 403 from the 25,890 counted in the ...

, US.

Notable alerts

In January 2012, Seculert discovered that

Ramnit Ramnit is a computer worm affecting Windows users. It was estimated that it infected 800 000 Windows PCs between September and December 2011. The Ramnit botnet was dismantled by Europol and Symantec in 2015. At its peak in 2015, Ramnit was estimat ...

started targeting Facebook accounts with considerable success, stealing over 45,000

Facebook Facebook is an online social media and social networking service owned by American company Meta Platforms. Founded in 2004 by Mark Zuckerberg with fellow Harvard College students and roommates Eduardo Saverin, Andrew McCollum, Dustin M ...

France France (), officially the French Republic ( ), is a country primarily located in Western Europe. It also comprises of Overseas France, overseas regions and territories in the Americas and the Atlantic Ocean, Atlantic, Pacific Ocean, Pac ...

. In March 2012, Seculert reported that

Kelihos botnet The Kelihos botnet, also known as Hlux, is a botnet mainly involved in spamming and the theft of bitcoins. History The Kelihos botnet was first discovered around . Researchers originally suspected having found a new version of either the Storm ...

, which was distributed as a Facebook worm, was still active and spreading. In July 2012, Seculert, in conjunction with

Kaspersky Lab Kaspersky Lab (; Russian: Лаборатория Касперского, tr. ''Laboratoriya Kasperskogo'') is a Russian multinational cybersecurity and anti-virus provider headquartered in Moscow, Russia, and operated by a holding company in th ...

uncovered an ongoing cyber espionage campaign targeting Iran and other Middle Eastern countries dubbed

Mahdi (malware) Mahdi is computer malware that was initially discovered in February 2012 and was reported in July of that year. According to Kaspersky Lab and Seculert (an Israeli security firm which discovered the malware), the software has been used for targeted ...

. In August 2012, Seculert, Kaspersky Lab and Symantec revealed the discovery of

Shamoon Shamoon ( fa, شمعون), also known as W32.DistTrack, is a modular computer virus that was discovered in 2012, targeting then-recent 32-bit NT kernel versions of Microsoft Windows. The virus was notable due to the destructive nature of the attac ...

, a sophisticated malware that attacked Qatar's natural gas firm, Rasgas and the Saudi Arabian Oil Company, ARAMCO. In December 2012, Seculert uncovered

Dexter Dexter may refer to: Arts and entertainment * Dexter, the main character of the American animated series ''Dexter's Laboratory'' that aired from 1996 to 2003 * Dexter, a fictional character in the British Diary of a Bad Man#Main, web series ''Diar ...

, a new malware that steals payment card data from point-of-sale terminals used by stores, hotels, and other businesses. Most of the victim businesses were English-speaking, with 42 percent based in North America, and 19 percent in the U.K. Dexter infected systems running a variety of different versions of Windows, including XP, Home Server, Server 2003, and Windows 7. In January 2013, Kaspersky Labs (KL) revealed a cyber espionage operation dubbed

Red October The October Revolution,. officially known as the Great October Socialist Revolution. in the Soviet Union, also known as the Bolshevik Revolution, was a revolution in Russia led by the Bolshevik Party of Vladimir Lenin that was a key moment ...

. The next day, Seculert identified a special folder used by the attackers for an additional attack vector. In this vector, the attackers sent an email with an embedded link to a specially crafted PHP web page. This webpage exploited a vulnerability in Java, and in the background downloaded and executed the malware automatically. In January 2014, the Seculert Research Lab identified a new targeted attack that used Xtreme

RAT Rats are various medium-sized, long-tailed rodents. Species of rats are found throughout the order Rodentia, but stereotypical rats are found in the genus ''Rattus''. Other rat genera include ''Neotoma'' ( pack rats), ''Bandicota'' (bandicoot ...

. This attack used

spear phishing Phishing is a type of Social engineering (security), social engineering where an attacker sends a fraudulent (e.g., spoofed, fake, or otherwise deceptive) message designed to trick a person into revealing sensitive information to the attacker ...

emails to target Israeli organizations and deploy the piece of advanced malware. To date, 15 machines have been compromised including ones belonging to the

Israeli Civil Administration The Civil Administration ( he, המנהל האזרחי, '; ar, الإدارة المدنية الإسرائيلية) is the Israeli governing body that operates in the West Bank. It was established by the government of Israel in 1981, in order ...

. In April 2014, the Dyre Wolf malware campaign mad
headlines
as a banking

trojan Trojan or Trojans may refer to: * Of or from the ancient city of Troy * Trojan language, the language of the historical Trojans Arts and entertainment Music * ''Les Troyens'' ('The Trojans'), an opera by Berlioz, premiered part 1863, part 1890 ...

that bypassed 2 factor authentication in order to steal over $1 million from corporate bank accounts.

Awards

*2013 Rookie Security Company, Awards Finalist -

*2013 Red Herring, Europe Finalists

Automated breach detection product

Several detection and protection technologies are combined in a cloud-based solution that works to identify new cyber threats. Automated Traffic Log Analysis is a cloud-based analysis engine that leverages HTTP/S gateway traffic logs collected over time, analyzing petabytes of data to identify malware activity. It automatically identifies unknown malware by detecting malicious patterns and anomalies. Seculert Traffic Log Analysis pinpoints evidence of targeted attacks. Elastic Sandbox is an elastic, cloud-based automated malware analysis environment. The Seculert Elastic sandbox includes automatic analysis and classification of suspicious files over time. It analyzes potentially malicious files on different platforms and can simulate different geographic regions. The Seculert Elastic Sandbox generates malware behavioral profiles by crunching over 40,000 malware samples on a daily basis and by leveraging data from its crowdsourced threat repository.

References

{{reflist, 30em

External links

Company website
Computer security companies specializing in botnets Information technology companies of Israel Privately held companies of Israel Technology companies established in 2010 Companies based in Petah Tikva