for immediate release

Bastille Raises $44 Million Series C Investment Led by Goldman Sachs Asset Management

Bastille on track to double Annual Recurring Revenue after growing 3x in 2023

 

Previous investor Bessemer Venture Partners also participates in the round

 

Santa Cruz, CA – Jan. 25, 2024 – Bastille Networks, Inc., a leading supplier of wireless threat intelligence technology to high-tech, banking, and the intelligence community, is pleased to announce a Series C investment of $44 million, led by its new investor: Growth Equity at Goldman Sachs Asset Management (Goldman Sachs). Existing investor Bessemer Venture Partners joined Goldman Sachs in the Series C round. Investors in previous rounds include Comcast, Bessemer, and the individual investors who have supported the Company from its Seed stage. The capital will be used to support the company's high growth and expand into new markets.

Growth Equity at Goldman Sachs Asset Management is dedicated to investing in high-growth businesses with strong market positioning, and durable business models. Zartasha Chaudhry, of Goldman Sachs, will join Bastille’s Board of Directors to advise on the company's next stage of growth.

With the proliferation of radio frequency devices in people’s pockets, in buildings, in business, and in industry, there has been an explosion in wireless vulnerabilities that are not detectable by existing security technologies. Bastille provides its commercial customers with the ability to detect every wireless device in every facility, to watch each device’s behavior, and to evaluate that traffic for threats which would otherwise not be seen. Bastille then provides customers’ security teams with the locations of all devices violating their security policies. A key design feature of Bastille’s technology is the ability to integrate with the customer’s existing security systems and procedures.

“This $44 million investment from Goldman Sachs coupled with a shared vision about how our unique offering will help customers secure their radio frequency airspace, is a clear indicator of the strength of Bastille products,” said Chris Risley, CEO of Bastille. “Bastille has tripled Annual Recurring Revenue in the last year and is on track to more than double ARR again this year. Given their product experience as a Bastille customer, we are thrilled to deepen our relationship with Goldman Sachs as we bring them on as an investor.”

"Bastille has transformed the wireless threat detection space by building an advanced, multi-tiered platform providing real-time, continuous wireless threat intelligence. Our investment reflects our thesis that, as sophistication of wireless threats continues to grow, Bastille is primed to meet the needs of customers across the enterprise and federal sectors," said Zartasha Chaudhry, Vice President in Growth Equity at Goldman Sachs Asset Management.

About Bastille Networks
Bastille is the leader in enterprise wireless threat intelligence through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless, and Internet of Things devices inside an enterprise’s corporate airspace – together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies, and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. To learn more please visit https://bastille.net or follow us on LinkedIn.

About Growth Equity at Goldman Sachs Asset Management
Goldman Sachs (NYSE: GS) is one of the leading investors in alternatives globally, with over $450 billion in assets and more than 30 years of experience. The business invests in the full spectrum of alternatives including private equity, growth equity, private credit, real estate, infrastructure and sustainability. Clients access these solutions through direct strategies, customized partnerships, and open-architecture programs.

The business is driven by a focus on partnership and shared success with its clients, seeking to deliver long-term investment performance drawing on its global network and deep expertise across industries and markets.

The alternative investments platform is part of Goldman Sachs Asset Management, which delivers investment and advisory services across public and private markets for the world’s leading institutions, financial advisors and individuals. Goldman Sachs has over $2.8 trillion in assets under supervision globally as of December 31, 2023. 

Since 2003, Growth Equity at Goldman Sachs Asset Management has invested over $13 billion in companies led by visionary founders and CEOs. The team focuses on investments in growth stage and technology-driven companies spanning multiple industries, including enterprise technology, financial technology, consumer and healthcare. Follow us on LinkedIn.

Press Contacts
Justin Fry
Bastille Networks
justin@bastille.net

Noe Sacoco
Sacoco PR
(408) 340-8130
noe@sacocopr.com

Bastille Honored in Inc. 5000 List of Fastest Growing Companies for Third Consecutive Year with Three-Year Revenue Growth of 1,252 Percent

NEW YORK, August 17, 2023Bastille, the leader in enterprise wireless threat detection through software-defined radio, today announced the company has been named to the Inc. 5000 list for the third consecutive year. With a three-year growth of 1,252 percent, Bastille has emerged in the top 10% as one of America’s fastest-growing private companies. Facebook, Chobani, Under Armour, Microsoft, Patagonia, and many other household name brands gained their first national exposure as honorees on the Inc. 5000. 

This is Bastille’s third consecutive year on the Inc 5000 list and Bastille’s company growth accelerated significantly this year compared to 2022 and 2021.

“We are pleased to be named on the Inc. 5000 list and this recognition reinforces Bastille’s commitment to delivering impactful value to our customers and the industry,” said Chris Risley, CEO of Bastille Networks. “At Bastille, we are dedicated to moving the industry forward with our product innovation, committed to securing the invisible wireless attack surface, and evolving our capabilities to meet the ever-changing needs of the wireless security ecosystem.” 

The Inc. 5000 class of 2023 represents companies that have driven rapid revenue growth while navigating inflationary pressure, the rising costs of capital, and seemingly intractable hiring challenges.  In all, this year’s Inc. 5000 companies have added 1,187,266 jobs to the economy over the past three years. 

