Bit9

Bit9. It was an American cybersecurity company specializing in endpoint security and threat intelligence, founded in 2002. The firm pioneered application whitelisting technology, which allows only pre-approved software to execute on a system. It later merged with Carbon Black to form a unified endpoint security platform, and was subsequently acquired by VMware.

History

Bit9 was founded in 2002 by Todd Brennan and Harry Sverdlove, emerging from the Massachusetts Institute of Technology's entrepreneurial ecosystem. The company initially focused on developing a novel approach to Malware prevention through application control. In 2014, Bit9 merged with its former competitor, Carbon Black, a leader in endpoint detection and response, to create a combined entity under the Carbon Black brand. This strategic merger was aimed at creating a more comprehensive security suite against advanced threats like APTs. The unified company was later acquired by VMware in 2019, integrating its technology into the broader VMware security portfolio.

Products and services

The company's flagship product was the Bit9 Security Platform, which centered on application whitelisting and File integrity monitoring. This platform integrated with Carbon Black's behavioral analysis tools after the merger. Its services included real-time threat intelligence, powered by the Bit9 Global Software Registry, a cloud-based database of software reputations. The product suite was designed to protect endpoints from zero-day attacks and targeted malware, providing visibility and control over application execution. Professional services for deployment and managed detection offerings were also part of its portfolio.

Technology and architecture

Bit9's core technology was based on a positive security model, fundamentally different from traditional antivirus solutions. Its architecture utilized a lightweight agent installed on endpoints that enforced policies defined by a central management server. The platform leveraged a cloud-based reputation service to classify software and used hashing and digital certificate analysis to identify applications. This approach minimized system resource usage and provided a strong defense against unauthorized code execution. The architecture was designed for scalability in large enterprise environments, supporting integration with SIEM systems like Splunk.

Corporate affairs

The company was headquartered in Waltham, Massachusetts, within the greater Boston technology corridor. It competed in the endpoint security market against firms like McAfee, Symantec, and Trend Micro. Bit9 received venture capital funding from investors including Atlas Venture, Highland Capital Partners, and Sequoia Capital. Following its merger with Carbon Black, the combined entity operated under the leadership of executives like Patrick Morley. The acquisition by VMware positioned the technology as a key component of the VMware Carbon Black cloud.

Security incidents and controversies

In 2013, Bit9 itself suffered a significant security breach when hackers compromised its internal networks and stole a digital code-signing certificate. This certificate was then used to sign Malware that targeted several of Bit9's own customers, including Bitcoin exchange operators. The incident, detailed in a report by Krebs on Security, highlighted the paradox of a security firm being hacked and raised questions about its internal practices. The company publicly acknowledged the breach, revoked the certificate, and undertook a comprehensive review of its security posture, cooperating with federal authorities like the FBI.

Category:Computer security companies of the United States Category:Companies based in Middlesex County, Massachusetts Category:Software companies established in 2002