AirPatrol Press Releases, Announcements, Tweets and In The Media

AirPatrol and MAD Team Up to Offer Granular Geo-Location Based Mobile Security Policy Enforcement
"MAD is the industry leader in mobile device security and its partnership with AirPatrol is the natural evolution of securing mobility to the most stringent levels," stated Tom Kellermann, CTO and Chief Cybersecurity Strategist of AirPatrol. "It is now essential to have a policy on a device that protects and enables it concurrently, based upon its physical location. The explosion of blended attacks demands unique technology partnerships."
22 Feb 2012

How Much Have Foreign Hackers Stolen?
"We never let go of these things," said Tom Kellermann, Chief Technology Officer at AirPatrol, a wireless security company. "We work with them; we even sleep next to them. That's the dark side of Web 3.0. Once someone hacks your device, they don't just hack the back end, they hack your network. They can turn your camera and microphone on. They can hack your whole life."
14 Feb 2012

Nortel Breach Raises Security Concerns For Telecom Industry
Tom Kellermann, CTO of AirPatrol and a member of the Commission on Cybersecurity for the 44th Presidency, said the breach of Nortel could give hackers "a persistent presence in the telecommunications network."
14 Feb 2012

MDM Is Not Security: 'Disruption' at the Mobile Security Pavilion and Theater - RSA 2012
Many enterprises in the private and government sectors, initially under the belief that MDM alone would solve their mobile enterprise security needs, have discovered the painful truth: MDM is not security. AirPatrol calls this Cognitive Mobile Security and M.A.D. (Mobile Active Defense) calls it Geo-Location Based Policy Enforcement. In short, the demonstration shows the capabilities of a mobile device to morph and adhere to changing security policies based on the physical location of the device.
14 Feb 2012

Google Wallet Hack Raises Concerns Over Mobile Payment Security
While Google is confident about their security, at least one security researcher is still concerned. Tom Kellermann, CTO of AirPatrol Corp told InternetNews.com that attacks on mobile payments have been ongoing in Asia for years. Those attacks are now likely to migrate to the U.S.
"The current security mechanisms for mobile devices are not mature enough to handle the advanced cybercriminal," Kellermann said. "Google should have invested more heavily in securing Google Wallet -- encryption alone will not save you in today's world."
13 Feb 2012

Traveling Light in a Time of Digital Thievery
At AirPatrol, a company based in Columbia, Md., that specializes in wireless security systems, employees take only loaner devices to China and Russia, never enable Bluetooth and always switch off the microphone and camera. “We operate under the assumption that we will inevitably be compromised,” said Tom Kellermann, the company’s chief technology officer and a member of President Obama’s commission on cybersecurity.
10 Feb 2012

AirPatrol Releases ZoneDefense 1.2 and Extends Previous Capabilities
AirPatrol Corporation, a leader in cognitive mobile security, has just released version 1.2 of ZoneDefense less than six months after the initial revealing of the revolutionary product. Release of Version 1.2 extends 1.1 with Further Integration, Windows OS support, Multi-Site Facilities, Product Enhancements and more.
9 Feb 2012

News Release: AirPatrol Welcomes Scott B. Mexic to its Federal Advisory Board
“AirPatrol’s Federal Advisory Board has gained extensive federal experience and expertise through Scott Mexic joining,” stated AirPatrol’s Executive Chairman, Bradley Rotter. “Scott’s relationships and focus are a great asset to AirPatrol.”
Scott worked for the US government for 24 years in senior positions with the White House, the U.S. Congress, the US Embassy in Kabul, Dept. of Agriculture, Dept. of Transportation and Dept. of Housing and Urban Development. Since retiring from the US government, Scott has focused on International Business Development opportunities in Europe, the Balkans and Africa.
8 Feb 2012

Retaliation Fears Spur Anonymity in Internet Case
The decision to keep names out of public statements "shows deference to the sophistication and resolve" of the hacker subculture, said Tom Kellermann, chief technology officer of AirPatrol Corp., a mobile-technology company. "The Internet is a lawless place, and we've seen a turning point where governments and regimes no longer have a monopoly on technology."
28 Jan 2012

Suspicion grows China was behind hack of U.S. commission
"It's all about trust relationships and getting inside the trust ecosystems -- whether they be digital ecosystems or interpersonal relationships," said Tom Kellermann, a cyber security expert who has served as a policy advisor to the Obama administration.
"Individuals many times are targeted not just for the network of computers to which they have access, but to the network of individuals to which they have access," said Kellermann, chief technology officer of a company known as AirPatrol Corp.
19 Jan 2012

Exploit of Wi-Fi Protected Setup Flaw Poses Risks for Consumers, Not Enterprises
"Vulnerabilities in the Wi-Fi Protected Setup (WPS) protocol that allow attackers to recover WPA/WPA2 passphrases have existed for over one year now," Tom Kellermann, CTO of Wi-Fi security vendor AirPatrol told InternetNews.com. "The routers can and will be hijacked as man-in-the-middle attacks begin to evolve to compromising base stations."
3 Jan 2012

