crowdstrike

Auto Added by WPeMatico

Inside GitLab’s IPO filing

While the technology and business world worked towards the weekend, developer operations (DevOps) firm GitLab filed to go public. Before we get into our time off, we need to pause, digest the company’s S-1 filing, and come to some early conclusions.

GitLab competes with GitHub, which Microsoft purchased for $7.5 billion back in 2018.

The company is notable for its long-held, remote-first stance, and for being more public with its metrics than most unicorns — for some time, GitLab had a November 18, 2020 IPO target in its public plans, to pick an example. We also knew when it crossed the $100 million recurring revenue threshold.

Considering GitLab’s more recent results, a narrowing operating loss in the last two quarters is good news for the company.

The company’s IPO has therefore been long expected. In its last primary transaction, GitLab raised $286 million at a post-money valuation of $2.75 billion, per Pitchbook data. The same information source also notes that GitLab executed a secondary transaction earlier this year worth $195 million, which gave the company a $6 billion valuation.

Let’s parse GitLab’s growth rate, its final pre-IPO scale, its SaaS metrics, and then ask if we think it can surpass its most recent private-market price. Sound good? Let’s rock.

The GitLab S-1

GitLab intends to list on the Nasdaq under the symbol “GTLB.” Its IPO filing lists a placeholder $100 million raise estimate, though that figure will change when the company sets an initial price range for its shares. Its fiscal year ends January 31, meaning that its quarters are offset from traditional calendar periods by a single month.

Let’s start with the big numbers.

In its fiscal year ended January 2020, GitLab posted revenues of $81.2 million, gross profit of $71.9 million, an operating loss of $128.4 million, and a modestly greater net loss of $130.7 million.

And in the year ended January 31, 2021, GitLab’s revenue rose roughly 87% to $152.2 million from a year earlier. The company’s gross profit rose around 86% to $133.7 million, and operating loss widened nearly 67% to $213.9 million. Its net loss totaled $192.2 million.

This paints a picture of a SaaS company growing quickly at scale, with essentially flat gross margins (88%). Growth has not been inexpensive either — GitLab spent more on sales and marketing than it generated in gross profit in the past two fiscal years.

Powered by WPeMatico

Cribl raises $200M to help enterprises do more with their data

At a time when remote work, cybersecurity attacks and increased privacy and compliance requirements threaten a company’s data, more companies are collecting and storing their observability data, but are being locked in with vendors or have difficulty accessing the data.

Enter Cribl. The San Francisco-based company is developing an “open ecosystem of data” for enterprises that utilizes unified data pipelines, called “observability pipelines,” to parse and route any type of data that flows through a corporate IT system. Users can then choose their own analytics tools and storage destinations like Splunk, Datadog and Exabeam, but without becoming dependent on a vendor.

The company announced Wednesday a $200 million round of Series C funding to value Cribl at $1.5 billion, according to a source close to the company. Greylock and Redpoint Ventures co-led the round and were joined by new investor IVP, existing investors Sequoia and CRV and strategic investment from Citi Ventures and CrowdStrike. The new capital infusion gives Cribl a total of $254 million in funding since the company was started in 2017, Cribl co-founder and CEO Clint Sharp told TechCrunch.

Sharp did not discuss the valuation; however, he believes that the round is “validation that the observability pipeline category is legit.” Data is growing at a compound annual growth rate of 25%, and organizations are collecting five times more data today than they did 10 years ago, he explained.

“Ultimately, they want to ask and answer questions, especially for IT and security people,” Sharp added. “When Zoom sends data on who started a phone call, that might be data I need to know so I know who is on the call from a security perspective and who they are communicating with. Also, who is sending files to whom and what machines are communicating together in case there is a malicious actor. We can also find out who is having a bad experience with the system and what resources they can access to try and troubleshoot the problem.”

Cribl also enables users to choose how they want to store their data, which is different from competitors that often lock companies into using only their products. Instead, customers can buy the best products from different categories and they will all talk to each other through Cribl, Sharp said.

