Vectra:获融$100M 威胁监测与处置AI
【190610 VentureBeat】Cybersecurity a hot topic — and for good reason. There’s a hack attempt roughly every 39 seconds, according to a study conducted by the Clark School at the University of Maryland, and the SANS Institute reports that one in five businesses had serious unauthorized access to their cloud environment this past year alone. Breaches are costly, unsurprisingly: In 2020, it’s anticipated that costs stemming from data compromises will exceed $150 million.
That’s all to say that companies like San Jose, California-based Vectra, a provider of AI-powered network detection and response services, are in demand to the tune of $12.7 billion. Case in point? Vectra today announced that it’s closed a $100 million round led by growth equity firm TCV, with participation from existing investors Khosla Ventures, Accel Partners, IA Ventures, AME Cloud Ventures, DAG Ventures, Wipro Ventures, Atlantic Bridge, Ireland Strategic Investment Fund, and Nissho Electronics Corporation.
This latest round brings Vectra’s total raised to over $200 million, which president and CEO Hitesh Sheth said will fuel the company’s global market expansion, research and development efforts, and the growth of its workforce of over 100 people. Perhaps uncoincidentally, the newfound funds come after a year during which annual recurring revenue grew 104% year-over-year.
“The cloud has inherent security blind spots, making it imperative to eliminate cyber-risks as enterprises move their business to the cloud,” said Sheth, a Cisco and Juniper Networks veteran who cofounded Vectra with James Harlacher and noted information security expert and entrepreneur Mark Abene in 2010. “[Our] platform enables them to stop hidden cyberattacks in the cloud. We look forward to partnering with TCV and our existing investors as we continue our rapid growth.”
Vectra’s Cognito platform comprises three components: Cognito Stream, Cognito Detect, and Cognito Recall. Stream sends security-enriched metadata to data lakes (centralized repositories of structured and unstructured data) and security information and event management (SIEM) systems, while Recall stores and investigates threats in this enriched data. Meanwhile, Detect leverages AI and machine learning to quickly reveal and prioritize hidden and unknown attackers.
The metadata, speaking of, is wide-ranging and includes security patterns, precursors, account scores, saved searches, host scores, campaigns, and more. It’s scraped from sensors and custom-developed processing engines deployed across cloud environments, where they record relevant metrics from traffic and ingest DHCP logs and other external signals. Flows are deduplicated and the characteristics of every flow are attributed to a host and recorded, including the ebb and flow, timing, traffic direction, and size of packets.
AI is a fundamental component of Vectra’s product suite, according to Sheth. Proprietary algorithms suss out and alert IT teams to anomalous behavior from compromised devices in network traffic metadata and other sources, ultimately to automate the mitigation of cyberattacks targeting private, on-premises, and public cloud environments.
Specifically, Vectra uses supervised machine learning techniques to train its threat detection models and unsupervised techniques to identify attacks that haven’t been seen previously. An investigative workbench tailor-made for metadata-enriched network data helps admins and team members to derive insights from the models, or search their outputs in less than a second “at scale.”
It’s an ongoing process, said Sheth. Vectra’s data scientists and security researchers build and continually tune “scores” of self-learning AI systems that enrich the metadata with security information, and that isolate key signals. “[If customers] are looking for a real-time answer on what’s going on, the first curated piece of intelligence will come from us,” he told VentureBeat in a previous interview. “Because all the front-end work is automated, all the prioritization is automated.”
Vectra currently counts more than 400 enterprise customers among its customer base, including Ardagh Group, DZ Bank, Texas A&M University, Hydro Ottawa, and recognizable names like Riverbed and Tribune Media Group. About 60% are based in the U.S., with the rest coming in from overseas.
“TCV has an extensive track record of partnering with enterprise security companies, including Rapid7 and Splunk, from growth stage to public,” said TCV general partner and Vectra board member Tim McAdam. “In our research on the category, it became clear to us that Vectra was rapidly gaining momentum with customers by rethinking the way enterprises view both network and cloud security. The Vectra Cognito platform is poised to become requisite in the security infrastructure of multinational enterprises and midsize businesses alike.”
