Bright Pixel (formerly Sonae IM)

Picnic is a cybersecurity firm that proactively protects people and companies against the biggest threat vector in cyber today: attacks by social engineers. Social engineers are hackers who use public information about you, your family, and your company to craft attacks that include phishing scams, ransomware, impersonation, identity theft, malware, elder fraud, and many others. Picnic proactively finds and removes the information about businesses and people that can be harvested by social engineers. Our technology works automatically, seamlessly, and continuously to protect you, your organization, and also your family. We make you less visible and reduce your attack surface. This is next-generation security—security at the human level. Get in touch to learn more about how we preemptively safeguard enterprises and individual employees from social engineering attacks.

Sekoia.io develops a unified security platform aimed at enhancing the capabilities of security operations (SecOps) teams in combating cyber threats. The platform enables organizations to automatically identify and respond to significant incidents across their entire attack surface, leveraging integrated intelligence and real-time detection. By continuously analyzing emerging threats, Sekoia.io equips clients with the necessary strategies to stay updated and effectively address new challenges. Its approach allows security teams to manage the complexities of cybersecurity with improved speed and reliability, ultimately strengthening their overall security posture.

Trustero provides solutions and services that enable demonstrable, sustainable trustworthiness for emerging enterprises. The Trustero Compliance as a Service (CaaS) offers, establishes, and manages regulatory compliance by undertaking vulnerability assessments, security risk analyses, and other measures to ensure all business processes and systems remain in full compliance. Artificial intelligence (AI) and other modern technologies means their clients have the visibility needed to gain actionable insights into their compliance across the extended enterprise.

Vicarius Ltd. develops a cybersecurity platform that offers comprehensive solutions for protecting applications and software against cyber threats. Founded in 2016 by information security experts, the company operates from headquarters in New York and Tel Aviv. Its flagship product, vRx, is an end-to-end vulnerability remediation platform that consolidates the processes of discovering, prioritizing, and mitigating vulnerabilities. This platform utilizes proprietary binary code analysis to identify vulnerabilities in the digital environment, enabling clients to predict and safeguard their software and data from potential exploitation. Additionally, Vicarius offers Topia, which monitors incoming and outgoing traffic to prevent unauthorized access and protect cloud applications. By providing effective remediation solutions, Vicarius aims to reduce risk and alleviate the burden on security teams, allowing them to focus on other critical tasks while maintaining robust security measures.

Sekoia.io develops a unified security platform aimed at enhancing the capabilities of security operations (SecOps) teams in combating cyber threats. The platform enables organizations to automatically identify and respond to significant incidents across their entire attack surface, leveraging integrated intelligence and real-time detection. By continuously analyzing emerging threats, Sekoia.io equips clients with the necessary strategies to stay updated and effectively address new challenges. Its approach allows security teams to manage the complexities of cybersecurity with improved speed and reliability, ultimately strengthening their overall security posture.

Picnic is a cybersecurity firm that proactively protects people and companies against the biggest threat vector in cyber today: attacks by social engineers. Social engineers are hackers who use public information about you, your family, and your company to craft attacks that include phishing scams, ransomware, impersonation, identity theft, malware, elder fraud, and many others. Picnic proactively finds and removes the information about businesses and people that can be harvested by social engineers. Our technology works automatically, seamlessly, and continuously to protect you, your organization, and also your family. We make you less visible and reduce your attack surface. This is next-generation security—security at the human level. Get in touch to learn more about how we preemptively safeguard enterprises and individual employees from social engineering attacks.

IriusRisk is a provider of an automated threat modeling platform that enhances application security by integrating security measures into the software design and development process. Established in July 2015 in Huesca, Spain, by Stephen de Vries and Cristina Bentue, the company serves enterprise clients, including major banks and technology firms. Its platform conducts risk analysis and generates threat models for software applications during the design phase, offering recommendations to address identified risks and providing specific source code examples for secure implementation. By facilitating collaboration between security and development teams, IriusRisk helps organizations improve their speed-to-market while minimizing the risk of costly security flaws.

