CloudKnox Raises:获融 $10.8M 防止权限管理失控
【181004 SecurityWeek】Losing control of accounts with elevated privileges is a major concern for all organizations, and can only be solved by enforcing a strict policy of least privilege. That is not easy, but even harder in hybrid cloud environments. It has been estimated that there are almost 8,000 separate actions -- or privileges -- available across AWS, Azure, Google Cloud and vSphere. Managing privilege to this amount of actions is almost impossible manually.
This is the argument behind startup firm CloudKnox Security. Founded in 2016 by Balaji Parimi and headquartered in the San Francisco Bay Area, CloudKnox has now raised $10.8 million in venture funding led by ClearSky Security with participation from Dell Technologies Capital and Foundation Capital. Dell Technologies Capital had been an investor in RedLock, which had raised a total of $12 million. Palo Alto Networks yesterday announced that it had agreed to acquire RedLock for approximately $173 million.
CloudKnox LogoCloudKnox delivers a platform that enables customers to manage the risk of over-provisioning privileges. "Enterprises today are focused on protecting their cloud environments by using tools that provide visibility into anomalous activity and then reacting to it," said Jay Leek, Managing Director at ClearSky Security and former Blackstone CISO. "Security leaders should approach the security of their cloud environments differently by getting ahead of the risks."
The CloudKnox platform uses activity-based access controls to detect identities (service accounts, APIs, bots, contractors or employees) with unused privileges based on actual activities versus static roles. It then allows the automatic revocation of unused high-risk privileges with a single click. The platform, announced the company, "autonomously prevents risks as it learns what activities identities are performing and enables organizations to dynamically and instantly revoke or grant privileges based on actual needs."
The iconic example of abused privilege can be seen in CodeSpaces, which was forced out of business when a hacker gained admin credentials and was able to delete the entire CodeSpaces AWS infrastructure, including backups.
"Today's dynamic infrastructure demands a different approach to manage risks," said Balaji Parimi, CEO and founder of CloudKnox Security. "One key stroke can deploy thousands of cloud workloads and can also destroy thousands of workloads and take down a business. Our approach is built on our belief that enterprises need a single cloud security platform that goes beyond visibility and provides a simple and flexible way to remediate and prevent risks without impacting productivity and trust."
- 点击【阅读原文】查看CloudKnox Raises各轮融资详情 -
更多网安创投资讯
【整体并购】Bitdefender:并购SMS eTech 加速拓展澳洲市场
【反欺诈】Ravelin:获融$8M 用机器学习对抗电商欺诈
【IoT】HawkEye 360:获融$5.3M 专注射频数据分析
【代码安全】Sonatype:获融$80M 专注开源安全检测
【网络安全】AnchorFree:VPN创企 获融$2.95亿
【合规风控】SynapseFI:致力于银行与Fintech融合 获融$1700万
【数据安全】AirTrunk: 超大规模数据中心 获融$6.21亿
【数据安全】Cloudian:企业数据管理 获融$9400万
【业务安全】扼制假消息 New Knowledge获融$1100万
【云安全】基于AI的云安全平台 Lacework获融$2400万
【安全管理】第三方网络风险管理 RiskRecon获融$2500万
【安全检测】AI驱动网安测评 RiskSense获融$1200万
【公共安全】智能城市及关键基础设施网安 iS5Com获融$1700万
【网安并购】Cisco以$23.5亿并购云身份认证创企DUO
【网安并购】Mimecast以$8800万并购威胁防护创企Solebit
【数据安全】敏感数据自动化管控 Integris获融$1000万
【金融风控】基于AI的反洗钱创企 ThetaRay获融$3000万
【邮件安全】机器学习驱动企业邮件安全 Tessian获融$1300万
【安全管理】数字资产安全创企 Panaseer获融$1000万
【端点安全】终端安全创企 CrowdStrike宣布获融$2亿
【安全检测】基于osquery的安全分析平台 Uptycs获融$1000万
【端点安全】基于AI的威胁防护 Cylance获融$1.2亿
【邮件安全】防止邮箱被人盗用 Valimail获融$2500万
【IoT】工业网安创企 Claroty获$6000万B轮融资
【业务安全】合规与自动化数据分类 DocAuthority获融$1000万
【安全管理】以色列国防级SOC Cyberbit获融$3000万
【安全管理】企业网安合规与风控 CyberSaint 获融$300万
【安全管理】企业级移动安全管理 Corrata获融€130万
【二级市场】360拟私募¥108亿 发力大数据、AI等九大方向
【应用安全】去服务器应用安全 Protego Labs获融$200万
【应用安全】SAP系统安全 ERP-Maestro获融$1200万
【威胁情报】LookingGlass并购高盛系威胁情报平台Sentinel
【移动安全】生物识别创企 SecuredTouch获融$800万
【应用安全】企业级应用安全 Onapsis获$3100万C轮融资
【IoT】车联网及无人驾驶安全 Karamba获融$1000万
【端点安全】下一代端点安全 Carbon Black拟在纳斯达克上市融资$1亿
【网络安全】软件即服务WAF Threat X获$820万A轮融资
【IoT】无人机探测雷达 Fortem获$1500万A轮融资
【区块链】金融数据安全 Spring Labs获融$1475万
【IoT】嵌入式设备安全 Red Balloon获$2190万A轮融资
【智能安防】机器人保安 Cobalt Robotics获融$1650万
【端点安全】进程监控 实时防护 Virsec获$2400万B轮融资
【企业并购】Palo Alto将$3亿收购云安全创企Evident.io
【云安全】混合云应用访问权限管理 Luminate获$1400万
【IoT】无人机驾驶安全 Airspace Systems获融$2000万
【威胁防护】通过无代码区识别恶意代码 Solebit 获融$1100万
【云安全】以插件代位WAF Templarbit获融$300万
【反欺诈】Proofpoint$2.25亿并购反钓鱼创企Wombat
【数据安全】帮助企业应对GDPR BigID获$1400万融资
【端点安全】混合架构协调效率与安全 Hysolate获$800万融资
【智能安防】巡逻机器人Knightscope获$2500万融资
【IoT】以色列创企VDOO获83North $1300万投资
【威胁情报】SaaS平台Anomali获$4000万D轮融资
【安全管理】外包SOC服务 Arctic Wolf获$1600万融资
【IoT】韩企Security Platform获软银$278万投资
【IoT】云车联网安全 Upstream获$900万A轮融资
【云安全】软件定义安全 ShieldX获$2500万B轮融资
【IoT】防护80亿个IoT终端 Cog获$350万A轮融资
【云安全】反恶意威胁云平台 Menlo获$4000万C轮融资
【移动安全】实时APP防护 Prevoty获$1300万B轮融资
【物联网】Tortuga Logic获融$200万打造芯片级安全
【威胁情报】ThreatQuotient获$3000万C轮融资
【智能安防】AI视频监控平台 博思廷获融¥3000万A+轮融资
【邮件安全】Proofpoint以$1.10亿收购Cloudmark
【工控安全】Enview通过AI及3D技术监控老旧管线获$600万A轮融资
【暗网监控】Recorded Future获$2500万E轮融资
【NAC】网络访问控制创企ForeScout上市融资$1.16亿
【网安测评】SecurityScorecard获诺基亚$2750万C轮融资
【威胁防护】实时防护创企Capsule8获$600万A轮融资
【容器安全】Aqua Security获$2500万B轮融资
【暗网防护】Digital Shadows获$2600万C轮融资