About Us

Corelight Secures $75 Million in Series D Funding Led by Energy Impact Partners

Corelight, a provider of an open network detection and response (NDR) platform, has secured $75 million in a Series D funding round led by Energy Impact Partners (EIP).

In addition to new investor H.I.G. Growth Partners and strategic investment from Capital One Ventures, CrowdStrike Falcon Fund, and Gaingels, previous investors Accel, General Catalyst, Insight Partners, and Osage University Partners joined the round. Corelight has received a total of $160 million to date, with this newest round allowing the company to expand its global market presence as well as develop additional data and cloud services.

“This latest investment is a powerful affirmation not only of the network detection and response category, but also of our open source heritage, data-centric approach, and commitment to customer success. I am grateful for our investors’ partnership as we help organizations around the world move to a data-driven security strategy,” said Brian Dye, CEO of Corelight.

Investor in charge EIP is an international investment platform supported by a strong coalition of forward-thinking utilities and partner organisations, with a concentration on cybersecurity, digital transformation, utility infrastructure, and the broader energy transition.

“EIP’s focus on critical infrastructure providers is highly aligned with both our mission and market traction. Helping these institutions defend against increasingly sophisticated attackers is essential given their role in society and the economy,” said Dye.

“Corelight’s strong NDR technology, rooted in open source, has had a significant impact across industries and is rapidly becoming the de-facto standard for sophisticated defenders. We look forward to supporting them as they expand their existing footprint within the sustainable energy, manufacturing and other critical infrastructure sectors,” said Shawn Cherian, partner at EIP.

“Corelight helps some of the world’s most advanced companies protect and secure their networks from cyber threats. By leveraging Zeek, the industry’s leading open-source data platform, Corelight is uniquely positioned to help security operations teams become more efficient in threat inspection, response, and remediation. We have been incredibly impressed by the company’s exceptional growth and are excited to partner with a world-class organization,” said Scott Hilleboe, managing director at H.I.G. Growth Partners.

“These strategic investors mirror our strategy, market focus and values as an organization. Each brings a unique perspective that will improve our ability to deliver data-centric security,” said Dye.

“Corelight and CrowdStrike’s strong shared commitment to data-centric security makes this a strong fit within the Falcon Fund portfolio. We are excited to support Corelight’s continued innovation in the NDR category and the growth of their new data and cloud offerings. As cyber threats increase in number and complexity, the importance of solutions like Corelight have never been greater, providing increased visibility and comprehensive data that allows organizations to identify vulnerabilities and resolve security issues faster,” said Michael Sentonas, CTO at CrowdStrike.

“We root our decisions on which companies we invest in based on the impact we believe those companies will have on their customers. Partnering with Corelight in this round is a natural extension of the work we have been doing with open source NDR tools and the investments we have been making in strong cyber security solutions. We are thrilled to work with Corelight on new opportunities,” said Jay Emmanuel, partner at Capital One Ventures.

“As the largest investor network focused on supporting and investing in the best venture-backed companies that embrace and value diverse leadership, including LGBTQ+, Gaingels is proud to be participating in this financing round with Corelight. Our team is resolved on helping the company grow and scale while strengthening its prospects of success by building a culture that reflects the diversity of its executive teams, staff and customers,”said Lorenzo Thione, managing director of Gaingels.

ActZero Cybersecurity Startup and Tech Data formed Strategic Partnership

ActZero, a cybersecurity startup whose AI-powered managed detection and response (MDR) solution helps to secure organizations of all sizes, announced a strategic partnership with Tech Data, one of the world’s top technology distributors and solutions aggregators. ActZero and Tech Data intend to work together to help businesses correctly detect, learn from, and prevent emerging security threats.

The ActZero platform brings together next-generation antivirus protection, endpoint detection and response (EDR), and 24/7 automated and managed threat hunting capabilities, all powered by a purpose-built AI engine and provided as a single, cost-effective solution. As a result, ActZero detects and blocks all forms of threats in sub-second response times, from commodity malware to cyberattacks.

