Build38 is selected for the participation in the Swiss KICKSTART program 2020 edition

Build38 was selected after various rounds of pitching and presenting to be part of the 2020 cohort of the renowned Swiss accelerator program KICKSTART. This is for me a great honor but even more a great opportunity to conquer the Swiss market and show industry leaders like AXA, Mobiliar, Swisscom, PostFinance and others what Build38 and its Application Kit and Threat Insights can do.

Having worked for years in Switzerland I know that the entry barrier in such a mature market that values privacy and security tremendously high is hard. Your solution must be groomed to the needs of the Financial Service Industry of the country and then is ready to scale externally as well.

KICKSTART is different to other accelerators as it values PoCs and Co-Development above anything else. For us having a leading technology already a great way to extend services and build the envisioned platform for secure and easy-to-use app development further.

Needless to say, we are going to Zurich fully motivated and teaming tech and business development to get the most out of the program for us and the partners.

While myself and Joaquin did the pitching and started the program, Christoph and Marc will also take part and extend the local / virtual team.

Bear with us for news on features and use cases coming out of these labs!


Build38 a CyberTech100 Company: The most innovative Cyber companies for Financial Services

Build38 is proud to be part of the #CyberTech100 for 2020, the 100 innovative companies that every financial institution needs to know about when they consider and develop their information security and financial crime fighting strategies. We were chosen by a panel of industry experts and analysts who reviewed a study of over 1,000 CyberTech companies undertaken by FinTech Global, a data and research firm.

We feel pretty honoured and look forward to continue working with Financial Institutions, Fintechs and other Financial Services providers so they can #buildonBuild38 and deliver the best in class mobile services with total peace of mind.

As explained in the Press Release by FinTech Global, the world’s most innovative providers of digital solutions helping financial services firms fight off cyber attacks and protect their data were named today on the CyberTech100 list.

CyberTech is one of the fastest growing sectors within the FinTech industry, with FinTech Global data showing investment in the space has grown 14x since 2014 to reach $3.4bn last year.

That surge in activity comes as financial services firms are increasingly moving towards digital operations and expanding their security budgets. According to a study by Gov.uk, finance and insurance firms increased their spending on cybersecurity by 23% YoY in 2019.

Given the huge rise in appetite for the sector, the CyberTech100 was produced to identify the 100 innovative companies that every financial institution needs to know about when they consider and develop their information security and financial crime fighting strategies.

The solution providers making the final list were recognized for their innovative use of technology to solve a significant industry problem, or to generate cost savings or efficiency improvements across the security value chain

FinTech Global director Richard Sachar said, "Established financial institutions need to be aware of the latest security technology in the market to protect their organizations from data leaks and cyber attacks.

"The CyberTech100 list helps senior management filter through all the vendors in the market by highlighting the leading companies in sectors such as Threat Management, Data Governance, Cloud Security, Employee Risk and Fraud Prevention,” he added.

A full list of the CyberTech100 can be found at www.CyberTech100.com. More detailed information about the companies is available to download for free on the website.

 


Risk-free Healthcare Mobility: Understand mobile risks, enhance security, and master it

Healthcare providers, healthcare delivery organizations (HDO) and healthcare professionals (HCP) increasingly use mobile applications (“apps”). Mobile apps empower them to effectively optimize communication among patients, healthcare providers and their care givers. They also deliver better outcomes: Allow the monitoring of patient’s conditions around the clock, the personalization of their healthcare and improve the accuracy of diagnostics and treatments. Furthermore, organizations using apps are incentivized with lower costs in workflow management.
Providers leverage mobile apps to achieve those goals, but ultimately, they are also fully responsible to manage access to vital healthcare data without compromising data security.

38% already suffered a mobile security compromise

According to Verizon’s Mobile Security Index (MSI) 2020 report, mobile security compromises are at an all-time high now in the healthcare industry. 38% of those surveyed suffered a mobile security compromise. That is a staggering year-over-year increase of 52% (MSI 2019: “only” 25% were compromised)!

