Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cloud Security

Cloud Security Firm Sweet Security Raises $33 Million, 6 Months After Emerging From Stealth

Sweet Security announces a $33 million Series A funding round just six months after emerging from stealth with an initial $12 million seed funding.

Cloud Security

Cloud security firm Sweet Security announced a $33 million Series A funding round just six months after emerging from stealth with an initial $12 million seed funding.

The Tel Aviv-based cloud runtime security firm’s funding was led by Evolution Equity Partners, joined by Munich Re Ventures and Glilot Capital Partners.

“The seed funding was to allow us to open a US office and expand into the US market. We thought the timing was right,” Eyal Fisher, co-founder and CPO, told SecurityWeek; “but we’ve found the market is more than ready.”

The new money will be used to further develop Sweet’s technology, but with heavy focus on expanding its go to market operations. Both the firm and its backers believe that cloud operations lack, but need, the runtime security offered by Sweet. “That,” said Fisher, “is why we’re going to use the round to run even faster than we imagined when we started this journey.”

He points to the recent Leaky Vessels flaws found in Docker’s RunC tool – four vulnerabilities with CVSS scores ranging from 8.6 to 10.0. RunC is an open source library and typifies one of the major threats within software development: the use of OSS libraries without adequate knowledge of where vulnerabilities might be included, nor even whether the parts of the library that are used do or do not contain those vulnerabilities. If they aren’t used, they are not a threat – if they are used, they are often an invisible and unknown threat.

Sweet’s vulnerability detection capabilities can surface the existence of those threats before they are discovered and used by attackers. Key to this ability is the firm’s patent-pending eBPF-based technology. eBPF itself is not new. It’s part of Linux. “It lets you see what’s happening at the kernel level of the environment – it gives you access to areas you cannot usually access,” explained Fisher.

“The problem,” he continued, “is that building an eBPF sensor that will not disturb the environment while consuming few resources, is difficult. It’s beyond the ability of most software engineers. But Sweet knows where to find that level of talent.”

Two of Sweet’s founders, retired Brigadier General Dror Kashti (CEO), and retired Colonel Fisher (CPO), were careerists within the IDF. The third, Orel Ben Ishay (VP R&D), was R&D group lead within Israeli Military Intelligence. The IDF’s knowledge and imaginative use of technology is well known – both of which have been combined in the development of Sweet’s eBPF sensor. Continuing the military theme, Sweet describes its technology as giving it ‘boots in the cloud’.

Advertisement. Scroll to continue reading.

“It provides deep and actionable insights about who, where and what is happening. From detection and response to vulnerability management, posture enhancement and non-human identity management (NHI), Sweet’s innovative technology identifies risks that matter, instead of creating a backlog of noisy alerts from passive API scans,” claims the firm. “It enables security teams to cut through the noise and address critical cloud risks as they unfold.”

The Sweet suite adds the necessary ability to look right during runtime to the often quoted need to shift left during development.

Sweet Security was founded in January 2023 in Tel Aviv, Israel. It emerged from stealth with $12 million seed funding from Glilot Capital Partners and angel investors including Gerhard Eschenbach and Travis McPeak in August 2023.

Related: Sysdig Launches Realtime Attack Graph for Cloud Environments

Related: Investors Betting Big on Upwind for CNAPP Tech

Related: US Government Releases Security Guidance for Open Source Software in OT, ICS

Related: CISA Releases Open Source Software Security Roadmap

Written By

Kevin Townsend is a Senior Contributor at SecurityWeek. He has been writing about high tech issues since before the birth of Microsoft. For the last 15 years he has specialized in information security; and has had many thousands of articles published in dozens of different magazines – from The Times and the Financial Times to current and long-gone computer magazines.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

Cody Barrow has been appointed the new CEO of threat intelligence company EclecticIQ.

Shay Mowlem has been named CMO of runtime and application security company Contrast Security.

Attack detection firm Vectra AI has appointed Jeff Reed to the newly created role of Chief Product Officer.

More People On The Move

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cybersecurity Funding

SecurityWeek investigates how political/economic conditions will affect venture capital funding for cybersecurity firms during 2023.

CISO Conversations

SecurityWeek talks to Billy Spears, CISO at Teradata (a multi-cloud analytics provider), and Lea Kissner, CISO at cloud security firm Lacework.

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online.

Cyber Insurance

Cyberinsurance and protection firm Boxx Insurance raises $14.4 million in a Series B funding round led by Zurich Insurance.

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Cybersecurity Funding

2022 Cybersecurity Year in Review: Top news headlines and trends that impacted the security ecosystem

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...