red balloon security

Red Balloon Security was founded in 2011 by Dr. Ang Cui and emerged from Columbia University's Intrusion Detection Lab. The company specializes in host-based security solutions for embedded systems and firmware that power critical infrastructure. The company provides runtime protection for embedded software, deploying layered defenses to harden systems against exploitation without requiring system redesigns. Their solutions deliver continuous run-time defense for devices across various architectures and operating system environments. Red Balloon Security offers firmware security services including threat-driven assessments, reverse engineering, and remediation guidance for embedded devices. The company conducts vulnerability research and has responsibly disclosed security flaws across widely available commercial products, contributing to published research and industry collaboration. Their client base includes the Department of Defense, Department of Homeland Security, Air Force Research Laboratory, and NAVSEA. They also serve Fortune 500 companies across multiple sectors including aerospace, automotive, enterprise IT, and telecommunications. Notable commercial clients include Cisco, Siemens, Rockwell Automation, HP, DENSO, Aptiv, and Rivian. The company's team consists of engineers, researchers, and security professionals focused on advancing embedded security resilience. Their solutions are deployed across critical infrastructure worldwide, addressing security challenges in devices that lack traditional security controls.