Claroty was founded on May 1rst, 2015, by Amir Zilberstein, Benny Porat, and Galina Antova, making it one of only a few co-founded by a woman. They are an industrial cybersecurity firm that ensures customers are protected and able to manage its O.T., loT, and LLOT assets. Every part of the platform offers a seamless connection to the current infrastructure in the company while still utilizing its full suite of cybersecurity products. The company is headquartered in New York but does extensive business in Europe, Asia-Pacific, and Latin America. Additionally, Claroty's products are available on all seven continents. These are 20 facts about this company.
1. Helping the pipeline
One of the biggest threats to cybersecurity in the last year was the breach of the Colonial pipeline. According to claroty.com, President Biden has enacted a 100-day plan coordinated by the Department of Energy and Cisa, a pilot program in many upcoming initiatives. Claroty will participate in the efforts by contributing to the Request for Information to continually inform future recommendations around the DOE's cybersecurity strategy, assisting in the fight against threats to the United States energy supply chain.
2. Claroty offers advice
Although it may not be an active participant in helping with all the cybersecurity threats multiple industries face, it still stays informed and offers insight. When the cyberattacks happened on JBS foods, they posted information about ransomware and how it was similar to the incident at the Colonial Pipeline. Additionally, they discussed the ramifications cyber attacks on our primary industries would have on private citizens. According to the company's Biannual ICS Risk and Vulnerability Report, Manufacturing, energy, water, and waster water, along with commercial facilities, are the most vulnerable industries.
3. Ahead of the curve
One thing Claroty strives to do is stay ahead of cyberattacks. Native code execution is one thing that cyber hackers have yet to achieve. Since these systems have much in-memory protection and run on complex systems, they cannot remain undetected. Claroty's efforts have exceeded current standards to keep companies safe by bypassing PLC sandbox with Siemen's SIMATIC S7- 1200 with a partnership.
4. Lesson Learned
Since cyber-attacks happen every day, Claroty feels that every incident is an opportunity to grow. They understand that combating these attacks is a complex and sometimes frustrating process. Yet, they think with designated roles, companies are better equipped to handle and succeed in thwarting breaches in security. They feel companies should do to have a designated IT/OT cybersecurity person play a core role. Additionally, the company should align itself with existing measures to work towards the elimination of these threats.
5. Closed threat
According to github.com, OpeNER is a stack I/O adapter that supports multiple I/O and explicit connections, making products compliant. Claroty's platform not only has the standard ENIP and CIP production but adds SCADA to work harder towards finding security vulnerabilities. They use fuzz-testing code because it is automated and is a no-frills way of finding errors in code that expose companies to vulnerabilities. Currently, the company is doing extensive research into potential vulnerabilities in the OpENer stack and building additional platforms to give much-needed cybersecurity as attacks on systems evolve.
One of the many companies Claroty has teamed up with includes Rockwell Automation. According to rockwellautomation.com, the companies are collaborating to work towards solutions specifically designed for the companies they are protecting. Rockwell Sautionation has a background in worldwide implementations and managed support. Whereas, Claroty is at the forefront of visibility and threat detection. This combination will deliver even more protection for the most vulnerable companies.
7. CEO thoughts
Yaniv Vardi, CEO of Claroty, shared his thought about why we see an increase in cybersecurity threats. Many sectors, including life sciences, food and beverage, and infrastructure, saw limits pushed during the pandemic. Additionally, the companies moved towards a more highly digitized platform. He feels that the companies who evolve and grow with the changing cybersecurity climate and further educate themselves will be the ones who continually meet everyday challenges without exposing themselves to threats that will compromise their companies.
Claroty raised $140 million in Series D funding, taking the company's total to $235 million. Bessemer Venture Partners' Century II fund, LG, and Squared Capital's IQS Global Infratech Fund were the significant contributors. Additionally, previous investors Team8, Rockwell Automation, Siemens, and Scheider were substantial contributors. These funds will be used to further verticals and move to additional regions. Claroty is already a presence on all seven continents.
9. Having the edge
On June 8, 2021, Claroty announced a new product, Claroty Edge, which provides total visibility to companies in minutes without needing network changes. Additionally, it eliminates a digital footprint. The latest offering from the company combines the Continuous Threat Detection of previous products while offering additional security, including SaaS-based deployment, which makes it scaleable. This product mirror A.I. learning because it can interpret many proprietary industrial protocols. It also provides multiple company departments with increased visibility.
10. One size doesn't fit all
Although many cybersecurity products offer many pieces of hardware, it is too much in the face of attacks growing and becoming more advanced. Many companies also make their systems more complex than they need to be. As Claroty grows in the face of these attacks, they strive to make its products lightweight and user-friendly and keep the company's industry at the forefront of its platform.
11. No downtime
On May 25, 2021, Tesserent announced its partnership with Clarity. According to itwire.com (https://itwire.com/business-it/tesserent-partners-with-claroty-to-deliver-cyber-resilience-for-customers.html), The company feels this partnership will assist companies with strengthening their security and protecting them during downtime while adding to productivity hours. The collaboration between the two companies will add strong resilience in cybersecurity and protect the most vulnerable systems. Additionally, it will go deeper into infrastructure and manufacturing. Kurt Hansen, CEO of Tesserent, feels that Claroty capabilities combined with Tesserent's cyber analytics platform Rivum will work seamlessly while still working with the intelligence capability of Splunk.