“Running a business has only gotten harder since the end of the pandemic,” says Inc. editor-in-chief Scott Omelianuk. “To make the Inc. 5000—with the fast growth that requires—is truly an accomplishment. Inc. is thrilled to honor the companies that are building our future.” 

For more information on Bastille, visit bastille.net and follow @bastillenet and LinkedIn.

About Bastille

Bastille is the leader in enterprise wireless threat intelligence through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure.

More about Inc. and the Inc. 5000 

Methodology 

Companies on the 2023 Inc. 5000 are ranked according to percentage revenue growth from 2019 to 2022. To qualify, companies must have been founded and generating revenue by March 31, 2019. They must be U.S.-based, privately held, for-profit, and independent—not subsidiaries or divisions of other companies—as of December 31, 2022. (Since then, some on the list may have gone public or been acquired.) The minimum revenue required for 2019 is $100,000; the minimum for 2022 is $2 million. As always, Inc. reserves the right to decline applicants for subjective reasons. Growth rates used to determine company rankings were calculated to four decimal places. 

About Inc. 

Inc. Business Media is the leading multimedia brand for entrepreneurs. Through its journalism, Inc. aims to inform, educate, and elevate the profile of our community: the risk-takers, the innovators, and the ultra-driven go-getters who are creating our future. Inc.’s award-winning work reaches more than 50 million people across a variety of channels, including events, print, digital, video, podcasts, newsletters, and social media. Its proprietary Inc. 5000 list, produced every year since 1982, analyzes company data to rank the fastest-growing privately held businesses in the United States. The recognition that comes with inclusion on this and other prestigious Inc. lists, such as Female Founders and Power Partners, gives the founders of top businesses the opportunity to engage with an exclusive community of their peers, and credibility that helps them drive sales and recruit talent. For more information, visit www.inc.com

Media Contact:
Noe Sacoco
Sacoco PR
+1 (408)-340-8130
noe@sacocopr.com

Bastille Named to Inc. 5000 List of Fastest Growing Companies for Second Consecutive Year With Three-Year Revenue Growth of 1,034 Percent

SAN FRANCISCO, CA – September 23, 2022 – Bastille, the leader in enterprise wireless threat detection through software-defined radio, today announced the company has been named to the Inc. 5000 list for the second consecutive year. With a three-year growth of 1,034 percent, Bastille has emerged as one of America’s fastest-growing private companies. Facebook, Chobani, Under Armor, Microsoft, Patagonia, and many other well-known names gained their first national exposure as honorees on the Inc. 5000.

This is Bastille’s second consecutive year on the Inc 5000 List, and Bastille’s rate of growth accelerated significantly this year. Last year Bastille was recognised for more than 800% 3-Year growth and this year for more than 1,000% 3-Year Growth.

“Bastille’s tremendous growth is driven by our team’s innovation and ability to foresee the evolution of RF threats targeting today’s enterprises,” said Chris Risley, CEO of Bastille Networks. “We’re proud to appear on the Inc. 5000 list and expect our growth to continue as enterprises now understand that traditional wired network security can be compromised via invisible radio frequencies and thus must adopt cutting-edge solutions like Bastille that provide the ability to identify and remediate these RF threats.”

The companies on the 2022 Inc. 5000 have not only been successful, but have also demonstrated resilience amid supply chain woes, labor shortages, and the ongoing impact of COVID-19.

“The accomplishment of building one of the fastest-growing companies in the U.S., in light of recent economic roadblocks, cannot be overstated,” says Scott Omelianuk, editor-in-chief of Inc. “Inc. is thrilled to honor the companies that have established themselves through innovation, hard work, and rising to the challenges of today.”

For more information on Bastille, visit bastille.net and follow them on Twitter at @bastillenet and on LinkedIn.

About Bastille

Bastille is the leader in enterprise wireless threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure.

For more information on Bastille, visit bastille.net and follow @bastillenet and LinkedIn.

More about Inc. and the Inc. 5000

Methodology - Companies on the 2022 Inc. 5000 are ranked according to percentage revenue growth from 2018 to 2021. The entire Inc. 5000 can be found at https://www.inc.com/inc5000.

About Inc.

The world’s most trusted business-media brand, Inc. offers entrepreneurs the knowledge, tools, connections, and community to build great companies. Its award-winning multi-platform content reaches more than 50 million people each month across a variety of channels including websites, newsletters, social media, podcasts, and print. Its prestigious Inc. 5000 list, produced every year since 1982, analyzes company data to recognize the fastest-growing privately held businesses in the United States. The global recognition that comes with inclusion in the 5000 gives the founders of the best businesses an opportunity to engage with an exclusive community of their peers, and the credibility that helps them drive sales and recruit talent. The associated Inc. 5000 Conference & Gala is part of a highly acclaimed portfolio of bespoke events produced by Inc. For more information, visit www.inc.com.