Hackuity is a cybersecurity company that provides a comprehensive solution for managing IT vulnerabilities. Founded in 2018 and based in Lyon, France, Hackuity's platform automates and orchestrates the vulnerability management process by aggregating and normalizing security assessment data from various sources. This enables security practitioners to develop risk-driven remediation plans tailored to their specific technical contexts and security requirements. The platform offers flexibility in deployment, available in full SaaS, on-premise, or hybrid modes. Hackuity's services include risk-based vulnerability management, continuous monitoring, and augmented penetration testing, catering to the diverse needs of organizations and managed security service providers. By streamlining vulnerability management through automation and prioritization, Hackuity helps clients mitigate cyber risks more effectively.

Cybersixgill specializes in providing autonomous threat intelligence solutions that enhance cyber defense for organizations by detecting and mitigating risks such as phishing, data leaks, fraud, malware, and vulnerability exploitation. Its Investigative Portal offers covert access to threat intelligence gathered from the deep and dark web, delivering context and actionable insights for effective remediation. The company's Darkfeed™ integrates seamlessly with existing security systems, proactively blocking malicious indicators of compromise (IOCs) to strengthen endpoint protection. Additionally, insights from the DVE Score™ assist in vulnerability management by predicting the immediate risk of exploitation based on the intent of threat actors. Cybersixgill serves a diverse clientele, including global enterprises, financial services, managed security service providers, and government agencies, all aiming to bolster their cyber resilience and minimize risk exposure in real-time.

Jscrambler specializes in providing enterprise-grade security solutions for web and hybrid mobile applications, focusing on the protection of client-side JavaScript and HTML5 code. Its advanced technology includes features such as polymorphic obfuscation, code locks, and self-defensive capabilities, which render source code difficult to reverse-engineer and safeguard against debugging and tampering. By leveraging Jscrambler's solutions, businesses can effectively combat intellectual property theft, application abuse, and data leakage. Additionally, Jscrambler offers a Webpage Integrity module that delivers real-time insights into client-side attacks, enabling swift responses to threats such as web skimmers and data exfiltration. The platform integrates seamlessly with various technology frameworks and is compliant with major tech stacks. Trusted by numerous global enterprises, Jscrambler has garnered recognition from industry leaders, including Gartner and Deloitte, for its innovative approach to application security.

Deepfence was founded in 2017 with a mission to bring fundamental advances to the field of cloud native application security. At Deepfence, we are not trying to shoehorn conventional security for modern paradigms, they are building it ground up. Our ‘Security as Microservice’ solution radically changes the way containers and cloud workloads are protected, and is native to the modern application and infrastructure paradigms.

IriusRisk is a provider of an automated threat modeling platform that enhances application security by integrating security measures into the software design and development process. Established in July 2015 in Huesca, Spain, by Stephen de Vries and Cristina Bentue, the company serves enterprise clients, including major banks and technology firms. Its platform conducts risk analysis and generates threat models for software applications during the design phase, offering recommendations to address identified risks and providing specific source code examples for secure implementation. By facilitating collaboration between security and development teams, IriusRisk helps organizations improve their speed-to-market while minimizing the risk of costly security flaws.

Arctic Wolf Networks, Inc. is a cybersecurity company that provides security operations center-as-a-service to businesses, enabling them to manage and mitigate cyber risks effectively. The company offers a range of services, including cloud infrastructure monitoring, software-as-a-service application monitoring, vulnerability assessments, and account takeover risk detection. It also develops the Arctic Wolf Agent, a software tool that collects actionable intelligence from IT environments. Serving industries such as financial services, healthcare, and legal, Arctic Wolf employs a concierge security model, where its engineers work closely with clients to deliver tailored threat detection, response, and ongoing risk management. Founded in 2012 and headquartered in Eden Prairie, Minnesota, the company also has offices in Provo, Utah, and Waterloo, Canada.