Though Cribl is developing a pipeline for data, Sharp sees it more as an “observability lake,” as more companies have differing data storage needs. He explains that the lake is where all of the data will go that doesn’t need to go into an existing storage solution. The pipelines will send the data to specific tools and then collect the data, and what doesn’t fit will go back into the lake so companies have it to go back to later. Companies can keep the data for longer and more cost effectively.

Cribl said it is seven times more efficient at processing event data and boasts a customer list that includes Whole Foods, Vodafone, FINRA, Fannie Mae and Cox Automotive.

Sharp went after additional funding after seeing huge traction in its existing customer base, saying that “when you see that kind of traction, you want to keep doubling down.” His aim is to have a presence in every North American city and in Europe, to continue launching new products and growing the engineering team.

Up next, the company is focusing on go-to-market and engineering growth. Its headcount is 150 currently, and Sharp expects to grow that to 250 by the end of the year.

Over the last fiscal year, Cribl grew its revenue 293%, and Sharp expects that same trajectory for this year. The company is now at a growth stage, and with the new investment, he believes Cribl is the “future leader in observability.”

“This is a great investment for us, and every dollar, we believe, is going to create an outsized return as we are the only commercial company in this space,” he added.

Scott Raney, managing director at Redpoint Ventures, said his firm is a big enterprise investor in software, particularly in companies that help organizations leverage data to protect themselves, a sweet spot that Cribl falls into.

He feels Sharp is leading a team, having come from Splunk, that has accomplished a lot, has a vision and a handle on the business and knows the market well. Where Splunk is capturing the machine data and using its systems to extract the data, Cribl is doing something similar in directing the data where it needs to go, while also enabling companies to utilize multiple vendors and build apps to sit on top of its infrastructure.

“Cribl is adding opportunity by enriching the data flowing through, and the benefits are going to be meaningful in cost reduction,” Raney said. “The attitude out there is to put data in cheaper places, and afford more flexibility to extract data. Step one is to make that transition, and step two is how to drive the data sitting there. Cribl is doing something that will go from being a big business to a legacy company 30 years from now.”

Powered by WPeMatico

Accel closes on $3B across three funds as it ramps up global investing

Accel announced Tuesday the close of three new funds totaling $3.05 billion, money that it will be using to back early-stage startups, as well as growth rounds for more mature companies. Notably, the 38-year-old Silicon Valley-based venture firm is doubling down on global investing.

The announcement underscores both the robust confidence investors continue to have for backing startups in the tech sector and the amount of money available to startups these days.

Specifically, today Accel is announcing its 15th early-stage U.S. fund at $650 million; its seventh early-stage European and Israeli fund also at $650 million and its sixth global growth stage fund at $1.75 billion. The latter fund is in addition, and designed to complement, a previously unannounced $2.3 billion global “Leaders” fund that is focused on later-stage investing that Accel closed in December.

Accel expects to invest in about 20 to 30 companies per fund on average, according to Partner Rich Wong. Its average investment in its growth fund will be in the $50 million to $75 million range, and $75 million and $100 million out of its global Leaders fund.

But the firm is also still eager and “excited” to incubate companies, Wong said.

“We’ll still write $500,000 to $1 million seed checks,” he told TechCrunch. “It’s important to us to work with companies from the very beginning and support them through their entire journey.”

Indeed, as TechCrunch recently reported, Accel has a history of backing companies that were previously bootstrapped (and often profitable) -– the latest example being Lower, a Columbus, Ohio-based fintech, which just raised a $100 million Series A.

Interestingly, Accel is often referred to some of these companies by existing portfolio companies (also in the case of Lower, whose CEO was referred to Accel by Galileo Clay Wilkes). More often than not, companies that Accel backs out of its early-stage and growth funds are bootstrapped and located outside of Silicon Valley.

The venture firm has long looked outside of Silicon Valley for opportunities, and has had offices not only in the Bay Area, but in London and Bangalore for years. Part of its investment thesis is to “invest early and locally,” according to Wong. Examples of this philosophy include investments in companies based all over the world — from Mexico to Stockholm to Tel Aviv to Munich.

Since the time of its last fund closure in 2019, the firm has seen 10 portfolio companies go public, including Slack, Austin-based Bumble, Bucharest-based UiPath, CrowdStrike, PagerDuty, Deliveroo and Squarespace, among others.

