It’s been just over a year since GCA released its Cybersecurity Toolkit for Small Business, and a French version was recently launched as well. At this year’s RSA Conference, GCA President and CEO Phil Reitinger sat down with Tom Field, the Senior Vice President of Information Security Media Group, to discuss the toolkit’s progress. They also discuss the state of election security, concerns about connected devices, and more. You can watch the interview here.
San Francisco, February 26, 2020 – GCA was honored last night with the SC Media 2020 Editor’s Choice Award which was presented during a ceremony in San Francisco during RSA Conference 2020.
The award is given based on information culled from SC Media events, through research conducted by the SC Media editorial team for various features and news articles, and conversations with and feedback from readers, analysts, vendors, and the Editorial Advisory Board of SC Magazine.
The award recognizes GCA’s development and deployment of global solutions that contribute to eradicating cyber risk. In 2019 we achieved a number of successes in our continued collaboration with our partners. We launched cybersecurity toolkits for small businesses and for election offices to provide these entities with practical, implementable tools to address some of the most common cyber risks. We also tackled the growing threats to the IoT environment with the implementation of the Automated IoT Defence Ecosystem (AIDE) platform, which enables IoT device manufacturers, small businesses, and others to identify vulnerabilities, mitigate risks, and secure IoT devices. To further GCA’s efforts to support secure elections and protect democracy, we have partnered with Craig Newmark Philanthropies to create the Craig Newmark Trustworthy Internet and Democracy Program, which will provide news outlets, government and election officials, and community organizations with free toolkits and online forums to help protect them from cyber threats.
“On behalf of the entire team at GCA, I’m proud to accept this recognition from SC Media and join an impressive group of past recipients,” said GCA President and CEO Philip Reitinger. “This award is a testament to the hard work of everyone at GCA, along with our partners, ambassadors, and stakeholders who strive each day to make a difference in eradicating cyber risks for the benefit of the global community.”
“When I co-founded Global Cyber Alliance in September 2015, I hoped that it would prove an invaluable agent of change in cybersecurity and create greater collaboration across sectors and borders,” said Manhattan District Attorney Cyrus R. Vance, Jr. “I thank SC Media for this award, and congratulate GCA, its Board of Directors and Committees, and its CEO Phil Reitinger for its tremendous success in protecting millions of individuals and entities at no cost to users.”
About the Global Cyber Alliance
The Global Cyber Alliance (GCA) is an international, cross-sector effort dedicated to eradicating cyber risk and improving our connected world. We achieve our mission by uniting global communities, implementing concrete solutions, and measuring the effect. Learn more at www.globalcyberalliance.org.
By Andy Bates
The London Office for Rapid Cybersecurity Advancement (LORCA) is a public-private partnership, based at the site of the 2012 London Olympic Games, that is designed to take cyber startups to the next level.
It has been amazing to see the level of competition for LORCA mentorships. The Global Cyber Alliance (GCA) recommends LORCA as a vehicle for any business that is approached by cyber companies who “need that final bit of polish.” LORCA works alongside Deloitte, Lloyds Bank, and CSIT to help take cyber companies to the next level, and in many cases they integrate GCA solutions into their work. The next step for LORCA is their Internet of Things (IoT) cyber range, which will be integrated with the GCA Automated IoT Defense Ecosystem (AIDE) platform.
The author, Andy Bates, is the Executive Director of the United Kingdom, Middle East and India for the Global Cyber Alliance. You can follow him on Twitter @andycyberbates or connect with him on LinkedIn.
By Terry Wilson
The Global Cyber Alliance recently launched the Automated IoT Defence Ecosystem (AIDE), a cybersecurity development platform for Internet of Things (IoT) products. It is an effort to test the security of IoT devices and enable small businesses, manufacturers, service providers, and individuals to identify vulnerabilities, mitigate risks, and secure IoT devices against the new threats to an increasingly interconnected environment. AIDE harvests data from the IoT devices and turns it into threat intelligence data which is then made globally available.