12. Exceeding expectations
On March 18, 2021, Claroty began a historic FOCUS program. The mission was to help create a more robust ecosystem for cybersecurity. They added many different aspects to the initiative. Upgraded Partner Portal is for streamlined, unlimited access to tools for businesses, including training for the Learning Management system. The New Partner Levels added certifications for Visionary and Elite to further shape and grow the industrial cybersecurity infrastructure. Much like Claroty's other programs, they said Partner Tracks to work in any business sector without being an ineffective one-size-fits-all platform. One critical feature is Forsenic and Incident response, which adds another layer to keep tabs on any cyber threats that may have happened and been undetected.
13. Detecting Threats
A report from Claroty unveiled staggering statistics. There was a 25% increase in ICS vulnerabilities since 2019; 449 from 59 vendors during the second half of 2021. 70% were critical, according to Common Vulnerability (CVSS). It was third-party researchers like Claroty who most often exposed these vulnerabilities. One bright side is a portion of these vendors reported this was the first time they found vulnerabilities in their systems.
14. Detecting need
Claroty has seen a significant rise in the need for strong cybersecurity in the Asian Pacific region, especially Taiwan and Korea. The need for cybersecurity in these companies is expected to triple in the next several years. Claroty feels this is because of an increasing rise in the infrastructure, reporting revenue growth for this market in August 2020. Much of this growth is attributed to increasing cybersecurity standards. For example, the Korean Internet and Security Agency (KISA) is expected to introduce Industrial Control Systems.
15. Down Under
Another country Claroty is gaining substantial growth is in Australia; primarily in the sectors of water, waste management, mining, and electrical distribution. The Australian government is currently allocating significant amounts of capital to these resources. Much of this need for heavier cybersecurity was during the pandemic. The Australian Cyber Security Centre reported a 35% increase in reported cyber incidents, hindering many of the country's essential service providers, including healthcare, education, water, communications, transportation, and energy. Australia is allocating $66.5 million to remedying this issue, making it the top priority.
16. More vulnerabilities
Another cybersecurity threat was Ovarro's TBox terminal units, most often used in industrial facilities such as oil, power, and gas. Five major factors led to increased risk; run code, crash systems, and disruption in configuration files. Over half the devices were completely open, allowing anyone accesses to company files. Additionally, any user had access to Read Only data and HMI panel configuration. Claroty bypassed and exposed these vulnerabilities primarily found in communication channels.
17. Going virtual
According to arc.web.com, companies need to consider segmenting their networks to decrease cybersecurity attacks. However, Claroty understands this process is time-consuming, and many companies lack the resources to accomplish the task. The company's offering, Virtual Zones+, has many intuitive features, including automated tag assets, which classify comparable network traffic into systematic groups. Additionally, having these protocols in place adds security by requiring multiple permissions, each broken down into zones requiring mandatory levels of protection for each set by the company, helping end-users assess and understand how everything works between zones. Moreover, having these baselines illustrates how zones increase and lower the cost of network segmentation projects. The firewall integrates with Palo Alto, Cisco, CheckPoint, and recently added Fortinet.
18. Award Winning
Claroty received the 2019 Global Company of the Year award from Frost & Sullivan. This award was given to the company for its ever-expanding suite of cybersecurity products that provide the most comprehensive end-to-end visibility for industrial networks, the companies main focus. However, they are also a top name in many other verticals providing the best threat prevention and helping detect vulnerabilities. One of the main reasons they received this commendation is because Claroty's product bridges a needed gap with its easily integrated products that go deeper into cybersecurity products than most other products on the market. The company responded by saying that an award of this magnitude validates the company's hard work and commitment towards creating through platforms that work towards eliminating the increased risk of threats and vulnerabilities.
19. Bold Moves
In 2019, Claroty added a stealth weapon to its arsenal of cybersecurity products. They appointed retired U.S. Navy Admiral Michael S Rogers as Chairman of the company's Board of Advisors. Barrack Obama appointed him as the Director of the National Security Agency and the Commander of the U.S. Cyber Command. Before working for Claroty, he headed the Pentagon's Cyber Mission Forces. In this position, he will lead the security and business leaders, lend guidance, keep cybersecurity protocols current, and exceed the industry baselines.
20. Government Official
In 2019, Claroty received another industry-leading award, named U.S. Department of Homeland Security's best-in-class O.T. network monitoring solution as part of the safety Act. They are the first O.T. security company to receive this distinction, benefiting all Claroty customers because now they have additional protection from lawsuits and other claims after an act of cyber terrorism. The U.S. Congress began this program in 2002 with the Support Anit-Terrorism by Fostering Effective Technologies Act (SAFETY ACT). These measures were put in place to help evolve and promote using this technology to counter terrorist threats. Additionally, they wanted to ensure that companies aren't precluded from using these technologies, thereby reducing the number of cyber attacks. Additionally, The Saftey Act was started as a system for aiding in "risk management" and "litigation management" that protects technology users from liability.
One of the biggest threats today is cyber attacks. Since more people rely on the internet for their personal and professional lives, companies like Claroty are needed to help eliminate the vulnerabilities companies face from cybersecurity breaches. Throughout the last several years, the need for increased security has been met by Claroty, who keeps expanding and perfecting its product to ensure safety across all platforms.
Written by Dominique Scappucci
Read more posts by Dominique Scappucci