News Release: Steve Briganti, First CIO of the Navy, Joins AirPatrol's Federal Advisory Board
"AirPatrol is happy to have Steve Briganti join our Federal Advisory Board," stated AirPatrol's Executive Chairman, Bradley Rotter. "Steve's broad background and public-private experience will greatly enhance the strength of our team."
Steve was the first CIO of the Navy and has served in a range of executive positions for over 20 years, from co-founding and growing successful technology startup companies and a cyber security non-profit to deploying billion dollar global network enterprises at government agencies for Fortune 200 companies.
28 Dec 2011

China Hackers Breached U.S. Chamber of Commerce
“Economic espionage by the Chinese has hit its 5th gear in 2011,” Tom Kellermann, CTO at AirPatrol, and who formerly worked for both the IMF and the World Bank, told SecurityWeek. “This attack has the signature modus operandi of the Chinese’s Thousand Grains of Sand approach to infiltrate the trust relationships between the pillars of the economic community in the US and their constituencies,” Kellermann added.
21 Dec 2011

Hacked Chamber of Commerce Opposed Cybersecurity Law
“This happens all the time,” says Tom Kellermann, chief technology officer at AirPatrol Corp. and a member of President Barack Obama’s commission on cyber security. “This is essentially the modus operandi of China’s economic espionage campaign. Hackers use a trade group as a beachhead to compromise the constituency. What intellectual property does the Chamber have? They don’t. But they’re trusted.”
21 Dec 2011

Chinese Hackers Used 'Spear Phishing' To Attack U.S. Chamber Of Commerce
"It's not about the Chamber; it's about whom they touch," said Tom Kellermann, chief technology officer of mobile security company AirPatrol Corp. "The hackers were trying to tap into the systems of the Chamber's constituencies."
21 Dec 2011

Chamber hack highlights business cyber Catch-22
By Jennifer Martinez of PoliticoPro.com
21 Dec 2011

The cyberattack on industry's most powerful Washington lobby, the U.S. Chamber of Commerce, underscores a contradiction in the business community's posture on cybersecurity legislation from Congress.

Businesses want more warnings from the government about threats, but they don't want regulations assigning them more responsibility and reporting requirements.

But as industry has fought against new regulations in proposed cybersecurity legislation, several companies and institutions have been hit by major hacker attacks this year. The roster includes Citibank, the International Monetary Fund, RSA, Sony and Epsilon. The Wall Street Journal reported on Tuesday that the Chamber was the victim over a year ago of a cyberattack stemming from China.

For its part, the Chamber said its positions on cybersecurity policy are based on the perspectives of its members and haven't been altered by the attack.

"Our positions on cybersecurity legislation, including the need for enhanced public-private partnerships and improved information sharing, remain unchanged," said Matthew Eggers, senior director of the national security and emergency preparedness department at the Chamber. "We're even more sympathetic to the views of our members, who state that additional reporting requirements and prescriptive regulations only hinder - not aid - quick-moving cyber incidents."

Congress and industry have haggled for months on proposed cybersecurity legislation that would tack on additional responsibilities and regulations onto critical infrastructure operators and possibly other businesses. Fingers have been pointed at industry for slowing down negotiations over thorny issues including liability protections, auditing and data breach disclosure requirements. Meanwhile, industry argues that reporting breaches to the government could put their core businesses at risk and implementing new regulations will actually do little to prevent sophisticated attacks.

While the intrusion into the Chamber's systems was detected and addressed over a year ago, some argued there's a sense of irony in the news about the attack on the powerful business lobby. The Chamber is one of the most prominent critics of legislation being considered in Congress that is primarily intended to better secure government and critical infrastructure networks. After the White House released its cybersecurity legislative proposal to Congress this spring, the Journal published a draft position paper from the Chamber that described the plan as overreaching and outlined concerns with it.

"The hypocrisy is powerful," said Tom Kellermann, chief technology officer at wireless security company AirPatrol Corp. and a former cybersecurity official at the World Bank. Industry hasn't comprehended that "a laissez-faire approach to cybersecurity has failed," he continued, and "it's been extremely painful and arduous for politicians" to move the needle on legislation as a result.

"Many of these industries are already regulated. The problem is they're already regulated, but they're not adhering to any standards of care as it relates to cybersecurity," Kellermann said. "Cybersecurity is viewed as an expense instead of as functionality of doing business."

For example, industry bristled earlier this fall when the Securities and Exchange Commission issued guidance to publicly traded companies about what they're obligated to disclose when hit by a cybersecurity breach. The commission's move came after Senate Commerce Committee Chairman Jay Rockefeller (D-W.Va.) wrote a letter to SEC Chairman Mary Schapiro in May urging the commission to clarify cybersecurity disclosure requirements. One former Hill aide suggested the attack on the Chamber could impact its clout on cyber policy.

"This breach has not only compromised sensitive and confidential business data, but it may also jeopardize the Chamber's credibility on cyber legislation and policy development," said Jacob Olcott, principal at Good Harbor Consulting and former congressional adviser on cybersecurity issues in the Senate and House. But industry balks at the suggestion.

"We need to quit blaming the victims and we need to start getting to the right dialogues" about cybersecurity legislation, said Robert Dix, vice president of government affairs for Juniper Networks. He argued that industry isn't slowing down cybersecurity legislation, but there needs to be more collaborative discussions about how to treat cyberthreats holistically and increase public awareness about how to best secure systems from cyberattacks. Though legislation being considered in Congress is "well-intended," Dix said much of the efforts "uninformed and ill-advised" because these conversations with industry aren't happening.

