Eclypsium Secures $45 Million in Series C Funding, Tackles Supply Chain Risks in AI and Infrastructure Security
Portland, Oregon-based cybersecurity firm Eclypsium has secured $45 million in Series C funding aimed at enhancing infrastructure supply chain security in the face of increasing threats from nation-state adversaries. Led by former McAfee Chief Threat Researcher Yuriy Bulygin, the startup plans to leverage this capital to fortify the network edge and the infrastructure underpinning AI applications.
The funding will be instrumental in developing solutions that mitigate vulnerabilities present in network hardware, embedded systems, data center infrastructure, and AI-related components. Bulygin emphasized the intricacies of modern supply chains, stating the complex nature of devices, often constructed by numerous suppliers, necessitates a comprehensive understanding of each vendor involved, including the hardware components and software utilized.
Having commenced operations in 2017, Eclypsium has grown its workforce to 107 while accumulating a total of $84 million through four rounds of investments. The Series C round was co-led by Ten Eleven Ventures and Qualcomm Ventures, bringing together valuable expertise in cybersecurity as well as AI chip developments. This financial backing will be directed toward expanding Eclypsium’s capabilities in securing AI data centers while bolstering their global reach.
Bulygin articulated concerns regarding the persistent threats posed by nation-state actors focusing on critical infrastructure vulnerabilities. He noted that network devices such as VPNs, firewalls, and load balancers frequently run outdated software versions, making them prime targets for exploitation. Bulygin criticized existing security protocols as inadequate, with most organizations neglecting necessary updates for their network edge devices.
As reliance on AI data centers intensifies, Eclypsium believes the landscape will see new vulnerabilities emerging from specialized hardware like GPUs and accelerators. The intricate interconnection of components in AI workloads raises significant security concerns, potentially offering adversaries avenues to compromise training and inference processes of AI models.
Supply chain security continues to be a multifaceted issue, as network devices comprise various components from different manufacturers, each contributing its own set of vulnerabilities. Bulygin cited the challenges clients face in understanding what is embedded in their devices, making them susceptible to malware insertion and firmware tampering. Eclypsium primarily serves enterprises and government entities in critical sectors such as finance, healthcare, and telecommunications, helping them navigate the complexities of their supply chains amidst rising threats.
With a robust revenue growth trajectory, Eclypsium is poised to maintain its expansion, focusing on deepening relationships with over 100 large clientele across governmental and commercial landscapes. Bulygin expressed optimism in the future potential for revenue growth linked to AI infrastructure improvements while recognizing the necessity for a careful approach to sustainable growth metrics.
In the context of cybersecurity threats, Bulygin’s insights resonate with the prevailing concerns over adversary tactics outlined by the MITRE ATT&CK framework. Techniques such as initial access, persistence, and privilege escalation underscore the need for sophisticated defenses that encompass both conventional and emerging vulnerabilities. As challenges evolve, so too must strategies to safeguard critical infrastructure from becoming the next target in a rapidly changing threat landscape.