网安团队找钱 / 投资人找网安项目
+微信 junshao
—— 全球网安投融事件 TimeLine ——
2019年7月
【智能安防】WatchGuard:被Moto系统并购 强化视频安防
【业务安全】Digital Shadows:获融$10M 专注DRP
【整体并购】SkyFormation:被Exabeam并购 加码云安全
2019年6月
【安全测评】SecurityScorecard:获融$50M
【二级市场】CrowdStrike: IPO首日涨幅65% 估值超过$10B
【整体并购】Insight Partners:领投SentinelOne 并购Recorded Future
2019年5月
【威胁情报】BlueVoyant:获融$82.5M 安全托管及威胁情报
【整体并购】Appsulate:被Zscaler并购 布局浏览器安全
【整体并购】Verodin:被FireEye以$250M并购 布局安全测评
【安全管理】Exabeam:获融$75M AI驱动SIEM革新
【威胁情报】ID Agent:被Kaseya并购 布局暗网监控与威胁情报
2019年4月
【身份认证】Cambridge区块链:获融$3.5M 身份认证与合规管理
【整体并购】NetFort:被Rapid7并购 强化流量分析
2019年3月
【整体并购】Azuqua:被Okta以$52.5M并购 加强可视化与自动化
2019年2月
【身份认证】SpyCloud:获融$21M M12领投 ATO
【整体并购】Demisto:被平底锅$560M并购 提升应急自动化
【整体并购】Luminate:被赛门铁克$200M并购 加码云安全
【数据安全】Illumio:获融$65M JP摩根领投 自适应分片
【应用安全】Signal Sciences:获融$35M 加码Web应用安全
2019年1月
【身份认证】OneLogin:获融$100M 企业级身份认证
【网络安全】360企业安全:获融¥9亿 投后估值¥206.5亿
2018年12月
【金融风控】AccessFintech:获融$17.5M 金融网络风控
【整体并购】Arctic Wolf:并购RootSecure 布局网络风险测评
【系统安全】Tigera:获融$30M 致力K8s安全与合规
【企业安全】360企安:获融¥12.5亿 投后估值¥187.5亿
2018年11月
【云安全】Netskope:获融$168.7M 云安全领导者&顶级CASB
【IoT】Dust Identity:获融$2.3M 钻石防克隆安全标签
【整体并购】Bluefyre:Threat Stack将其并购 发力云安全
【业务安全】Shape Security:获融$26M 人工智能防黑客
2018年10月
【整体并购】Dome9:Check Point$175M将其并购 加码云安全
【反欺诈】Area 1:获融$32M 打造根据反钓鱼数量收费新模式
【云安全】Wallarm:获融$8M 提供基于AI的自适应云安全
【数据安全】CybelAngel:获融$12M 致力于DLP
【整体并购】Imperva:Thoma Bravo $2.1B将其并购 致力云安全
【安全管理】CloudKnox Raises:获融 $10.8M 防止权限管理失控
【整体并购】RedLock:平底锅$173M将其并购 布局云安全
【终端安全】Hysolate:获融$18M 混合架构兼顾终端安全与效率
【安全管理】Tanium:以投后$6.5B获融$200M 实时大规模终端安全管理
2018年9月
【网络安全】Darktrace:以投后$1.65B获融$50M 机器学习抵御网络威胁
【移动安全】Shape Security:获得E轮融资 致力于移动应用恶意攻击防护
【网络安全】Protocol 46:获融$1.1M 面向中小企业的军用级深度防御
【整体并购】Bitdefender:并购SMS eTech 加速拓展澳洲市场
【反欺诈】Ravelin:获融$8M 用机器学习对抗电商欺诈
【IoT】HawkEye 360:获融$5.3M 专注射频数据分析
【代码安全】Sonatype:获融$80M 专注开源安全检测
【网络安全】AnchorFree:VPN创企 获融$2.95亿
【合规风控】SynapseFI:致力于银行与Fintech融合 获融$1700万
2018年8月
【数据安全】AirTrunk: 超大规模数据中心 获融$6.21亿
【数据安全】Cloudian:企业数据管理 获融$9400万
【业务安全】扼制假消息 New Knowledge获融$1100万
【云安全】基于AI的云安全平台 Lacework获融$2400万
【安全管理】第三方网络风险管理 RiskRecon获融$2500万
【安全检测】AI驱动网安测评 RiskSense获融$1200万