Cybersixgill specializes in providing autonomous threat intelligence solutions that enhance cyber defense for organizations by detecting and mitigating risks such as phishing, data leaks, fraud, malware, and vulnerability exploitation. Its Investigative Portal offers covert access to threat intelligence gathered from the deep and dark web, delivering context and actionable insights for effective remediation. The company's Darkfeed™ integrates seamlessly with existing security systems, proactively blocking malicious indicators of compromise (IOCs) to strengthen endpoint protection. Additionally, insights from the DVE Score™ assist in vulnerability management by predicting the immediate risk of exploitation based on the intent of threat actors. Cybersixgill serves a diverse clientele, including global enterprises, financial services, managed security service providers, and government agencies, all aiming to bolster their cyber resilience and minimize risk exposure in real-time.

Fyde helps companies with an increasingly distributed workforce to mitigate breach risk by enabling secure access to critical enterprise resources for their employees, partners, contractors, and outsourcers. Fyde’s flagship enterprise product provides granular access controls for your enterprise apps and workloads, continuously monitors access requests, improves the security posture of endpoints and protects user identities against phishing and account takeover attacks.

Probely is a provider of an automated web vulnerability scanner aimed at helping businesses mitigate the risk of cyber attacks. Its platform specializes in identifying vulnerabilities in web applications and APIs, offering actionable guidance for remediation. With features such as machine learning, heuristic-based elimination of false positives, and fingerprinting for web application recognition, Probely enhances the security testing process. The solution integrates seamlessly into development workflows and continuous integration pipelines, allowing security and development teams to automate and scale their security efforts effectively. By streamlining vulnerability management, Probely enables organizations to improve their application security posture.

Arctic Wolf Networks, Inc. is a cybersecurity company that provides security operations center-as-a-service to businesses, enabling them to manage and mitigate cyber risks effectively. The company offers a range of services, including cloud infrastructure monitoring, software-as-a-service application monitoring, vulnerability assessments, and account takeover risk detection. It also develops the Arctic Wolf Agent, a software tool that collects actionable intelligence from IT environments. Serving industries such as financial services, healthcare, and legal, Arctic Wolf employs a concierge security model, where its engineers work closely with clients to deliver tailored threat detection, response, and ongoing risk management. Founded in 2012 and headquartered in Eden Prairie, Minnesota, the company also has offices in Provo, Utah, and Waterloo, Canada.

Beamy provides a platform that helps large corporations manage their increasing number of Software as a Service (SaaS) applications, including those often utilized without IT knowledge, known as Shadow IT. By automatically detecting these applications, Beamy enables organizations to oversee their SaaS stack effectively, addressing concerns related to GDPR compliance, security breaches, and rising costs. The platform facilitates better communication between IT teams and business units, allowing the latter to request necessary tools efficiently while ensuring adherence to security standards and compliance policies. Additionally, Beamy offers a comprehensive view of all active cloud-based applications, visualizes implementation progress, and monitors the impact of each software against key performance indicators, thereby streamlining the management and integration of technology applications across departments.

Reblaze Technologies Ltd. specializes in providing advanced web security solutions, operating from St. Louis, Missouri, with additional offices in Sunnyvale, California, and Manchester, United Kingdom. The company offers a comprehensive, cloud-based platform that includes a web application firewall, DDoS protection, bot mitigation, and content delivery network services. Reblaze's technology blocks hostile traffic before it reaches an organization's network, ensuring robust protection for websites, web applications, and APIs. The platform features machine learning for adaptive threat detection, dedicated Virtual Private Clouds for enhanced privacy, and fine-grained access control lists for precise traffic regulation. Additionally, it includes an intuitive web-based management console for real-time monitoring and control. Reblaze's solutions aim to safeguard customers' data and web assets against various internet threats, providing a trial period to assess its services without obligation.