It also had 40 companies experience an M&A, including Utah-based Qualtrics’s $8 billion acquisition by SAP and Segment’s $3.2 billion acquisition by Twilio. Also, just last week, Rockwell Automation announced it was buying Michigan-based Plex Systems for $2.22 billion in cash. Accel first invested in Plex, which has developed a subscription-based smart manufacturing platform, in 2012.

Recent investments include a number of fintech companies such as LatAm’s Flink, Berlin-based Trade Republic, Unit and Robinhood rival Public. Accel has also backed as existing portfolio companies such as Webflow, a software company that helps businesses build no-code websites and events startup Hopin.

Wong says Accel is “open-minded but thematic” in its investment approach.

Accel Partner Sonali de Rycker, who is based out of London, agrees.

“For example, we’ll look at automation companies, consumer businesses and security companies, but at a global scale. Our goal is to find the best entrepreneurs regardless of where they are,” she said.

That has only been intensified by the recent rise of the smartphone and cloud, Wong said.

“Before, companies were mostly selling to the consumer in their own country,” he added. “But now the size of the market is so dramatically bigger, allowing them to become even larger, which is one of the reasons why I believe we’re seeing investment pace at this speed.”

To support this, it’s notable that Accel’s global Leaders fund is “dramatically” larger than the $500 million Leaders fund the firm closed in 2019.

Also, de Rycker points out, companies are staying private longer so the opportunity to invest in them until they sell or go public is greater.

Accel is also patient. In some cases, the firm’s investors will develop “years-long” relationships with companies they are courting.

“1Password is an example of this approach,” Wong said. “Arun [Mathew] had that relationship for at least six years before that investment was made. Finally, 1Password called and said ‘We’re ready, and we want you to do it.’ ”

And so Accel led the Canadian company’s first external round of funding in its 14-year history — a $200 million Series A — in 2019. 

While the firm is open-minded, there are still some industries it has not yet embraced as much as others. For example, Wong said, “We’re not announcing a $2.2 billion crypto fund, but we have done crypto investments, and see some very interesting trends there. We’ll look at where crypto takes us.”

 

Powered by WPeMatico

YL Ventures sells its stake in cybersecurity unicorn Axonius for $270M

YL Ventures, the Israel-focused cybersecurity seed fund, today announced that it has sold its stake in cybersecurity asset management startup Axonius, which only a week ago announced a $100 million Series D funding round that now values it at around $1.2 billion.

ICONIQ Growth, Alkeon Capital Management, DTCP and Harmony Partners acquired YL Venture’s stake for $270 million. This marks YL’s first return from its third $75 million fund, which it raised in 2017, and the largest return in the firm’s history.

With this sale, the company’s third fund still has six portfolio companies remaining. It closed its fourth fund with $120 million in committed capital in the middle of 2019.

Unlike YL, which focuses on early-stage companies — though it also tends to participate in some later-stage rounds — the investors that are buying its stake specialize in later-stage companies that are often on an IPO path. ICONIQ Growth has invested in the likes of Adyen, CrowdStrike, Datadog and Zoom, for example, and has also regularly partnered with YL Ventures on its later-stage investments.

“The transition from early-stage to late-stage investors just makes sense as we drive toward IPO, and it allows each investor to focus on what they do best,” said Dean Sysman, co-founder and CEO of Axonius. “We appreciate the guidance and support the YL Ventures team has provided during the early stages of our company and we congratulate them on this successful journey.”

To put this sale into perspective for the Silicon Valley and Tel Aviv-based YL Ventures, it’s worth noting that it currently manages about $300 million. Its current portfolio includes the likes of Orca Security, Hunters and Cycode. This sale is a huge win for the firm.

Its most headline-grabbing exit so far was Twistlock, which was acquired by Palo Alto Networks for $410 million in 2019, but it has also seen exits of its portfolio companies to Microsoft, Proofpoint, CA Technologies and Walmart, among others. The fund participated in Axonius’ $4 million seed round in 2017 up to its $58 million Series C round a year ago.

