Threats to the software supply chain have become increasingly prevalent, with more than half of organizations experiencing a software supply chain attack in the past year alone. These attacks target third-party vendors or open source software, posing significant financial risks to organizations. In fact, a study by Juniper Research predicts that supply chain cyberattacks could cost the global economy nearly $81 billion in lost revenue and damages by 2026.
Recognizing the severity of this issue, the White House has taken steps to address software supply chain security. They have declared it a national security problem and released an executive order aimed at establishing mitigatory standards. This underscores the urgent need for platforms that can detect and mitigate attacks on a company’s software supply chain.
One startup that has emerged in this space is Lineaje, which recently closed a $20 million Series A funding round. Founded in 2021 by Javed Hasan and Anand Revashetti, Lineaje develops tools to detect tampered software in an organization’s supply chain, as well as outdated and potentially vulnerable open source software. The platform not only identifies vulnerabilities but also recommends fixes and warns against implementing solutions that may break the software.
Hasan, Lineaje’s CEO, emphasizes the importance of managing the risk that software poses to organizations and their customers. He believes that Lineaje was created to address this critical need. With a background in cybersecurity, both Hasan and Revashetti have extensive experience in the field, having worked at companies like Symantec, McAfee, and Norton.
While Lineaje faces competition from other platforms like Kusari, Ox Security, Chainguard, Dustico, and Endor, it sets itself apart by actively pursuing defense work. The company has a contract with the U.S. Air Force to support its anti-terrorism program called “Eagle Eyes,” as well as relationships with other federal agencies. Public sector agencies face similar software supply chain challenges as the private sector, as highlighted by a recent report from the U.S. Department of Homeland Security. These agencies often struggle to identify vulnerable packages within their software environments, leading to delays in addressing security vulnerabilities.
The funding from Lineaje’s Series A round, co-led by Prosperity7 Ventures, Neotribe, and Hitachi, will enable the startup to expand its efforts in acquiring more U.S. public sector clients. Hasan expects the funding to sustain the company until early 2027, and he plans to double the headcount by the end of the year. The round also saw participation from Tenable Ventures, Carahsoft, Wipro Ventures, SecureOctane, and AlumniVentures.
In conclusion, Lineaje’s platform offers a solution to the growing threat of software supply chain attacks. With its focus on detecting and mitigating vulnerabilities, the startup aims to protect organizations from financial devastation while helping them manage the risks associated with their software. Its presence in the defense sector further validates its capabilities and positions Lineaje as a key player in the industry.