Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1794+ Articles
149+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
  1. Home
  2. News
  3. Nebulock Raises $25 Million for AI-Native Contextual Security
Nebulock Raises $25 Million for AI-Native Contextual Security
NEWS

Nebulock Raises $25 Million for AI-Native Contextual Security

Boston-based Nebulock has closed a $25 million Series A led by FirstMark to expand its AI-native contextual threat hunting platform, which has performed...

Dylan H.

News Desk

June 28, 2026
4 min read

Nebulock Closes $25M Series A to Scale Agentic Threat Hunting

Nebulock, a Boston-based AI security startup founded by veterans of CrowdStrike, Palo Alto Networks, and Arctic Wolf, has raised $25 million in Series A funding led by FirstMark. Existing backers — Bain Capital Ventures, Decibel, Step Function, and Zetta Venture Partners — participated in the round, bringing the company's total raised to more than $33 million.

The company emerged from stealth approximately one year ago and has been building what it calls an "AI-native contextual security" platform: an autonomous, vendor-agnostic threat hunting system that turns enterprise activity into a behavioral system of record.


What Nebulock Does

Traditional security operations centers are reactive — analysts respond to alerts generated by static detection rules. Nebulock's platform inverts that model, performing continuous proactive hunting across all telemetry sources rather than waiting for a threshold to be crossed.

Core Capabilities

CapabilityDescription
Cross-telemetry correlationUnified hunting across endpoint, cloud, identity, network, and SaaS
Behavioral graphTracks enterprise activity patterns to surface anomalous behavior
Agentic hunting workflowsAI agents autonomously investigate suspicious signals without analyst prompting
Contextual enrichmentLinks seemingly unremarkable actions into chains that indicate compromise

The platform is vendor-agnostic — it plugs into existing security stacks rather than replacing them, and surfaces "what your stack can't see."

Platform Metrics

  • 300 million+ agentic investigations performed to date
  • 4,000+ high-confidence findings generated for customers
  • Enterprise customers include Fortune 500 companies in financial services and healthcare; named customers include Cribl, HealthEdge, and Bain Capital

Real-World Findings

Nebulock published a set of real findings from customer environments to illustrate the platform's value:

  • A remote attacker operating undetected for months at a digital retailer, discovered through behavioral graph analysis
  • An insider copying 748 source code files to USB at a Fortune 1000 retailer — caught via cross-telemetry correlation
  • Credentials exposed in CLI arguments at a healthcare technology company — a misconfiguration invisible to traditional SAST
  • A malicious browser extension at a Fortune 500 food and beverage company, installed by an employee and exfiltrating data silently

Each finding illustrates the platform's core thesis: that breaches are often visible in the data — they just require the right behavioral context to surface.


The Agentic Insider Threat Problem

Nebulock specifically called out agentic insider threats as a growing problem distinct from traditional insider risk. The company referenced "OpenClaw" — an AI tool that went viral earlier in 2026 — as an example: employees downloaded it and began bypassing corporate controls, inadvertently creating authentication bypass pathways that security teams had no visibility into.

As AI agents increasingly operate with elevated privileges inside enterprise environments, the attack surface they represent grows. Nebulock positions its platform as purpose-built for this new reality.


Founder Perspective

Damien Lewke, founder and CEO, described the funding rationale:

"The attacker has become more agentic faster than defenders have become proactive. Breaches used to take months; now they take tokens. That's why Nebulock was built to help security teams move beyond reactive-by-default workflows and toward context-rich, always-on protection that shows them what their stack can't see."


Use of Funds

Nebulock plans to use the Series A capital to:

  • Deepen cross-telemetry correlation and expand the behavioral context graph
  • Expand platform capabilities across endpoint, identity, cloud, network, and SaaS
  • Hire across engineering and go-to-market functions

Investor Commentary

FirstMark led the round, with participation from Bain Capital Ventures, Decibel, Step Function, and Zetta Venture Partners. The round reflects continued investor confidence in proactive, AI-driven security approaches as enterprises face increasingly sophisticated and fast-moving threats.


Market Context

Nebulock's raise comes amid a broader shift in enterprise security spending toward AI-native platforms that can operate at machine speed. Traditional SIEM and SOAR vendors face pressure from AI-native competitors that can perform autonomous investigation workflows at a fraction of the cost and time. The company's 300M+ investigation count suggests the platform is being deployed at meaningful scale, not just as a proof of concept.


References

  • SecurityWeek — Nebulock Raises $25 Million for AI-Native Contextual Security
  • Business Wire — Nebulock $25M Series A Announcement
  • Axios Pro — Nebulock Threat Hunting Deal

Related Reading

  • In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs
#Funding#AI Security#Threat Hunting#Startup#Industry News

Related Articles

Aryon Security Raises $29 Million in Series A Funding

In the post-Mythos era, Aryon Security's platform helps organizations enforce security controls across multi-cloud environments as AI-generated...

3 min read

Geordie Raises $30 Million for AI Security and Governance Platform

AI security startup Geordie closes a $30M round led by Balderton Capital to help enterprises detect and govern AI risk across their environments.

5 min read

In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs

Qihoo 360 unveils Tulongfeng — a Chinese rival to Anthropic's Mythos AI vulnerability finder; the World Leaks ransomware group dumps 630 GB from Tata...

5 min read
Back to all News