Summary: Dazz, a cybersecurity startup focused on vulnerability remediation for cloud services, has raised $50 million in funding, bringing its total to $110 million. The company aims to address the critical gap in remediation efforts that follow vulnerability identification, leveraging AI to improve efficiency and effectiveness in resolving security issues.
Threat Actor: N/A | N/A
Victim: N/A | N/A
Key Point :
- Dazz’s funding round comes amid significant developments in the cybersecurity landscape, including Wiz’s abandoned acquisition offer from Google and a major outage caused by CrowdStrike’s defective update.
- The company claims a revenue increase of over 400% in the past year, highlighting its rapid growth in the cybersecurity market.
- Dazz’s technology focuses on unified remediation, addressing 50% to 80% of vulnerabilities, compared to the 10% typically resolved by traditional methods.
- Co-founder Merav Bahat’s experience at Microsoftâs cloud security business has shaped Dazz’s approach to tackling vulnerabilities in cloud environments.
- The startup aims to fill the gap in remediation processes, which are often manual and complex, by automating prioritization and resolution of identified vulnerabilities.
Cybersecurity has become a white-hot topic in the world of technology. Not only are data breaches continuing unabated, but also security companies themselves are very much in the spotlight as a result. One of the fastest-growing, Wiz, was the object of a now-abandoned $23 billion acquisition offer from Google.
Now another cybersecurity startup, coincidentally closely associated with Wiz, has raised a significant round of funding.
Dazz, which focuses on vulnerability remediation for enterprises that use cloud services, has raised $50 million in equity funding. The startup is not disclosing its valuation, but sources close to the company say the figure is just under $400 million post-money.
The companyâs fundraise is coming at a wild time in the world of cybersecurity. Not only did Wiz apparently walk away from a $23 billion acquisition offer from Google, but also one of the very biggest players in the market, the publicly listed CrowdStrike, issued a defective update just one week ago that caused a major outage across its massive customer base, bringing chaos to millions of people globally.
While neither of those stories is directly related to the most critical cybersecurity issues we face â breaches, data leaks, outages due to malicious activity â they both point to just how central cybersecurity firms are in the market at the moment.
Dazz works with larger enterprises, and while itâs not disclosing revenue numbers, it claims that revenue has increased by more than 400% over the last year.
Existing investors Greylock Partners, Cyberstarts, Insight Partners and Index Ventures are collectively described as âleadingâ the round. Dazz, which launched in 2021, has now raised around $110 million in total.
Dazz is headquartered in Palo Alto, but its roots lie in Israel, and those roots run deep. Merav Bahat, its co-founder and CEO, worked for years at Microsoftâs cloud security business, which got its start when Microsoft acquired Adallom, the previous startup founded by the creators of Wiz.
Bahat was instrumental in taking Microsoftâs cloud security unit to a $2.5 billion business when she left to start Dazz in 2020. That subsidiary is now worth more than $20 billion.
Bahat picked up two very important things during her time at Microsoft.
The first of these was a close friendship with Assaf Rappaport, the CEO and co-founder of Adallom, and later Wiz. They are both based in NYC and Tel Aviv, and Bahat is Rappaportâs go-to dog sitter and informal second human family. In company with others, the two founders might even finish each otherâs sentences. And when Rappaport was getting ready to start Wiz, Bahat became one of his first investors. (Yes, she would have stood to benefit greatly had the sale to Google gone through.)
The other thing Bahat picked up was a very solid understanding of what works in cloud security, what doesnât, and what could use significantly more R&D and attention. It was with that knowledge that she co-founded Dazz with two other cybersecurity veterans, Tomer Schwartz (CTO) and Yuval Ofir (VP R&D).
Prospects and customers, Bahat said, all work with a wide array of cloud security platforms like Palo Alto Networks, Wiz and CrowdStrike. But with all of these, she said, there remains a gap and opportunity to focus specifically on remediation, which is the next step after vulnerabilities, misconfigurations or breaches are identified.
âWhen we talk to [security teams], what we hear is that when it comes to vulnerability, prioritization and remediation, nobodyâs solved these issues.â Part of the reason, she explained, is that itâs a very manual and complicated process because of the volume of problems that arise in a typical network.
âAll the security tools are really focused on visibility and detection and giving you whatâs wrong. So much is wrong,â she said. âSome of the organizations I work with, they might find millions of unserved and unsolved vulnerabilities.â One customer had as many as 1.2 billion vulnerabilities identified in its network, she noted.
There are a number of other players in the remediation space out there, including big security platforms. Dazzâs breakthrough seems to be its technology to consolidate reports of vulnerabilities identified across multiple cloud architectures and environments (it describes this as âunifiedâ remediation). The company has also created an AI-powered automation layer that prioritizes the problems and identifies which vulnerabilities are near active work and which are sitting dormant so that security teams can organize more effectively, and then it helps fix those issues.
Bahat claimed that remediation efforts previously might have just addressed around 10% of vulnerabilities (hopefully the most alarming) in the past, but Dazzâs approach can address 50% to 80%.
Companies like Wiz have definitely benefited from the current trend at enterprises to procure IT from fewer âone-stop shopâ providers. But there is still an argument to have point solutions for certain functions. Dazz and its investors believe remediation is one of those areas, especially when the so-called single pane of glass can address all of the assets of a company â whether they are in the cloud or on-premises.