Software has changed business forever. As businesses have prioritized speed and performance, effective protection of these applications has not kept pace. Before now, there was never a way to achieve 100% protection at the workload while it is running, wherever it is running. Until Virsec. The company believes it’s time to reimagine security and start protection from the inside, where it matters most. Virsec has pioneered unique technology to protect the entire server workload – from top-to-bottom and end-to-end – on any platform. The company provides comprehensive security across all layers, including web, memory, process, and hosts, from development through operations.

Virsec is on a mission to make security response obsolete. Taking a First Principles approach to protection, the Deterministic Protection Platform (DPP) by Virsec automatically and consistently maps exactly what your software is supposed to do and stops, in milliseconds, any deviations - preventing attackers from leveraging vulnerabilities to execute control and run malicious code. DPP is a proven technology that enables leading government and commercial organizations around the world to protect their server workloads, at runtime, against ransomware and other known and unknown threats, reduce operating costs and meet key compliance requirements. Virsec is headquartered in San Jose, California, with offices all over the world.

Virsec for financial services firms

Financial services firms remain focused on regulatory compliance, but, as critical infrastructure, they also need to prioritize protection against nation-state sponsored ransomware attacks that threaten our economy. In the banking industry alone, where pockets are deep, ransomware attacks increased more than 1,300% in the first half of 2021* with ransomware-for-hire cartels growing rapidly. These attacks target servers that house valuable data and process transactions in real time. Milliseconds matter, so security needs to keep up. Virsec’s breakthrough technology determines exactly what your software is supposed to do and immediately stops it from doing what it should not – eradicating ransomware with no impact on transactions. Deterministic protection that safeguards critical financial services Instead of chasing evolving exploits or trying to plug porous perimeters, the Virsec Deterministic Protection Platform instantly detects and stops attacks that can corrupt applications, before they cause damage. No learning, updates, signatures, tuning, noise, or performance impact.

Full protection starts with full understanding

Cyber-attacks have become increasingly complex where actors exploit systems at the core to obtain control of software, applications, & workloads - bypassing traditional security solutions for their own gain. Organizations are demanding a deeper layer of protection with a direct line of sight into all software code, composite workloads, and components during runtime to defend and protect against any known and unknown vulnerability with precision, deterministically, as events unfold without guessing. Deterministic protection maps exactly what your software is supposed to do and stops it from doing what it is not. A deterministic protection platform (DPP) ensures better protection against all known and unknown threats to software workloads deployed in production and reduces threat actor dwell time from minutes to milliseconds, with true protection and runtime observability. No matter the application type, environment, or type of attack, DPP by Virsec can protect your software while it is running, wherever it is running.

In order to secure your software while it’s running, you must first understand it. Only Virsec can do this by creating a dynamic golden image of what software is supposed to do—and immediately stop anything that it’s not. Virsec’s Deterministic Protection Platform does this by instantly mapping the application workload when it launches, taking only a few milliseconds, and deterministically allowing only known good behavior as defined by the parameters of the software. Even if the software needs patching, it will still be protected, including legacy and home-grown applications. Should situations arise where an insider or privileged user attempts to make changes to applications, Virsec will not allow the application to be modified in any way while under our protection.

Virsec for Healthcare

As healthcare organizations improve the interoperability of patient services, they are connecting to new systems and devices, adding telemedicine services, and expanding their partner ecosystems. Ransomware can exploit these new infiltration points, targeting servers where valuable health data and patient records are stored. For example, in a recent survey of 600 providers, 43% have been hit by ransomware, and 70% report treatment delays resulting in poor outcomes. In addition to having a measurable impact on patient care, the failure to meet cybersecurity requirements can result in significant HIPAA penalties and other regulatory compliance fines. Virsec’s breakthrough technology determines exactly what your software is supposed to do and immediately stops it from doing what it should not—preventing ransomware and other malicious attacks before they happen.

Virsec for Public Sector

As the frequency of global ransomware and supply chain poisoning attacks rise, Public Sector continues to struggle in an endless cycle of detection and response— often after a successful breach on government systems. Even while cybersecurity budgets skyrocket, today’s cyber tools fail to provide absolute and automatic interdiction of any threat aimed at the server workload. Log4j, SolarWinds, PrintNightmare, ProxyShell are just a few examples of devastating and costly attacks to our Public Sector infrastructure, weaving their way through and around common security tools like EDR/EPP, WAF, RASP and IPS systems. Elections, Energy, Transportation, Health and Financial systems, Judicial and Social – among many others – are under constant attack and at risk of being infiltrated by our adversaries. There is a better way – a path towards full, automated protection of critical server applications. Virsec addresses the unique security needs of Public Sector organizations by offering comprehensive application protection from sophisticated threats such as memory exploits, remote code execution and web attacks. Virsec’s Deterministic Protection Platform (DPP), identifies how your software workloads are supposed to run and does not allow any deviation from the intended function. If any attempt is made to change the course or process of the application, it is instantaneously detected, treated as a threat, and blocked.

Virsec Deterministic Protection Platform (DPP) offers Zero Trust for the most vulnerable and critical aspects of the mission: the server and the workloads agencies rely on. DPP by Virsec is an easy, flexible, comprehensive cyber shield that offers full protection, detecting any type of attack—known or unknown—within a microsecond, and eliminating the process within one millisecond. Virsec requires no dependencies on data or source code to assemble defenses and its platform works in all environments: on-prem, VM, container, cloud, and across both COTS and GOTS applications, exceeding Zero Trust strategies mandated by OMB while eliminating adversary dwell time.

Meet the leader behind the success of Virsec

Dave Furneaux has been a driving force behind Virsec since its inception, as an investor and active board member, becoming CEO in 2020. He has spent his 30-year career as an entrepreneur and venture investor, forming, building and investing in numerous high growth companies in information technology, including successful cybersecurity companies, Watchfire (acquired by IBM), Skystone (acquired by Cisco), Application Security (acquired by Symantec) and Aironet (acquired by Cisco). As an early stage investor in Virsec, Dave has played a critical role guiding its strategy and growth. Earlier in his career, Dave founded and led Kodiak Venture Partners, which went on to invest in and build successful companies, such as Appnexus (acquired by AT&T), Channel Advisor (NYSE: ECOM) and WHERE (acquired by PayPal).  More recently, Dave founded BlueIO, an innovative, mission-driven investment holding company. Under BlueIO, Dave participated in the formation and building process as a co-founder and investor in a core group of companies, such as Blaze (acquired by Akamai), Lufa Farms, a 400+ employee leading agricultural technology company, and Cybersaint, a leading Cyber Risk Management company. Dave holds a BA with Phi Beta Kappa, Magna Cum Laude honors from Colorado College.

“With our AppMap technology, we secure software from the inside at runtime, precisely mapping what the app can do and stopping malicious code before it can run”