It seems like YL Ventures is taking a very pragmatic approach here. It doesn’t specialize in late-stage firms — and until recently, Israeli startups always tended to sell long before they got to a late-stage round anyway. And it can generate a nice — and guaranteed — return for its own investors, too.

“This exit netted $270 million in cash directly to our third fund, which had $75 million total in capital commitments, and this fund still has six outstanding portfolio companies remaining,” Yoav Leitersdorf, YL Ventures’ founder and managing partner, told me. “Returning multiple times that fund now with a single exit, with the rest of the portfolio companies still there for the upside is the most responsible — yet highly profitable path — we could have taken for our fund at this time. And all this while diverting our energies and means more towards our seed-stage companies (where our help is more impactful), and at the same time supporting Axonius by enabling it to bring aboard such excellent late-stage investors as ICONIQ and Alkeon — a true win-win-win situation for everyone involved!”

He also noted that this sale achieved a top-decile return for the firm’s limited partners and allows it to focus its resources and attention toward the younger companies in its portfolio.

Powered by WPeMatico

Logging startups are suddenly hot as CrowdStrike nabs Humio for $400M

A couple of weeks ago SentinelOne announced it was acquiring high-speed logging platform Scalyr for $155 million. Just this morning CrowdStrike struck next, announcing it was buying unlimited logging tool Humio for $400 million.

In Humio, CrowdStrike gets a company that will provide it with the ability to collect unlimited logging information. Most companies have to pick and choose what to log and how long to keep it, but with Humio, they don’t have to make these choices, with customers processing multiple terabytes of data every single day.

Humio CEO Geeta Schmidt writing in a company blog post announcing the deal described her company in similar terms to Scalyr, a data lake for log information:

“Humio had become the data lake for these enterprises enabling searches for longer periods of time and from more data sources allowing them to understand their entire environment, prepare for the unknown, proactively prevent issues, recover quickly from incidents, and get to the root cause,” she wrote.

That means with Humio in the fold, CrowdStrike can use this massive amount of data to help deal with threats and attacks in real time as they are happening, rather than reacting to them and trying to figure out what happened later, a point by the way that SentinelOne also made when it purchased Scalyr.

“The combination of real-time analytics and smart filtering built into CrowdStrike’s proprietary Threat Graph and Humio’s blazing-fast log management and index-free data ingestion dramatically accelerates our [eXtended Detection and Response (XDR)] capabilities beyond anything the market has seen to date,” CrowdStrike CEO and co-founder George Kurtz said in a statement.

While two acquisitions don’t necessarily make a trend, it’s clear that security platform players are suddenly seeing the value of being able to process the large amounts of information found in logs, and they are willing to put up some cash to get that capability. It will be interesting to see if any other security companies react with a similar move in the coming months.

Humio was founded in 2016 and raised just over $31 million, according to Pitchbook Data. Its most recent funding round came in March 2020, a $20 million Series B led by Dell Technologies Capital. It would appear to be a decent exit for the startup.

CrowdStrike was founded in 2011 and raised over $480 million before going public in 2019. The deal is expected to close in the first quarter, and is subject to typical regulatory oversight.

Powered by WPeMatico

Google’s BeyondCorp Enterprise security platform is now generally available

Google today announced that BeyondCorp Enterprise, the zero trust security platform modeled after how Google itself keeps its network safe without relying on a VPN, is now generally available. BeyondCorp Enterprise builds out Google’s existing BeyondCorp Remote Access offering with additional enterprise features. Google describes it as “a zero trust solution that enables secure access with integrated threat and data protection.”

Over the course of the last few years, Google — and especially its Cloud unit — has evangelized the zero trust model and built a large partner network around this idea. Those partners include the likes of Check Point, Citrix, CrowdStrike, Symantec and VMWare.

As part of BeyondCorp Enterprise, businesses get an end-to-end zero trust solution that includes everything from DDoS protection and phishing-resistant authentication, to the new security features in the Chrome browser and the core continuous authorization features that protect every interaction between users and resources protected by BeyondCorp.

“The rapid move to the cloud and remote work are creating dynamic work environments that promise to drive new levels of productivity and innovation. But they have also opened the door to a host of new security concerns and sparked a significant increase in cyberattacks,” said Fermin Serna, chief information security officer at Citrix. “To defend against them, enterprises must take an intelligent approach to workspace security that protects employees without getting in the way of their experience following the zero trust model.”

