Threat Intelligence

2/7/2017
03:00 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Exabeam Secures $30 Million in Series C Funding to Disrupt SIEM market

Leverages Strength in UEBA to Create Analytics and Response Platform

San Mateo, Calif., — February 7, 2017 — Exabeam, a leader in security intelligence solutions, today announced it raised $30 Million in series C funding, led by Lightspeed Venture Partners and Cisco Investments, designed to support Exabeam’s continued disruption of the multi-billion dollar Security Information and Event Management (SIEM) market. Ravi Mhatre of Lightspeed will be joining the Exabeam Board of Directors. In addition to new lead investor Lightspeed Venture Partners, existing investors Norwest Venture Partners, Aspect Ventures, Icon Ventures, and Shlomo Kramer participated in the round.

As data breaches continue to increase in both frequency and impact, organizations of all sizes struggle to detect, analyze, and respond to cyber threats. While SIEM products have traditionally been viewed as a primary means for detecting complex attacks, these solutions are no longer effective.  Last year:

●      There were 25% more data breaches than in 20151

●      92% of external cyber attacks aimed to steal user credentials2

●      66% of insider threats involved intentional privilege misuse3

●      The average incident took 50 days to contain and investigate4

The rise of identity-based and insider attacks via stolen or misused credentials requires a new approach. In response to this need to evolve the security market, Exabeam recently announced its Security Intelligence Platform, an analytics-led solution for data collection, threat detection, and automated incident response. An early leader in the user and entity behavior analytics (UEBA) market, Exabeam’s 2016 sales were almost triple those of the prior year, with new global customers in the financial services, retail, energy, healthcare, and government industries.

“Exabeam’s execution to date has been very impressive and the opportunity is large,” said Ravi Mhatre, Partner at Lightspeed Venture Partners. “As cyberattacks continue to grow, organizations need a solution for detecting and responding to them. Exabeam is well positioned to be the leader in the security intelligence market.”

“Exabeam’s behavioral analytics is a powerful tool that helps companies prioritize and focus on the most damaging threats they face,” said Rob Salvagno, head of Cisco Investments and vice president of Cisco corporate development. “We’re excited to become an investor in a company that shares our mission of reducing time to detection and helping customers respond to security threats more effectively.”

“Exabeam is growing quickly and I am excited to add both Ravi’s expertise in building enterprise software companies and Cisco’s breadth and depth in the security market,” said Nir Polak, Co-founder and CEO of Exabeam. “This investment — and the additional expertise and partnership it brings — provides even greater support to take Exabeam to the next level.”

Exabeam will be demonstrating its new products at the RSA Security Conference in San Francisco, February 13-17, in booth #S2233.

About Exabeam

Exabeam provides security intelligence and management solutions to help organizations of any size protect their most valuable information. The Exabeam Security Intelligence Platform uniquely combines unlimited data collection at a predictable price, machine learning for advanced analytics, and automated incident response into an integrated set of products. The result is the first modern security intelligence solution that delivers where legacy SIEM vendors have failed. Built by seasoned security and enterprise IT veterans from Imperva, ArcSight, and Sumo Logic, Exabeam is headquartered in San Mateo, California. Exabeam is privately funded by Norwest Venture Partners, Aspect Ventures, Icon Ventures, Lightspeed Venture Partners, Cisco Investments, and investor Shlomo Kramer. Follow us on Facebook, Twitter, and LinkedIn.

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
Most Malware Arrives Via Email
Dark Reading Staff 10/11/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-17534
PUBLISHED: 2018-10-15
Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.
CVE-2018-17980
PUBLISHED: 2018-10-15
NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is execute...
CVE-2018-18259
PUBLISHED: 2018-10-15
Stored XSS has been discovered in version 1.0.12 of the LUYA CMS software via /admin/api-cms-nav/create-page.
CVE-2018-18260
PUBLISHED: 2018-10-15
In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false.
CVE-2018-17532
PUBLISHED: 2018-10-15
Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attackers to execute arbitrary commands with root privileges.