# Upwind Scores $250M Series B at $1.5B Valuation for Runtime Security
Upwind Security has secured $250 million in Series B funding at a $1.5 billion valuation, bringing its total funding to $430 million[8]. The round, led by Bessemer Venture Partners, underscores growing enterprise demand for runtime-first cloud security solutions that detect and respond to threats in active production environments[6][8].
The funding milestone reflects Upwind's strategic positioning in the cloud security market, where organizations increasingly recognize that traditional vulnerability scanning and pre-deployment security checks miss critical threats that emerge only when applications are running. By focusing on runtime detection—monitoring actual application behavior, network traffic, and system calls as they occur—Upwind enables security teams to prioritize real risks over noise and respond to threats significantly faster than conventional approaches[6].
Runtime Security: The Next Frontier in Cloud Defense
Runtime security represents a fundamental shift in how organizations protect cloud infrastructure and applications. Rather than relying solely on static analysis, configuration reviews, or signature-based detection, runtime security continuously monitors active workloads to identify threats as they unfold[2].
Upwind's approach uses advanced eBPF (extended Berkeley Packet Filter) technology to collect deep telemetry from containerized environments and cloud workloads[3]. This enables security teams to observe network flows, API traffic, application behavior, and system calls in real time, mapping actual traffic patterns rather than depending on predefined rules or signatures[3]. The platform detects suspicious processes, unauthorized system calls, network anomalies, and sophisticated attacks like raw socket creation and remote code execution attempts—often catching zero-day threats and supply chain attacks that traditional tools miss[3].
The runtime-first methodology addresses a critical gap in cloud security. While pre-deployment scans and secure container images help secure code before launch, they cannot account for vulnerabilities that only manifest during production execution or for threats introduced through compromised dependencies and supply chain attacks[7].
Unified Threat Detection Across Cloud and Container Environments
Upwind's platform delivers comprehensive protection across multi-cloud, hybrid, and on-premises environments through a unified Cloud Native Application Protection Platform (CNAPP)[4]. The platform integrates container security, vulnerability management, API security, and identity management into a single solution, enabling organizations to see all workloads in real time and identify critical issues sooner[4][7].
Key capabilities include anomaly detection to identify unusual behaviors like unauthorized processes and privilege escalations, policy enforcement for workload communication and resource usage, and real-time threat mitigation that automatically quarantines or isolates compromised containers[2]. The platform supports leading Kubernetes distributions including Amazon EKS, Google GKE, Microsoft AKS, OpenShift, and others, providing security teams with centralized visibility regardless of infrastructure location[7].
A major recent advancement is Upwind's integration of Nyx technology, which brings application-layer runtime detection into the unified platform[1]. By observing function-level execution at runtime, Nyx connects application behavior to known vulnerabilities, enabling precision vulnerability triage that cuts noise by more than 60% by confirming which vulnerable functions are actually invoked in production[1]. This reduces alert fatigue and improves prioritization for security teams drowning in irrelevant CVE notifications[1].
Accelerating Security Operations and Incident Response
Organizations deploy Upwind to dramatically reduce triage and investigation time, with the platform enabling security teams to detect and respond to cloud threats 10 times faster than traditional methods[2][5]. The platform correlates runtime detections with audit logs and cloud activity data to provide end-to-end visibility into who did what, how, and when—critical context for rapid incident response[5].
Upwind's automated response capabilities trigger investigations and remediation workflows instantly through integrated playbooks, allowing security teams to prioritize remediation based on potential impact rather than individual alerts[5]. This operational efficiency is particularly valuable for DevOps and SecOps teams integrating runtime security into CI/CD pipelines and for SOC analysts conducting forensic investigations[3].
The platform's contextual analysis reduces alert fatigue by focusing on threats that matter, while its behavioral baseline approach detects deviations without relying on signatures or rules[3]. Security teams gain visibility into the complete attack lifecycle, from initial compromise through lateral movement and data exfiltration, enabling faster containment and prevention of future attacks[1].
Frequently Asked Questions
What is runtime security and how does it differ from traditional cloud security approaches?
Runtime security prioritizes threat detection and response in active production environments by monitoring actual application behavior, network traffic, and system calls in real time[2]. Unlike traditional approaches that rely on static vulnerability scanning and pre-deployment checks, runtime security detects threats as they unfold, including zero-day exploits and supply chain attacks that emerge only during execution[3]. This "inside-out" methodology uses internal signals like network requests and API traffic as context to help security teams separate urgent risks from those that can wait[6].