Media Contact:
Noe Sacoco
Sacoco PR
+1 (408)-340-8130
noe@sacocopr.com

Bastille Secures NIAP Common Criteria Validation

During Certification, Bastille is the Only Cellular Intrusion Detection Product on the NIAP Compliant List and Underscores the Company’s Mission to Detect and Locate All Authorized and Unauthorized Devices in an Airspace

SAN FRANCISCO, CA – September 23, 2022 – Bastille, the leader in wireless threat detection through software-defined radio, today announced that its product Bastille Enterprise has received the Common Criteria validation from the National Information Assurance Partnership (NIAP).

The Common Criteria is recognized by 31 member countries in the Common Criteria Recognition Arrangement (CCRA). Members of the CCRA include Australia, Canada, France, Germany, Italy, Japan, Spain, the United Kingdom and the United States. The NIAP serves as the U.S. representative to the CCRA.

Bastille Enterprise analyzes observed wireless device data to detect devices, their metadata, and their locations. Bastille Enterprise provides real time feeds of this enriched device data, enabling users to make security decisions by leveraging the real time wireless device inventory the Bastille Enterprise provides and site policies of the organization.

In receiving its certification, the Bastille Enterprise underwent a rigorous testing process. The validation team concluded that “the evaluation showed that the product satisfies all of the functional requirements and assurance requirements stated in the Security Target.” As a result, Bastille Enterprise will now be listed on the U.S. NIAP Product Compliant List and the international CCRA Certified Products List.

“To date, Bastille is the only Cellular Intrusion Detection Product on the NIAP Compliant List. The NIAP security review process is so rigorous that in all the other categories combined, there are currently only 214 products on the NIAP Compliant list at the time of certification. I want to commend the Bastille Engineering team for designing and delivering a robust security solution which makes us part of that elite group,” said Chris Risley, Bastille CEO.

Certificate:

https://www.niap-ccevs.org/MMO/Product/st_vid11311-ci.pdf

Link to Bastille announcement on NIAP site.

https://www.niap-ccevs.org/Product/Compliant.cfm?PID=11311

Notes from NIAP on certification.

“The IT product identified in this certificate has been evaluated at an accredited testing laboratory using the Common Methodology for IT Security Evaluation (Version 3.1) for conformance to the Common Criteria for IT Security Evaluation (Version 3.1). This certificate applies only to the specific version and release of the product in its evaluated configuration. The product's functional and assurance security specifications are contained in its security target. The evaluation has been conducted in accordance with the provisions of the NIAP Common Criteria Evaluation and Validation Scheme and the conclusions of the testing laboratory in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsement of the IT product by any agency of the U.S. Government and no warranty of the IT product is either expressed or implied.”

About NIAP

The National Information Assurance Partnership (NIAP) is responsible for U.S. implementation of the Common Criteria, including management of the NIAP Common Criteria Evaluation and Validation Scheme (CCEVS) validation body.

NIAP manages a national program for developing Protection Profiles, evaluation methodologies, and policies that will ensure achievable, repeatable, and testable requirements. In partnership with NIST, NIAP also approves Common Criteria Testing Laboratories to conduct these security evaluations in private sector operations across the U.S.

NIAP takes a collaborative approach to technology-specific protection profile development by supporting the creation of international technical communities of representatives from industry, government, end users, and academia. This results in consistent evaluation methodologies across U.S. testing labs and among labs associated with international Common Criteria Recognition Arrangement schemes.

NIAP also works with NATO and international standards bodies (ISO) to share Common Criteria evaluation experiences and avoid duplication of effort. In the U.S., NIAP engages with other National Security Systems (NSS) users to ensure Protection Profiles, along with their associated DoD Annexes, provide a streamlined certification path for IA and IA enabled COTS products employed with NSS.

About Bastille

Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure.

For more information on Bastille, visit bastille.net and follow @bastillenet and LinkedIn.

Media Contact:
Noe Sacoco
Sacoco PR
408-340-8130
noe@sacocopr.com

Bastille Receives LenelS2 Factory Certification under the LenelS2 OpenAccess Alliance Program

Bastille interfaces with LenelS2’s OnGuard® access control security system

San Francisco, CA — October 12, 2021 – Bastille Networks today announced that it has received LenelS2 factory certification and joined the LenelS2 OpenAccess Alliance Program (OAAP). Bastille Networks interfaces with the OnGuard® access control system and enables control of LenelS2 camera systems.

“Bastille has completed the required LenelS2 factory testing to validate the functionality of its interface to the OnGuard system. This allows Bastille to send alarms to the OnGuard system when a cell phone or other restricted radio frequency (RF) device crosses a geofence boundary,” said John Marchioli, OAAP Product Management, LenelS2. “We look forward to their continued involvement in the LenelS2 OpenAccess Alliance Program.”

“Bastille enables customers to discover, analyze and act on the presence of RF-enabled devices such as cell phones, IoT devices, Wi-Fi devices and Bluetooth devices. By interfacing with the OnGuard system we can provide a higher level of situational awareness. For example through this interface, a Bastille geofence boundary breach can trigger an alarm in the OnGuard system that can then cue and/or slew a security camera to show which user violated the organization’s RF device policy,” states Dr. Bob Baxley, Chief Technology Officer, Bastille.

About Bastille
Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information, visit www.bastille.net and follow them on Twitter @bastillenet and LinkedIn.