The AIDE platform offers capabilities for data collection, analysis, and automated defense on a scale not previously attained. This is possible by bringing existing honeyfarms located around the world together, by aggregating the data from them with data from a network of custom-made ProxyPot platforms, and by combining all that information into an analysis platform that is available to companies, academia, nonprofits, and other entities, basically, to any stakeholder interested in studying the signatures and patterns of IoT attacks.
GCA’s vision is to better protect the public and mitigate global threats by identifying risks and vulnerabilities to IoT devices.
In order to gain a realistic understanding of the attack surface, we are inquiring about the types of IoT devices used in your organization or enterprise setting.
Understanding what types of devices are most-widely deployed among its partners will help GCA anticipate what security concerns can give rise to successful attacks on IoT systems and devices.
The information provided to GCA will be used to inform our ongoing work of creating virtual IoT devices that will be located on simulated networks to study IoT attack signatures and patterns.
Currently, the AIDE project has four components:
• Analysis: AIDE aggregates attack data into an analysis platform that is available to companies, academia, nonprofits, and other. The analysis platform will be used to generate data feeds available to GCA partners and the security community.
• Distribution: Data feeds are made available throughout the cybersecurity ecosystem to enable prompt mitigation of any detected IoT attacks.
• Display: AIDE offers a real-time visualization of high-level results at the platform’s site.
• Distributed Defense: Although the output from the AIDE platform was designed to allow for automated defense, it is flexible enough to be used in many different contexts and applications.
If you’d like to help us or get more information about AIDE, please contact us at firstname.lastname@example.org.
By Aimée Larsen Kirkpatrick
Four years ago (and a day) the Global Cyber Alliance (GCA) was officially incorporated. A small team of dedicated individuals – William Pelgrin, Adnan Baykal and Mary Kavaney – worked for more than a year to bring GCA to life with support of Manhattan District Attorney, Cyrus Vance, Jr., the City of London Police, and the Center for Internet Security. GCA was a big idea, with smart people behind it and the passion and drive to do good in the world. Our mission: Unite the Global Community to Eradicate Cyber Risk.
Now, four years later, GCA has made its mark. We are living up to our mantra: Do Something. Measure It.
We have built a global partnership network of more than 260 organizations from 18 sectors and more than 30 countries. GCA staff has grown from the original 3 to 28 people in 5 countries (US, Canada, UK, Belgium and Germany).
In the four years since we were founded, we have made significant strides in making DMARC a global standard. In addition to the UK, the US, the Netherlands and New Zealand have mandated DMARC implementation across government domains. The implementation of DMARC has increased across many sectors, and we currently have a DMARC Bootcamp running with more than 1,800 participants representing 55 countries.
We developed and launched a global protective DNS service, Quad9, which protects millions of people around the world every day.
This past year we developed and launched the Cybersecurity Toolkit for Small Business and the Cybersecurity Toolkit for Elections. More toolkits and more functionality is in the works to bring these free resources to those who need them most.
Over the summer we launched the Automated IoT Defence Ecosystem (AIDE) to identify threats to IoT devices and provide threat data to manufacturers and researchers.
We’ve also taken the “Measure It” part of our mandate seriously. This past year we were able to measure the economic value of the work we’ve done on DMARC – the return on investment was up to 35 times the investment we made. We also looked at the economic benefits of protective DNS services (such as Quad9). From the incidents we analyzed, protective DNS services (had they been implemented), could have prevented 33% of breaches and saved at least $10 billion over the past 5 years.
GCA has made its mark, and we’re not done. As we move into our 5th year, we plan to achieve even greater things. Stay in touch with us, reach out and let us know if you’ve used any of the tools we’ve developed, or if you’re interested in partnering with us.
The Global Cyber Alliance released AIDE which is a threat analysis tool that studies cyber threats to internet-connected devices (IoT). Typically, researchers use “honeypots” to learn how hackers attempt to break into an IoT system. GCA’s AIDE project allows IoT device honeypots to “operate at scale without investing in a ton of devices.”