【公共安全】智能城市及关键基础设施网安 iS5Com获融$1700万
【网安并购】Cisco以$23.5亿并购云身份认证创企DUO
2018年7月
【网安并购】Mimecast以$8800万并购威胁防护创企Solebit
【数据安全】敏感数据自动化管控 Integris获融$1000万
【金融风控】基于AI的反洗钱创企 ThetaRay获融$3000万
2018年6月
【邮件安全】机器学习驱动企业邮件安全 Tessian获融$1300万
【安全管理】数字资产安全创企 Panaseer获融$1000万
【端点安全】终端安全创企 CrowdStrike宣布获融$2亿
【安全检测】基于osquery的安全分析平台 Uptycs获融$1000万
【IoT】工业网安创企 Claroty获$6000万B轮融资
【端点安全】基于AI的威胁防护 Cylance获融$1.2亿
【业务安全】合规与自动化数据分类 DocAuthority获融$1000万
【安全管理】以色列国防级SOC Cyberbit获融$3000万
【安全管理】企业网安合规与风控 CyberSaint 获融$300万
2018年5月
【邮件安全】防止邮箱被人盗用 Valimail获融$2500万
【安全管理】企业级移动安全管理 Corrata获融€130万
【二级市场】360拟私募¥108亿 发力大数据、AI等九大方向
【应用安全】去服务器应用安全 Protego Labs获融$200万
【应用安全】SAP系统安全 ERP-Maestro获融$1200万
【威胁情报】LookingGlass并购高盛系威胁情报平台Sentinel
2018年4月
【移动安全】生物识别创企 SecuredTouch获融$800万
【应用安全】企业级应用安全 Onapsis获$3100万C轮融资
【IoT】车联网及无人驾驶安全 Karamba获融$1000万
【端点安全】下一代端点安全 Carbon Black拟在纳斯达克上市融资$1亿
【网络安全】软件即服务WAF Threat X获$820万A轮融资
2018年3月
【IoT】无人机探测雷达 Fortem获$1500万A轮融资
【区块链】金融数据安全 Spring Labs获融$1475万
【IoT】嵌入式设备安全 Red Balloon获$2190万A轮融资
【智能安防】机器人保安 Cobalt Robotics获融$1650万
【端点安全】进程监控 实时防护 Virsec获$2400万B轮融资
【企业并购】Palo Alto将$3亿收购云安全创企Evident.io
【云安全】混合云应用访问权限管理 Luminate获$1400万
【IoT】无人机驾驶安全 Airspace Systems获融$2000万
【威胁防护】通过无代码区识别恶意代码 Solebit 获融$1100万
2018年2月
【云安全】以插件代位WAF Templarbit获融$300万
【反欺诈】Proofpoint$2.25亿并购反钓鱼创企Wombat
2018年1月
【数据安全】帮助企业应对GDPR BigID获$1400万融资
【端点安全】混合架构协调效率与安全 Hysolate获$800万融资
【智能安防】巡逻机器人Knightscope获$2500万融资
【IoT】以色列创企VDOO获83North $1300万投资
【威胁情报】SaaS平台Anomali获$4000万D轮融资
【安全管理】外包SOC服务 Arctic Wolf获$1600万融资
2017年12月
【IoT】韩企Security Platform获软银$278万投资
【IoT】云车联网安全 Upstream获$900万A轮融资
【云安全】软件定义安全 ShieldX获$2500万B轮融资
【IoT】防护80亿个IoT终端 Cog获$350万A轮融资
【云安全】反恶意威胁云平台 Menlo获$4000万C轮融资
【移动安全】实时APP防护 Prevoty获$1300万B轮融资
2017年11月
【物联网】Tortuga Logic获融$200万打造芯片级安全
【威胁情报】ThreatQuotient获$3000万C轮融资
【智能安防】AI视频监控平台 博思廷获融¥3000万A+轮融资
【邮件安全】Proofpoint以$1.10亿收购Cloudmark
【工控安全】Enview通过AI及3D技术监控老旧管线获$600万A轮融资
2017年10月
【暗网监控】Recorded Future获$2500万E轮融资
【业务安全】网络访问控制创企ForeScout上市融资$1.16亿
【网安测评】SecurityScorecard获诺基亚$2750万C轮融资
2017年9月
【终端安全】实时防护创企Capsule8获$600万A轮融资
【容器安全】Aqua Security获$2500万B轮融资
【暗网防护】Digital Shadows获$2600万C轮融资