Media Contact:
Noe Sacoco
Sacoco PR
408-340-8130
noe@sacocopr.com

Bastille Named to Inc. 5000 List of Fastest-Growing Private Companies in America

Bastille Named to Inc. 5000 List of Fastest-Growing Private Companies in America

Bastille’s ranking puts it in the top 1% for growth of all Venture Capital-backed businesses

SAN FRANCISCO – August 17, 2021 – Bastille, the leader in enterprise threat detection through software-defined radio, today announced it has been named to the Inc. 5000 list of America’s fastest growing private companies. Bastille’s 822% three-year growth puts it in the top fifth of the Inc. 5000 list and in the top 1% of all 90,000 Venture Capital-backed businesses. Previous Inc. 5000 honorees include Microsoft, Intuit, Zappos, and Under Armour.

According to PitchBook, there are over 90,000 Venture Capital-backed businesses in the US. Bastille’s Inc. 5000 ranking places the company’s growth in the top 1% of all VC-backed businesses and in the top fifth of the 5000 fastest growing companies.

“Bastille’s growth is driven by its innovation and ability to foresee the evolution of RF threats targeting today’s enterprises,” said Chris Risley, CEO of Bastille Networks. “We’re proud to be named to the Inc. 5000 list and expect to see continued growth as more enterprises realize that all their investment in wired-network security can be compromised by an invisible leak over Radio Frequencies.”

Companies on the 2021 Inc. 5000 are ranked according to percentage revenue growth from 2017 to 2020. Since 2017, Bastille has grown 822%, even in the midst of the 2020 pandemic.

“The 2021 Inc. 5000 list feels like one of the most important rosters of companies ever compiled,” says Scott Omelianuk, editor-in-chief of Inc. “Building one of the fastest-growing companies in America in any year is a remarkable achievement. Building one in the crisis we’ve lived through is just plain amazing. This kind of accomplishment comes with hard work, smart pivots, great leadership, and the help of a whole lot of people.”

Complete results of the Inc. 5000, including company profiles and an interactive database that can be sorted by industry, region, and other criteria, can be found at www.inc.com/inc5000.

For more information on Bastille, visit bastille.net and follow them on Twitter at @bastillenet and LinkedIn.

About Bastille
Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information, visit www.bastille.net and follow them on Twitter @bastillenet and LinkedIn.

Media Contact:
Noe Sacoco
Sacoco PR
408-340-8130
noe@sacocopr.com

Pegasus Spyware Highlights Urgent Need for Bastille Enterprise to Detect And Locate Compromised Cell Phones

SAN FRANCISCO, Calif. – July 21, 2021 – New stories this week about Pegasus “Spyware” show that a remote attacker can activate the camera and microphone on any cell phone to exfiltrate conversations or video meetings.

NSO Group, the Israeli maker of Pegasus, claims that their system is designed never to attack a phone with a U.S. phone number. But press reports suggest that Pegasus has exploited phones on U.S. soil which had overseas numbers.

“NSO isn’t the only hacker team in the world that has these capabilities.” said Chris Risley, CEO of Bastille Networks. “Other spyware from other nations won’t have the same hesitation to infect US phones. So, everyone should have heightened concern about allowing cell phones in areas with confidential or classified information.”

Spyware such as Pegasus only requires one errant click on a message or email to turn the whole phone over to a remote bad guy. The phone stays under hostile control forever. In some cases, applications like Pegasus can be installed even if the user never clicks the “trap” message. Given the ability for phones to communicate their location, surveillance can be set to begin only when a phone enters certain target locations e.g. R&D labs, Fortune 500 HQ, Film Studio, secure government facilities, etc.

Policies to exclude cell phones from sensitive areas, or from meetings at “sensitive moments” only work if they are backed with accurate cell phone detection/location systems. Bastille is trusted by military, government and Fortune 500 customers to instantly detect, locate and alert on the presence of rogue cell phones and other RF based devices anywhere within a facility.

“Bastille has been doing RF and Cellular Intrusion Detection and research for the Government for years and the Pegasus Projects reporting this week should put all enterprises on alert,” said Chris Risley, CEO at Bastille Networks. “Millions of vulnerable smartphones enter workplaces daily. A hacked smartphone can be used as a portal into an enterprise’s network, putting the organization’s sensitive and critical data at risk of being breached. It is imperative to have security protocols in place to manage the secure use of smartphones in the workplace. If security teams didn’t think smartphones in the facility were an important threat in July, they certainly should think they are an important threat now.”

The U.S. government is highly concerned about RF espionage because nation state actors such as China, North Korea, Russia, and Israel are very savvy at employing RF techniques to breach network security. The government has accepted the threat of RF espionage and because of this, government facilities with valuable secrets have policies to exclude RF devices such as cell phones to keep the threats at bay. While some government and commercial buildings have secure areas where no cell phones or other RF-emitting devices are allowed, detecting and locating radio-enabled devices is largely based on the honor system or one-time scans for devices. Unfortunately, nation states and other bad actors do not follow the honor system and one-time scans are just that: one time and cannot monitor 24x7.  

Only Bastille Enterprise can deliver: 

  • COMPLETE VISIBILITY: Detect all the wireless/cellular devices and connections in your facilities whether or not they have connected to your network.