The same study also says that healthcare organizations are worried:

  • 88% said that they are concerned that the highly confidential nature of patient data makes them a target for cybercriminals.
  • 85% said they feared that a security compromise could seriously compromise patient care.

Indeed, that fear of personal or medical data being compromised is not unfounded. The Verizon’s Data Breach Investigations Report 2020 states that in case of an attack

  • 77% of personal data and
  • 67% of medical data

are compromised.

Your call for action:
Understand mobile risks, enhance security, and master healthcare mobility

At Build38 we believe that in a changing digital landscape, app security is not a luxury. It is a necessity. Your developers should focus on what they are best at: delivering business value and world-class Healthcare apps, while Build38 provides mobile app security. Build38’s Trusted Application Kit (T.A.K) is a highly secure, holistic and easy to integrate mobile app security framework.

It all starts with better understanding your mobile risks. Get to know where you stand today. Strengthen your policies and compliance posture. Explore your options and get the right solution.

Contact us! Simply write us an email info@build38.com or visit our website www.build38.com.


CYSEC and Build38 partner to streamline the secure deployment of Mobile App Security and Threat Protection

Lausanne - Switzerland, Singapore, Munich - Germany – June 4th, 2020

Build38 GmbH, the global provider of Mobile Application Security made in Germany, is partnering with CYSEC SA from Switzerland to offer a fully-integrated solution combining mobile and backend deployments for Enterprise customers.

Mobile app fraud is on the rise with a 70% increase year over year, jeopardizing business models, revenue streams and endangering customer data and company secrets. Build38 has developed an app shielding and mobile threat detection solution for the hardening of apps , identification of attacks and prevention of fraud. The Build38 solution is available as a service and protects mobile applications across various industries including automotive, banking, insurance, public transportation and healthcare.

Cryptography and secure key-generation are the key enablers of the innovative and cutting-edge next generation AI-based app protection and management platform called T.A.K (Trusted Application Kit).

While the security application is executed on the smartphone, the use of a backend fully delivers intelligence and attack resilience. While some Build38 customers choose to run it on the public cloud, depending on the region, some decide to deploy it in a dedicated environment as the application is considered security-critical, following the larger trend of the hybrid cloud model. The hybrid cloud approach consists of running all sensitive software in a separate environment (in a secured cloud or in a physical server) that provides better protection and more control. Safer deployments may also be required to comply to national regulations specifying that certain data cannot leave the country or must be handled following strict security standards.

In order to build and deploy a security-sensitive application with critical data in the backend, an organization must integrate a range of security tools and components. Such patchwork solutions are today difficult to manage, hard to scale, and prone to security weaknesses. The market lacks an all-inclusive, certified and integrated cybersecurity solution.

CYSEC provides such an all-inclusive cybersecurity solution that integrates all the components needed to deploy rapidly a secured backend infrastructure. This is achieved by integrating all the security components in a unique certified appliance that abstracts the application layer by running containerized software using the modern virtualization tools like Docker, Kubernetes, etc.

As a result, ARCA offers an unprecedented combination of security performance and ease of deployment, allowing companies to benefit from the best protection without changing the tools they currently use.

It was natural for CYSEC and Build38 to enter into a partner agreement. Both companies are joining forces to integrate the T.A.K application into the secured environment ARCA and offer it as a fully integrated and ready-to-use package, either on premises on a physical ARCA server or as a service from the CYSEC datacentre in Switzerland.

The joint solution will combine the benefits of the Build38 mobile app protection with the secured backend implementation on ARCA streamlining the efforts for deploying them.

 

Christian Schläger, CEO at Build38 GmbH: “We’re delighted to be able to offer to our customers a fully-integrated package of our T.A.K. application on the ARCA backend infrastructure. We want to be able to provide the implementation model that suits the best our customers needs, being on the cloud or on premises. We‘re having more and more requests for deployments on premises and ARCA beats all competition by offering a secured backend infrastructure without the pain that usually goes with it.”