How does Upwind use eBPF technology for threat detection?
Upwind deploys eBPF sensors to provide continuous monitoring of cloud workloads with deep Layer 3–7 visibility into network and application behaviors inside every workload[5]. eBPF technology enables real-time observation of network flows, API traffic, and system calls without performance impacts, allowing the platform to detect suspicious processes, unauthorized syscalls, and network anomalies[3]. The platform maps actual traffic patterns to establish behavioral baselines, enabling detection of deviations that indicate malicious activity[3].
What is the Nyx integration and how does it improve threat detection?
Nyx is application-layer runtime detection technology that Upwind integrated into its platform to enable function-level monitoring of application execution[1]. By observing which vulnerable functions are actually invoked and run in production, Nyx enables precision vulnerability triage that reduces noise by more than 60% compared to traditional vulnerability scanning[1]. This allows security teams to focus investigation and remediation efforts on vulnerabilities that pose real risk rather than wasting time on CVEs that aren't exploited in their environment[1].
Which Kubernetes and cloud environments does Upwind support?
Upwind supports leading Kubernetes distributions including Amazon EKS, Google GKE, Microsoft AKS, OpenShift, and Kops, as well as on-premises data centers and hybrid-cloud environments[7]. This multi-cloud support enables organizations to unify container runtime security across their entire infrastructure in a single centralized platform, regardless of where workloads are deployed[7].
How does Upwind help reduce alert fatigue for security teams?
Upwind reduces alert fatigue through multiple mechanisms: precision vulnerability triage that confirms which vulnerable functions are actually invoked in production, contextual analysis that correlates runtime detections with audit logs and cloud activity data, and behavioral baselines that distinguish genuine threats from normal variation[1][3][5]. By focusing on threats that matter rather than individual alerts, and by providing complete context for rapid decision-making, the platform enables security teams to investigate and respond to threats significantly faster[5].
What types of threats can Upwind detect that traditional security tools miss?
Upwind detects sophisticated runtime threats including malware, privilege escalation, container escapes, logic abuse, exploit attempts, lateral movement within services, raw socket creation, suspicious module loads, and remote code execution attempts[2][3]. The platform is particularly effective at catching zero-day vulnerabilities, supply chain attacks, and sophisticated adversaries targeting cloud workloads, as well as management tool downloads, SSH sessions in containers, and modified binaries creating unexpected network connections[3].
🔄 Updated: 1/29/2026, 12:50:49 PM
**Upwind's $250M Series B at $1.5B valuation underscores its runtime-first cloud security platform's edge**, leveraging real-time signals from CI/CD integrations to detect exploitable vulnerabilities and filter false positives in dormant code, achieving 900% revenue growth and 200% customer expansion with adopters like Siemens and NuBank.[1][2][4] CEO Amiram Shachar stated, “Cloud infrastructure has changed faster than the security models designed to protect it,” highlighting the shift to runtime-powered defenses over static analysis for AI-driven workloads.[2][4] The funding will extend this approach across **data, AI, and code**, advancing pre-production misconfiguration prevention and integrations with AWS, Azure, and NVIDI
🔄 Updated: 1/29/2026, 1:00:50 PM
**Upwind Scores $250M Series B at $1.5B Valuation for Runtime Security**
Israeli cloud security startup Upwind announced its **$250 million Series B funding round**, achieving a **$1.5 billion valuation** and becoming "the first unicorn in modern cloud security," according to CEO Amiram Shachar.[1][3] The round, led by Bessemer Venture Partners with participation from Salesforce Ventures and Picture Capital, brings Upwind's total funding to **$430 million** and follows **900% revenue growth and 200% customer base expansion** over the past year.[1][2] The company, founded in
🔄 Updated: 1/29/2026, 1:10:53 PM
