Gambit Security has emerged from stealth with $61 million in Seed and Series A funding to help enterprises strengthen resilience across their entire technology stack. The capital was raised in under 12 months from Spark Capital, Kleiner Perkins, and Cyberstarts.
Gambit positions itself as the first AI-native resilience platform designed to deliver verifiable, continuous resilience across enterprise environments. The platform connects to security systems, cloud infrastructure, backup tools, and Infrastructure as Code to autonomously map infrastructure and backup data. It identifies resilience gaps that could undermine recovery plans and disrupt business continuity.
In its analysis of enterprise environments, Gambit found that while most organizations maintain extensive backup and security coverage, only around 5% of systems were resilient against the impact of ransomware attacks. The company says its platform continuously measures resilience against evolving threats, enabling early remediation, rapid recovery, and sustained business continuity not only during cyberattacks but also amid system failures and technical disruptions.
Gambit also claims operational cost benefits. By eliminating inefficient backup management and redundant data storage, the platform typically reduces cloud storage costs by at least 10%, potentially saving enterprises millions of dollars at scale. The company says these savings are incremental to benefits such as reduced cyber-insurance premiums, lower audit and compliance overhead, and avoidance of brand, customer, and revenue losses tied to downtime.
The company is already working with leading enterprises across multiple industries. The new funding will be used to accelerate product development, expand sales and customer success teams, and deepen partnerships with global organizations focused on minimizing operational disruption.
Alongside the funding announcement, Gambit released research detailing the attack path behind a major breach involving Mexico’s government institutions that began in late December 2025. Within a month of the initial compromise of Mexico’s tax authority, ten government bodies and one financial institution were affected, approximately 195 million identities were exposed, and roughly 150GB of data was exfiltrated, including tax records, civil registry files, and voter data.
According to Gambit’s findings, the attack was orchestrated by a single individual who directed AI systems to function as a coordinated operational team. The operation reportedly involved more than 1,000 prompts to Anthropic’s Claude Code, with information regularly passed to OpenAI’s GPT-4.1 for analysis. Gambit says the AI systems wrote exploits, built tools, automated data exfiltration, and were guided through prompts that framed the actions as authorized in order to bypass model guardrails.
The company argues that incidents of this scale demonstrate a shift in the threat landscape, where traditional defensive measures alone are insufficient. Instead, organizations must prioritize their ability to withstand and recover from attacks quickly and effectively.
Gambit describes its platform as a unified governance and control plane that reconciles resilience intent with live operational reality. By mapping applications, identifying resilience gaps, and validating recovery paths in real time, the company aims to turn resilience assumptions into measurable business certainty before incidents occur.
KEY QUOTES
“The hard truth is that cyberattacks and infrastructure failures are now routine, creating major disruptions and financial losses. Pouring more money into security and backup tools has become an unwinnable race. Recovery has fallen decades behind, and what was recoverable yesterday can fail today, leaving organizations vulnerable to devastating downtime. Gambit Security changes that – removing the expiration date from resilience strategies and bringing real-time capabilities to help teams ensure their environments stay resilient through changes and threat actors’ evolution, not just on a periodic basis.”
Alon Gromakov, Co-founder and CEO of Gambit Security
“Resilience and restoration are core to a strong security posture and incident recovery. Gambit turns data resilience from a clunky and uncertain manual process centered on backups into an automated and AI-powered capability that gives CISOs and IT leaders confidence and a platform to understand and automate recovery.”
Ilya Fushman, Partner at Kleiner Perkins
“Because every business is digital, Gambit ensures enterprises stay resilient in the face of increasingly sophisticated attacks. Gambit is defining the standard for resilience and is the only solution in the market delivering verifiable resilience as an outcome, rather than backup as a tool. Spark is delighted to partner with this consequential company.”
Clay Fisher, Partner at Spark Capital
“From the moment we invested in Gambit at its inception, we recognized this team was not going to build another security feature; they were tackling and redefining an immense problem and market. Their deep understanding of the industry enabled them to drive a fundamental shift from static defense to continuous preparedness. They address what organizations truly need: resilience that endures through constant change and evolving threats, especially in today’s AI-driven landscape. This is the kind of transformation that reshapes how enterprises protect operational continuity and revenue.”
Lior Simon, General Partner at Cyberstarts
