As companies grow, they expose themselves more online and become more difficult to defend in terms of cybersecurity. One report estimates that 30-40% of a company’s IT infrastructure is not even known to the security team.
Thus startups have appeared with an “offensive” profile in order to simulate cyberattacks.
One of them is Amsterdam-based Hadrian, a “hacker-run” cybersecurity startup that offers a SaaS platform that simulates an attack.
It closed a €10.5m seed round led by HV Capital, with participation from Picus Capital, Slimmer AI and angels like Adriaan Mol, Koen Köppen and Niklas Hellman.
According to Hadrian, conventional “penetration testing” is time-consuming and labor-intensive and tends to focus on areas that companies already consider vulnerable. Hadrian’s says its platform analyzes companies’ IT infrastructure to look for weaknesses from the outside in to create insights into digital threats and attack vectors.
Rogier Fischer, CEO of Hadrian, said in a statement, “Hadrian understands that CISOs and their teams cannot be expected to address all potential threats on the attack surface. Our self-driving technology identifies real threats and prioritizes necessary actions, connecting urgent tasks to existing workflow tools and processes so the important stuff gets addressed first.
Hadrian competes with Randori (raised $29.8m), RiskIQ (acquired by Microsoft), Cortex and Cycognito (raised $153m).
Fischer told me, “Right now, the value of ASM is extremely hard to extract. There are huge amounts of data that analysts will have to sift through. We would argue that the value currently given by ASM for this does not justify the price (therefore, insurance companies are not yet using the data, or at least they are not outperforming insurance companies with it.) “