**NEWS UPDATE: Upwind's $250M Series B Reshapes Runtime Cloud Security Landscape**
Upwind's $250 million Series B at a $1.5 billion valuation, led by Bessemer Venture Partners, intensifies competition in cloud-native security by validating its runtime-first approach over traditional static models, following 900% revenue growth and 200% customer expansion with enterprises like Siemens and Nubank[1][4][5]. The funding fuels expansions into AI security, developer tools, and partnerships with over 100 ISVs/MSPS plus NVIDIA, AWS, and Azure, positioning Upwind to challenge CNAPP incumbents amid surging AI workloads[5][9]. CEO Amiram Shachar emphasized, “Clou
🔄 Updated: 1/29/2026, 1:21:01 PM
**LIVE NEWS UPDATE: Upwind's $250M Series B at $1.5B Valuation Sparks No Visible Regulatory Response**
No government agencies or regulatory bodies have issued statements or actions in response to cybersecurity startup Upwind's $250 million Series B funding round, announced Monday and valuing the company at $1.5 billion with total capital now at $430 million.[1][2] Searches across official channels reveal zero filings, probes, or comments from bodies like the SEC, CISA, or EU regulators on the deal led by Bessemer Venture Partners, despite Upwind's focus on AI-driven runtime cloud security for enterprises including Siemens and NuBank.[3][7] This silence aligns with the round's private VC structur
🔄 Updated: 1/29/2026, 1:31:03 PM
**Breaking: Expert analysis highlights Upwind's $250M Series B at $1.5B valuation as validation of its runtime-first cloud security model amid 900% YoY revenue growth and 200% customer expansion.**[1][3][4] Bessemer Venture Partners, leading the round, backs the shift to real-time signals over legacy security, with CEO Amiram Shachar stating, “Cloud infrastructure has changed faster than the security models designed to protect it,” emphasizing AI-driven threat detection.[2][4] Industry observers note this unicorn status positions Upwind to dominate as AI workloads proliferate, extending runtime insights to data, code, and developer pipelines.[5][8]
🔄 Updated: 1/29/2026, 1:41:00 PM
**Upwind Achieves Unicorn Status with $250M Series B for Cloud Security Expansion**
Cloud security startup **Upwind reached a $1.5 billion valuation** in its Series B funding round led by Bessemer Venture Partners, with participation from Salesforce Ventures and Picture Capital, bringing total funding to $430 million.[1][4] The company's explosive 900% year-over-year revenue growth and 200% increase in customer logos have attracted global enterprises including Siemens, Peloton, Roku, NuBank, Wix, and Agoda, positioning it as a leader in runtime-first cloud security across international markets.[
🔄 Updated: 1/29/2026, 1:51:01 PM
**Upwind Achieves Unicorn Status with $250M Series B, Reshaping Cloud Security Competition**
Cloud security startup Upwind has secured $250 million in Series B funding led by Bessemer Venture Partners, achieving a **unicorn valuation** and bringing total funding to $430 million[1][3]. The funding validates Upwind's runtime-first approach as enterprises increasingly adopt AI-powered cloud security, with the company reporting **900% year-over-year revenue growth and 200% logo growth**[3][4], positioning it as a formidable competitor in the crowded cloud-native security market where traditional static analysis tools are losing relevance. Upwin
🔄 Updated: 1/29/2026, 2:01:01 PM
**NEWS UPDATE: Upwind's $250M Series B Sparks Strong Customer and Industry Buzz**
Customers are hailing Upwind's runtime cloud security platform for delivering a **98% reduction in security alerts** and **60% fewer irrelevant CVEs**, enabling teams to focus on real risks with real-time context rather than static scans.[2] CEO Amiram Shachar called the $1.5B valuation milestone "the first unicorn in modern cloud security," reflecting widespread validation after **900% year-over-year revenue growth** and **200% logo growth**.[3][2] CISO Rinki Sethi and SVP Dan Yahav emphasized in announcements that the funding reaffirms "strong customer confidence" amid AI-driven threats, accelerating AI-en
🔄 Updated: 1/29/2026, 2:11:01 PM
**LIVE NEWS UPDATE: Upwind Funding - Regulatory Silence Persists**
No regulatory bodies or government agencies have issued statements or launched investigations in response to Upwind's $250M Series B at $1.5B valuation, announced Monday.[1][2] Cybersecurity regulators worldwide, including the U.S. CISA and Israel's INCD, show no public actions or quotes addressing the Israeli-founded firm's unicorn status or its 900% revenue surge amid rising cloud threats.[1][6] This lack of response highlights a hands-off approach to private cybersecurity investments despite clients like Siemens and NuBank adopting the platform.[1]