Powered by WPeMatico

CrowdStrike’s new CTO says the coronavirus era is ‘business as usual’

Two months ago, seemingly out of nowhere, CrowdStrike’s co-founder Dmitri Alperovitch decided it was time to depart.

Alperovitch, who served as the cybersecurity giant’s chief technology office since its 2011 debut, said he was leaving to launch a non-profit policy accelerator. CrowdStrike named Michael Sentonas, who managed the firm’s tech strategy for three years, as his replacement.

The news came at a critical time for the maker and seller of subscription-based endpoint security software that protects against breaches and cyberattacks. The company’s stock was in recovery after it fell below its IPO price, just months after popping 90% on its first day on the public market. It was one of the biggest offerings of the year, reaching more than $11 billion in value by the end, a far cry from a decade earlier when the security giant started out as a few notes scribbled on a napkin in a hotel lobby.

And then the pandemic happened.

By the time of his appointment, Sentonas was preparing to move to the U.S. from his native Australia, but “that hasn’t been the easiest thing to work through,” he told TechCrunch in a recent call. Despite having to balance the time difference and often swapping days with nights, the newly-appointed chief technology officer says it’s largely been “business as usual” for CrowdStrike.

Here’s why.

This interview was edited for clarity and length.

TechCrunch: Two months ago, you were appointed chief technology officer at CrowdStrike. Prior to that you were vice president of tech strategy. How have things been since the promotion?

Michael Sentonas: In some respects, things have been business as usual. A lot of the work I was doing around tech strategy and longer-term vision about [what] we should be working on hasn’t changed for me. Obviously, when one of the co-founders moves on, they have big shoes to fill. So, I’ve inherited a larger team. It’s working with the team around what can I assist them with to help us continue to focus. Probably the biggest change is just being stuck here because of what’s going on around the world and just adjusting to largely covering a U.S. timezone from Australia, which isn’t easy.

That can’t be easy?

We’re a globally-spread and globally-diverse organization. The last statistic that I looked at a few weeks ago was that 70% of our staff logins are remote. I’m dealing with Europe and the U.S., that’s just the way we’re spread. It’s all around the world.

Powered by WPeMatico

As Uber and Lyft continue to melt, the 2019 unicorn class loses its shine

You’d be excused for feeling that mid-2019 was in a different decade as far as venture-backed IPOs go.

Last year saw a number of successful flotations of venture-backed technology and technology-enabled companies, and most performed well after they began trading. But despite some early success, a number of the most famous 2019 IPOs have seen their valuations decline rapidly in ensuing quarters.

In some cases, once richly valued public unicorns are off more than twice the market’s recent declines, have given up all their gains earned as public companies, or fallen under their final private market valuations. It’s a stunning reversal for several of the most-lauded companies to come out of the venture capital machine in a decade.

Powered by WPeMatico

SentinelOne raises $200M at a $1.1B valuation to expand its AI-based endpoint security platform

As cybercrime continues to evolve and expand, a startup that is building a business focused on endpoint security has raised a big round of funding. SentinelOne — which provides a machine learning-based solution for monitoring and securing laptops, phones, containerised applications and the many other devices and services connected to a network — has picked up $200 million, a Series E round of funding that it says catapults its valuation to $1.1 billion.

The funding is notable not just for its size but for its velocity: it comes just eight months after SentinelOne announced a Series D of $120 million, which at the time valued the company around $500 million. In other words, the company has more than doubled its valuation in less than a year — a sign of the cybersecurity times.

This latest round is being led by Insight Partners, with Tiger Global Management, Qualcomm Ventures LLC, Vista Public Strategies of Vista Equity Partners, Third Point Ventures and other undisclosed previous investors all participating.

Tomer Weingarten, CEO and co-founder of the company, said in an interview that while this round gives SentinelOne the flexibility to remain in “startup” mode (privately funded) for some time — especially since it came so quickly on the heels of the previous large round — an IPO “would be the next logical step” for the company. “But we’re not in any rush,” he added. “We have one to two years of growth left as a private company.”

