42crunch Raises $17M Series A to Revolutionize API Security

The Often-Overlooked World of API Security

In today’s business landscape, with a growing number of employees working remotely, security is a paramount concern for many organizations. However, one critical area frequently receives insufficient attention: the security of APIs, which underpin the functionality of the platforms we utilize daily.

42Crunch Secures $17 Million in Series A Funding

A key innovator in API cybersecurity is expanding its capabilities. 42Crunch, a startup specializing in API security, has successfully raised $17 million in a Series A funding round. The investment was spearheaded by Energy Impact Partners, with additional participation from Adara Ventures.

A Micro Firewall for API Protection

42Crunch offers a unique “micro firewall” solution designed specifically for APIs. This technology aims to defend against the attack vectors detailed in the OWASP Top 10 for API Security. The platform is currently employed by prominent companies including MuleSoft, Ford Motors, and Qualys.

The Rise of API-Based Attacks

According to Jacques Declas, CEO and co-founder of 42Crunch, recent high-profile data breaches at organizations like MGM Grand, Facebook, and Clubhouse all stemmed from vulnerabilities within their APIs. He notes that 83% of all internet traffic now flows through APIs, yet conventional firewall methodologies are ill-equipped to address the unique threats they present.

From Observation to Innovation

The company’s origins lie in the observations of its three French co-founders, who recognized the rapid proliferation of API usage among their clientele.

Beyond Traditional Firewall Approaches

Traditional firewall strategies, which rely on identifying patterns and signatures to detect intrusions, prove ineffective when applied to API traffic. 42Crunch asserts that its platform provides granular protection for each individual API, safeguarding against both common cyberattacks like injections and attacks specifically targeting APIs.

Integrating Security into the Development Process

Isabelle Mauny, co-founder and CTO of 42Crunch, emphasizes that runtime threat protection is only one piece of the puzzle. True API security, she argues, requires integrating security considerations directly into the developer workflow, rather than treating it as an afterthought.

A Strategic Investment in Critical Infrastructure

Nazo Moosa, co-managing partner at Energy Impact Partners, stated that 42Crunch’s “shift-left approach” to building secure-by-design APIs aligns perfectly with EIP’s mission to protect essential global infrastructure. The company’s substantial customer acquisitions in the previous year were a key factor in their decision to lead this funding round.