SOFTWARE
BlackBerry | July 27, 2021
BlackBerry Limited today announced the availability of BlackBerry Jarvis 2.0, the company's premier software composition analysis tool.
BlackBerry Jarvis 2.0 introduces a SaaS version of the original Jarvis capabilities, providing developers and integrators with a more user-friendly, focused feature set centred on the three most important areas that those developing mission-critical applications must validate to ensure the quality of their multi-tiered software supply chain: Open-source Software (OSS), Common Vulnerabilities, and Exposurability.
BlackBerry Jarvis 2.0, designed to address the increasing complexity and growing cybersecurity threats among multi-tiered software supply chains in the medical, automotive, and aerospace industries, enables OEMs to inspect the provenance of their code and every single software asset that comes into their overall supply chains to ensure their products are both secure and updated with the most reliant software.
With over 150,000 publicly reported vulnerabilities as of mid-July 2021, creating software for a contemporary automobile is significantly easier said than done. Hundreds of third-party software modules may be included in a complicated piece of software for a vehicle entertainment system. Failure to examine and update each piece of software leaves vulnerabilities accessible for hackers to exploit.
BlackBerry Jarvis 2.0 addresses the requirement to discover and remediate vulnerabilities by recognising them and then offering meaningful actionable insights in minutes - something that would otherwise need human scanning, which would require a huge number of experts and an inordinate amount of time.
"A number of cybersecurity legislative developments and standards, such as UNECE WP.29 and SBOM, are on the horizon, which will allow authorities to charge penalties or shut down operations totally for noncompliance." "As a result, the moment has come for OEMs to get control of their whole code base," stated Adam Boulton, Chief Technology Officer, BlackBerry Technology Solutions. "Don't stand by and watch as a bad actor exploits a vulnerability that could have far-reaching implications." With the release of BlackBerry Jarvis 2.0, embedded software developers and integrators now have an easy-to-use and dependable software composition analysis tool to assist them in meeting their cybersecurity objectives with efficiency and confidence.
"Securing embedded devices at the firmware layer is becoming an essential aspect of device security management as software supply chains get more complicated and cyberattacks become more sophisticated. BlackBerry has transformed years of knowledge and experience in embedded device security into an excellent, feature-rich tool for software binary analysis with Jarvis 2.0."
- Hiten Shah, Senior Analyst, Frost & Sullivan's TechVision
About BlackBerry
BlackBerry is a global provider of sophisticated security software and services to businesses and governments. The company protects over 500 million endpoints, including 195 million cars. The company, based in Waterloo, Ontario, uses AI and machine learning to create new solutions in the fields of cybersecurity, safety, and data privacy, and is a leader in endpoint security, endpoint management, encryption, and embedded systems. BlackBerry's aim is simple: to ensure a connected future you can rely on.
Read More
SDxCentral | March 07, 2019
AT&T announced a new standalone security division, AT&T Cybersecurity, at this week’s RSA Conference. It combines technology and threat intelligence from Alien Vault, which the operator acquired last year, and AT&T’s security consulting and managed services. Also this week, AT&T became the first North American operator to join the Global Telco Security Alliance. The group, which was launched last year by Etisalat, Singtel, SoftBank, and Telefónica, shares threat intelligence and security best practices in an effort to help telcos protect their customers from cyberattacks. AT&T joined as a founding member. “Threat intelligence will continue to be a core of what we do,” said Sanjay Ramnath, assistant vice president of product marketing for AT&T Cybersecurity, in an interview at RSA. “We already have a really strong history of collaborating with the community and making our intelligence data available to our customers and sharing with the larger community.” When asked if he expects AT&T’s move to spur other North American carriers to join the Global Telco Security Alliance, he said “I hope so. If we can be an inspiration for the others to participate then we’re doing a good job.” Ramnath joined AT&T through the AlienVault purchase. Merging the two companies into a new AT&T division “has a very unique value proposition that can be articulated from three pillars,” he said. “The first pillar is phenomenal threat intelligence.” Alien Labs Threat Intel: Even before joining AT&T, AlienVault was perhaps best known for creating the Open Threat Exchange. Today, the open community has more than 100,000 participants across the globe. These researchers and security experts collaborate and deliver community-generated threat data that helps companies keep on top of the latest security threats.
Read More
Infosecurity Magazine | March 01, 2019
The state of Massachusetts is reportedly facing increased cyber threats from adversaries who are trying to steal sensitive information, according to the Gloucester Daily Times. In an interview with Stephanie Helm, director of the MassCyberCenter, State House reporter Christian M. Wade learned that the state’s computer systems as well as Massachusetts businesses and individuals are at risk due to increased cyber threats. "The threat is very real, and anything that is computer-based is vulnerable to exploitation," Helm told the Gloucester Daily Times. "The severity of the threats depend on the adversary and their objective. Sometimes they want your information, sometimes they want your money." "We have a lot of very unique intellectual property in Massachusetts that we need to do our best to protect," she said. "We've also got a lot of big corporations, and their livelihood is based on strong cybersecurity." Part of the Massachusetts Technology Collaborative, the MassCyberCenter is an initiative to improve cyber-resiliency and strengthen the cybersecurity ecosystem in Massachusetts. Developed two years ago, the center's mission is to "enhance conditions for economic growth through outreach to the cybersecurity ecosystem of Massachusetts while fostering cybersecurity resiliency within the Commonwealth," according to its website. Lofty goals for a team of two: director Helm and Meg Speranza, resiliency program manager. "Consistent with the efforts that Governor Baker announced in his 2017 State-of-the-State address, Massachusetts has made combatting advanced cyber threats a priority," said Michael Figueroa, executive director, Advanced Cyber Security Center.
Read More