Veteran security experts Patrick Wardle and Mikhail Sosonkin have launched a startup called DoubleYou, with the aim of enhancing cybersecurity for Apple devices. Wardle, who previously worked at the U.S. National Security Agency and has extensive experience in offensive security research, has been developing free macOS security tools under his Objective-See Foundation since 2015. Sosonkin, who also has a background in offensive cybersecurity research, previously worked at Apple.
The motivation behind DoubleYou is the scarcity of effective security products for macOS and iPhones, compared to Windows. As Macs gain popularity among companies worldwide, they become increasingly attractive targets for malicious hackers. The lack of talented macOS and iOS security researchers has hindered the development of robust cybersecurity products. Wardle and Sosonkin aim to rectify this by adopting a defensive strategy inspired by offensive hackers.
Taking a cue from offensive cybersecurity companies that offer modular products capable of delivering a full chain of exploits or individual components, DoubleYou plans to develop defensive tools following a similar approach. Their goal is to democratize security by creating individual capabilities that can be licensed and integrated into other companies’ security products. This approach allows for greater flexibility and customization, akin to choosing car parts from a supplier rather than building an entire car.
While the co-founders haven’t finalized the complete list of modules, they intend to include core offerings such as analyzing new processes to detect untrusted code and blocking anomalous DNS network traffic. These capabilities can help uncover malware when it connects to known hacking group domains. Initially, the focus will be on macOS, but the founders also plan to develop tools to monitor software persistence, detect cryptocurrency miners and ransomware based on behavior, and identify unauthorized webcam and microphone usage.
Wardle and Sosonkin emphasize that their approach doesn’t require new technology but rather utilizing existing tools effectively. They believe in putting the available tools in the right place to enhance cybersecurity. As of now, the co-founders do not plan to seek outside investment. They prefer to remain independent and avoid the pressure to scale too quickly, allowing them to concentrate on technology development.
In summary, DoubleYou, founded by Patrick Wardle and Mikhail Sosonkin, aims to address the lack of robust cybersecurity products for Apple devices. Their modular approach, inspired by offensive hackers, aims to democratize security by providing individual capabilities that can be integrated into existing products. By focusing on enhancing existing tools and remaining independent, Wardle and Sosonkin hope to make a significant impact in the cybersecurity landscape.
