The figures originally reported here were preliminary and have been revised for a formal CAOS report to be published in the first half of 2009. In the interests of accuracy this data has now been removed. For a full assessment of VC funding in 2007 see this post.

Sourcefire has bought the ClamAV project for an extraordinary, one-time charge in the third quarter of 2007 of between 9¢ and 12¢ per Sourcefire share. ClamAV is an open source project that has created an anti virus engine, packages that support its use on Linux, Unix, BSD and Win32, and a signature database that currently [...]

Reading, England-based mobile device security vendor BeCrypt Data Security has released the BeCrypt Trusted Client (BTC), and announced a strategic partnership with Juniper Networks. We’re covering BeCrypt’s full strategy, history and background, as well as the competitive landscape for this type of product, in our Market Insight Service but think it deserves mention here because [...]

On 25 October 2005 Sourcefire Inc, which makes internal security products and sponsors the open source Snort intrusion detection engine invented by its CTO, Marty Roesch, filed its intent to go public with the SEC. We’ve all been watching the prospective IPO with bated breath. Sourcefire would be the first security IPO for some time, [...]

Random quotes from a discussion on the Daily Dave pen testing list regarding the IPO of Sourcefire, the security company founded by Marty Roesch, the inventor of the Snort open source intrusion detection system (IDS). Priceless stuff, seeing comments on IDS from those who avoid it. “Making IDS part of a defense in depth strategy [...]

I am pleased the announce today the we have officially launched the 451 Commercial Adoption of Open Source (CAOS) Research Service and the first CAOS Report – “Stack and Deliver,” covering the open source stack provider space. For more details on these announcements, I invite you to take a look at the two press releases [...]

From the Daily Dave, a penetration testing mailing list which has seen a couple vendors snipe back and forth at one another recently about one claiming to have found an exploit in the other’s … uh, whatever. Dave Aitel, CTO of Immunity, Inc., in an effort to settle the issue objectively, writes: You, the vendor, [...]

Cesar Cerrudo, CEO of security consultancy Argeniss – who’s written some seriously interesting papers including a recent one on Windows local shellcode injection, has just released a new version of his Argeniss Ultimate 0day Exploits Pack which run on the Canvas platform from Immunity Security. Canvas is LGPL; both are commercial software which come with [...]