Top FBI cyber-cop joins spy thwarting startup

Apr 19, 2012
Veteran FBI cyber security expert Shawn Henry, pictured here in December 2010, said he is fighting the enemy on a new front by joining a startup out to protect firms from online spies.

Veteran FBI cyber security expert Shawn Henry said he is fighting the enemy on a new front by joining a startup out to protect firms from online spies.

After 24 years of working for the FBI, Henry has switched to the private sector as the head of a CrowdStrike division specializing in incident responses and identifying adversaries.

"I've been saying that the private sector could be filling the Internet security void that the government hasn't been filling," Henry told AFP on Wednesday.

"Now I can do something," he continued. "CrowdStrike was going to do everything I said we should be doing."

Former McAfee George Kurtz and Dmitri Alperovitch, who has researched major cyber operations, had operated CrowdStrike in "stealth mode" until early this year.

The startup got $26 million in backing from global Warburg Pincus.

Relentless waves of cyber attacks that appeared to be the work of states inspired the researchers come up with a different way of taking on the threat.

"Most companies are focused on detecting , and there are millions of pieces of that, with new ones coming all the time," Kurtz told AFP in a recent interview.

"It really is akin to focusing on the bullets in the gun as opposed to the shooter... We think most companies have an adversary problem, not a malware problem."

CrowdStrike is building tools to figure out who is behind attacks, how they move after invading systems and what they are out to steal or accomplish, according to the researchers.

"You can't know how best to fight a war without knowing who the enemy is, and it is the same thing in ," Alperovitch said, describing China and Russia as the most prominent threats.

CrowdStrike plans to have a security product to market in the second half of this year.

"At the end of the day it is another guy sitting at a keyboard somewhere going after your data," Alperovitch said. "You don't have a malware problem, you have a people problem."

The idea of using intelligence to understand and "mitigate adversaries" resonated with Henry.

"You can't just build a wall higher and higher," he said, referring to computer security that relies on software barriers to stop viruses or intruders.

"We are focusing on identifying them inside the network and making the cost of intrusion much higher."

Former FBI executive director Henry coordinated responses by federal and local police to cyber threats.

Explore further: Twitpic to stay alive with new owner

add to favorites email to friend print save as pdf

Related Stories

Firm warns of hacker threat to mobile gadgets

Feb 29, 2012

Cyber security veterans behind startup CrowdStrike will demonstrate at the RSA conference on Wednesday that the types of attacks used against computers are heading for smartphones.

Cyber-security expert finds new flaw in smartphones

Feb 24, 2012

Just as U.S. companies are coming to grips with threats to their computer networks emanating from cyber-spies based in China, a noted expert is highlighting what he says is an even more pernicious vulnerability in smartphones.

FBI director: Cyber-threats will become top worry

Mar 02, 2012

(AP) -- The director of the FBI told an annual gathering of cyber-security professionals on Thursday that the agency needs the private sector to help combat what he believes is becoming the nation's No. 1 threat.

UK govt to announce new cyber security strategy

Nov 25, 2011

The government is set to announce new measures to tackle cyber crime on Friday as Britain's internet and electronic communications network comes under increased attack from hackers and foreign intelligence ...

Recommended for you

Facebook dressed down over 'real names' policy

Sep 17, 2014

Facebook says it temporarily restored hundreds of deleted profiles of self-described drag queens and others, but declined to change a policy requiring account holders to use their real names rather than drag names such as ...

Yelp to pay US fine for child privacy violation

Sep 17, 2014

Online ratings operator Yelp agreed to pay $450,000 to settle US charges that it illegally collected data on children, in violation of privacy laws, officials said Wednesday.

User comments : 0