News

Top 10 Coolest Startups at Infosecurity Europe 2025

June 13, 2025

2025 marked Infosecurity Europe’s 30th anniversary, and it didn’t disappoint. It brought together cyber’s greatest minds, shed light on some of the industry’s most exciting topics – including post-quantum cryptography, AI threats, and geopolitics – and, as always, gave the industry an all too rare opportunity to connect in person. However, for us, the startups really stole the show this year. .

Wallarm

Wallarm is at the forefront of Agentic AI protection. As APIs and AI agents have become both the engine and attack vector of modern apps, Wallarm offers a unified platform that doesn’t just monitor APIs; it protects them. Their platform combines real-time API inventory, AI/ML-based abuse protection, and blocking to protect against the latest API security threats, including threats like prompt injection and jailbreaking targeting AI agents.

Cyware

Cyware powers cyber fusion, a model of unified threat intelligence and automated SecOps that enables organizations to go from data to defense, fast. Their platform connects threat intelligence with operational response, enabling SOCs to collaborate in real time and respond to incidents with an orchestrated response. Designed for scale, Cyware helps Fortune 500s operationalize threat data rather than let it collect dust in dashboards.

Pentest-Tools.com

This exciting startup delivers offensive security tools as a service, making high-grade pentesting capabilities accessible to security teams the world over. They automate everything from reconnaissance to exploit verification and integrate smoothly with CI/CD pipelines and APIs. What’s more, their scanners find exploitable issues, not just theoretical risks, running over 5 million scans annually. It’s democratized red teaming, delivered from the cloud.

Nagomi Security

Nagomi Security offers a next-gen continuous threat exposure management (CTEM) platform that gives security teams real-time visibility across assets, defenses, and emerging threats. Through agentless API integrations with 40+ tools, Nagomi unifies asset and threat telemetry into a single dashboard, automatically mapping gaps to frameworks like MITRE, NIST, and CIS.

Secure Flag

SecureFlag rethinks developer training with interactive, hands-on secure coding labs tailored for real-world applications. Instead of generic lessons, developers face environment-specific coding challenges, built directly into their workflow, that reflect actual risks in their stacks. SecureFlag’s approach improves secure coding at the source, preventing vulnerabilities before they’re written. Ultimately, it’s dev-first security that sticks.

Cyberexam

Cyberexam is a gamified, cloud-hosted cyber range and scenario-based training platform purpose-built for both professional upskilling and business use. Its immersive labs simulate real-world threats – such as WiFi pentests, malware analysis, forensic investigations, and more – ensuring learners don’t just understand theory, they learn practically with the same tools adversaries use.

Symbiotic Security

Symbiotic embeds AI directly into developers’ Integrated Developer Environments (IDEs) to detect vulnerabilities in real time and offer remediation, all while coders type. Their platform also delivers just-in-time training, reinforcing secure coding habits as and when developers need them.

Datambit

Datambit’s Genui platform focuses on real-time detection of deepfake media, covering video, audio, and image streams. As social media becomes increasingly swamped by AI-generated impersonations and social engineering, it labels content as “real” or “fake” and surfaces deepfake manipulations instantly.

RMI Cyber

RMI Cyber specializes in External Attack Surface Management (EASM), a critical capability for understanding and controlling the digital footprint organizations expose online. Their platform continuously maps and monitors domains, subdomains, cloud misconfigurations, and exposed services. With the attack surface exploding due to the proliferation of cloud, SaaS, and hybrid networks, RMI’s tools give security teams the visibility and alerts they need to stay ahead of attackers.

Mindflow

Mindflow is a Gen-AI-powered, no-code hyper-automation platform for cybersecurity and IT teams. It enables users to build AI agents and workflows – handling everyday SecOps tasks such as alert triage, incident reporting, remediation, and cloud optimizations – through natural language prompts and a library of over 45 ready-to-go templates.

What Unites These Startups?

So, what does all this tell us? It shows us that trends shaping the cybersecurity of tomorrow are:

  • Agentic AI in Action: Startups are focusing on AI agents with autonomous reasoning and response capabilities; essential as AI accelerates threats.
  • Cloud-Native and API-First Architectures: Modern tools must integrate seamlessly into modern, cloud-native, API-first infrastructures.
  • Proactive, Behavior, and Risk-Based Defense: These aren’t reactive tools. They flag anomalies early, train developers preemptively, and map exposure in real time before breaches occur.

So, that’s it for this year. We can’t wait to see what next year brings.

View News

Next Up