Patrick Trinkler, CEO at CYSEC SA said: “Mobile security is definitely a burning issue for many industries and the Build38 in-app protection provides a compelling solution. We’re very happy to offer Build38 customers a secured and compliant backend implementation of the T.A.K. application with the same process and efforts as deploying it on a public cloud.”

 

About Build38 GmbH

Build38 is a global provider of mobile application protection solutions. Its Trusted Application Kit (T.A.K) represents a new generation of app-hardening technologies that protects apps from known and unknown attacks and opens the market to new digital business models. Build38 protects applications across various industries including automotive, financial, public transport and health care. Build38 is headquartered in Munich with global offices in Barcelona and Singapore. The company is a spin out of Giesecke + Devrient and ranks among the best IT Security startups in Germany. For further information about Build38 visit www.build38.com

About CYSEC SA

CYSEC SA is a cybersecurity company based at the EPFL Innovation Park in Lausanne, Switzerland, whose mission is to shorten the time-to-market of innovative services by facilitating their integration into a secured IT environment. In order to achieve its mission, CYSEC developed a general-purpose security platform called ARCA able to store data and execute applications in a Trusted Environment. By lowering down the barriers to protect data and software, CYSEC enables its customers to benefit from a whole new level of flexibility and agility which is a game-changer today considering the fast-pace at which security and business requirements evolve. CYSEC focuses on the provision of its cybersecurity solutions in four vertical sectors, namely financial services, IoT, space and telecoms. For more information, please visit www.cysec.systems


Build38 and Pryv Team Up to Simplify Mobile Security and Privacy for Digital Health Companies

Lausanne/Switzerland, Munich/Germany 5 May, 2020 – The Swiss leading provider of privacy and personal data management software, Pryv SA, and Build38 GmbH, the global provider of mobile application protection solutions, announced a strategic collaboration to address the growing demand for security and privacy compliance for the Digital Health and InsurTech Industry.

Security with app hardening and privacy-by-design backend are a top priority for Digital Health Providers

Fraud, privacy violations, cyberattacks, unauthorized data collection, outlaw processing, and hacking of connected medical devices and mobile applications are just a few of the threats arising from the digitalization of the healthcare industry. A hack, that can be disastrous for individuals, is just as harmful for businesses, who will face regulatory fines and damage to their reputation. Such threats can be minimized by implementing adequate privacy and security measures right from the very start. Protecting digital channels is invaluable on many levels, saves lives and prevents significant financial losses.

“Smartphones and tablets are the primary access point for both our personal and work life, and a valuable target for attackers,” said Dr. Christian Schlaeger, Build38 CEO. “Business agility provided by mobile devices will continue to drive adoption in the mobile health sector, even more now with the announced DiGA initiative of the German government. Build38 and Pryv empower businesses to embrace the productivity benefits of mobile devices while addressing the security and privacy risks.”

“Developing the privacy and security layers of Digital Health applications is a highly demanding task, yet essential to gain users trust and achieve compliance.” said Pierre-Mikael Legris, CEO at Pryv “This partnership is a game changer for digital health innovation. It provides digital health innovators with a rigorously tested off-the-shelf solution, allowing them to easily and rapidly develop trustworthy and scalable products.”

 The offering by Pryv and Build38 foster compliance with the most stringent existing and forthcoming data protection and cybersecurity regulations. No dedicated security knowledge or privacy-expertise is required by development teams. Companies can focus on their core competency, while de-risking security and privacy compliance, winning time-to-market and fostering user-engagement through trust and transparency.

 

About Build38:

Build38 is a global provider of mobile application protection solutions. Its Trusted Application Kit (T.A.K) solution combines AI-platform and strongest app shielding technology which protects B2B and B2C mobile channels from fraud and reduces your compliance risk exposure. It also enables new use cases and opens the market for new digital business models. Build38 protects applications across various industries including automotive, financial, public transport and health care. Build38 is headquartered in Munich with global offices in Barcelona and Singapore.

Contact:
Torsten Leibner
Head of Product Management and Technology & Co-Founder
torsten.leibner@build38.com
T: +49 170 9389064
www.build38.com

 

About Pryv SA:

Pryv makes health personal data processing as secure and trustworthy as online banking.

