Push Security Secures $30 Million Series B Funding Led by Redpoint Ventures to Fight the Rising Tide of Identity Attacks

BOSTON--(BUSINESS WIRE)--Push Security, a pioneer in detecting and responding to modern identity attacks in the browser, today announced a $30 million Series B funding round led by Redpoint Ventures, with participation from Datadog Ventures and B3 Capital. This investment will accelerate Push’s growth, fueling innovation and global expansion.

“This investment will push us further with what is possible in the browser and scale our impact globally to stop identity attacks.” - Adam Bateman, CEO Push Security

Share

The round also saw involvement from existing investors, including Decibel and GV (Google Ventures), demonstrating strong confidence in Push Security’s mission to stop identity attacks — such as credential phishing and account takeover (ATO) using stolen credentials and tokens — a problem that has hit the industry hard, particularly in the last 12 months.

This funding will enable Push Security to scale its platform capabilities, drive research and product development, and expand into new markets. It will also support strategic hiring to strengthen the company’s position as a leader in identity security.

Push Security’s browser-based identity security platform detects and intercepts identity attacks — such as zero-day phishing, credential stuffing, and session hijacking — before they escalate. By securing identities in the browser, Push helps organizations close security gaps left by traditional identity and security solutions. The platform also identifies vulnerabilities like stolen credentials, missing MFA controls, and non-SSO identities, enabling security teams to act proactively to close identity security gaps and stop breaches before they happen.

“Compromised identities are now the prized target for attackers,” said Adam Bateman, CEO of Push Security. “Stolen credentials and phishing remain the top two causes of reported breaches, and high-profile incidents — like the Snowflake breach last summer — are showing us the massive impact they can have.

“We were the first to turn employees’ existing browsers into a powerful telemetry source and control point for stopping identity attacks,” he added. “This investment will push us further with what is possible in the browser and scale our impact globally to stop identity attacks.”

With Redpoint’s expertise in scaling transformative technology companies, and Datadog’s leadership in data-driven observability, Push is poised to redefine identity security.

“In conversations with CISOs, it is clear that the new critical security perimeter is the browser,” said Erica Brescia, managing director at Redpoint Ventures. “With over 80 percent of cyber-attacks being identity-related, Push is uniquely positioned to protect organizations. We are thrilled to partner with the Push team as they execute on their mission to stop identity attacks.”

“Push recognizes that companies need to tackle identity attacks head-on by securing identities where it matters most — inside the browser,” said Bharat Sajnani, head of corporate development and ventures at Datadog. “Their research-driven approach is game-changing, and we’re excited to collaborate with them as they help organizations rethink identity security.”

Since its founding, Push Security has been recognized as an early innovator for its unique approach to detecting and responding to identity attacks. The company’s research-based approach has led to significant contributions to the space including its SaaS attack matrix, an open source repository of SaaS-native attack techniques, which is now widely used by security researchers, red and blue teams, and penetration testers around the world. This research focus is at the heart of Push’s threat-informed product feature development which, combined with its browser technology, is significantly more effective at stopping identity attacks earlier and with much greater accuracy than anything that has come before.

Push Security has experienced rapid growth, serving customers across industries including technology, finance, and healthcare. In January 2025, Push’s customer base grew 380 percent year-over-year, and its platform is now deployed on more than 1.5 million endpoints globally as identity attacks and the growing recognition that these threats can be mitigated in the browser gains momentum. Additionally, the company more than doubled its employee headcount over the past year and welcomed Chief Revenue Officer Kevin Arsenault, former sales leader at CrowdStrike and Proofpoint, and new Chief Marketing Officer Chris Tilton, formerly with Cobalt.io and Bugcrowd, to its executive ranks.

Bateman also shared more of his thoughts on today’s news on the Push Security blog.

About Push Security
Push Security stops identity attacks that result in account takeover — such as phishing, credential stuffing, session hijacking — and secures your entire identity perimeter. Push is the industry’s first identity security platform that uses a browser agent to monitor and defend workforce identities. Think of Push as being like EDR, but in the browser.

Security teams use Push to map their identity attack surface, detect and respond to advanced identity attacks in real time, and proactively improve their overall identity security posture. Push was founded by former red team members skilled in offensive security and security operations and is backed by Decibel, GV (Google Ventures), Redpoint Ventures, Datadog Ventures, B3 Capital and other notable angel investors. For more information, visit https://pushsecurity.com or follow @pushsecurity.