Reflectiz raises $22 million Series B to fight silent cyber risks in websites
The Israeli startup's platform analyzes third-party tools and open-source components to detect risky behavior instantly.
Reflectiz, a cybersecurity company that develops a platform for managing website exposure and protection, has raised $22 million in a Series B funding round. The round was led by the American venture capital fund Fulcrum Equity Partners, marking its first investment in an Israeli company, and included participation from YYM Ventures, AFG Venture Group, and Capri Ventures.
Founded in 2019 by Idan Cohen (CEO) and Ysrael Gurt (CTO), Reflectiz has raised $28 million to date. The company employs 40 people across its development centers in Ramat Gan, Israel, and Boston, USA.
Reflectiz plans to expand the capabilities of its AI-driven platform, including developing tools for establishing accurate data, automatically validating risks, and saving time for security teams in monitoring and response. The platform is designed to give organizations full control over their website and digital supply chain. It scans networks to instantly identify third-party tools, open-source components, and external services, mapping the risks they create in real time. This enables organizations to implement comprehensive cyber threat exposure management for their most exposed digital assets.
At the core of Reflectiz’s platform is a behavioral analysis mechanism integrated into a proprietary browser that simulates human user actions. This system continuously monitors all activities and behaviors of website components, from JavaScript elements to network requests. By establishing what constitutes normal behavior for each component, the platform can detect deviations that pose security risks. AI technology is also integrated to automatically and instantly decode suspicious codeת a process that previously required weeks of manual analysis. All of this occurs remotely, without the need for an agent or access to the organization’s data, allowing full management of the digital attack surface without disrupting business operations.
"Enterprises invest millions to secure their own code, sharpening their SDLC process with their team, when the real risks are quietly entering through third parties and open sources beyond their control,” said Idan Cohen, co-founder and CEO of Reflectiz. "Standard website security is outdated, and traditional vulnerability management is no longer enough. Our mission is to challenge the status quo, Reflectiz brings the complete picture of web exposure and we believe this is where the industry is inevitably moving.”
