Application programming interface security startup Vorlon Inc. today announced that it has raised $15.7 million in new funding to further its efforts to help chief information security officers and their teams secure third-party APIs.

Founded in 2022, Vorlon offers a comprehensive third-party API security platform that helps organizations proactively secure the third-party APIs used by their businesses. The platform is designed to manage the third-party API attack surface with artificial intelligence-driven detection, threat intelligence and remediation capabilities.

Vorlon argues that as large organizations are increasingly relying on third-party applications and services to drive efficiency within their businesses, app-to-app communication now represents over 80% of internet traffic. As a result, the third-party APIs an organization uses pose a great security risk — usually by granting overly permissive access to sensitive data.

Vorlon’s solution focuses on enabling organizations to manage third-party APIs proactively, monitor data in motion, identify legitimate versus illegitimate traffic and quickly remediate issues as they occur. The platform provides continuous near real-time detection and identification of third-party apps using data within an enterprise to allow organizations to understand the risks in the third-party apps they use with clear insights and recommendations.

Key features include helping security teams gain visibility into third-party apps to detect, investigate and respond to abnormal app activity, data breaches and security incidents in near real time. Vorlon’s platform also supports compliance teams by ascertaining whether the third-party apps used by an enterprise comply with regulations and providing proof of compliance to stakeholders.

Accel Partners Inc. led the Series A round, with Shied Capital LLC and various individual investors also participating. Notable among the individual investors were Demisto Inc. co-founders Slavik Markovich, Rishi Bhargava, Dan Sarel and Guy Rinat; D.J. Patil, the former U.S. chief data scientist, Nir Polak, an investor and former chief executive officer of Exabeam Inc.; and Paul Cheesborough, chief technology officer of Fox Corp.

“In many cases, organizations won’t find out about a vendor’s data breach until months after the fact,” Accel partner Steve Loughlin said in a statement. “Vorlon’s ability to reduce the timeline between threat detection and remediation to minutes is what makes this technology so powerful.”

Image: Vorlon