"I don't want to leave it characterized that industry is only opposed to everything. Industry has come repeatedly to the table with ideas and there are some folks that are hell bent on standing on a regulatory regime because they think it's how to approach this."

To read and comment online: https://www.politicopro.com/go/?id=8170

News Release: Ozzie Diaz, AirPatrolâ€™s Former CEO, Joins Commercial Advisory Board
AirPatrol Corp. is proud to welcome Ozzie Diaz to its Commercial Advisory Board. Ozzie, a former CEO of AirPatrol, advises many early stage startups, entrepreneurs, venture capital and analyst firms on industry trends and companies. He has amassed his senior executive experience across the Mobile & Wireless, Fortune 100, Service Provider, Government, Smart Grid, and Security industries.
"It's great to have Ozzie join the AirPatrol team," stated Bradley Rotter, AirPatrol's Executive Chairman. "Ozzie will continue to drive AirPatrol in the right direction with his superior experience and expertise."
15 Dec 2011

News Release: P.J. Louis, President of P.J. Louis LLC, Joins AirPatrol's Commercial Advisory Board
AirPatrol Corp. is proud to welcome P.J. Louis to its Commercial Advisory Board. P.J. has over 30 years of experience leading companies in the financial, media, Internet, and telecommunications industries.
"I am thrilled to have P.J. join AirPatrol's Commercial Advisory Board," Bradley Rotter, AirPatrol's Executive Chairman, stated. "P.J. is a versatile senior executive and an amazing resource for the company."
12 Dec 2011

News Release: Scott Mize, High Technology Entrepreneur, Advisor and Speaker, Joins AirPatrol's Commercial Advisory Board
AirPatrol Corp. is proud to welcome Scott Mize to its Commercial Advisory Board. With 20 years of experience in the information technology, new media and Internet industries, Scott currently provides business and venture development services to infotech, nanotech and cleantech companies.
"The addition of Scott to our Commercial Advisory Board will continue to strengthen the expertise and experience AirPatrol uses to choose our next strategic move," stated Bradley Rotter, Executive Chairman of AirPatrol. "AirPatrol thanks Scott for joining the Commercial Advisory Board and looks forward to working with him."
07 Dec 2011

News Release: Bob West, CEO and founder at Echelon One, Joins AirPatrol's Commercial Advisory Board
AirPatrol Corp. is proud to welcome Bob West to its Commercial Advisory Board. Besides holding the position of CEO at Echelon One (executive security and risk services firm), Bob is a frequent speaker on the subject of information security and risk, cloud computing, database security and on global policy issues such as payment fraud and critical infrastructure. Bob is responsible for creating and executing Echelon One's corporate strategy. Bob received the 2004 Digital ID World Conference award for Balancing Innovation and Reality, and was a nominee for the ISC2 Senior Information Security Professional of the Year, 2011. Previously, Bob was Chief Information Security Officer (CISO) at Fifth Third Bank in Cincinnati where he was responsible for the enterprise information security strategy.
07 Dec 2011

"Protecting the Mobile Environment" - The Federal Drive
On today's show, Tom Kellermann, the CTO at AirPatrol Corporation, shares with listeners his thoughts on wireless situation awareness, managing the mobile risk, as well continuous monitoring.
21 Nov 2011

News Release: The Newberry Group is pleased to announce their partnership with AirPatrol
The Newberry Group, Inc., a nationally-recognized IT services and security firm based in St. Charles, MO, with offices in Columbia, MD, is pleased to announce their partnership with AirPatrol, the first and only intelligent enterprise mobility solution that continuously monitors mobile devices and adapts their capabilities for the situation.
"AirPatrol's mobile intelligence addresses the critical wireless component enterprises need for successful convergence of the physical and cyber security ecosystems," said Tom Kellermann, CISM, AirPatrol's Chief Technology Officer.
01 Nov 2011

Nearly A Third Of Execs Say Rogue Mobile Devices Are Linked To Their Networks
Eighty-seven percent think their organizations are at risk of attack via a mobile security lapse.
Tom Kellermann, AirPatrol CTO: "Despite the benefit of these new devices, they also present increased security threats for organizations, which now must be wary of security threats originating from new channels."
30 Oct 2011

News Release: Chubb Helps Companies Protect Confidential Data on Mobile Devices
Chubb will now reimburse its cyber liability insurance customers, where permitted, as much as one-half the cost of AirPatrol Corporation products; the reimbursement will be up to the lesser of $10,000 or 10% of the policy's annual premium. AirPatrol products can prevent mobile devices from copying, recording or transmitting intellectual property and sensitive data; provide customized security settings to make them compliant with corporate security protocols based on location; or, in the event of loss or theft, limit their functionality and/or wipe their data.
26 Oct 2011

Despite Stiffer Reporting Requirements, Many Agencies Still Slow To Implement Continuous Monitoring
New federal government guidelines mandate monthly reporting, but online security monitoring still isn't pervasive.
"Federal contractors have been making big money doing policy review, and they don't want to give it up," says Tom Kellermann, CTO of AirPatrol, a mobile security vendor that does much of its business with the federal government. "But automation is clearly the answer long-term."
24 Oct 2011

