Kevin Mandia to Join SpecterOps as Chair of Board of Directors

ALEXANDRIA, Va.--(BUSINESS WIRE)--SpecterOps, a provider of adversary-focused cybersecurity solutions born out of unique insights of advanced threat actor tradecraft, today announced that Kevin Mandia, founder of Mandiant and Co-Founder and General Partner at Ballistic Ventures, will become chair of SpecterOps’ Board of Directors.

“SpecterOps reminds me of Mandiant in its early days – they know how adversaries see the world and they understand why a secure identity architecture is important,” said Kevin Mandia. “The complexity of identity security urgently needs solving at the enterprise level and I believe the Attack Path Management approach from SpecterOps is that solution.”

BloodHound Enterprise (BHE) is an Attack Path Management (APM) security solution for defending Microsoft Active Directory, Azure AD, Entra ID and hybrid environments. SpecterOps launched BHE in 2021 and it experienced rapid customer adoption over the last 12 months, with product revenue growth in Q2-2024 exceeding 78% y-o-y, and new customer acquisition in Q2-2024 growing more than 125% y-o-y. The company overall grew significantly over the same period; employee headcount grew by 40% in the last 12 months.

“We continue to see huge interest in BloodHound Enterprise from security executives that need practical solutions to Identity Attack Paths,” said David McGuire, CEO at SpecterOps. “Mandia’s strategic advice will be invaluable as we grow SpecterOps and make Attack Path Management table stakes for enterprise security teams.”

One particular area of growth is the federal government. SpecterOps expects to receive their FedRAMP High Authority to Operate in October through a partnership with Palantir FedStart. Identity Attack Paths are a pervasive issue at government agencies and are regularly abused by nation-state adversaries. SpecterOps has released original Attack Path research on Microsoft’s Active Directory Certificate Services (ADCS) architecture that affects most Federal organizations. BHE can now expose those Attack Paths. Attack Path Management is the best way for the public sector to continuously secure their identity environments, and SpecterOps expects to soon provide a solution to meet such needs that is designated FedRAMP High Authorized.

SpecterOps has expanded across all business units. They recently added a new training course on Identity-Driven Offensive Tradecraft and launched or updated several popular open-source projects including Mythic, Ghostwriter and LSA Whisperer. On the product side, they added hybrid Attack Paths to BHE and the open-source BloodHound Community Edition. These paths track how an attacker can move from on-prem Active Directory to Azure and back and were extremely well-received at Black Hat 2024. Security professionals have long suspected that their on-prem environments affected the security of Azure. BloodHound Community Edition now enables them to confirm those suspicions, and BHE helps them prioritize all attack paths while providing guidance on how to fix them. Ultimately, both make Azure more secure.

BloodHound Community Edition has become the industry standard to model attack paths in Microsoft Active Directory and Entra ID. It is used by thousands of organizations worldwide and has been recommended by Microsoft and CISA.

About SpecterOps

SpecterOps is a cybersecurity solutions and services provider specializing in deep knowledge of adversary tradecraft to help clients detect and defend against sophisticated attackers. The company releases numerous widely used free and open-source security toolsets, including BloodHound, a solution which maps attack paths in Active Directory and Azure environments. BloodHound has been recommended by the Department of Homeland Security, PricewaterhouseCoopers and many more. BloodHound Enterprise is the company’s first defense solution for enterprise security and identity teams. For more information on the company and its solutions, visit https://specterops.io/.