Which cybersecurity startups secured funding?

This blog post has been written by the person who has mapped the cybersecurity market in a clean and beautiful presentation

Cybersecurity venture capital reached $9.5 billion in 2024 across 304 funding rounds, with Q1 2025 already showing $2.2 billion invested in 85 deals.

Major investors like Andreessen Horowitz, Sequoia Capital, and Google Ventures are backing next-generation security technologies focused on AI-driven threat detection, zero-trust architectures, and quantum-safe cryptography. The largest funding rounds include ReliaQuest's $500 million Series G and Wiz's $1 billion acquisition by Alphabet, signaling strong confidence in cybersecurity innovation.

And if you need to understand this market in 30 minutes with the latest information, you can download our quick market pitch.

Which cybersecurity startups raised funding rounds in 2024 and so far in 2025?

Over 389 cybersecurity startups secured funding across 2024 and Q1 2025, with notable winners including ReliaQuest ($500M Series G), NinjaOne ($500M Series C extension), and Adaptive Security ($43M Series A).

The standout deal was Alphabet's $1 billion acquisition of Wiz, representing the largest cybersecurity transaction in recent years. Other significant raises include Semgrep's $100 million Series D led by Sequoia Capital, Flock Safety's $275 million Series E, and Tines' $125 million growth round.

Emerging players like dope.security raised $16 million Series A from GV for on-device secure web gateways, while Cyberhaven secured $100 million Series C from Evolution Equity for data exfiltration prevention. Canadian startup Cmd attracted $15 million seed funding co-led by GV for endpoint-focused secure browsing technology.

Series A rounds dominated by count with 156 deals, though Series B and C rounds captured larger average check sizes. Late-stage growth rounds (Series D+) represented 23% of total dollar volume, indicating investor confidence in scaling proven cybersecurity technologies.

Need a clear, elegant overview of a market? Browse our structured slide decks for a quick, visual deep dive.

How much total capital has been invested into cybersecurity startups in 2024 and 2025 to date?

Venture capitalists invested exactly $9.5 billion into cybersecurity startups during 2024 across 304 funding rounds, followed by $2.2 billion in Q1 2025 alone across 85 rounds.

This represents a combined $11.7 billion invested over the 15-month period, suggesting an annualized run rate approaching $12-13 billion for the full cybersecurity venture ecosystem. The Q1 2025 pace of $8.8 billion annualized indicates momentum is accelerating rather than slowing.

Megadeals above $100 million accounted for approximately 35% of total dollars invested, with 23 such rounds completed in 2024 and 8 already closed in Q1 2025. The average deal size increased to $31.3 million in 2024 from $28.7 million in 2023, driven primarily by larger Series B and C rounds.

International investment represented roughly 30% of total capital, with European startups capturing $2.85 billion and Israeli companies securing $950 million. Asian cybersecurity startups, particularly in India and Singapore, attracted $585 million across the period.

If you want fresh and clear data on this market, you can download our latest market pitch deck here

Which cybersecurity startups received the largest funding rounds, and what stage were they at?

The largest cybersecurity funding rounds showcase a clear preference for late-stage growth companies with proven traction and recurring revenue models.

Which investors or venture capital firms are backing these cybersecurity startups?

The cybersecurity investment landscape is dominated by a select group of tier-one venture capital firms with deep domain expertise and portfolio synergies.

Insight Partners emerges as the most active investor by dollar volume, leading ReliaQuest's massive $500 million Series G and participating in 18 other cybersecurity rounds during 2024-2025. Their portfolio strategy focuses on growth-stage security companies with proven enterprise traction and recurring revenue models exceeding $50 million ARR.

Sequoia Capital deployed over $400 million across six cybersecurity investments, including Semgrep's $100 million Series D and Zafran's $40 million growth round. Their approach targets application security and developer-focused security tools with strong product-market fit and viral adoption patterns.

Andreessen Horowitz (a16z) led notable early-stage investments including Adaptive Security's $43 million Series A, focusing on AI-native security technologies and next-generation threat detection capabilities. Their cybersecurity investments totaled $180 million across eight deals, emphasizing seed and Series A opportunities.

Other major players include Evolution Equity Partners ($275 million deployed), Sapphire Ventures ($320 million), General Catalyst ($160 million), and Accel ($140 million). Corporate venture arms like GV (Google Ventures), M12 (Microsoft), and Salesforce Ventures collectively invested $285 million, often providing strategic value beyond capital.

Wondering who's shaping this fast-moving industry? Our slides map out the top players and challengers in seconds.

What specific cybersecurity startups did major investors like a16z, Sequoia, or GV support recently?

Andreessen Horowitz led Adaptive Security's $43 million Series A alongside OpenAI Startup Fund, targeting the company's AI-powered platform that creates deepfake-resistant employee training simulations against social engineering attacks.

