Latest news with #CatoNetworks
Forbes
24-07-2025
- Business
- Forbes
Eliminating Blind Spots: How Browser-Based ZTNA Closes Security Gaps
Etay Maor is Chief Security Strategist for Cato Networks, a leader of advanced cloud-native cybersecurity technologies. Zero trust promised a fundamental shift: security where access depends not just on identity, but on full context—rigorous authentication, device posture, location and real-time risk assessment. Zero trust network access (ZTNA) became the engine driving this vision, replacing porous network perimeters with granular, policy-driven control. Yet, a critical blind spot persists in many implementations: the unmanaged device. Contractors, partners and BYOD users leverage unmanaged endpoints daily—essential for modern business, yet often outside IT's direct visibility and control. They lack agents and consistent configuration. For security leaders, this gap isn't an inconvenience; it's a direct threat to zero trust integrity. Unmanaged devices represent a glaring vulnerability, undermining the model's core principles. The Shortcomings Of Traditional ZTNA: Where The Perimeter Fades ZTNA dethroned legacy VPNs, offering stronger authentication, micro-segmentation (app-specific access) and superior visibility. However, its Achilles' heel is clear: It primarily serves managed devices running dedicated agents under IT's control. Unmanaged devices are left exposed, and common workarounds are flawed. Consider the following shortcomings: • Agent Deployment Hurdles: Installing clients on third-party or personal devices is often unscalable, invasive and blocked by user permissions or policies. • The VDI Burden: Virtual desktops (VDI) create a secure "bubble" but sacrifice performance and user experience—and add significant infrastructure complexity and cost. • Fragmented Tool Chains: Bolting on separate solutions (browser gateways, SWGs, reverse proxies, etc.) creates parallel access paths, inconsistent policy enforcement and siloed visibility—reintroducing complexity that zero trust aimed to solve. These approaches fail to deliver true zero trust for unmanaged devices and introduce new risks: policy gaps, visibility holes, operational overhead and user friction. We need a unified approach that can secure every user and device without multiplying complexity. The Imperative Of Consistency: No Exceptions Allowed Security effectiveness hinges on consistency. If managed users face stringent zero trust controls while unmanaged users operate through weaker exceptions, the entire model unravels. Uniform enforcement is impossible. This inconsistency has tangible consequences, especially for compliance (PCI-DSS, HIPAA, GDPR, SOC 2, etc.). These frameworks demand demonstrable, uniform security controls across all access points handling sensitive data. Gaps for unmanaged devices aren't just vulnerabilities; they are potential compliance violations with severe penalties. To address this, some organizations are turning to browser-based ZTNA. Unlike agent-based ZTNA models that require deep device integration, browser-based ZTNA delivers secure access directly through the user's standard web browser. This simple difference can be transformative. Contractors on home PCs, partners on their laptops and BYOD users can instantly fall under the exact same granular access policies, continuous risk assessment and inspection frameworks as managed users. Crucially, it achieves this without requiring device-level control, persistent software installs or intrusive endpoint changes. The browser becomes the universal conduit. Every access request undergoes rigorous verification, monitoring and filtering—true zero trust extended to the entire workforce ecosystem. Reducing Complexity, Not Just Risk Security leaders know the trade-off: more control often means more complexity. Accommodating unmanaged access historically meant buying new tools and managing parallel policy engines—draining resources and creating gaps. Browser-based ZTNA offers consolidation. It can eliminate the need for separate point products for external users. All traffic flows through a single, unified policy engine with common enforcement points. This ensures uniform access control, threat prevention, data protection and monitoring, reducing the overhead of managing siloed systems. In my experience, it streamlines multiple checkpoints into one efficient lane. Just as importantly, browser-based ZTNA respects the user experience. By supporting standard browsers (Chrome, Edge, Firefox, etc.), users access resources as they always have. No disruptive workflow changes, no specialized software installs or configuration changes. Adoption, I've found, is often frictionless. Use Case: Secure Access For Unmanaged Devices The most compelling application of this model is securing access from unmanaged devices, delivering core zero trust benefits universally. By focusing on these devices, you can: • Enforce identity and risk-based access policies. • Limit users to specific, authorized applications or data sets. • Prevent lateral movement within the network. • Log and audit access for compliance reporting and forensics. • Inspect