While cybercrime is proving to be a very expensive business (or very lucrative, I guess, depending on which side of the equation you sit on), it has also meant that the market for cybersecurity has significantly expanded.

Endpoint security, the area where SentinelOne concentrates its efforts, last year was estimated to be around an $8 billion market, and analysts project that it could be worth as much as $18.4 billion by 2024.

Driving it is the single biggest trend that has changed the world of work in the last decade. Everyone — whether a road warrior or a desk-based administrator or strategist, a contractor or full-time employee, a front-line sales assistant or back-end engineer or executive — is now connected to the company network, often with more than one device. And that’s before you consider the various other “endpoints” that might be connected to a network, including machines, containers and more. The result is a spaghetti of a problem. One survey from LogMeIn, disconcertingly, even found that some 30% of IT managers couldn’t identify just how many endpoints they managed.

“The proliferation of devices and the expanding network are the biggest issues today,” said Weingarten. “The landscape is expanding and it is getting very hard to monitor not just what your network looks like but what your attackers are looking for.”

This is where an AI-based solution like SentinelOne’s comes into play. The company has roots in the Israeli cyberintelligence community but is based out of Mountain View, and its platform is built around the idea of working automatically not just to detect endpoints and their vulnerabilities, but to apply behavioral models, and various modes of protection, detection and response in one go — in a product that it calls its Singularity Platform that works across the entire edge of the network.

“We are seeing more automated and real-time attacks that themselves are using more machine learning,” Weingarten said. “That translates to the fact that you need defence that moves in real time as with as much automation as possible.”

SentinelOne is by no means the only company working in the space of endpoint protection. Others in the space include Microsoft, CrowdStrike, Kaspersky, McAfee, Symantec and many others.

But nonetheless, its product has seen strong uptake to date. It currently has some 3,500 customers, including three of the biggest companies in the world, and “hundreds” from the global 2,000 enterprises, with what it says has been 113% year-on-year new bookings growth, revenue growth of 104% year-on-year and 150% growth year-on-year in transactions over $2 million. It has 500 employees today and plans to hire up to 700 by the end of this year.

One of the key differentiators is the focus on using AI, and using it at scale to help mitigate an increasingly complex threat landscape, to take endpoint security to the next level.

“Competition in the endpoint market has cleared with a select few exhibiting the necessary vision and technology to flourish in an increasingly volatile threat landscape,” said Teddie Wardi, managing director of Insight Partners, in a statement. “As evidenced by our ongoing financial commitment to SentinelOne along with the resources of Insight Onsite, our business strategy and ScaleUp division, we are confident that SentinelOne has an enormous opportunity to be a market leader in the cybersecurity space.”

Weingarten said that SentinelOne “gets approached every year” to be acquired, although he didn’t name any names. Nevertheless, that also points to the bigger consolidation trend that will be interesting to watch as the company grows. SentinelOne has never made an acquisition to date, but it’s hard to ignore that, as the company to expand its products and features, that it might tap into the wider market to bring in other kinds of technology into its stack.

“There are definitely a lot of security companies out there,” Weingarten noted. “Those that serve a very specific market are the targets for consolidation.”

Powered by WPeMatico

Meet 5 cybersecurity unicorns that could IPO in 2020

There was a lot of moving and shaking in the cybersecurity unicorn world in 2019.

It was a year that saw two of the biggest exits in cybersecurity history: CrowdStrike went public valued at $3.35 billion and Cloudflare rocketed 20% in its first day on the stock market.

Clearly, the cybersecurity market is booming. Recent data suggests that cybersecurity investing could reach $250 billion by 2023, and spending rose in 2019 more than any other industry. If that pace keeps up, there’s little to suggest that the cybersecurity “bubble” will burst any time soon.

A number of cybersecurity companies are firmly in the club of private companies worth $1 billion or more. These unicorns represent some of the best talent, technologies and offerings in cybersecurity, but the club is getting crowded. Now that CrowdStrike and Cloudflare have graduated to the public market, there are a number of cybersecurity companies that could make the leap.

Tanium

Powered by WPeMatico