Nasdaq Hackers Spied on Company Boards - sources
Hackers who infiltrated the Nasdaq's computer systems last year installed malicious software that allowed them to spy on the directors of publicly held companies, according to two people familiar with an investigation into the matter.
It was not known what information the hackers might have stolen. The investigation into the attack, involving the FBI and National Security Agency, is ongoing. "God knows exactly what they have done. The long term impact of such attack is still unknown," said Tom Kellermann, a well-known cyber-security expert with years of experience protecting central banks and other high-profile financial institutions from attack.
21 Oct 2011

Should Companies Be Required to Disclose Cyber Attacks?
The Securities and Exchange Commission is now advising publicly traded companies such as Bank of America to disclose harmful cyber attacks as a part of their annual reporting procedure to federal regulators.
"The United States economy has evolved in the last 30 years from physical assets constituting the primary representation of a company's worth, to a state wherein intellectual property comprises the majority of value for U.S. corporations," said Tom Kellermann, the chief technology officer for AirPatrol."
21 Oct 2011

The Three Most Frequently Attacked Mobile Devices
Android devices, tablets, and jailbroken devices top list of riskiest mobile products in the enterprise setting.
Tom Kellermann, CTO of AirPatrol: "Not only can someone hack the tablet and the back-end network that it connects to through man in the middle attacks, but also you can then hack the tablet and then turn the microphone and the camera on in settings they shouldn't be on, like board rooms."
20 Oct 2011

SEC Updates Disclosure Rules to Include Breaches
U.S. securities regulators on Thursday issued new guidance that aims to clarify public companies' obligations for disclosing cybersecurity risks to investors.
Tom Kellermann, Chief Technology Officer of mobile security firm AirPatrol, called the guidance "tremendously significant". "It dispels the fog of plausible deniability and challenges corporations to make cybersecurity a functionality of conducting business in a digital world," Kellermann told SCMagazineUS.com in an email Friday. "This guidance ushers wind into the sails of the cybersecurity community."
14 Oct 2011

UPDATE 1-SEC tells companies to disclose cyber attacks
Lays out examples of things companies might disclose.
Tom Kellermann, chief technology officer of security firm AirPatrol Corp., said that the guidance tells companies to report cyber attacks and disclose steps to remediate problems. "They must also incorporate cyber events into their material risk reports,"
13 Oct 2011

UPDATE 2-SEC asks companies to disclose cyber attacks
Calls for reports of attacks, remediation steps.
The SEC gets into specifics, telling companies what type of data they might need to provide investors. "Examples of estimates that may be affected by cyber incidents include estimates of warranty liability, allowances for product returns, capitalized software costs, inventory, litigation, and deferred revenue," it says.
13 Oct 2011

New Version of Zeus Leverages Peer-To-Peer Technology
Update could make it more difficult to take down fraud operations, researcher says.
"Zeus is the flagship of mobile malware," says Tom Kellermann, CTO at mobile security vendor AirPatrol. "Zeus is ushering in the era of mobile attacks because of the mobile banking phenomenon. This should serve as a cautionary tale to the financial sector. The bank robbers of 2011 have commandeered your armored truck."
13 Oct 2011

Facebook Changes Touch Privacy Nerve
'...as the company promotes Twitter-like following of recent wall posts among Facebook users, spamming scams now common on Twitter almost surely will migrate to Facebook. "Facebook has underestimated the sophistication of the cyber underground," says Tom Kellermann, chief technical officer of mobile security firm AirPatrol. "If you build it they will come."'
01 Oct 2011

News Release: AirPatrol Corporation Welcomes Alliance with Avineon, Inc.
Advanced Situational Awareness During the Physical and Cyber Security Convergence Completes the Security Ecosystem
"With the evolution of staged and blended attacks, immediate incident response is paramount. The alliance between Avineon and AirPatrol represents the future of advanced situational awareness," explained Tom Kellermann, CTO of AirPatrol Corporation.
30 Sept 2011

News Release: AirPatrol Positioned in Top 10 Mobile Security Vendors to Watch
Leading Provider of Intelligent Enterprise Mobility Solutions Recognized Among Top Mobile Security Players
"AirPatrol Corp. is proud to announce its placement in Information Week's "10 Mobile Security Vendors to Watch" list which ran earlier this week. This list includes AirPatrol with industry leaders such as Apple, Good Technologies, Google, Lookout, McAfee, Mobile Iron, RIM, Symantec and VMware."
27 Sept 2011

Physical, Logical Security Worlds Continue Slow Convergence
'Guards, gates, and guns' organizations say cybersecurity has become a top priority.
Dennis Pollutro, CEO of AirPatrol: "For a long time, the job of the physical security people in some organizations was to basically stop all cell phones from getting into the building, even if it meant searching visitors. Now more and more organizations are beginning to see that they can't stop them all from coming in. The key is to build an enforceable policy that limits what they can do."
26 Sept 2011