  • THREAT DETECTION: Detect that a device such as one with a Bluetooth or cellular connection is transmitting data (and is not just an employee listening to music).

  • ACCURATE THREAT LOCATION: Locate offending devices on your floor plan. 

A LOT MORE THAN CELLULAR INTRUSION DETECTION
Though commonly thought of as Cellular Intrusion Detection, Bastille does a lot more than merely detecting the presence of cell phones. Customers can set up alerts based on wireless device behavior. Examples include:

  • COMPROMISED DEVICES: Bastille baselines facilities, all wireless devices (including Cellular, Wi-Fi, Bluetooth and BLE) and their typical behavior and can alert when a device is compromised and exhibits abnormal behavior

  • SECURE AREA DATA BREACHES: Alert when an allowed Bluetooth hearing aid performs an unauthorized BLE pairing with a device outside the secure area; or detect when a Company phone at a desk is joined by a personal phone at the same desk

  • MDM ENHANCEMENT: Alert when a phone which is not under Mobile Device Management is turned on

  • INSIDER THREATS: Alert when a device is seen in an area where it is not allowed, or forensically investigate to understand the devices and their behavior from weeks or months ago

For more information on Bastille, visit bastille.net and follow them on Twitter @bastillenet and LinkedIn.

About Bastille
Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information, visit www.bastille.net and follow them on Twitter @bastillenet and LinkedIn.

Media Contact:
Noe Sacoco
Sacoco PR
408-340-8130
noe@sacocopr.com 


Bastille Awarded Phase 5 Contract from Department of Homeland Security

Bastille continues partnership with DHS to focus on delivering RF security to protect the nation’s sensitive data and critical infrastructure

SAN FRANCISCO, Calif. – December 15, 2020 – Bastille, the leader in enterprise threat detection through software-defined radio (SDR), today announced it has been awarded a Phase 5 Other Transaction Agreement (OTA) from the Department of Homeland Security (DHS) Science and Technology Directorate’s (S&T) Silicon Valley Innovation Program (SVIP). The funding continues the ongoing partnership which began in January 2017, in which Bastille helps to secure government organizations through its patented software-defined radio and machine-learning technology that senses, identifies and localizes threats from RF devices.

“Government agencies are under constant threat of a cyberattack due to the sensitive nature of the data they possess as well as their access to infrastructure that affects millions of people,” said Chris Risley, CEO at Bastille Networks. “Sophisticated hackers can now exploit wireless protocols to gain access to these assets. Bastille identifies and secures susceptible points in the attack surface, ensuring that potential vulnerabilities are addressed and protected from malicious attacks. We look forward to continue working with the Department of Homeland Security and are proud to play a role in helping secure the nation’s infrastructure from these emerging threats.”

The DHS shared the following in their press release announcing the Bastille Phase 5 contract award:

“As a portfolio company of SVIP, Bastille demonstrated their system’s ability to use software defined radios and machine learning technology to passively monitor the electromagnetic spectrum for wireless device emissions. This enables real-time detection of wireless devices and supports protective operations and law enforcement missions by keeping out uninvited wireless devices, such as cell phones.

As part of their commercial roadmap, Bastille adapted their solution and created the Fly Away Kit. It’s a self-contained mobile solution system that can fit into several types of protective cases for mobile deployments. The Fly Away Kit can detect and locate all cellular, Bluetooth, Bluetooth Low Energy, and Wi-Fi devices operating within an area up to 3,000 square-feet, such as a conference room, tent site, remote office, hotel room, or speaking location. DHS stakeholders and the wider government community are continuously in search of capabilities that can be rapidly deployed for temporary field applications. The Fly Away Kit aligns with that operational need.

“Bastille has developed a technology that fills high priority capability gaps as identified by DHS operational users,” said Ron McNeal, SVIP Transition Director.

“Their ability to solicit feedback from users and adapt their technology shows an understanding of what it takes to transition these much-needed capabilities to the government.”

The DHS press release went on to say:

“While Bastille Networks is selling their permanent system developed under SVIP to other government agencies,” said SVIP Managing Director Melissa Oh, “Their ability to understand DHS’ evolving needs and quickly develop a mobile capability will enable transition of this much needed technology to DHS in the future.”

For more information on Bastille, visit bastille.net and follow on Twitter @bastillenet and LinkedIn.

About Bastille

Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information on Bastille, visit bastille.net and follow on Twitter @bastillenet and LinkedIn.

Contacts

Noe Sacoco 
Sacoco PR 
408-340-8130 
noe@sacocopr.com

Bastille Announces Bastille Enterprise Cellular Intrusion Detection is Now Available To Help Corporations With Radio Frequency Threat Remediation

Previously only available to its military and law enforcement customers, Bastille announces commercial availability of the only solution that can accurately locate cell phones indoors using only cellular signals 

SAN FRANCISCO, Calif. – February 20, 2020 – Bastille, the leader in enterprise threat detection through software-defined radio (SDR), today announced its new Bastille Enterprise Cellular Intrusion Detection for enterprises.