web traffic for threats and data loss—no endpoint agent needed. In contrast to traditional VPNs or VDI setups, I've found that this model is lighter, faster, more scalable and simpler to manage. Getting Started Organizations beginning their zero trust journey should first address the critical vulnerability of unmanaged devices. Established, traditional ZTNA models often fail here, leaving contractors, partners and BYOD users outside consistent security controls. Agent deployment is impractical, while VDI introduces performance penalties and complexity. Fragmented solutions recreate the visibility gaps zero trust aims to eliminate. Prioritize implementing browser-based ZTNA for unmanaged access. This approach directly tackles the core weakness: It allows applying rigorous zero trust policies—strong authentication, granular access control, continuous inspection—to every user without agents or disruptive changes. The standard web browser becomes the secure conduit, delivering immediate risk reduction at the perimeter's weakest point. Ensure consistent policy enforcement across all users and access paths; security and compliance demand no exceptions. Base access decisions on rich context: identity, device posture (where feasible), location and real-time risk. Critically, reduce complexity by choosing solutions that unify access paths and policy management, avoiding fragmented tools that undermine zero trust. Start by securing high-value applications via this browser approach to demonstrate value and build momentum. Why This Matters Now Hybrid work and third-party collaboration are not temporary—they're the permanent operational fabric of our day-to-day efforts. Unmanaged devices are integral to this landscape. Half-measures are obsolete. A consistent, identity-centric, browser-based ZTNA approach can eliminate fragmented solutions and ensure comprehensive policy coverage. The same stringent rules apply to the CEO on a corporate laptop and the contractor on a personal device. It simplifies operations for security teams. For CISOs, this means fewer dangerous security exceptions, fewer exploitable gaps and more confidence in protecting data and meeting regulatory obligations—regardless of where work happens or which device is used. Browser-based ZTNA doesn't just close the blind spot; it provides the consistent control demanded by boundary-less work. Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
Yahoo
01-07-2025
- Business
- Yahoo
Cato Networks raises $359m Series G funding at $4.8bn valuation
Cato Networks, a secure access service edge (SASE) solutions provider, has raised $359m in a Series G funding round, elevating its valuation to more than $4.8bn. The round was led by new investors such as Vitruvian Partners and ION Crossover Partners, along with existing investors including Lightspeed Venture Partners, Acrew Capital, and Adams Street Partners. This latest investment brings Cato Networks' total funding to more than $1bn. Vitruvian Partners said: 'Cato has spent the past decade building and optimising the next generation of cybersecurity, and we are proud to partner with them as they continue to raise the bar for AI-driven security and networking. 'The company's visionary leadership, best-in-class growth and retention rates, and relentless focus on innovation and customer experience are what led us to invest in Cato. 'We look forward to supporting Cato's next phase of growth as they expand their market reach and transform how enterprises connect and secure their digital businesses and use of AI.' Tel Aviv, Israel-based Cato Networks delivers enterprise-grade security and networking through a single, cloud-native platform. Unlike traditional infrastructure, which is often seen as costly and fragmented, Cato's SASE Cloud Platform is designed to be self-maintaining and autonomously scalable. With the new funds, Cato Networks plans to expand its capabilities and increase its total addressable market. The company aims to advance AI security, allowing enterprises to adopt AI securely and efficiently. Additionally, Cato intends to accelerate platform innovation by investing in research and development across various areas, including DEM, LAN Security, IoT/OT Security, SD-WAN, SSE, XDR, and ZTNA. Cato Networks also plans to expand its global reach by growing its partner ecosystem and customer-facing teams to meet increasing global demand. Cato Networks co-founder and CEO Shlomo Kramer said: 'With more than 3,500 enterprise customers, consistent hyper-growth, and repetitive and scalable wins against all leading competitors, Cato is a proven and mature business to invest in. 'Our true SASE platform and decade of AI innovation differentiates Cato from legacy vendors that favour a portfolio of point solutions. Customers and partners understand the difference and select Cato to benefit from proven security, operational efficiency, and business agility.' "Cato Networks raises $359m Series G funding at $4.8bn valuation " was originally created and published by Verdict, a GlobalData owned brand. The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action on the basis of the content on our site.
