Astelia, an AI-native cybersecurity platform founded by leaders of Israel’s National Red Team, has raised $35 million in combined seed and Series A funding to expand its AI-driven exposure management capabilities. The round was led by Index Ventures and Team8, with participation from Holly ventures. The company is already working with dozens of customers, including leading Fortune 500 companies.
The funding comes as security teams face a surge in vulnerabilities and faster exploitation cycles. Organizations now contend with an average of 135 new vulnerabilities per day, representing a 40% increase year over year. At the same time, AI-powered threats are accelerating attackers’ ability to exploit weaknesses, with a quarter of successful breaches occurring within 24 hours of vulnerability disclosure. According to the company, 78% of CISOs report that AI-driven attacks are already impacting their security posture, while teams struggle to manage growing alert backlogs and identify which vulnerabilities pose real risk.
Astelia aims to address this challenge by combining deep analysis of an enterprise’s actual environment with agentic AI. The platform maps network topology, segmentation, and existing security controls, while autonomous AI agents trained by nation-state–level vulnerability research experts analyze the technical prerequisites required to exploit vulnerabilities. By correlating exploitability with real-world reachability and attack paths, the company surfaces the small fraction of vulnerabilities that represent genuine exposure. In some deployments, out of nearly 3 million vulnerabilities, only around 30 were found to be truly exploitable. Astelia then provides environment-specific remediation plans designed to reduce exposure without requiring unnecessary production patches, helping security and IT teams save time and remediation costs.
CEO and co-founder Alon Noy previously led Israel’s National Red Team, which was responsible for stress-testing the country’s critical infrastructure defenses in collaboration with US Cyber Command. Co-founder and CTO Nadav Ostrovsky and co-founder and CPO Roy Rajwan also held key roles in the Israeli intelligence community and Israel’s National Red Team, where they focused on real-world attack paths, adversary behavior, and large-scale defensive systems.
The company said it will use the new capital to expand its AI-driven analysis capabilities, scale deployments, deepen technology partnerships, and grow its engineering, research, and global go-to-market teams. Astelia is focused on advancing attack-path modeling and supporting organizations shifting from volume-based vulnerability scanning toward evidence-driven exposure management based on provable reachability rather than abstract risk scores.
KEY QUOTES:
“When you’ve spent years on both the offensive and defensive sides, you learn pretty quickly that most of the vulnerabilities defenders worry about are irrelevant to how attacks actually work. We built Astelia because seeing that gap from both sides made it clear the industry was optimizing for the wrong problem. Security teams need to see their environment the way an attacker does, not the way a scanner does.”
Alon Noy, CEO And Co-Founder Of Astelia
“As AI reshapes both attacker capabilities and defensive expectations, the strategic imperative for enterprises is to move from assumed risk to provable exposure. Solutions that show where organizations are actually exposed enable CISOs to align cybersecurity with business priorities, reduce wasted effort, and turn vulnerability management from a reactive scramble into a preemptive defense.”
Juriaan Duizendstraal, Partner At Index Ventures
“What convinced us about Astelia was the team and the worldview they bring. Their background gives them a rare, end-to-end understanding of how security failures actually emerge inside real environments – not in theory. That perspective is embedded in the product itself. Astelia cuts through vulnerability noise by grounding decisions in real exposure, and we believe this team is redefining how enterprises operationalize security.”
Amir Zilberstein, Managing Partner At Team8