“Bastille has been doing radio frequency (RF) and Cellular Intrusion Detection and research for the Government for years,” said Chris Risley, CEO at Bastille. “Only in 2020 did Bastille finally receive FCC approval for its Civilian cellular sensor array. This allows Bastille for the first time to offer accurate Cellular Intrusion Detection to the Enterprise. Now corporations can have the RF security that the DoD and Intelligence Community rely on to protect the nation’s secrets.”

Bastille provides corporations the ability to discover, locate, and mitigate radio borne threats to their assets, facilities and networks. These threats arise from managed, unmanaged and rogue wireless, IoT and Cellular devices. Bastille does this protection by using SDRs to passively observe the entire radio space in a facility from 60 MHz to 6GHz. More than 70 percent of devices connected to the network today are connected via RF & Cellular and that percentage is growing. Equally important are the radio-enabled and cellular devices in your facility which are NOT connected to your network; those which enter daily with employees and visitors, and those installed by contractors into your buildings. These devices are the ones which can be used to exfiltrate voice, video, and computer data right past your firewalls and into the unsecure world outside.

Example: a laptop legitimately connected to your network right now could also be tethered to a cell phone via Bluetooth and that cellphone can be connected via a 40 Mbps 4G Cellular data connection to a server in China which is capturing your company secrets in real time. 

Covert, rogue and vulnerable wireless and cellular devices are inside the enterprise today. Suspicious equipment includes SmartTVs, security cameras, printers and peripherals, medical devices, building controls and of course, cell phones.

Only Bastille can deliver:

  • COMPLETE VISIBILITY: Detect all the wireless/cellular devices and connections in corporate facilities whether or not they have connected to the corporate network,

  • THREAT DETECTION: Detect that a device such as one with a Bluetooth or cellular connection is transmitting data (and is not just an employee listening to music),

  • ACCURATE THREAT LOCATION: Locate both of the offending devices on your floor plan.

The whole Bastille threat detection process takes just seconds from when the wireless/cellular device first transmits until your security team receives an Alert in your existing alerting system.

A lot more than Cellular Intrusion Detection.

Though commonly thought of as Cellular Intrusion Detection, Bastille does a lot more than merely detecting the presence of cell phones. Customers can set up alerts based on wireless device behavior. Examples include:

  • Compromised Devices: Bastille baselines facilities, all wireless devices (including Cellular, Wifi, Bluetooth and BLE) and their typical behavior and can alert when a device is compromised and exhibits abnormal behavior.

  • Secure Area Data Breaches: Alert when an allowed Bluetooth hearing aid performs an unallowed BLE pairing with a device outside the secure area. Or detect when a Company phone at a desk is joined by a personal phone at the same desk.

  • MDM Enhancement: Alert when a phone which is not under Mobile Device Management is turned on, or add geo-fencing capabilities to an organization's existing MDM solution.

  • Insider Threats: Alert when a device is seen in an area where it is not allowed, or forensically investigate to understand the devices and their behavior from weeks or months ago.

Enterprise RF Vulnerabilities Increasing

In the last month, two new large scale RF vulnerabilities were announced, namely SweynTooth and the Phillips Hue vulnerability Zigbee Worm. These vulnerabilities join BleedingBit, BlueBorne, MouseJack, and KeySniffer as examples of how immature security is for Radio Frequency protocols. The Ethernet and IP Protocols have undergone decades of battle-hardening. These protocols had lots of security vulnerabilities when they were young but researchers have discovered those vulnerabilities and most have been patched. Widespread IoT protocols, Bluetooth and BLE adoption are more recent and as a result, we’re still discovering very large security holes in those protocols.

“I have no doubt that more huge security holes will be discovered in the more than 100 new radio protocols used by IoT devices,” said Bob Baxley, Chief Technology Officer at Bastille. “Bastille can tell you which devices in your facility--both on and off your network--are susceptible to RF attack. It is critical that CISOs understand their RF attack surface in order to maintain a secure perimeter.”

Bastille’s Patented Software-Defined Radio (SDR) Technology

Bastille now has 17 U.S. Patents issued and more pending. Bastille’s software-defined sensor arrays scan from 60 MHz to 6 GHz. Within that range, Bastille has more than a dozen protocol decoders, including Cellular, Wifi, Bluetooth, Bluetooth Low Energy (BLE), ZigBee, DECT and others. Using software-defined radios we see all the emitters distinctly, and then by using protocol decoders in the arrays we digitally demodulate the protocols.

About Bastille

Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information on Bastille, visit bastille.net and follow on Twitter @bastillenet and LinkedIn.

Contacts

Noe Sacoco 
Sacoco PR 
408-340-8130 
noe@sacocopr.com

Bastille Announces Bastille Express Portable Rapid Deployment Radio Frequency Threat Remediation Kit

Bastille announces commercial version of its popular DoD only Fly-Away Kit to allow corporations to rapidly locate cell phones, Wi-Fi, Bluetooth and BLE devices at multiple and/or temporary locations such as meetings, events, and remote offices

SAN FRANCISCO, Calif. – February 20, 2020 – Bastille, the leader in enterprise threat detection through software-defined radio, today announced its new Bastille Express portable rapid deployment kit delivering real-time, accurate Cellular, Bluetooth, BLE and Wi-Fi device detection, identification and location for multiple, temporary and/or remote locations.