AirPatrol featured: "10 Mobile Security Vendors To Watch"
AirPatrol is featured in this Top Ten list: "Who are the key players in the fast-changing mobile security world? These 10 mobile operating system and mobile device management vendors should be on your radar screen."
23 Sept 2011

Building Castles in the Sky: Mobile Hacking and Its Impact on CyberSecurity
Tom Kellermann speaks with UNISYS Security Blog Editor Sowmya Murthy about the new security paradigm and the impact of mobile devices on cybersecurity.
22 Sept 2011

The Governor David Paterson Show - Sep 7th, 2011
Governor David Paterson talks with Tom Kellermann (Chief Technology Officer at AirPatrol Corporation), Edward I. Koch (Former Mayor of NY), and Bonnie Fuller (President and Editor-In-Chief, Hollywoodlife.com).
Tom Kellermann: "Only one out of six countries sees cybercrime as illegal. Many countries have embraced hacking as their nationalistic, patriotic effort to pursue."
07 Sept 2011

The Next Wave of Botnets Could Descend from the Skies
Researchers are developing hacking drones that could build a wireless botnet or track someone via cell phone.
"The best defense against wireless attacks is to be aware of what's happening on internal networks, says Tom Kellermann, Chief Technology Officer of the wireless security firm AirPatrol. "If you are a Fortune 1000, you should be concerned, because competitive intelligence has evolved," he says. "It has taken on a whole new arsenal of capabilities due to cyber and wireless."
07 Sept 2011

AirPatrol Unveils New Mobile Monitoring and Policy Enforcement Technology
"The newly announced ZoneDefense lets enterprises support the use of consumer and mobile devices on premises and also ensures that end users are adhering to company security policies. It is also the first and only security technology that detects any mobile device in an enterprise, track its location, check its compliance with company policy and enforce rules based on where the user is located and who is nearby."
17 Aug 2011

AirPatrol Enables Enforcement of Mobile Security Policy
New Technology Enforces Mobile Security Policy on a "Situationally Aware" Basis.
"Utilizing commercial wireless bands and Wi-Fi, ZoneDefense's technologies can track a device within a couple of meters of its exact location."
16 Aug 2011

Product Watch: AirPatrol Launches New Way To Enforce Mobile Device Security
'Situationally aware' technology can turn mobile apps on and off depending on where the device goes -- and who's nearby.
"Companies want to allow people to bring in their personal devices, but they need a better way to protect themselves from potential threats carried by those devices," says Tom Kellermann, CTO at AirPatrol. "What we're doing is giving them a way to enforce policy on a situationally aware basis."
16 Aug 2011

News Release: AirPatrol Announces the Release of ZoneDefense, a New Method of Enforcing Mobile Security Policy
New Mobile Security Technology Is First to Enforce Policy on a "Situationally Aware" Basis
"ZoneDefense revolutionizes the way we monitor and manage the very fluid and ubiquitous mobile device layer through intelligence," stated Tom Kellermann, CTO of AirPatrol. "Through continuous wireless monitoring and situational awareness, AirPatrol's ZoneDefense has an advance persistent response that is paramount in today's wireless security."
16 Aug 2011

Cybersecurity Experts See China Syndrome
Rampant economic espionage in the cyberworld was a recurring theme throughout the GFIRST conference in Nashville, Tenn., the US-CERT-sponsored event last week that brought together a smattering of local, state and federal officials with executives from the security community. And China's cyberprowess, in particular, was often the 800-pound gorilla in the room.
"A U.S. official would not want to diplomatically embarrass or challenge the Chinese because they are our banker," said Tom Kellermann, chief technology officer at AirPatrol Corp. "It sucks. The options [are] tremendously limited."
15 Aug 2011

Citigroup Hit by Data Theft in Japan
Thieves made off with personal information of 92,408 Citigroup credit card customers in Japan and sold the data to third parties, the bank said Friday. It is the second data theft for Citi in three months and the latest sign of the vulnerability of banks and their clients.
"The Achilles' heel of all these financial institutions is a lack of oversight of third parties that are managing much of their infrastructure around the world," said Tom Kellermann of AirPatrol. "Even if banks can harden their castles, they still have these extensions of themselves that are not being monitored."
06 Aug 2011

Experts: Cyberspying Report a Wake-up Call for U.S.
A report detailing large-scale cyberespionage operations against several international targets should serve as a wake-up call for the U.S. government to realize its current defense strategy is failing to protect the nation from cyberattacks, experts told POLITICO on Wednesday.
"We continue to wear kid gloves with the Chinese when it comes to the attempts of espionage," said Tom Kellermann. "State needs to take the gloves off and State needs to shame China for their activities."
03 Aug 2011

Debt Deal Could be a Blow for Cybersecurity
The $2.1 trillion debt-cap pact that Congress passed Tuesday could hurt economic and national security, computer security advisers say.
"Nothing is being bought," said Tom Kellermann. "No one is being hired until they deal with this... What I worry most about from the debt crisis is that a lot of new programs that are supposed to be enhancing cybersecurity are not moving forward, partly because agencies do not know if they will have the salaries to fill the many positions that do exist. The timing of the debt resolution does not bode well for the nation's networks, either", said Kellermann, now chief technology officer at mobile security firm AirPatrol Corp.
02 Aug 2011

