Astrix Security manages non-human entities across networks and clouds

Astrix Security is one of Network World’s 7 network security startups to watch for 2024. Its platform tracks non-human identities across distributed environments and detects any that are over-privileged, redundant or risky.

Astrix at a glance

• Founded: 2021
• What they do: Secure non-human entities (such as API keys, OAuth apps) across networks and clouds
• Funding: $40 million
• Headquarters: Tel Aviv, Israel
• CEO: Alon Jackson
• Competitors include: Aembit, Oasis Security, Natoma, and Token Security
• Customers include: Agoda, Netapp, Workato, Priceline, and Figma

Why Astrix is a startup to watch

Astrix Security contends that non-human identities (NHI), such as API keys, secrets, and service accounts, typically outnumber human identities by a factor of 20 to 1 or more. NHIs receive privileged access to corporate IP and customer data, but as much as 90% of credentials are not protected by existing IAM solutions, despite the fact that 49% of breaches involve stolen credentials.

Astrix argues that attackers have started to consider NHIs as prime targets. Okta, Cloudflare, Microsoft, and Dropbox Sign are just a few of the recent high-profile victims of attacks that involved compromised NHIs.