“Since we launched Bastille Enterprise for permanent installation to protect a corporation's most valuable assets, we have been asked if we could deliver their Security Teams a portable version,” said Chris Risley, CEO at Bastille. “Security professionals wanted a portable version to scan and protect temporary meeting locations, such as executive retreats or to use when they visited remote offices. We first delivered the Bastille FlyAway Kit for our DoD customers and now following our recent FCC approvals, we are delivering the commercial version, Bastille Express for our enterprise customers.”

Set up in minutes, Bastille Express can detect and locate authorized and unauthorized Cellular, Bluetooth, BLE and Wi-Fi devices operating within an area of 3,000 to 5,000 square feet such as a conference meeting room, remote office, hotel room or speaking location.

“In the last month, the announcement of the SweynTooth Bluetooth Low Energy device vulnerability, and the Philips Hue vulnerability Zigbee Worm highlighted the need for corporate security teams to have a solution to discover all the vulnerable wireless devices in their HQ and remote facilities,” said Bob Baxley, CTO at Bastille. “Bastille Express is a great solution to scan an organization’s facilities to discover rogue devices and RF threats.”

In addition to discovering the latest RF vulnerabilities throughout corporate facilities, Bastille Express can be used to:

  • ENFORCE NO CELL PHONE OR DEVICE POLICY: Enforce no cell phone policy for a temporary or remote facility

  • SECURE MEETINGS AREAS: Detect transmitting electronic devices in a secure meeting area

  • PREVENT VOICE AND DATA EXFILTRATION: Detect wireless devices and Red Alert Upon events such as Bluetooth Pairing

  • SCAN BUILDINGS & REMOTE OFFICES: Scan a room or building to understand the presence and location of all emitters/transmitters and building systems

  • TSCM: Scan and monitor an area for unapproved electronic devices

  • EXTEND BASTILLE ENTERPRISE TO REMOTE OFFICES: Deliver Bastille’s capabilities to a remote office or temporary location

Typical Workflow with Bastille Express

Security teams charged with scanning and then protecting a temporary location, for example surrounding an executive meeting, typically use the following workflow

  • BASELINE: Scan an area to create a base-line, identify devices and networks

  • AUTHORIZE/REMOVE: Authorize, remove or disable devices/systems

  • MONITOR: Monitor for and alert when new devices/networks arrive

  • EXIT SCAN: Compare end deployment scan to initial baseline scan to see if any RF threats have been left behind

FULLY SELF-CONTAINED DEPLOYABLE BASTILLE SYSTEM IN A PELICAN CASE

Bastille Express goes from Pelican Case to Detecting and Locating first Devices in around 30 minutes

  • All you need: Five Sensors, mini-switch, laptop, Cat6 cables and tripods in a Pelican case

  • Same GUI as Bastille Enterprise shows dots on a map for device location

  • Rapid deployment: Detect and Locate Wi-Fi, Bluetooth and BLE devices in 30 minutes and Cellular phones in 90 minutes

  • Detailed Device Information up to 150 fields per device

  • DVR and Forensics

  • Coverage area of 3,000 to 5,000 sq. ft.

  • FCC Certified 100 percent Passive Operation

  • Future Proofed Software Defined Radio (SDR) sensor arrays

  • Stand-alone system (option to upload to the Enterprise version post deployment)

About Bastille

Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information on Bastille, visit bastille.net and follow on Twitter @bastillenet and LinkedIn.

Contacts

Noe Sacoco 
Sacoco PR 
408-340-8130 
noe@sacocopr.com

Bastille Announces First Solution to Detect and Locate the Millions of Bluetooth Low Energy Devices Subject To The New SweynTooth Vulnerability

Bastille Enterprise is the only solution that can locate these vulnerable Bluetooth Low Energy devices all the time

SAN FRANCISCO, Calif. – February 18, 2020 – Bastille, the leader in enterprise threat detection through software-defined radio, today announced that Bastille Enterprise can see all the SweynTooth-vulnerable Bluetooth Low Energy devices within an Enterprise.

SWEYNTOOTH OVERVIEW: Three researchers from the Singapore University of Technology and Design (SUTD), Matheus Garbelini, Sudipta Chattopadhyay, and Chundong Wang, made details of the vulnerabilities available last week, following a 90 day waiting period for Responsible Disclosure, having notified impacted manufacturers late last year.

The name “SweynTooth” covers a dozen flaws in the software development kits (SDKs) responsible for supporting BLE communications that are provided by vendors of system-on-a-chip (SoC) chipsets. The vulnerabilities are believed to be on more than 480 different end-user devices. Six of the SoC manufacturers who were notified last year of the vulnerability and have released patches include Texas Instruments, NXP, Cypress, Dialog Semiconductors, Microchip, STMicroelectronics. Most BLE devices will remain unpatched for months or years as the chip manufacturers have to get their patches to the device manufacturers. The device manufacturers have to distribute the firmware updates to their customers. BLE device end-users are notoriously slow to reflash their firmware. There are many other impacted vendors and the researchers say they will release their names when those manufacturers release patches. Researchers also hinted that there are additional attack vectors against Bluetooth Low Energy devices which are still under non-disclosure.

More information about the vulnerabilities, available patches and affected devices can be found on the ASSET Research Group SweynTooth disclosure website.

