Cybi startup launch in Nancy

Artificial intelligence to anticipate cyber attacks. An innovative technology developed by Cybi’s team of researchers and engineers was patented in 2020.

The Cybi team: Abdelkader Lahmadi, Frédéric Beck, Jérôme François, Régis Lhoste, Fabian Osmond. Loria Communication Service Credit

Information systems, connected objects, industrial systems… these environments face increasingly frequent and sophisticated computer attacks. Businesses are prime targets for hackers and must protect themselves from this growing threat. Resulting from the cybersecurity expertise of the RESIST team at Loria’s lab (CNRS, Inria, University of Lorraine), startup Cybi offers solutions to analyze computer attack paths and intelligently automate cybersecurity operations. Supported by the Lorrain Incubator and the Grand Est region, the
startup supported by Inria and the University of Lorraine has just been born in Nancy.

State-of-the-art technology: Diving

Most cybersecurity solutions analyze individual vulnerabilities in computer systems. However, hackers are increasingly operating in attack paths, using not only critical vulnerabilities but also other flaws as entry points to penetrate the computer network and infect the entire system. A connected object (plugged outlet, internet box, industrial automaton, etc.), with a good individual security score, can become a waypoint in an attack path to hit a critical target when networked with other objects .

This innovative technology developed by Cybi’s team of researchers and engineers was patented in 2020. It relies on artificial intelligence models and algorithms to analyze all attack paths present in a network and prioritize the vulnerabilities to be corrected, reducing risks and downtime. incident response.

Detect and prioritize vulnerabilities with artificial intelligence

Scuba relies on corpora of vulnerabilities: when a flaw is discovered, during pentesting operations (methods to assess the security of a system), or bug bounty (bug bounty program), manufacturers must publish an open access patch : this information is available in particular in the CVE (common vulnerabilities Exposure) databases.

“Our tool is able to easily read and understand these large amounts of text thanks to automatic language processing and artificial intelligence methods. Thus, it can automatically analyze vulnerability reports and detect possible chains of attack, the researchers explain. We are also working on a dedicated testing platform to study the vulnerabilities of connected objects in order to assess the security levels of the product. The team has also recently tested its technology on known viruses such as Pegasus and Puzzle-maker and was able to identify their attack paths.

Cybi, an essential ally for business security

The start-up is now open to cybersecurity specialists, large companies and more particularly SOCs (Security Operation Centers), whose mission is to guarantee information security. Scuba appears as an essential brick in the system’s security chain.

“Thanks to our vulnerability solutions and vulnerability chain analysis, Cybi offers a real decision support tool, real risk analysis and personalized recommendations to implement the best techniques to correct flaws”, specifies Régis Lhoste, president of the startup. .

“The expertise and maturity of the cybersecurity team position Cybi as an innovative and visionary startup. Our Scuba solution arrives just in time for the cybersecurity market. In fact, Scuba offers advanced features that are in high demand and very little addressed so far to respond to the cyberattack threats that increase by the day. Our various exchanges with the main players in French cybersecurity are very positive. diving is THE solution expected by all structures, whatever their profile or size. », says Fabian Osmond, general manager
of startup.

Leave a Comment