CSW acquires CYR3CON IP to provide organizations with predictive insights into exploitable vulnerabilities

Cyber Security Works (CSW), recently acquired CYR3CON IP to give CSW a set of ‘early warning’ vulnerability and threat intelligence capabilities.

The CYR3CON IP was originally developed with grants from Arizona State University (ASU) LightWorks and NEPTUNE, the U.S. Navy’s Office of Naval Research.

CSW acquired the new company’s technology to leverage powerful artificial intelligence and dark web mining capabilities to accurately predict how weaponizable vulnerabilities will detonate in the wild and in customer environments. With the acquisition, CSW gains proactive and predictive capabilities that can predict, visualize and identify real threats to client assets based on attacker behaviors – closing the biggest gap in the cybersecurity industry: deploying preventative measures proactively with defensive remediation.

“CSW’s strategy is driven by the expansion of its footprint of observable vulnerability and threat data for its growing installed base to support partners and customers in establishing resilience by aligning vulnerabilities with unprecedented threat context across an expanding attack surface,” said Ram Movva, chairman and co-founder, Cyber Security Works. “The result is an early warning system that can accurately and continuously predict the probability of how exposed vulnerabilities could be used in cyberattacks – enabling customers to fix its weaknesses pre-exploit and now, pre-breach.

The new technology intelligently sources the necessary data that, when analyzed based on attacker behaviors, predicts the likelihood of an actual attack versus broad-brushed, non-actionable risk management data. This will enable CSW to help organizations gain cyber resilience by mapping their vulnerabilities to real-world threats and prioritizing weaknesses identified through accurate threat context.

“We are extremely excited about this valuable acquisition of IP,” said Aaron Sandeen, CEO and co-founder of Cyber Security Works. “We have public alert systems for almost everything today from hazardous weather to earthquakes to missiles. Threat intelligence has always been focused on responding to incidents versus using it to prevent exploits from happening in the first place — and that needs to change. CSW is delivering an entirely new level of capability to our customers as we expand further into attack surface management to manage threats on a continuous basis and reduce exploitable risk.”

“There’s an enormous unification shift to analytics-driven, vulnerability intelligence that extends into the broader enterprise attack surface,” said Doug Cahill, Vice President and Senior Analyst, ESG Global. “Cyber Security Works’ approach in fusing early-warning intelligence with known vulnerability data aligns with the consolidation motions we are seeing in the SOC. Teams are required to extrapolate more value from vulnerability data to manage the attack surface while simultaneously growing its digital footprint.”