“The Singapore researchers discovered that the SweynTooth vulnerabilities allow attackers to use radio signals to bypass security, and take control of, or shut down Bluetooth Low Energy devices,” said Chris Risley, CEO at Bastille Networks. “The SweynTooth BLE vulnerability is particularly stealthy because BLE connections are invisible on the Corporate Network. Once the attackers have a compromised device inside your facility they can use it as a beachhead to attack other systems. Devices can be compromised outside the facility, unbeknownst to their users, and then be carried in on the wrists or ears of innocent users.”

Only Bastille Sees Bluetooth Low Energy Devices All The Time, even when they are Paired

Other vendors may claim Bluetooth Low Energy device visibility, but they are only detecting them when the devices are in “advertising mode”. Once the BLE device finds a partner and pairs with it, those devices disappear from the competitors’ screens. Only Bastille continues to locate both ends of the BLE pair throughout the pairing connection.

“Following the announcement of SweynTooth, Enterprise CISOs are asking their security teams to conduct a complete inventory of their airspace to detect and locate ALL the Radio Frequency devices within their enterprise, including Bluetooth Low Energy devices, so they can determine which devices may be affected,” said Bob Baxley, Bastille’s Chief Technical Officer. “Only Bastille can detect and accurately locate every Bluetooth-based device on a floor plan, whether or not it is pairing at the time of the inventory, so that they can be investigated and patched or removed from the environment.”

Bob Baxley added: “SweynTooth, the Phillips Hue vulnerability Zigbee Worm, BleedingBit, BlueBorne, MouseJack, and KeySniffer are all examples of how immature security is for Radio Frequency protocols. Ethernet and IP Protocols have undergone decades of battle-hardening. Even Wi-Fi has been heavily used for 20 years. These protocols had lots of security vulnerabilities when they were young but researchers have discovered those vulnerabilities and most have been patched. Widespread Bluetooth and BLE adoption are more recent and as a result, we’re still discovering very large security holes in those protocols. I have no doubt that similar huge security holes will be discovered in the more than 100 new radio protocols used by IoT devices. Bastille can tell you which devices in your facility--both on and off your network--are susceptible to RF attack. It is critical that CISOs understand their RF attack surface in order to maintain a secure perimeter.”

Bastille Enterprise: Bastille Enterprise is available now. Bastille can be installed to discover devices and networks anywhere from a single meeting room up to hundreds of buildings on a global basis. Bastille provides continuous RF monitoring and protection for an organization’s most valuable assets.

About Bastille

Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information on Bastille, visit bastille.net and follow on Twitter @bastillenet and LinkedIn.

Contacts

Noe Sacoco 
Sacoco PR 
408-340-8130 
noe@sacocopr.com

U.S. Air Force Awards SBIR Phase I to Bastille Networks

SAN FRANCISCO, Calif. – January 7, 2020 – Bastille, the leader in enterprise threat detection through software-defined radio, has just secured its first AFWERX Phase I contract.  

During the Phase I contract, Bastille will search for applicable use cases of its Software-Defined Radio system that provides accurate detection, location and alerting on Cellular, Wi-Fi, Bluetooth and Bluetooth Low Energy devices within the Air Force and Department of Defense (DoD) buildings and forward deployed locations. 

Possible use cases could include securing SCIFs from wireless intrusion, monitoring for unauthorized cell phone activity in “no cell phone” locations and detecting wearables such as human performance measurement bluetooth and BLE devices. 

Dr. Bob Baxley, CTO, Bastille comments “We are impressed with the AFWERX program and commitment to innovation for the Air Force. We look forward to assisting the Air Force with our solutions for Real-Time 24x7 detection and location of Cell Phones, Wearables and other devices that may have ended up in places they should not be in Air Force buildings with restricted areas and secure facilities.”

AFWERX partners with SBIR to shorten the SBIR timelines and provide opportunities to ‘non-traditional’ companies. In the words of the AFWERX team, “many mind-blowing ideas are being birthed in U.S. startup companies. In order to capture these ideas, the Air Force must do business at the speed of innovation; inspiring and accelerating startup creativity toward national security challenges.” 

About AFWERX

AFWERX is an innovation arm of the U.S. Air Force that was established in 2017. Its focus is to provide non-traditional innovators the opportunity to solve challenges and increase effectiveness within the Air Force. AFWERX has partnered with the U.S. Air Force SBIR with a start-up approach. They have accelerated timelines and processes to quickly scale innovation within the DOD. For more information on AFWERX, please visit www.afwerx.af.mil.

About Bastille

Bastille is the leader in enterprise threat detection through software-defined radio. Bastille provides full visibility into the known and unknown mobile, wireless and Internet of Things devices inside an enterprise’s corporate airspace–together known as the Internet of Radios. Through its patented software-defined radio and machine learning technology, Bastille senses, identifies and localizes threats, providing security teams the ability to accurately quantify risk and mitigate airborne threats that could pose a danger to network infrastructure. For more information on Bastille, visit bastille.net and follow on Twitter @bastillenet and LinkedIn.

Contacts

Noe Sacoco 
Sacoco PR 
408-340-8130 
noe@sacocopr.com