Miggo announced $7.5 million in seed funding
led by global cybersecurity VC firm YL Ventures
with the participation of CCL (Cyber Club London), cybersecurity
leaders from Elastic and Everon and former CISOs of Google, Zscaler and
Nike. Miggo's ADR platform addresses a critical gap in application
security by enabling security teams to detect and respond to targeted
application attacks in real-time.
2023 saw a rise in high-profile application attacks that went undetected
by traditional tools. The MOVEit, Microsoft SharePoint, Ivanti Gateway
and GoAnywhere breaches highlight critical AppSec blind spots of
application behavior in runtime and how attackers are hedging their bets
on this well-known, ongoing security gap. According to Justin Somaini,
Partner at YL Ventures and former CISO of Unity, SAP and Yahoo!,
"Applications in production constitute one of the few true blind spots
of today's security programs. Last year's incidents alone underscore how
critically we need to secure the application layer. This is a space
that still needs a lot of innovation to address what traditional tools
cannot."
Today, applications are the primary target of nearly 80% of data attacks, according to Verizon's 2023 Data Breach Investigations Report.
More recent shifts to distributed application architecture, which
requires multiple chains of trust between different services, have
further broadened the domain's threat landscape. Attackers can
manipulate flows between services without detecting existing security
sensors like EDR, WAF and CNAPP tools. The only way to identify such
malicious activity is with direct views into applications while they're
running.
Under the leadership of Daniel Shechter, CEO and co-founder, and Itai
Goldman, CTO and co-founder, Miggo developed a platform that analyzes
interactions and data flows within applications to detect and mitigate
attacks before they can escalate into breaches. "We need to proactively
tackle this massive and largely unseen attack surface. Not only do we
need precise detection and response for unexpected behaviors directly in
live application environments, but also insight and understanding into
the inner workings of today's distributed applications as they run,"
explained Shechter.
Miggo's technology precisely discovers and maps the architecture of
distributed applications to establish behavioral baselines and monitor
for deviations from intended design or code execution flows. Leveraging
live in-application context, Miggo determines if a deviation indicates
that the application is exploitable, under active exploitation or
backdoored, and initiates targeted mitigations to contain breaches by
pinpointing the offender and affected areas to recommend precise
remediation strategies.
The combined ability to detect live threats to applications and respond
within the applications themselves are key innovations, according to
CISO Mike Melo. "Miggo is finally providing transparency for our most
significant attack vector with the exact tools each stakeholder requires
to protect and defend mission-critical assets. ADR is the unified
solution we need to not only give us application-layer visibility and
control but also dramatically lower our mean time to detect and respond
to application attacks," he said.