Study: Users Would Give Up Free Coffee To Get Better Mobile Device Access At Work
Employees are ready to give up free coffee, free parking, or even a vacation day in order to get better access for their personal mobile devices in the workplace, according to a study released this week. But experts say "consumerization" of IT still poses a major risk for most enterprises.
Tom Kellermann, CTO at AirPatrol, says "There are threats from nation-states and from organized crime. There are leaks caused by employees who break policy, knowingly or not. There will be attacks on these devices -- it's inevitable."
30 Jul 2011

Cyber Defense Agency Faces Challenges From Within
Last year, the nation's computer systems reported more than 100,000 cyber threats. The job of analyzing and preventing them was assigned to the U.S. Computer Emergency Readiness Team, which faced more turnover at the top last Friday when Randy Vickers abruptly resigned. His replacement, Lee Rock, is the agency's fifth director in the past six years.
"Imagine being a firefighter in West Texas where there's no fire code and the entire state is filled with arsonists," said Tom Kellermann, chief technology officer of the security firm AirPatrol Corp. "Would you keep the job for long?"
29 Jul 2011

Director of US-CERT Quits Abruptly
Randy Vickers offers no explanation for sudden departure from U.S. Computer Emergency Response Team.
"It is one of the toughest jobs in America. It's like being a firefighter in Texas," said Tom Kellermann, chief technology officer at AirPatrol, who was a member of a commission that developed a set of cybersecurity recommendations for President Obama two years ago.
25 Jul 2011

Computers in China Used for IMF Hack - Source
Computers used to hack the International Monetary Fund earlier this year had Internet addresses in China, according to a person familiar with the investigation.
Tom Kellermann, a former cybersecurity official at the World Bank who is now chief technology officer for wireless computer security firm AirPatrol Corp., said the IMF hack is part of a larger trend in cyberattacks to try to control large organizations around the world. "It's a race to colonize cyberspace. There is a paradigm shift going on. It's about owning other people's infrastructure," Kellermann said. "It's about omniscience. Not only can I read your thoughts and understand your activities, I can control you almost like a puppet."
22 Jul 2011

News Release: AirPatrol WPM 2.0 Now Integrates with McAfee ePolicy Orchestrator platform 4.5 and 4.6
Customers to Continue Benefiting from Extension of ePolicy Orchestrator platform Capabilities into the Wireless Domain
"AirPatrol Corporation is pleased to announce the completed integration of its Wireless Policy Manager (WPM) with McAfee® ePolicy Orchestrator® (McAfee ePO™) software versions 4.5 and 4.6. WPM secures wireless interfaces on enterprise endpoints and empowers IT administrators to easily enforce common-sense rules on governing how employees use their wireless connectivity. "
22 Jul 2011

Tom Kellermann - Cyber War, CBS News (MP3 Audio)
In this interview with CBS News, AirPatrol's CTO, Tom Kellermann, discusses the history, techniques and incidences of cyber war.
"When you try to imagine the invisible world of cyberspace and cybersecurity, one must appreciate that it's an aquatic environment. ...any type of 'aquatic animal', any hacker, can bypass any defenses you have in place, so long as they can become a part of the water."
14 Jul 2011

DoD may define 'acts of war' in cyber age
By Jennifer Martinez of PoliticalPro.com
14 Jul 2011

One of the key questions a top lawmaker on cybersecurity hopes the Pentagon answers in its official cyber strategy scheduled for release Thursday is how the U.S. defines an act of warfare in the digital age. Key to the strategy will be whether cyberattacks constitute acts of war by the Department of Defense, Rep. Mike McCaul (R-Texas), a member of the House Homeland Security committee, told POLITICO. He also hopes the defense agency will outline "what kind of memorandum of understanding we have with other countries to acknowledge the definition [of] what is an act of warfare."

Many on Capitol Hill are eagerly awaiting the DoD's plan. Deputy Defense Secretary William Lynn is scheduled to unveil the Pentagon's long-anticipated "Strategy for Operating in Cyberspace" Thursday afternoon with Gen. James Cartwright, vice chairman of the Joint Chiefs of Staff. McCaul wants the DoD's cyber strategy to make it clear that a cyberattack carried out on behalf of a nation-state warrants a kinetic response from the U.S. "I hope ... in the event of a cyberattack from a nation-state that we would respond full force - not just cyber response - but with military response," he said. "I think that's important because it emphasizes the seriousness of the issue." However, McCaul acknowledges the hurdles in attributing who is responsible for carrying out a cyberattack. Even going to the computer or device that launched the attack doesn't always yield that information, he said.

McCaul was one of the authors of a 2008 report that outlined a set of recommendations to then-to-be-elected president about how to secure the nation from cyberattacks. Chief among the recommendations was a call to define what kind of response is justified if a foreign government attacks U.S. critical infrastructure. Rep. Jim Langevin (D-R.I.), one of the other authors of the report, said in a statement that the department's strategy needs to have "the right oversight so that we only use our military power when absolutely necessary. Moving forward, I will want to be sure that this plan allows for meaningful review as decisions are being made by the military to react to cyberthreats," he continued.

Tom Kellermann, chief technology officer at AirPatrol Corp. and a cybersecurity expert who formerly worked for the World Bank, expects the defense agency's strategy would make nation-states take responsibility for clamping down on bad actors carrying out attacks within their borders.