Nextel S.A. is an information technology engineering and consulting firm based in Zamudio, Spain, that specializes in managing telecommunications and IT services. The company provides a wide range of information security services, including critical infrastructure protection, business continuity solutions, IT governance, and compliance consulting. Its offerings also encompass system integration, outsourcing, ethical hacking, cyber security, and forensic auditing. Notably, Nextel S.A. has developed NextRisk, a technology aimed at preventing and managing labor, physical, and cyber risks, as well as CloudNSF, a service that allows public administrations to outsource their security management systems. The firm serves various clients, including public administrations, private enterprises, financial institutions, and global operators. Established in 1988, Nextel S.A. is committed to addressing the challenges faced by the telecommunications and IT sector.

Arctic Wolf Networks, Inc. is a cybersecurity company that provides security operations center-as-a-service to businesses, enabling them to manage and mitigate cyber risks effectively. The company offers a range of services, including cloud infrastructure monitoring, software-as-a-service application monitoring, vulnerability assessments, and account takeover risk detection. It also develops the Arctic Wolf Agent, a software tool that collects actionable intelligence from IT environments. Serving industries such as financial services, healthcare, and legal, Arctic Wolf employs a concierge security model, where its engineers work closely with clients to deliver tailored threat detection, response, and ongoing risk management. Founded in 2012 and headquartered in Eden Prairie, Minnesota, the company also has offices in Provo, Utah, and Waterloo, Canada.

IriusRisk is a provider of an automated threat modeling platform that enhances application security by integrating security measures into the software design and development process. Established in July 2015 in Huesca, Spain, by Stephen de Vries and Cristina Bentue, the company serves enterprise clients, including major banks and technology firms. Its platform conducts risk analysis and generates threat models for software applications during the design phase, offering recommendations to address identified risks and providing specific source code examples for secure implementation. By facilitating collaboration between security and development teams, IriusRisk helps organizations improve their speed-to-market while minimizing the risk of costly security flaws.

Secucloud is a global provider of cloud-based cyber-security solutions, specializing in Security-as-a-Service for telecommunications providers and internet service providers (ISPs). Its Elastic Cloud Security System (ECS2) supports a diverse range of markets, including mobile and landline consumers, small businesses, and SMEs, by delivering enterprise-level security without the need for specialized hardware. This scalable platform can accommodate over 100 million users and their connected devices, offering comprehensive protection against threats such as trojans, spyware, and viruses. Secucloud's services enable both businesses and individual clients to secure their IP-based devices effectively, ensuring a robust defense against various cyber threats.

Probely is a provider of an automated web vulnerability scanner aimed at helping businesses mitigate the risk of cyber attacks. Its platform specializes in identifying vulnerabilities in web applications and APIs, offering actionable guidance for remediation. With features such as machine learning, heuristic-based elimination of false positives, and fingerprinting for web application recognition, Probely enhances the security testing process. The solution integrates seamlessly into development workflows and continuous integration pipelines, allowing security and development teams to automate and scale their security efforts effectively. By streamlining vulnerability management, Probely enables organizations to improve their application security posture.

Sysvalue is specialized in consulting, integration and security services. Focused on interactive business and Internet services, SysValue helps companies get more value from their systems and communications assets, while making them more secure.

S21sec is a cybersecurity company that specializes in providing a comprehensive range of security services aimed at protecting critical infrastructures and personal data. The firm focuses on sectors such as government, energy, finance, and telecommunications, offering solutions that include risk analysis, regulatory compliance, cloud security, threat hunting, and disaster response plans. S21sec operates a 24-hour security intelligence center and has dedicated teams for cybercrime and incident response, collaborating with governmental institutions like Europol and the FBI. The company serves a diverse client base, with more than 20% of the Dow Jones Eurostoxx 50 companies relying on its expertise to address cyber threats and enhance their security posture.