Through the IT distributor and solutions aggregator’s global network, the agreement will boost the adoption of ActZero’s unique security platform as part of Tech Data’s edge-to-cloud offering and widen access to superior security for small and mid-size enterprises. Furthermore, this scale enables ActZero’s machine learning engines to benefit from tremendous network effects, which enhance the company’s capacity to detect and contain threats.

“We’re excited to roll out this partnership. Our goal is to democratize cybersecurity for small and mid-size businesses, and Tech Data’s well known distribution platform and industry-leading security expertise unlocks the ability to get ActZero’s superior approach in the hands of more companies,” said John Nurczynski, co-founder and Head of the Summit partnership program at ActZero.

“With year-over-year cybercrime statistics increasing exponentially, making smart investments in security solutions is a no-brainer for businesses grappling with how to handle malware, ransomware and proliferating cyber threats. Adding cybersecurity innovators like ActZero to our portfolio of solutions arms Tech Data customers with critical online security tools so the businesses they serve – especially small and mid-sized companies – are equipped to protect from edge to cloud,” said Tracy Holtz, vice president of security solutions at Tech Data.

Sophos Acquires Braintrace to enhance Adaptive Cybersecurity Ecosystem with Braintrace’s Network Detection and Response (NDR) Technology

Sophos, a worldwide leader in next-generation cybersecurity, announced the acquisition of Braintrace, which will add Braintrace’s unique Network Detection and Response (NDR) technology to Sophos’ Adaptive Cybersecurity Ecosystem. Eliminating the need for Man-in-the-Middle (MitM) decryption, Braintrace’s NDR enables comprehensive visibility into network traffic patterns, including encrypted communication. 

Braintrace’s developers, data scientists, and security analysts have joined Sophos’ global Managed Threat Response (MTR) and Rapid Response teams as part of the acquisition. With over 5,000 active clients, Sophos’ MTR and Rapid Response services market has grown quickly, making it one of the world’s largest and rapidly-growing MDR suppliers.

Through integration into the Adaptive Cybersecurity Ecosystem, which supports all Sophos products and services, Braintrace’s NDR technology will help Sophos’ MTR and Rapid Response analysts, as well as Extended Detection and Response (XDR) clients. The Braintrace technology will also be used to capture and forward third-party event data from firewalls, proxies, VPNs, and other sources. Threat identification, threat hunting, and responding to suspicious activity all will benefit from these added layers of visibility and event ingestion.

“You can’t protect what you don’t know is there, and businesses of all sizes often miscalculate their assets and attack surface, both on-premises and in the cloud. Attackers take advantage of this, often going after weakly protected assets as a means of initial access. Defenders benefit from an ‘air traffic control system’ that sees all network activity, reveals unknown and unprotected assets, and exposes evasive malware more reliably than Intrusion Protection Systems (IPS). We’re particularly excited that Braintrace built this technology specifically to provide better security outcomes to their Managed Detection and Response (MDR) customers. It’s hard to beat the effectiveness of solutions built by teams of skilled practitioners and developers to solve real world cybersecurity problems,” said Joe Levy, chief technology officer, Sophos

“NDR is critical to successful threat hunting. Braintrace’s competitive differentiation is its unique NDR technology that our MDR analysts leveraged for finding, interrupting and remediating cyberattacks. With our own NDR technology, the team responds faster and more accurately because of the real-time, automated visibility and threat verification they have into encrypted traffic. We built Braintrace’s NDR technology from the ground up for detection and now, with Sophos, it will fit into a complete system to provide cross-product detection and response across a multi-vendor ecosystem,” said Bret Laughlin, CEO and co-founder of Braintrace.

NDR technology from Braintrace is a critical component in protecting against cyberattacks today and in the future. According to Sophos research, hackers shift strategies frequently to avoid detection and carry out their operations. Braintrace’s technology detects malicious C2 traffic from malware like ColbaltStrike, BazaLoader, and TrickBot, as well as zero-day exploits, which could lead to ransomware and other attacks. This visibility allows threat hunters and analysts to anticipate any prospective ransomware attack, such as REvil and DarkSide’s recent attacks.

In the first half of 2022, Sophos plans to release Braintrace’s NDR technology for MTR and XDR.