If nation-states "choose not to stop massive and widespread attacks... they can be deemed to be collusive with the adversary and the gloves can be taken off," Kellermann said. "That could be anything from cyber retaliation to kinetic retaliation."

However, Kellermann said that he expects the Pentagon's strategy will take a measured approach to dealing with nation-states regarding cyberattacks. "First, we would use diplomacy and if you choose to do nothing about it, then we take the gloves off - but it would be a proportionate response," Kellermann said. He noted, however, that the Pentagon would make clear that it would only target military - not civilian - targets and assets when responding to cyberattacks.

A Pentagon spokesman told reporters earlier this week that the strategy will closely align the White House's cybersecurity plan released in May.

To read and comment online: https://www.politicopro.com/go/?id=4572

Apple iOS at Risk
Apple has gone to great lengths to secure its mobile iOS operating system. One of its key approaches is to limit iOS devices to only install apps from the Apple AppStore. In response, the process of jailbreaking iOS devices has emerged in the last several years as a way to get around Apple's walled garden approach.
"Jailbroken devices become excellent hosts for mobile botnets," Tom Kellermann, CTO of AirPatrol Corp told InternetNews.com. "Organizations must practice continuous monitoring of smart phones and dynamically manage their behaviors based on location so as to best manage mobile risk and the digital insider."
7 Jul 2011

News Release: Cenzic and AirPatrol Partner To Provide Comprehensive Security As The Consumerization Of IT Grows
Leading Location-Aware Enterprise Mobility and Web Application Security Companies Collaborate on Enterprise Security Strategies: Cenzic Inc. and AirPatrol Corporation today announced a partnership that will allow AirPatrol to offer Cenzic solutions to its customers along with its mobile solutions.
30 Jun 2011

LulzSec Hacker Group Calls It Quits
Experts predict that even if LulzSec members stop taking action themselves, the publicity they generate will inspire copy cats who use hacking tools freely available on the Internet. "You don't need to know how to build a gun to learn how to pull the trigger," said Tom Kellermann, chief technology officer of AirPatrol Corp.
27 June 2011

Are We Safe From Cyber Attacks?
WOR Newstalk Radio 710 interviews Tom Kellermann
AirPatrol CTO Tom Kellermann talks to John Gambling on WOR Newstalk Radio 710 about concerns over cyber hackers, their typical goals and methods, and how to defend against them.
21 June 2011

International Monetary Fund becomes latest known target of major cyber attack
The IMF, the intergovernmental group that oversees the global financial system and brings together 187 member nations, has become the latest known target of a significant cyber attack. "It was a targeted attack," said Tom Kellermann, who has worked for both international financial institutions and who serves on the board of a group known as the International Cyber Security Protection Alliance.
12 June 2011

Hacking At Citi Is Latest Data Scare
The Citigroup credit card breach comes on the heels of other similar attacks, raising concerns that banks and other companies aren't doing enough to protect themselves and their customers.
09 June 2011

Darrell Issa: Gmail hack underscores White House email risk
The brouhaha over hackers penetrating the Gmail accounts of top U.S. officials would be much ado about nothing if White House employees just followed the rules.
06 June 2011

Hundreds of New Cyber Weapons Could Be Aimed at U.S. Military Smartphones
"Wireless attacks will explode this year," said Tom Kellermann, Chief Technology Officer at AirPatrol Corp., a Columbia, Md.-based firm that specializes in information technology and wireless security systems.
06 June 2011

Article: Cyber Weapons Aimed at Military Smartphones
The Defense Department is searching for advanced encryption technologies and other data-protection systems to protect the growing number of smartphones and tablet computers that are being used by U.S. government and military personnel around the world.

Baltimore Business Journal: AirPatrol raises nearly $4M
AirPatrol Corp. has raised $3.7 million to fuel a ramp-up in sales, and is seeking to raise a total of $5 million, according to a filing the company made with the Securities and Exchange Commission.
27 May 2011

News Release: AirPatrol Expands its Commercial Advisory Board: Several Technology Industry Veterans to Provide AirPatrol with Strategic and Technical Advice to Further Corporate Expansion
Joining the Board are technology industry veterans Craig Shumard, Adam Ely, James Shira, Tom Kellermann and Rob Markovich.
15 Jun 2010

News Release: AirPatrol Demonstrates Its Technology Products at Secure Strategy Group's Solutions Center Launch
AirPatrol Showcases Security Software Industry's Only Intrusion Detection System for Temporary Wireless Deployments.
02 Jun 2010

News Release: AirPatrol Corporation Continues Expansion: Dennis Pollutro Joins Company to Oversee New Business to Federal Government
AirPatrol Corporation today announced that Dennis Pollutro has joined the company as vice president of federal solutions.
20 Apr 2010

News Release: AirPatrol Launches Commercial Advisory Board
Ken Tyminski, an IT veteran with more than 30 years of experience focused on information security and risk management, has been named Chairman of AirPatrol's Commercial Advisory Board.
07 Apr 2010