Pryv.io is a solid foundation on which you build your own digital health solution, so you can collect, store, share and rightfully use personal data. It comes with must-have consent and auditing tools to keep you compliant with existing and forthcoming regulations. The software has been developed to accommodate rapid integration, allowing you to properly manage your users’ data from day one. It comes with turnkey IoT connectivity, a secure storage vault, fine-grained consent management, and comprehensive auditing capability that radically cut IT risk, development costs and accelerate time-to-benefit while addressing the GDPR and the most stringent data protection requirements.

Contact:
Evelina Georgieva
Co-founder & CBDO
evelina@pryv.com
+41788767016
www.pryv.com


TeleTrusT Special Offer: Complimentary Mobile Security Solution „Be first to get your customers back“

Dr. Christian Schlaeger, CEO & Co-Founder of Build38Build38 wants to support TeleTrust partners and other companies in a difficult economic time to quickly implement their mobile applications and digitization efforts. We see every day that the mobile app becomes the preferred access and contact with your customers. We are your service and solution provider in difficult times: Focus on the app and the interaction with your customers, and we provide the security. So you are faster on the market and save time and resources, so that your customers can rely on you – who you rely on #BuildonBuild38.

Our offer for you until 15.7.2020: Start a PoC of the Trusted Application Kit (T.A.K) with us and get free access to your personalized development and test platform on our Build38 Cloud. You get personalized and specially secured SDK components for up to 2 apps (each on iOS and Android). Our DevOps team will support you with up to 3 days of integration support. You also get access to the documentation, learning materials and code examples for the fastest app integration available on the market! Go live with the apps in the App Store until the end of June 2020 and get 3 more months of free use of the Build38 T.A.K Cloud platform.

T.A.K protects your mobile app and your customers’ data against attacks. Access to sensitive data, storage and transmission of data is protected by T.A.K. We support companies in implementing their security requirements for apps more quickly in order to gain satisfied customers on the market faster. Your security and compliance teams always have a detailed overview of how your apps are being used in the field and can intervene with appropriate measures at any time.

T.A.K Mobile Security SDK and platform is made by developers for developers, with the goal of easy integration into your Android and iOS projects. You no longer need special expertise in cyber security, which makes development faster and more efficient. Our security as a service approach keeps app security always up-to-date.

Not part of the offering is the Trusted Governance Kit T.G.K. the GRC solution for app monitoring and management. If you have any questions, please contact us.

Build38 is a global cyber-security company with customers from various industries, such as finance and insurance, automotive, health care, and more.

Contact us directly: servus@build38.com 


Munich transport association MVV relies on Build38 for the security of their Mobile eTickets

MVV App secured by Build38
Mvv App Screenshot 2020

It’s finally a public reference: the city of Munich’s transport association MVV is using Build38 Trusted Application Shield T.A.K to ensure the fraud prevention for their app-based public transport tickets.

They rely on anti-cloning, binding app, identity and ticket and easy to use control codes (among 2 dozen other security features).

We are extremely proud of helping the digitalization in our hometown Munich!

If you want to know how tickets for public transport, events, digital content etc. can be secured as well and you want to save resources and time as well – contact us at solutions@build38.com and read our case study!


Business Insider News: Build38 Closes an Exceptional 2019 and Will Be Exhibiting at RSA Conference...

Build38 was mentioned in the news apropos our year end financials and the traction our young company already gained in 2019.

Read more on Business Insider Markets:

https://markets.businessinsider.com/news/


Build38 selected for the 4YFN Awards competition at Mobile World Congress

Build38 is extremely honored to have been selected together with 12 other innovative young companies to compete for the 4YFN (4 Years From Now) Award. The Award, a highlight event that is part of the Mobile World Congress and Mobile World Capital Barcelona activities.

