XBOW has raised an additional $35 million in Series C financing, adding a group of strategic investors that includes Accenture Ventures, DNX Ventures, Liberty Global Tech Ventures, NVentures, Samsung Ventures, and SentinelOne S Ventures.
The new financing extends XBOW’s previously announced $120 million Series C round, bringing more attention to a fast-growing category in cybersecurity: autonomous offensive security.
The company says the investment reflects a broader shift in how major enterprises are approaching security. Organizations are no longer relying only on scheduled penetration tests or traditional vulnerability scanning. As AI-driven attacks become faster and more scalable, enterprises are looking for security systems that can test continuously and validate real-world exploitability at machine speed.
XBOW said it now serves more than 100 customers worldwide, including several strategic investors in the latest round, along with companies such as Moderna and Seznam.
Why XBOW Is Attracting Strategic Investors
XBOW’s platform uses AI to find and exploit vulnerabilities in applications in a way that is designed to mirror attacker behavior. Instead of running as a one-time penetration test, the system operates continuously, helping security teams identify weaknesses across applications, environments, and releases.
The company positions this as a response to a major change in the threat landscape. Historically, attackers were limited by human capacity. Even advanced adversaries could not test every system, every version, and every exposed surface at all times. AI changes that equation by allowing attackers to probe systems faster and more continuously.
That creates pressure on defenders to match the same speed.
XBOW founder and CEO Oege de Moor said the company is learning directly from teams operating at large scale and using that insight to build faster for defenders. He described the strongest alignment as one where customers are also investors and partners.
Offensive Security Is Becoming Continuous
Traditional penetration testing is valuable, but it is usually point-in-time. A test may identify issues during a specific window, but modern software changes constantly. New code, new dependencies, cloud configuration changes, and frequent releases can create new risks after a test is complete.
XBOW is built around a different model: continuous offensive testing.
The platform is designed to identify exploitable vulnerabilities and produce validated findings with a low false-positive rate. XBOW also says its technology can confirm the exploitability of findings produced by other tools, helping security teams reduce noise and focus on issues that represent real risk.
That is an important operational problem in cybersecurity. Many security teams already receive a high volume of alerts from scanners and monitoring tools. The challenge is not only finding possible vulnerabilities, but knowing which ones are genuinely exploitable and require urgent attention.
SentinelOne Sees Red-Team Scale as a Key Use Case
SentinelOne’s participation through S Ventures is notable because the company is both part of the cybersecurity ecosystem and a strategic investor in the round.
Alex Krongold, Director of Corporate Development and Ventures at SentinelOne, said the attacker’s point of view is foundational to defense but difficult to operationalize. He said XBOW changes this by surfacing exploitable and novel findings at machine speed.
He also compared each XBOW agent to an extension of an internal red team, allowing offensive testing to scale with more speed and depth than would traditionally be possible through human-led security work alone.
For enterprise security leaders, that is the central value proposition: expanding red-team-style testing without being limited by the availability of specialized human talent.
Expansion in Asia Pacific
The new funding will also support XBOW’s go-to-market expansion and international growth strategy.
The company highlighted the role of DNX Ventures across Asia Pacific and Samsung’s position as a preferred reseller in South Korea. This gives XBOW a stronger distribution path in a key regional market where demand for enterprise cybersecurity continues to rise.
A representative from Samsung Ventures America said organizations are looking for continuous and intelligent security testing, adding that Samsung has experienced the platform’s ability to surface real-world risks with speed and precision as a customer.
This customer-investor dynamic is important. It suggests that some strategic backers are not only providing capital but also validating XBOW’s platform through direct usage and market access.
XBOW Scales Beyond 250 Employees
XBOW said it recently surpassed 250 employees and continues to expand its go-to-market, engineering, and operations teams.
That growth reflects the company’s push to capture demand from enterprises that need security testing to keep pace with modern development cycles. As application environments become more complex and release cycles become faster, security teams are under pressure to move from reactive defense to proactive validation.
XBOW’s message is clear: in the AI era, security teams need to operate closer to attacker speed.
TechInsyte Take
XBOW’s latest $35 million raise shows how quickly offensive security is changing. Enterprises are no longer treating red-team testing as an occasional exercise. They increasingly need continuous validation that can keep up with AI-assisted attackers and fast-moving software environments.
The strategic nature of this round also matters. Investors such as Samsung, SentinelOne, Accenture Ventures, NVentures, DNX Ventures, and Liberty Global Tech Ventures bring more than capital. They bring enterprise networks, customer insight, regional reach, and cybersecurity ecosystem relevance.
For the broader security market, XBOW’s momentum signals a shift from finding vulnerabilities to proving exploitability. That distinction will become more important as security teams look to reduce alert fatigue, prioritize real risk, and defend systems at the speed of modern attackers.
Source link : Businesswire
