Lineaje raises $20M to help organizations combat software supply chain threats

Date:

Share post:


The software supply chain faces threats from all sides. A 2024 report by the Ponemon Institute found that over half of organizations have experienced a software supply chain attack, with 54% having experienced one within the past year.

Supply chain attacks typically target services from third-party vendors or open source software that make up a company’s tech stack, and they can financially devastate an organization. According to a Juniper Research study, supply chain cyberattacks could cost the global economy almost $81 billion in lost revenue and damages by 2026. The White House has indicated a commitment to addressing the broader issue of software supply chain security, openly declaring it a national security problem and releasing an executive order aimed at establishing mitigatory standards.

The threat has fueled the demand for platforms that can be used to detect — and, in a perfect world, mitigate — attacks on a business’ software supply chain. One startup creating such a platform, Lineaje (a semi-phonetic spelling of “lineage”), today closed a $20 million Series A funding round.

Founded in 2021 by Javed Hasan and Anand Revashetti, Lineaje develops tools to detect software in an organization’s supply chain that’s been tampered with, as well as outdated, potentially vulnerable open source software. Once Lineaje finds a likely vulnerability, it recommends fixes — if any are available — and warns against implementing those that might break the software.

“For organizations that care about the risk their software creates for their organizations as well as their customers, focusing and managing this risk is critical,” Hasan, Lineaje’s CEO, told TechCrunch. “Lineaje was born to discover, manage and secure software irrespective of where it’s built.”

Both Hasan and Revashetti hail from the cybersecurity industry, having worked at vendors including Symantec, McAfee and Norton. They crossed paths while at McAfee, where Revashetti was a fellow and chief architect.

“Software supply chain attacks and concerns have been steadily increasing,” Hasan said. “As we looked at this space, it was clear that that supply chain was a top-three concern for CISOs and the U.S. government.”

Lineaje occupies a crowded market. Kusari, Ox Security, Chainguard, Dustico and Endor are among its rivals, and big tech companies such as Google, Amazon and Microsoft are mounting efforts to improve general open source software security.

But one way Lineaje is attempting to stand out is by embracing defense work. Hasan claims that the company has a contract with the U.S. Air Force to support its “Eagle Eyes” anti-terrorism program as well as relationships with other unnamed federal agencies.

Public sector agencies certainly deal with software supply chain challenges similar to what the private sector sees. A recent report released by the U.S. Department of Homeland Security found that one U.S. government cabinet agency spent months responding to a vulnerability in the library of Apache’s Log4j2, a Java-based logging utility, in part because its security teams had trouble identifying where the vulnerable packages resided within their software environments.

The proceeds from Lineaje’s Series A, which bring the startup’s total raised to $27 million, will bolster its efforts to acquire even more U.S. public sector clientele, Hasan continued.

“The Series A funding round will cover us until early 2027 at least,” he said, adding that last year was Lineaje’s first year of revenue. “We have about 30 employees currently, with plans to double headcount by the end of the year.”

The round was co-led by Prosperity7 Ventures, Neotribe and Hitachi with participation from Tenable Ventures, Carahsoft, Wipro Ventures, SecureOctane and AlumniVentures.



Source link

Lisa Holden
Lisa Holden
Lisa Holden is a news writer for LinkDaddy News. She writes health, sport, tech, and more. Some of her favorite topics include the latest trends in fitness and wellness, the best ways to use technology to improve your life, and the latest developments in medical research.

Recent posts

Related articles

Zepto raises another $350 million amid retail upheaval in India

Zepto has secured $350 million in new funding, its third round of financing in six months, as...

Battery unicorn Northvolt files for bankruptcy, upending Europe’s industrial plan

Beleaguered Swedish battery manufacturer Northvolt announced today that it was filing for bankruptcy in the U.S., striking...

Brave Search adds AI chat for follow-up questions after your initial query

Brave announced on Thursday that it’s introducing an AI chat mode for follow-up questions based on initial...

Cruise fesses up, Pony AI raises its IPO ambitions, and the TuSimple drama dials back up

Welcome back to TechCrunch Mobility — your central hub for news and insights on the future of...

WhatsApp rolls out voice message transcripts

WhatsApp announced on Thursday it’s rolling out voice message transcripts. The Meta-owned company says the new feature...

Threads adjusts its algorithm to show you more content from accounts you follow

After several complaints about its algorithm, Threads is finally making changes to surface more content from people...

Spotify tests a video feature for audiobooks as it ramps up video expansion

Spotify is enhancing the audiobook experience for premium users through three new experiments: video clips, author pages,...

Candela brings its P-12 electric ferry to Tahoe and adds another $14M to build more

Electric passenger boat startup Candela has topped off its most recent raise with another $14 million, the...