News Release: AirPatrol Corporation CEO Ozzie Diaz to Speak at Upcoming Information Week/Dark Reading Virtual Security Event
AirPatrol Corporation today announced that CEO Ozzie Diaz will be speaking at the Information Week/Dark Reading.com virtual security event titled "Security: Strengthening IT Security's Weakest Link: End Users," Wednesday, March 24, 2:30 p.m. - 3:30 p.m. ET.
23 Mar 2010

News Release: AirPatrol Corporation Joins 'Securing Our eCity' Coalition
AirPatrol Corporation today announced it has joined the 'Securing Our eCity' (SOeC) coalition as the designated supplier of wireless security and threat management products.
22 Mar 2010

News Release: AirPatrol WPM Product Enables Strict Enforcement of New DoD Flash Drive Policies for Troops in Iraq and Afghanistan
AirPatrol's WPM Gives DoD IT Administrators Granular Realtime Control Over Which USB Devices Can be Used by Individuals or Groups of Users
09 Mar 2010

News Release: AirPatrol Announces Availability of Industry’s First and Only Rapid Deployment Wireless Security System for Corporations and Government Agencies
AirPatrol's Rapid Deployment Sensor Becomes Only Wireless Intrusion Detection System to Quickly Assess and Locate Wireless Security Vulnerabilities (RSA 2010 Conference)
03 Mar 2010

News Release: Brian Nugent Joins Board of Directors of AirPatrol Corporation
With a proven operational record of driving pre-revenue companies through to market leadership positions, Nugent will lend his expertise and board experience to help further grow AirPatrol's market share in the enterprise mobility security industry.
01 Mar 2010

News Release: AirPatrol Wireless Policy Manager (WPM) Enforces Windows 7 Virtual WiFi Security Policies
AirPatrol WPM enables IT Administrators to Selectively Block Windows 7 Virtual WiFi, Prevent Virtual WiFi Multihoming, and Securely Manage Virtual WiFi Pre Shared Keys
23 Feb 2010

News Release: AirPatrol Expands Globally With Several New Channel Partners
New Reseller Partners Join AirPatrol's Partner Program in the EMEA Region
26 Jan 2010

News Release: Brendan Gray Joins AirPatrol’s Advisory Board
07 Dec 2009

News Release: AirPatrol Launches Industry's First and Only Rapid Deployment Wireless Security System for Corporations and Government Agencies
"AirPatrol's Rapid Deployment Sensor Becomes Only Wireless Intrusion Detection System to Quickly Assess and Locate Wireless Security Vulnerabilities"
04 Nov 2009

News Release: McAfee, Inc. Names AirPatrol Corporation the 2009 Security Innovation Alliance Most Innovative Partner
"AirPatrol’s Integration of its Wireless Policy Manager with McAfee ePolicy Orchestrator Software Delivers Robust Wireless Security on Endpoints"
07 Oct 2009

News Release: Berkeley Varitronics Systems, Inc. and AirPatrol Corporation Form Partnership
"Berkeley Varitronics Systems, Inc. and AirPatrol Corporation today announced a partnership to help global 1000 companies enforce “no wireless” policies in their buildings."
29 Sept 2009

News Release: AirPatrol Demonstrates How to Eliminate Contraband Cell Phones to Maryland and Regional Correctional Officials
"Prison Officials From Several States Receive First Hand Look at AirPatrol's Wireless Locator System"
09 Sept 2009

News Release: AirPatrol Enforces Cell Phone Security Policies in Enterprises and Government Agencies where Wireless Devices are Prohibited
"Enterprises and Government Agencies Use AirPatrol’s Wireless Locator System to Keep Cell Phones from Infiltrating Sensitive Areas of Buildings"
01 Sept 2009

AirPatrol is helping correctional facilities combat contraband cell phones
Eliminating Contraband Cell Phones and Electronics in Prisons a Top Priority According to AirPatrol and Department of Justice Executives.
13 Aug 2009

News Release: AirPatrol Launches Channel Partner Program for Wireless Security Solutions
15 Jun 2009

AirPatrol Finds Wireless Security Vulnerabilities at RSA, World’s Premier Information Security Conference
23 Apr 2009

News Release: AirPatrol Launches Next-Generation Mobile & Wireless Threat Detection & Management Product
15 Apr 2009

HP CTO Joins AirPatrol as Chief Executive Officer
businesswire.com
27 Jan 2009

AirPatrol Joins McAfee Security Innovation Alliance
businesswire.com
20 Jan 2009

AirPatrol Announces Cell Phone Detection Product
About.com
9 Apr 2008

News Release: AirPatrol Unveils Advanced Cell Phone Detection Solution to Help Businesses and Governments Curb Fraud and Terrorism
09 Apr 2008

gcn.com: AirPatrol offers Wireless Threat Management
03 Mar 2008

Counter-Terrorism Expert Michael Sheehan Joins AirPatrol Corporation's Board of Advisors
TMCnet.com
29 Feb 2008

AirPatrol Corporation’s Board of Advisors Joined by Ambassador Michael Sheehan
SecuritySoftwareZone.com
28 Feb 2008

News Release: Ambassador Michael Sheehan Joins AirPatrol Corporation’s Board of Advisors
27 Feb 2008

AirPatrol tackles microwave menace
SearchSecurity.co.uk
25 Feb 2008