At Mobile World Congress, the largest mobile event in the world that brings together the latest innovations and leading-edge technology alongside today’s most influential visionaries, Build38 will have a prominent showcase. Combining the presence at the State of Bavaria Pavilion in Fira Gran Via with a booth and the participation as one of the 12 innovative young companies selected at the MWC startup event, the 4YFN Award competition. The semi-finals will take place on the 24th of February and the Final on the 26th, both at the Fira Montjuïc Exhibition Hall in Barcelona.

The Build38 team is excited to deliver a memorable pitch and show how Apps can enable service providers to have additional revenue through new use-cases and reduce fraud in the mobile channel.


The Need for Secure eHealth Apps

eHealth apps – your daily companion

In the healthcare sector, too, the range of apps has risen rapidly in recent years. Effectively, they have become everyday companions at work and at home. Already in 2017 roughly 325,000 mobile health apps were counted in app stores, and in 2018 a whopping 400 million of those apps have been downloaded. All those apps measure our fitness, give health tips, analyze physiological data, measure vital signs or calculate the dosage of medications.

More users come along with higher risk of data breaches and higher attractiveness for fraud

Connected health devices and wearables, such as glucometers and cardiac monitors, also collect a treasure trove of data from millions of people every day. Unfortunately, they are often unsecured and open to hacking, potentially exposing patients to adverse effects on their health. Healthccare providers and insurers must expect considerable legal, financial and operational consequences. Health insurance companies are modernizing their approach, providing digital access to insurance cards and medical records. The data breach risks associated with these are, of course, a major concern that needs to be addressed from the outset.

All companies in the fields of medicine and health insurance are faced with the challenge of providing top medical services. Digital services for patients are now being added, which on the one hand must comply with the strictest security and data protection regulations and be resistant to cyber attacks, which can be both costly to mitigate and dangerous for patients. The stakes are higher here than in almost any other field – it really is a matter of life and death in some cases.

Threats to your digitization efforts

The main threats arising from the digitalization of the healthcare industry are fraud, privacy and HIPPA (USA)/GDPR (EU) violations, ransomware and cyberattacks, unauthorized data collection, and hacking of connected medical devices and mobile phone applications. The only way to combat such threats is by implementing adequate security measures right from the very start. In particular, in app development, this means incorporating security measures during the develophment phase and not retrofitting security at the end.

Medical and health insurance professionals can meet this challenge by making online security a priority. Investing the time and resources required to protecting digital channels could prove invaluable on many levels, saving lives and preventing significant financial losses in the future. Since most health information is being digitalized for optimal mobile use, app security is at the forefront of this. Online security depends on being able to verify the identity of the patient and making sure that they are the only ones who are accessing their health information.

Call for action: Protect your eHealth app from growing risks and threats

It is Build38’s strong believe that in a changing digital landscape, app security isn’t a luxury. It is a necessity. Your developers should focus on what they are best at: delivering business value and world-class eHealth apps, while Build38 provides mobile app security. Build38’s Trusted Application Kit is a highly secure, holistic and easy to integrate mobile app security framework.

For the eHealth field, all this means that app users and service providers can rest easy in the knowledge that their highly sensitive data is safe. Patients can use the available digital services in comfort and ease, while medical professionals and insurers can be confident that the risks commonly associated with such services, such as fraud and cloning, are prevented.

In detail: how we can help

Build38’s approach to mobile app security is based on a unique triple-protection approach for compromise detection and continuous hardening: ensuring the integrity of device, app and security.
The SDK and cloud can detect changes to the device’ secure execution environment, and in case of compromise or an ongoing attack, it can render its own function useless immediately. At the same time the app is secured by various In-App protection mechanisms, and while in use it is protected by RASP-technology (Runtime Application Self Protection). The protected data is never visible in clear nor can it be extracted from the device at runtime. When the same data is in motion the Secure Channel and Certificate Pinning prevent Man-in-the-middle (MITM) attacks.

For more detailed information on Build38’s mobile app security please read our whitepaper “Digitalisierung im Gesundheitswesen und Gefahren durch unsichere Apps" (in German) or the same whitepaper in English "Hacking Healthcare - why unsecure apps are bad for patients and providers".