Massachusetts and Bengaluru cybersecurity startup FireCompass claims to assist enterprises from facts breaches with the aid of continuously scanning the deep, dark and floor webs using AI-tools
FireCompass’ fee stages between $15K to $500K, and counts Sprint (which is now a part of T-Mobile), Security Innovation, Nykaa, Manthan and L&T as its clients
FireCompass is sponsored with the aid of traders and project capital price range which includes Phanindra Sama, Khiro Mishra, Ed Adams and Bharat Innovation Fund amongst others
Justdial, Bigbasket, Unacademy — these are a number of India’s biggest tech agencies and startups, with the latter being unicorns and Justdial being one of India’s handful of publicly-listed tech corporations. Coincidentally, they are also the subject of 3 of the maximum high-profile statistics leaks from India over the past two years.
As an increasing number of agencies and government entities revel in the heat of security breaches, the wave of compromised facts is only going to get worse. The recent records leak from Bigbasket affected over 20 Mn users whose names, e-mail IDs, addresses, dates of beginning, locations, password hashes, contact numbers (mobile and get in touch with) and IP addresses of login and extra have been uncovered. Reactive in its method, BigBasket learnt the difficult manner and is now reassessing the volume of the breach.
Besides those 3 agencies, Paytm Mall, Religare Health Insurance, Truecaller and others have also fallen prey to hacks, at the same time as even Prime Minister Narendra Modi is not proof against such attacks. The PM’s Twitter account and his internet site have been targetted in separate hacks.
In October, a leaked database exposed personal facts of users who had donated price range to the PM Relief Fund and several other such price range for the PM’s puppy reasons along with “Beti Bachao Beti Padhao (female baby training)”. Over 5.7 Lakh users of the internet site had been impacted, some of whom noticed their bank-associated information compromised. This just highlights the severity of the scenario. National Cyber Security Coordinator Lt Gen (Dr) Rajesh Pant had additionally stated that India lost near INR 1.25 Cr because of cyber crimes.
Targetting the rising cyber protection risk for companies inside the united states of america and around the sector, cybersecurity startup FireCompass is taking a proactive technique and focused on the source of the assault so agencies can take steps to mitigate them in real-time as opposed to addressing remoted incidents after leaks or breaches.
“We want to live one step ahead of the hackers by using proactively monitoring and orchestrating these attacks,” stated Bikash Barai, cofounder at FireCompass, an AI-powered cybersecurity startup.
Traditionally, agencies used to settlement so-known as ‘moral hackers’, essentially white-hat cyber safety consultants, to evaluate and check the vulnerability of the platform the use of more than one tools. The assignment right here is that everytime there's a new APIs or device, there's a want for an increasing number of moral hackers. But, alas, there exists a dearth in skills as properly.
Automating the complete enjoy, FireCompass claims its platform calls for no human intervention because it routinely conducts penetration checking out the use of network, cloud, application, e-mail and multistage assaults. The gadget then sends indicators to worried stakeholders upon discovering the vulnerability.
Founded by way of serial marketers Bikash Barai, Nilanjan De and Priyanka Aash in 2019, the organisation has developed a SaaS platform for Continuous Automated Red Teaming (CART) which was released ultimate month. This goes at the side of its Attack Surface Management (ASM) and Ransomware Attack Surface Monitoring (RASM) products. With those, the group continuously indexes and video display units the deep, darkish and floor webs the usage of nation-state grade reconnaissance techniques. Prior to starting FireCompass, the founders had evolved India’s first SaaS security company which became sponsored by IDG Ventures, and later received by means of Cigital (now Synopsys).
FireCompass claims to discover the virtual assault surface for its customers and launches multi-stage secure attacks which don’t surely have an effect on the records of the business or employer. This facilitates pick out breach and attack paths which are in any other case ignored out by using conventional gear. Some of its clients include US telecom large Sprint, Security Innovation, Nykaa (which incidentally suffered a records leak closing year), Manthan, Larsen & Toubro and Edelweiss amongst others.
Furthermore, its platform is said to mechanically discover an enterprise’s ever-changing digital assault floor, such as unknown exposed databases, cloud buckets, code leaks, unstable cloud belongings, exposed credentials, APIs and open ports. Once discovered, its attack engine then launches multi-stage attacks, which incorporates community attacks, social engineering attacks, utility attacks, that are otherwise missed through conventional moral hacking tools, inclusive of SuperScan, Network Mapper, Metasploit, Angry IP Scanner and others.
On the opposite hand, FireCompass’ CART claims to uniquely combine Attack Surface Management (ASM), and multiple safety testing technologies, thereby doing away with the need for more than one equipment and huge manual effort, and time. “Scans that took weeks and months, with our platform it is able to be finished in minutes or hours,” stated Barai.
FireCompass said that it presently specializes in global customers, together with early-stage agencies in India, who're serious approximately information safety and safety of virtual belongings. Given the company SaaS model, the pricing levels between $15K (small organizations) and $500K (massive enterprises) annually relying at the usage.
Currently, FireCompass is backed through investors and assignment capital finances consisting of Phanindra Sama (former CEO & co-founder Red Bus), Khiro Mishra (former CEO NTT Securities America), Ed Adams (President & CEO Security Innovation Inc.) and CIIE.CO’s Bharat Innovation Fund. As the employer is heavily trying to put money into generation and talent, its unit economic system that is currently high quality in the mean time is probably to turn terrible within the coming years. The cofounder additionally stated that they've already raised funding from diverse traders, and will be saying it soon.
Reinventing Traditional Red Teaming Using AI & SaaS
In the worldwide market, FireCompass competes with the likes of cybersecurity startups such as Randori, CyCognito, Nessus, Seconize, Tenable.Io amongst others. “While all and sundry is attempting to innovate, there are only some gamers within the area who scans the darkish web and consciousness on the attacks, except floor discovery,” claimed Barai.
Also Read:- Growing Demand for Smart TVs
FireCompass claims to leverage gadget mastering, which facilitates the platform generate intelligence, constantly without the need for on-premise software program, hardware or additional worker sources at the patron give up.
It runs on a homogenous massive information platform where all the information receives stored and listed, which then is used to run attacks and test for vulnerabilities and threats. “We aren't looking to monetise the records amassed from our customers in any manner,” added Barai.
Further, Barai said in the cyber protection space any organization that says to offer 100% safety and away from information breach is relatively unlikely, rather the intention should be to cover numerous ranges of protection and answers including community level protection, software level security and other benchmarks.
“Most importantly, we act as pleasant advisors for organisations to assist them be organized and withstand such assaults from occurring through countryside actors/ethical hackers,” he concluded declaring “hack your self before hackers do!”