Time of India
01-07-2025
- Business
- Time of India
Israel's Cato Networks valued at over $4.8 billion in latest funding round
By Prakhar Srivastava Israel's Cato Networks said on Monday it had raised $359 million in a funding round , valuing the cybersecurity firm at more than $4.8 billion, as investors bet on growing demand for artificial intelligence-driven security and networking solutions. An uptick in sophisticated cyberattacks has prompted fears of operational disruptions among companies and an increase in investor interest in AI-powered cybersecurity providers. The funding was led by Vitruvian Partners and ION Crossover Partners, along with existing investors Lightspeed Venture Partners and Acrew Capital, among others. The latest round brings Cato's total funding to more than $1 billion. "With analysts projecting information-security outlays to climb at a double-digit clip through 2028, investors continue to treat cybersecurity and zero-trust plumbing as 'can't-cut' line items even as other tech niches cool," said Michael Ashley Schulman, chief investment officer at Running Point Capital. Cato Networks plans to use the new funds to enhance its AI-driven security capabilities, increase investment in research and development and expand its global footprint. "Hefty private cash for Cato is less a one-off jackpot than a barometer that big-ticket appetite for cybersecurity is still running hot and that an exit wave through IPO, active secondaries, or acquisition may be warming up behind it," Schulman said. Reuters had reported last year, citing sources, that the company was gearing up for a potential 2025 IPO. Cato, founded in 2015 by Shlomo Kramer and Gur Shatz, combines network services and security into a single cloud platform known as secure access service edge ( SASE ). Its SASE solution helps businesses prevent threats, protect data and quickly respond to incidents. The SASE market is projected to surge to $25 billion by 2027 from $7 billion in 2022, according to Gartner's 2023 report. Customers listed on the company's website include Swissport, Carlsberg, Element Solutions and Komax.
Fast Company
30-06-2025
- Business
- Fast Company
Cato Networks secures $359 million in latest funding round
Israel's Cato Networks said on Monday it had raised $359 million in a funding round, valuing the cybersecurity firm at more than $4.8 billion, as investors bet on growing demand for artificial intelligence -driven security and networking solutions. An uptick in sophisticated cyberattacks has prompted fears of operational disruptions among companies and an increase in investor interest in AI-powered cybersecurity providers. The funding was led by Vitruvian Partners and ION Crossover Partners, along with existing investors Lightspeed Venture Partners and Acrew Capital, among others. The latest round brings Cato's total funding to more than $1 billion. 'With analysts projecting information-security outlays to climb at a double-digit clip through 2028, investors continue to treat cybersecurity and zero-trust plumbing as 'can't-cut' line items even as other tech niches cool,' said Michael Ashley Schulman, chief investment officer at Running Point Capital. Cato Networks plans to use the new funds to enhance its AI-driven security capabilities, increase investment in research and development and expand its global footprint. 'Hefty private cash for Cato is less a one-off jackpot than a barometer that big-ticket appetite for cybersecurity is still running hot and that an exit wave through IPO, active secondaries, or acquisition may be warming up behind it,' Schulman said. Reuters had reported last year, citing sources, that the company was gearing up for a potential 2025 IPO. Cato, founded in 2015 by Shlomo Kramer and Gur Shatz, combines network services and security into a single cloud platform known as secure access service edge (SASE). Its SASE solution helps businesses prevent threats, protect data and quickly respond to incidents. The SASE market is projected to surge to $25 billion by 2027 from $7 billion in 2022, according to Gartner's 2023 report.
CNA
30-06-2025
- Business
- CNA
Israel's Cato Networks valued at over $4.8 billion in latest funding round
Israel's Cato Networks said on Monday it had raised $359 million in a funding round, valuing the cybersecurity firm at more than $4.8 billion, as investors bet on growing demand for artificial intelligence-driven security and networking solutions. An uptick in sophisticated cyberattacks has prompted fears of operational disruptions among companies and an increase in investor interest in AI-powered cybersecurity providers. The funding was led by Vitruvian Partners and ION Crossover Partners, along with existing investors Lightspeed Venture Partners and Acrew Capital, among others. The latest round brings Cato's total funding to more than $1 billion. Cato Networks plans to use the new capital to enhance its AI-driven security capabilities, increase investment in research and development and expand its global footprint. Reuters had reported last year, citing sources, that the company was gearing up for a potential 2025 IPO. The cybersecurity company, founded in 2015 by Shlomo Kramer and Gur Shatz, combines network services and security into a single cloud platform, known as secure access service edge (SASE). Its SASE solution helps businesses prevent threats, protect data and quickly respond to incidents.