🔄 Updated: 1/29/2026, 2:21:01 PM
**NEWS UPDATE: Upwind's $250M Series B Sparks Enthusiasm in Tech Circles**
Consumer and public reactions to Upwind's $250 million Series B at a $1.5 billion valuation have been overwhelmingly positive, with cybersecurity experts and investors hailing it as a "strong endorsement" of runtime security amid rising AI threats.[1][6] On social platforms, users like TechCrunch commenters praised the 900% revenue growth and clients including Siemens and Roku, while Leaders Fund partner noted, "We're excited to see what the team accomplishes next," reflecting doubled-down investor confidence.[2][7] Customers report tangible wins, such as a 98% reduction in alerts, fueling buzz about Upwind's rea
🔄 Updated: 1/29/2026, 2:31:02 PM
**Breaking: Upwind's $250M Series B at $1.5B Valuation Signals Runtime-First Shift in Cloud Security.** Upwind's platform leverages **real-time runtime signals** for threat detection in cloud-native environments, reducing alert noise by up to **98%** for customers like Siemens and Roku while prioritizing exploitable risks over static analysis—critical as AI-driven attacks exploit cloud workloads at machine speed.[1][2][4][7] The funding accelerates **AI security capabilities**, extensions to data/code security, and developer tools to prevent misconfigurations pre-production, backed by **900% YoY revenue growth** and integrations with AWS, Azure, and NVIDIA amid exploding real-time app demands.[
🔄 Updated: 1/29/2026, 2:41:06 PM
**LIVE NEWS UPDATE: Upwind's $250M Series B Sparks Cloud Security Buzz**
Investors signaled strong market endorsement for Upwind's runtime cloud security platform, with Bessemer Venture Partners leading the $250 million round at a $1.5 billion unicorn valuation amid 900% year-over-year revenue growth and 200% logo expansion[1][2]. While no direct public stock movements were reported for private Upwind, the funding validates surging demand in AI-driven cloud threats, as Leaders Fund noted: "Upwind has the market leading runtime platform in the largest cybersecurity market," fueling expectations for broader sector gains[7]. Upwind CEO Amiram Shachar called it "a strong endorsement of our mission," positioning th
🔄 Updated: 1/29/2026, 2:51:09 PM
**LIVE NEWS UPDATE: Upwind's $250M Series B at $1.5B Valuation – No Regulatory Response Reported**
No government agencies or regulatory bodies have issued statements or actions in response to cybersecurity startup Upwind's $250 million Series B funding round, announced Monday and valuing the company at $1.5 billion.[1][2][6] The Israeli-founded firm, which reported 900% revenue growth and adoption by enterprises like Siemens and NuBank, faces no mentioned scrutiny despite prior acquisition talks with Datadog at $1 billion in 2025.[1] Investors including Bessemer Venture Partners and Craft Ventures show strong market validation amid silence from regulators on antitrust or security compliance concerns.[1][2]
🔄 Updated: 1/29/2026, 3:01:08 PM
**NEWS UPDATE: Upwind's $250M Series B Reshapes Runtime Cloud Security Landscape**
Upwind's $250 million Series B at a **$1.5 billion valuation**—led by Bessemer Venture Partners—positions it as a unicorn challenging legacy cloud security models, with **900% year-over-year revenue growth** and **200% customer logo expansion** signaling a shift toward runtime-first platforms over static analysis tools.[1][4][5] CEO Amiram Shachar stated, “Cloud infrastructure has changed faster than the security models designed to protect it,” as the funding fuels AI-enhanced detection, NVIDIA partnerships, and expansions into Asia-Pacific, intensifying competition in CNAPP and developer-focused security against incumbents.[
🔄 Updated: 1/29/2026, 3:11:19 PM
**LIVE NEWS UPDATE: Upwind's $250M Series B at $1.5B Valuation Sparks No Official Regulatory Response.** As of 3 PM UTC, no government agencies or regulatory bodies have issued statements or launched probes into cybersecurity startup Upwind's freshly closed $250 million Series B funding round, led by Bessemer Venture Partners and valuing the firm at $1.5 billion with total capital now at $430 million[1][2][3]. Despite the Israeli-founded company's rapid 900% revenue growth and adoption by enterprises like Siemens and NuBank—potentially drawing scrutiny over national security implications in cloud runtime protection—sources confirm zero mentions of SEC filings, antitrust reviews, or CFIUS interventions tie