Big50-2017 Startup Spotlight: Javelin Networks

Javelin Networks

What they do: Provide protection for Active Directory.

Problem they solve: For many organizations, the most critical repository of sensitive information is Active Directory (AD).

According to Greg Fitzgerald, COO of Javelin, since AD contains “every user, computer, credential, password, resource, application, and service, of the organization, it is THE destination of every cyber attacker.” Attackers typically access AD from a compromised endpoint, and in the BYOD era, endpoints can be compromised in any number of ways – malware, fake security software, mobile in-game malware, phishing, spear phishing, etc. Add it all up, and one of the most sensitive data repositories in the enterprise is often one of the easiest targets to go after.

#Big50-2017 startup Javelin Networks locks down $5M Series A to build out AI that protects Active Directory. https://wp.me/p330ZZ-jl Click To Tweet

For all of you Microsoft haters out there, AD is an instance where the hate is probably warranted. Fitzgerald points out that Microsoft created the AD problem way back in 2000 when it decided to “expose it by design” to IT personnel in order to make managing networks easier.

Microsoft claims that 9 out 10 organizations worldwide use Active Directory. Thus for 17 years, this top attacker destination has been a clean and simple way to bypass all enterprise protection and detection mechanisms.

How they solve it: Javelin has developed a tool to block attackers from accessing AD information, while simultaneously containing the breach to only the compromised endpoint, so attackers cannot move laterally into and throughout the organization.

Javelin uses artificial intelligence to produce an agentless endpoint image of a false AD environment. Javelin’s management server (Javelin software on a Microsoft Virtual Machine) takes a snapshot of the AD, and then automatically creates a unique, customized AD image with a host of fake users, computers, assets, etc., all with complete attribute information.

Then, using the natural Active Directory authentication process, Javelin injects this image into the memory of each machine. Thus, when attackers compromise a machine and begin their reconnaissance work, they only see the false image, and they immediately start setting off alerts.

Javelin automatically captures complete forensics information and initiates mitigation activities to keep attackers contained or to kick them off the network. Javelin does this without adjusting, manipulating, or adding anything to the Active Directory and without forcing another agent into processes of the endpoint.

Headquarters: Austin, TX

CEO: Roi Abutbul, who previously served as Head of Israeli Air Force Cyber-Defense.

Year Founded: 2014

Funding: $7 million in total. In February 2017, Javelin announced a $5M Series A round. Investors included Hillsven Capital, RSL Capital, and undisclosed private investors.

Competitors include: The main competitor is Microsoft itself, with Microsoft ATA. Microsoft also acquired the AD-protection startup AORATO back in 2015 for $200M.

Customers include: TIAA Cref, ADP, ADAMA, and Samlyn Capital.

Why they’re in the Big 50-2017: Javelin did well in all phases of the Big50-2017 competition. They made it through the cut-throat voting round, have solid fundamentals, and did well in the content challenge.

2017 was a big year for Javelin. The company expanded its footprint in Europe, won some other startup awards, and announced its Series A financing.

We also like that Javelin has top-tier reference customers, and we’re bullish on their AI- and deception-based approach to protecting AI. Cybersecurity is a crowded, confusing sector, but Javelin is well positioned in a relatively uncluttered niche.