Eclypsium is a technology company.
Eclypsium has raised $129.0M across 6 funding rounds.
Eclypsium has raised $129.0M in total across 6 funding rounds.
Eclypsium has raised $129.0M in total across 6 funding rounds.
Eclypsium's investors include Alumni Ventures, Andreessen Horowitz, Greylock, Index Ventures, Madrona Ventures, Next47, Passion Capital, Spark Capital, Stellar Capital, Stellation Capital, Storm Ventures, Ten Eleven Ventures.
Eclypsium is a cybersecurity company specializing in firmware and hardware protection for enterprise IT infrastructure, offering a cloud-based platform that provides visibility, vulnerability management, and threat remediation for hardware, firmware, and software components.[1][2][6] It serves enterprises, Fortune 500 companies, government agencies, and sectors with critical digital supply chains, solving the problem of overlooked vulnerabilities in foundational IT layers that traditional tools miss, such as supply chain attacks, firmware implants, and compliance gaps like FISMA and NIST 800-53.[1][3][4][6] The platform delivers component-level inventory, continuous monitoring, zero-trust verification, automated patching, and integration with SIEM/SOAR tools, helping organizations build trust from core hardware to cloud while reducing risks and extending device lifecycles.[1][5][6][7]
Eclypsium was founded in 2017 (with some sources noting 2018) in Portland, Oregon, by Yuriy Bulygin and Alex Bazhaniuk, both former Intel security experts who led threat analysis and research there for nearly a decade.[1][2][3] The idea emerged from their work on CHIPSEC, an open-source platform Bulygin developed for hardware security assessment, highlighting the need to trust code and hardware in every device to avoid breaches and outages.[2] Early traction built on this thesis, focusing on firmware's overlooked role in security, leading to a platform that addresses supply chain risks enterprises couldn't previously monitor effectively.[1][2]
Eclypsium rides the surge in supply chain attacks (e.g., SolarWinds) and rising firmware exploits, where attackers bypass OS-level defenses by targeting hardware roots— a blind spot amid growing regulatory demands like NIST and FISMA.[1][3][4][6] Timing aligns with enterprises' shift to zero-trust architectures extending to devices and IoT, plus geopolitical tensions amplifying hardware provenance risks.[2][9] Market forces favoring it include exploding exploited vulnerabilities, complex IT ecosystems (endpoints, servers, networks), and partnerships like GuidePoint for federal compliance, positioning Eclypsium to influence resilient infrastructure standards.[3][4] It shapes the ecosystem by enabling proactive defense, better procurement, and ecosystem-wide trust in tech stacks.[2][5][8]
Eclypsium is poised for expansion as firmware threats proliferate and AI-driven analysis like Automata scales to counter unknown vulnerabilities in expanding IoT/edge environments.[6][7] Trends like stricter supply chain regulations, ransomware evolution, and hybrid cloud adoption will drive demand, potentially through more government contracts and integrations.[3][4] Its influence may grow via open-source roots and partnerships, evolving from niche firmware guardian to core supply chain security standard—reinforcing the mission to build trust in every device organizations depend on.[2][9]
Eclypsium has raised $129.0M across 6 funding rounds. Most recently, it raised $45.0M Series C in January 2025.