I am proud to announce the first public reports from SE Labs, a new security testing company that tests a whole range of security products, from the sort of anti-malware program you run on your home PC to complex combinations of enterprise endpoint agents and appliances.
The new website will be live in the next day or so, after we’ve ironed out what I hope will be the last few wrinkles. (Update: 12/05/2016 – the website is live now).
Since January 2016 we’ve been testing endpoint security products by exposing them to live web threats and targeted attacks. The results are very interesting and will probably cause some controversy.
Targeted attack testing?
How is it possible to test using targeted attacks? We’ll go into detail over the coming weeks on this blog but for now I’ll say that the tests are run using threats found and used against real targets, and include realistic variations that simulate closely how attackers with a range of resources behave.
If you can make it to the Virus Bulletin conference in Denver this year you can hear me talk about advanced ‘next-gen’ testing and challenge me in person : )
We faced significant challenges in bringing the new lab up and running over a relatively short period of time. This involved using serviced offices with fairly restrictive internet connections, cheap hardware that failed fast (thanks to Amazon prime for saving us on many, many occasions) and expensive hardware that also failed badly (‘thanks’ to Lenovo – avoid ThinkCentre desktops at all costs if you are relying on them to power your new startup! More on this sorry episode later…)
In addition to writing about the threats we see on the internet; the way we handle them; and (most importantly) the way that security products protect against them, I’ll also be contributing some advice to those considering starting up their own businesses.
I have a catalogue of “what not to do” tips to share and maybe one or two more positive pieces of advice!
The next step