Duo Labs will focus research on improving products and services to better protect customers, sharing key discoveries in user authentication to improve security for organizations
Duo Security, a cloud-based access security provider protecting the world’s largest and fastest-growing companies, today announces the expansion of its security research division, Duo Labs. Duo has hired four leading researchers and industry experts to escalate efforts to improve the overall state of security by publishing research, with a focus on authentication security.
Steve Manzuik joins Duo Labs as Director of Security Research. He has worked in the industry for over twenty years for organizations such as Juniper Networks, eEye Digital Security, and Ernst & Young. Manzuik has authored several books, including Hack Proofing Your Network. Having presented at information security conferences, such as BlackHat, ShmooCon, and AusCERT, Manzuik’s deep industry experience will drive Duo Labs research.
Joining Manzuik and the existing Duo Labs team is Mikhail Davidov, Senior Security Researcher, Mark Loveless, Senior Security Researcher, and Darren Kemp, Security Researcher. Davidov led research and development at Leviathan Security Group, where he developed automated crash dump analysis tools for DARPA. He specializes in reverse engineering, native application security, high performance simulation, smart fuzzer development, embedded hardware security assessment, and reverse engineering.
Best known in the industry by his handle "Simple Nomad," Loveless has been compromising security systems since the 1980s. He has worked as an IT Systems Administrator in the Fortune 500, as a researcher for security software and hardware vendors. Most recently, he was a consultant with MITRE Corporation, the non-profit organization that runs research and development centers for the federal government.
Darren Kemp held previous positions at Leviathan Security Group and Symantec, where he specialized in vulnerability, malware analysis, and software reverse engineering.
Duo Labs will be attending BlackHat and DefCon in Las Vegas, NV, in August and will be available for media and analyst meetings. At BlackHat, Duo Security will also be announcing our Women in Security Award winners.
“With the rise of mobile and constant connectivity, the risks posed by hackers continues to rise,” said Jon Oberheide, CTO and co-founder at Duo Security. “We need the best minds to help us innovate and improve our products with a security-first approach and to educate the industry on the latest threats.”
Duo Labs has been a major contributor to industry research. The team revealed the disclosure of a bypass in PayPal’s two-factor authentication and a similar bypass of Google’s two-factor authentication. In addition, Duo Labs has also been on the cutting edge of authentication security, launching tools such as VPN Hunter and Did I Get Gawkered?
About Duo Security Duo Security is a cloud-based access security provider protecting the world’s fastest-growing and largest companies and thousands of organizations worldwide, including Box, Etsy, Facebook, K-Swiss, Palantir, Paramount Pictures, Random House, Toyota, TripAdvisor Twitter, Yelp, Zillow, and more. Duo Security’s innovative and easy-to-use technology can be quickly deployed to protect users, data, and applications from breaches, credential theft and account takeover. Duo Security is backed by Benchmark, Google Ventures, Radar Partners, Redpoint Ventures and True Ventures. Try it for free at www.duosecurity.com.
Sally Feller Lanier