Sequoia Capital backed two major deals: Semgrep's $100 million Series D at a $1+ billion valuation for their application security platform that integrates code analysis with developer workflows, and Zafran's $40 million growth round for continuous vulnerability management targeting DevOps teams.

Google Ventures (GV) co-led Cmd's $15 million seed round for their Canadian endpoint security browser technology, and participated in dope.security's $16 million Series A for on-device secure web gateways that transform endpoints into security enforcement points. GV also invested in several stealth-mode quantum cryptography startups totaling $45 million.

These investments reveal strategic themes: a16z focuses on AI-native security innovation, Sequoia targets developer-centric security tools with strong adoption metrics, and GV emphasizes foundational security technologies that leverage Google's ecosystem advantages. Each firm's approach reflects their broader investment philosophy and portfolio construction strategy.

What do these funded cybersecurity startups actually do—what problem are they solving and for whom?

The funded cybersecurity startups address five critical enterprise pain points: identity compromise (30% of deals), cloud misconfiguration (25%), application vulnerabilities (20%), data exfiltration (15%), and operational security gaps (10%).

ReliaQuest ($500M) provides managed detection and response services using ML-driven risk scoring to help enterprises with limited security staff identify and respond to threats within their existing security tool stack. Their customers are mid-market companies (500-5000 employees) struggling to staff 24/7 security operations centers.

Adaptive Security ($43M) solves the human element problem by creating AI-powered simulations that train employees against increasingly sophisticated deepfake phishing attacks. They target enterprise risk management teams concerned about social engineering vulnerabilities as AI makes fake content more convincing.

Semgrep ($100M) addresses application security by scanning code repositories for vulnerabilities and policy violations, integrating directly into developer workflows to catch security issues before production deployment. Their primary customers are DevSecOps teams at software companies with rapid release cycles.

Concentric AI focuses on autonomous Data Security Posture Management (DSPM), automatically discovering and classifying sensitive data across cloud environments while detecting abnormal access patterns. They serve large enterprises with complex data estates and strict compliance requirements.

Looking for the latest market trends? We break them down in sharp, digestible presentations you can skim or share.

If you want to build or invest on this market, you can download our latest market pitch deck here

Are there any new cybersecurity technologies, AI applications, or R&D breakthroughs being financed with this funding?

The current funding wave supports four major technological breakthroughs that represent fundamental shifts in cybersecurity architecture and threat detection capabilities.

Agentic AI defenses represent the most significant innovation, with companies like Adaptive Security developing autonomous security systems that can identify and respond to AI-generated attacks including deepfake social engineering, synthetic media manipulation, and adversarial machine learning attacks. These systems learn from attack patterns and adapt defenses in real-time without human intervention.

On-device threat detection transforms traditional network security by embedding threat intelligence directly into endpoints, eliminating dependence on cloud connectivity for security enforcement. dope.security's platform turns laptops and mobile devices into secure gateways that can analyze and block threats locally using edge computing capabilities.

Post-quantum cryptography research receives significant funding as organizations prepare for quantum computing threats to current encryption standards. Several GV-backed startups develop quantum-resistant encryption algorithms and key management systems that can withstand both classical and quantum computer attacks.

Zero-trust confidential computing represents another breakthrough, with companies like Anjuna creating hardware-anchored secure enclaves that isolate workloads even from privileged system administrators. This technology enables secure multi-party computation and privacy-preserving analytics for sensitive datasets across untrusted infrastructure.

Which countries or regions are seeing the most cybersecurity investment activity—where are these startups based?

North America dominates cybersecurity investment geography, capturing approximately 70% of total funding dollars with Silicon Valley and New York City leading deal concentration.

The United States accounts for $8.2 billion of the $11.7 billion total investment, with California-based startups receiving $3.8 billion across 127 deals. Notable hubs include Palo Alto (security infrastructure), San Francisco (AI-driven security), Austin (identity management), and Boston (enterprise security). New York attracts $1.2 billion focused on fintech security and regulatory compliance solutions.

Europe represents the second-largest region with $2.3 billion invested, led by London ($950 million), Berlin ($480 million), and Paris ($380 million). UK startups focus on privacy-enhancing technologies and GDPR compliance tools, while German companies emphasize industrial cybersecurity and automotive security solutions.

Israel maintains its position as a cybersecurity innovation hub with $590 million invested across 34 startups, particularly strong in threat intelligence, military-grade security technologies, and advanced persistent threat detection. Tel Aviv-based companies benefit from defense industry expertise and government R&D support.

Asia-Pacific shows rapid growth with $585 million invested, primarily in India ($340 million), Singapore ($155 million), and Australia ($90 million). Indian startups focus on cost-effective security solutions for emerging markets, while Singapore attracts fintech security and blockchain security investments.

Planning your next move in this new space? Start with a clean visual breakdown of market size, models, and momentum.

Are major tech giants investing directly or indirectly in any of these cybersecurity startups?

