A big payday could be in store for cybersecurity startups that borrow ideas from the hackers they’re trying to stop.
Cybersecurity vendors that find a way to scale technology that translates offensive security lessons into defensive techniques could benefit from an influx of venture capital funding, a panel of investors said Thursday at the 2019 Cyber Investing Summit in New York.
In practice, that could mean more efficient red team exercises, filling more open security jobs with former government hackers, or experimenting with new ways to sift through the false flags that hackers are starting to use to disguise their activities.
Put another way: Don’t expect Fortune 500 companies to start retaliating against criminals by hacking back, but deploying more inventive ways to mitigate vulnerabilities.
“We’re trying to move from being reactive to proactive,” said Bob Ackerman, founder and managing director at the early-stage venture firm Allegis Cyber and a board member at DataTribe. “You have to understand offense because this is where the playbooks are written and the expertise is developed. This is where the best engineers are developing their playbooks and expertise.”
That mentality is already powering some defensive measures at Aflac.
Venture capitalists predict more aggressive security tools will reap big bucks