A Holiday Message
Irrespective of what industry you’re in and where you’re located in this world, 2020 has been an unexpectedly eventful year. Ranging from the state of global health to national politics to social justice, the challenges we continue to face have rested heavy on our minds, hearts, and souls.
Yet, in all of this, I also see the good that’s happened in 2020. This year has been a year of reflection and, most of all, tremendous growth for ForAllSecure and Mayhem.
Listed below are just a few of ForAllSecure’s 2020 highlights:
ForAllSecure Received a $45M DoD Contract to Deploy Mayhem
There are mounting challenges in protecting DoD weapons systems from increasingly sophisticated attacks. This state is due to the computerized nature of weapon systems; the DoD’s late start in prioritizing weapon systems cybersecurity; and DoD’s nascent understanding of how to develop more secure weapon systems. DoD weapon systems are more software dependent and more networked than ever before
– Weapon System Cybersecurity: DoD Just Beginning to Grapple with Scale of Vulnerabilities, GAO-19-128
On May 11th, we announced that we were awarded a contract of up to $45M with Defense Innovation Unit (DIU) to expand Mayhem into some of the DoD’s most critical systems. Mayhem continues to be used throughout many entities within the DoD including but not limited to: the Air Force 96th Cyberspace Test Group, the Air Force 90th Cyberspace Operations Squadron, the Naval Sea Systems Command (NAVSEA) and the U.S. Army Command, Control, Communication, Computers, Cyber, Intelligence, Surveillance and Reconnaissance Center (C5ISR).
Since our 2016 DARPA CGC win, the Department of Defense has continued to be a strong supporter of Mayhem and for that, we thank you.
ForAllSecure Selected As a Finalist in RSA Innovation Sandbox (ISB) 2020
On February 24, we were one of ten finalists for the title at RSA ISB 2020. The opportunity to be a part of this competition was a strong market signal, highlighting the need for Autonomous Application Security. In fact, it was this year that Autonomous Testing was introduced in Gartner’s 2020 Hype Cycle for Agile and DevOps report.
Advanced Security Testing, Simplified.
Find out what Mayhem, a DARPA Cyber Grand Challenge winning technology, can do for you.
ForAllSecure Launches The Industry’s First FuzzCon
Giving back to the community is a priority of ours. As we reflected on the best way we can give back, we landed on a forum where the fuzzing community can get together, ask each other questions, and standardize on best practices. So, this year we launched the industry’s first FuzzCon to coincide with RSA 2020.
The sincerest thank you from the ForAllSecure team. The event couldn’t have been more of a hit. Due to the overwhelming response, we’ve even started producing a mini series of the fireside chat to hold you over until FuzzCon 2021. Stay tuned for more info!
ForAllSecure Makes Big Moves into the Commercial Sector
There were two main factors that led us to choose Mayhem as our fuzz testing solution: it’s a common platform, making it easy to implement, and it runs autonomously. Developers can give Mayhem their app and it will autonomously start detecting bugs on its own — out of the box, no harnessing required. I can set it and forget it. Mayhem will reproduce issues on its own, helping developers quickly and easily fix issues. No other fuzzing platform does that right now.
– David Haynes, Cloudflare Security Engineer
It’s no secret that with our DARPA Cyber Grand Challenge (CGC) beginnings and DoD support, Federal has been our beachhead. This year, we’ve started making moves into the commercial sector, helping organizations in industries such as automotive (also known as mobility), fintech, and high-tech. This wouldn’t have been possible without our customers’ tremendous support, and passionate love for Mayhem.
ForAllSecure Named in Business Insider’s 25 Start-Ups in Red-Hot Developer Security Sector List
Developer security is one of the fastest-growing segments of the booming cybersecurity industry, according to the analysis firm PitchBook. PitchBook pegs application security — which developer security, or DevOps, falls under — as a $4.7 billion market as of 2020.
– Developer security in booming as hack-prevention starts earlier than ever: Here are the 25 startup you need to know in this red-hot space, Jeff Elder and Keerthi Vendatam
This year, ForAllSecure had the privilege to be listed in Business Insider’s Top Start-Ups list. ForAllSecure is listed among impressive players, such as Snyk, Contrast Security, Auth0, Tigera, StackRox, ShiftLeft, vArmour, Capsule8, and more. According to PitchBook, developer-based security is anticipated to be one of the fastest growing segments of the booming cybersecurity industry.
Also, Rob Lemos of DarkReading predicted earlier this year that fuzz testing in particular is expected to become mainstream as DevOps and Agile continue to rise. This prediction is in contrast to how fuzz testing had been considered previously, where it remained one of the last application security testing technologies to be adopted. The change is because, unlike most security testing techniques, fuzzing is able to address many gaps and challenges that come with continuous “anything”, whether it be integration, delivery, or testing. We’ve also seen shifts in the market, with GitLab acquiring not one, but two fuzz testing companies this year.
This list is nowhere near comprehensive, and this is a list of achievements that couldn’t have happened without the support of our customers.
2020 may be coming to a close, but our dedication in helping organizations secure your software never stops. We look forward to what the future holds in store for us.
Until then, from the ForAllSecure family to yours, extending the warmest wishes this holiday season.
Onward,
David Brumley
CEO, ForAllSecure
*** This is a Security Bloggers Network syndicated blog from Latest blog posts authored by David Brumley. Read the original post at: https://forallsecure.com/blog/test/holiday-message