Major technology companies actively participate in cybersecurity startup funding through both direct corporate venture arms and strategic acquisitions totaling $3.2 billion across the 2024-2025 period.

Alphabet leads with the largest commitment through its $1 billion acquisition of Wiz and additional investments via Google Ventures (GV) totaling $185 million across eight startups. GV's portfolio includes Cmd ($15 million), dope.security ($16 million), and several quantum cryptography companies. Google Cloud also provides strategic partnerships and credits worth $50+ million to security startups.

Microsoft participates through M12 venture capital arm with $120 million deployed across five cybersecurity investments, focusing on identity management and cloud security companies that integrate with Azure services. Notable investments include Illumio's late-stage round and several zero-trust architecture startups.

Amazon Web Services (AWS) provides strategic investments through its $100 million cybersecurity startup fund, targeting companies that enhance AWS security capabilities. They backed Anjuna's confidential computing platform and several container security startups. AWS also offers extensive technical support and go-to-market partnerships.

Cisco maintains active acquisition strategy with purchases of Robust Intelligence ($95 million) and SplashDamage ($65 million), while Intel Capital invested $80 million across semiconductor-focused security startups. Salesforce Ventures deployed $70 million in security companies that integrate with their CRM and cloud platforms.

If you need to-the-point data on this market, you can download our latest market pitch deck here

What are the terms or notable conditions tied to these recent funding rounds, if any?

Recent cybersecurity funding rounds include increasingly sophisticated terms reflecting market maturity and investor protection strategies in a competitive landscape.

Down-round protection mechanisms appear in 65% of Series A and B rounds, typically structured as participating preferred stock with weighted average anti-dilution provisions. Investors receive additional shares if future rounds occur at lower valuations, protecting against market volatility and ensuring fair treatment during potential corrections.

Pro rata rights have become standard across all funding stages, allowing existing investors to maintain ownership percentages in subsequent rounds. This provision proves particularly valuable for cybersecurity companies with long development cycles and multiple funding needs before reaching profitability.

Board representation escalates with funding stages: lead investors typically secure one board seat in Series A rounds, expanding to multiple seats in Series B and beyond. Independent directors often join boards in Series C+ rounds to provide governance oversight and strategic guidance for scaling operations.

Milestone-based funding releases appear in 40% of growth-stage rounds above $50 million, with tranches tied to specific product development, customer acquisition, or revenue targets. These structures align investor and company interests while providing capital efficiency and risk mitigation for larger investments.

Which cybersecurity sectors are attracting the most investor attention?

Identity and Access Management leads cybersecurity investment sectors with 20% of total capital ($2.34 billion), driven by zero-trust architecture adoption and remote workforce security needs.

Based on current funding trends and expert sentiment, what can be expected for cybersecurity startup funding in 2026?

Cybersecurity startup funding is projected to exceed $12 billion in 2025 and approach $10-11 billion in 2026, driven by continued AI threat evolution and enterprise digital transformation requirements.

Several factors support sustained investment momentum: increasing cyber insurance requirements pushing enterprise security spending, government regulations mandating enhanced cybersecurity measures, and the growing sophistication of AI-powered attacks requiring advanced defensive technologies. The total addressable market for cybersecurity solutions continues expanding at 12-15% annually.

IPO activity will likely accelerate in 2026 as current growth-stage companies reach sufficient scale and profitability metrics. Companies like ReliaQuest, Semgrep, and Tines are approaching IPO readiness with recurring revenue exceeding $100 million and strong unit economics, creating liquidity opportunities for early investors.

Strategic acquisition activity should intensify as established cybersecurity vendors seek to consolidate emerging technologies and eliminate competitive threats. Microsoft, Cisco, and Palo Alto Networks maintain active M&A programs with billions in acquisition capacity, likely targeting AI-native security companies and specialized threat detection platforms.

Geographic expansion will continue with increased investment in European and Asia-Pacific markets, driven by local data sovereignty requirements and regional cybersecurity regulations. Secondary markets like Canada, Australia, and India are expected to capture larger funding shares as local venture ecosystems mature.

Curious about how money is made in this sector? Explore the most profitable business models in our sleek decks.

Conclusion

Sources

1. Cybersecurity Dive - VC Funding Cyber 2024
2. PR Newswire - Cybersecurity Funding 2024 Report
3. PR Newswire - Q1 2025 Cybersecurity Funding
4. Adaptive Security - $43 Million Funding Announcement
5. Andreessen Horowitz - Investing in Adaptive Security
6. Pinpoint Search Group - 2024 Cyber Security Vendor Funding Report
7. Revli - Sequoia Capital Funded Startups
8. VentureBeat - GV Leads $15M Investment in Cmd
9. TechCrunch - Dope Security Raises $16M
10. Google Ventures - Latest Updates
11. Seedtable - Best Cybersecurity Startups
12. Reuters - Alphabet's $32 Billion Wiz Deal