SafeBreach Raises $15 Million to Give Enterprises a ‘Hackers View’

Cybersecurity startup SafeBreach announced on Tuesday that it has closed a $15 million Series A funding round to expand its research and development and sales and marketing efforts.

Based in Sunnyvale, California, with R&D in Tel Aviv, Israel, the company offers a platform that provides a “hacker’s view” of an enterprise’s security posture to help security teams proactively predict attacks, validate security controls and improve security operations center (SOC) analyst response.

The company sucessfully raised $4 million prior to the Series A round, bringing the total amount raised by the company to-date to $19 million.

Describing its offering as a “fundamentally-different platform” that automates adversary breach methods across the kill chain, SafeBreach says its technology can test the efficacy of security controls and has the ability to check for compliance and identify outbound data exfiltration paths. 

The company says that it continues to incorporate “more actionable and context-rich features” into its platform, and already integrates with FireEye for threat intelligence. Other integration partners include Splunk, LogRhythm and ArcSight.

“So many companies chase the same problems, but very few actually grasp the issues that security leaders are struggling with,” said Guy Horowitz, Investment Partner at Deutsche Telekom Capital Partners, one of the firms that participated in the current funding round.

The company is a finalist for the Most Innovative Startup Award at Black Hat, given to a company that “presents groundbreaking thoughts on IT security, and has product implementations and early deployments that demonstrate the potential to change the way enterprises approach security issues.”

The Series A funding round includes new investors Deutsche Telekom Capital Partners, Hewlett Packard Pathfinder and Maverick Ventures, along with previous investors Sequoia Capital and Shlomo Kramer.

Earlier this year SafeBreach researchers devised what they believe to be a “perfect method” of covert data exfiltration that leverages a process called HTTP server-side caching.