Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Funding/M&A

Software Supply Chain Startup Endor Labs Scores Massive $70M Series A Round

Endor Labs has closed a massive $70 million Series A round of financing to fuel ambitious plans to build a dependency lifecycle management platform.  

Just ten months after securing an abnormally large seed-stage funding round, software supply chain startup Endor Labs has attracted renewed interest from venture capital investors.

The company, founded by serial entrepreneur Varun Badhwar, has closed a massive $70 million Series A round of financing to fuel ambitious plans to build a dependency lifecycle management platform.  

The company said investors in the latest round included Lightspeed Venture Partners (LSVP), Coatue, Dell Technologies Capital, Section 32, and a roster of bold-faced names in cybersecurity. The new round includes $22M converted to equity from the previous round, Endor Labs said.

Badhwar, who previously sold Redlock to Palo Alto Networks for $173 million, said the funding will expand innovation in the areas of code and pipeline security.

Badhwar and a team of former Palo Alto engineers are now working on technology to help development and security teams maximize software reuse by safely evaluating, maintaining, and updating dependencies.

“Application security is fundamentally broken today – engineering teams are constantly being asked to deploy dozens of AppSec tools in the CI/CD pipeline, which creates significant work for developers, slows down feature delivery, and increases friction between the engineering and security teams,” Badhwar said, arguing that the path forward lies in consolidating the DevSecOps toolchain, simplifying tool deployments, and prioritizing the few risks that actually matter.

The large financing comes at a time when investors are betting heavily on new startups in the open source software security ecosystem. Earlier this week, San Francisco-based Socket closed a $20 million Series A round for technology that uses “content-based analysis” to look for the behavior of software dependencies to quickly flag and fix suspicious activity. 

The crowded category also includes products from Ox Security ($34 million raised),  Chainguard ($55 million raised) and Legit Security ($34 million in financing),  Aqua Security ($265 million raised), ReversingLabs ($81 million raised) and Tidelift ($27 million funding).

Advertisement. Scroll to continue reading.

Related: Cybersecurity Leaders Examine Gov SBOM Mandate

Related: Endor Labs Joins Race to Secure Software Supply Chain

Related: Palo Alto to Acquire Israeli Software Supply Chain Startup 

Related: Socket Scores $20M as Investors Bet on Software Supply Chain Security

Written By

Ryan Naraine is Editor-at-Large at SecurityWeek and host of the popular Security Conversations podcast series. He is a security community engagement expert who has built programs at major global brands, including Intel Corp., Bishop Fox and GReAT. Ryan is a founding-director of the Security Tinkerers non-profit, an advisor to early-stage entrepreneurs, and a regular speaker at security conferences around the world.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

DARPA veteran Dan Kaufman has joined Badge as SVP, AI and Cybersecurity.

Kelly Shortridge has been promoted to VP of Security Products at Fastly.

After the passing of Amit Yoran, Tenable has appointed Steve Vintz and Mark Thurmond as co-CEOs.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.