Nebulock, Inc.

We’re excited to share that Nebulock, Inc. has been nominated for Emerging Company of the Year in Cyber Security at the #NEVYs25! New England Venture Capital Association For this year's #NEVYsthe13th event, we'll be joining a group of 80+ scary-good nominees who brought terrifying feats of innovation to 2025. We're proud to be part of this esteemed group in Tech, Healthcare, and Tough Tech! Check out the full nominee list here: https://bit.ly/nevy25 #NEVCA #Innovation

If attackers now get agency, defenders need it too. Anthropic’s latest report on disrupting the first-ever AI-orchestrated cyber espionage campaign is immutable proof of the speed and scale of adversaries today. My initial takes: 1. Insider threats aren’t just humans anymore, they’re the agents we use. If a model can follow complex instructions, write tooling, chain actions, and make decisions autonomously…it’s effectively an internal operator. Most organizations aren’t prepared for that shift. 2. The barrier to launching sophisticated attacks is now lower than the barrier to detecting them. Agentic models can do the work of entire hacker teams: analyze infrastructure, generate exploits, iterate, and operate at scale. Meanwhile, most defenders still wait for alerts that show up too late. 3. Defense can’t be reactive when the adversary moves first…and moves continuously. Attackers now get 24/7 initiative…they don’t pause, don’t fatigue and iterate. This is exactly why we built Nebulock, Inc. We can’t defend against autonomous offense with reactive detections. Modern cyber defense requires continuous, proactive visibility to surface & respond to these new threat vectors. That’s what vibe hunting is: always-on, hypothesis-driven agents that hunt behaviors, surface weak signals, and turn them into actionable detections before they become an incident. Join the hunt.

A new era of threat hunting starts today. 🏹 Introducing Vibe Hunting: where human intuition meets machine reasoning. Whether you're a seasoned threat hunter or aspire to have a dedicated threat hunter on your team, Vibe Hunting allows you to ask natural language questions and get clear, context-driven outcomes that guide your next move. No query languages. No tool juggling. Just insight. Vibe Hunting is available to customers, but you can take it for a spin in our playground: https://lnkd.in/gP9sZuMW Learn more on our blog: https://lnkd.in/gUKD_yjV

🍎 macOS has long been underrepresented in threat detection with organizations relying on limited telemetry or propriety enterprise tools. Even with the community-driven advances via Sigma, the currently supported macOS types for Sigma rule coverage is still relatively low compared to Windows and Linux. This current Sigma gap leaves defenders blind to almost 85% of the MITRE ATT&CK techniques applicable to macOS. We've developed coreSigma, a macOS endpoint telemetry collection, detection, and analysis app built with the primary goal of extending Sigma's capabilities for macOS ESF and UL logs. Read the full post from Lead Detection Engineer Eric Brown to learn how coreSigma expands visibility and ways take a more proactive approach to macOS threat detection and response: https://lnkd.in/gRAm4fpN

Something we forget as we implement AI is recognizing the value of the human and our ability to reason. If there’s an attacker that can automate sophisticated kill chains at speed, what are the tell-tale signs of automation? Speed, time of day, verbiage, etc. To counter elements like compressed timelines, you need to: - use data you already have to create real-time detections - go one step further with continuous hunting, where every hunt is event-driven and every action is transparent Listen to Founder & CEO Damien Lewke on this week's episode of Risky Business Media on countering adversary use of AI with AI to truly know what's happening in real-time: https://lnkd.in/gbrHD7sQ

Day 6 of #Ones2Watch is Nebulock, Inc. 🔍🧠 Nebulock, Inc. is a cybersecurity startup that makes what’s invisible, visible and automates real-time threat hunting so SOCs stop sorting noise from nuance and starts anticipating the next move. From the very first line of code, they knew detection can’t wait until alerts pile up and adversaries move sideways, abuse credentials, and probe quietly. Their mission is to surface those patterns automatically, with minimal noise, maximum context, and disciplined efficiency. 💡 Why They Rock: Founded by Damien Lewkeand and a team of seasoned detection engineers, Nebulock emerged from stealth with $8.5 million in funding led by Bain Capital Ventures (BCV). Their approach is to rethink the detection stack, plug into your existing EDR, IAM, and log pipelines, then enable their autonomous AI agents to baseline, hunt, and stress-test your environment continuously. What makes it stand out is how seamlessly it fuses data science with human tradecraft. 🧩🤔 What Sets Them Apart: Their real strength lies in its design discipline. Its AI agents operate in parallel threads and catch lateral movement, insider missteps, and credential abuse in near real time. Each detection is context-aware, validated, and built to highlight signal, not spectacle. Investigations are no longer reactive hunts through endless noise, thankfully, and are precise, explainable, and fast enough to keep pace with the threat. Nebulock reminds us that in detection engineering, progress isn’t about making more noise but rather understanding the signals. We're evolving, and Nebulock is clearly leading in this space. That’s why they’re today’s #Ones2Watch. 💙 #Ones2Watch #Cybersecurity #ThreatHunting #AIsecurity #DetectionEngineering #InsiderThreat #AutonomousSecurity #Infosec #SentinelBlue

Come meet the Nebulock team next week out at GrrCON!

Great week in Tennessee with the team!

If you're in Boston October 1, come join us and our friends over at Natoma for a great evening of demos, discussions and dinner!