Stopping MENA cyber attacks
Meet the cybersecurity startups defending regional businesses against costly data breaches
Jamie Lane & Zoe O Dwyer
August 28, 2024
Welcome back, and a very big hello to the 113 new subscribers who have joined FWDstart since last week! 👋
In this week’s edition, we’re putting on our blackhats 🎩 to explore how regional startups like Spidersilk and others are defending MENA businesses against costly data breaches and cyber attacks.
We'll also analyse why there are so few VC-backed cybersecurity startups in the region and whether this is trend on the brink of change…
Data breaches are costly.
In the Middle East, each breach costs about $8 million on average - the second-highest rate in the world, after the US.
But this is hardly a podium finish any region strives for.
Even with these high costs, the region remains far from self-reliant when it comes to cybersecurity solutions.
In 2023, only 5 cybersecurity startups raised funding - totalling $12.6 million.
That’s about 0.57% of total funding raised, and 1.02% of deal flow last year (excluding debt financing).
Value of Investments in MENA by Sector in 2023 (Wamda)
If you think that’s low, hold onto your (black)hats, because only $1 million was secured by 4 MENA-based cybersecurity startups the year before.
This all speaks to a common critique often levelled against the MENA startup tech ecosystem: that the lack of IP being built in the region - both for the region and beyond - points to a gulf in deep tech and engineering talent.
But try telling that to a certain Dubai-based cybersecurity startup founded in 2019.
Techcrunch and VICE articles on breaches brought to light by spiderSilk
Before raising a cent of pre-seed funding, spiderSilk had already discovered and disclosed vulnerabilities in companies like WeWork and MoviePass and collaborated with giants like Samsung Global, Huawei, and EA Games.
The remainder of this article is for paid subscribers only.
Get access to the strategies, tactics, and wisdom of MENA's best investors, founders and operators with a paid subscription.
Their strategy of uncovering data breaches and sharing these findings with tech outlets like VICE and TechCrunch was a highly effective PR move that quickly shifted them from promise-based to evidence-based security.
In a practice that is unfortunately all too uncommon, Rami El Malak and Mossab Hussein were walking the walk while talking the talk.
🕸️ spiderSilk: re-imagining threat detection
Mossab Hussein and Rami El Malak
spiderSilk simplifies cyber threat scanning, giving companies a clear understanding of where they are vulnerable to attacks.
But before we find ourselves ensnared in a spider's web (see what I did there?), I think it’s important to take a step back and establish what puts companies off from investing in cybersecurity infrastructure in the first place.
To this end, I’ve crudely identified three key factors, which I’ll call the “3 Cs”:
Complexity
Complacency
Cost
Let’s keep these 3 Cs in mind.
After securing a $500k pre-seed led by Global Ventures, with participation from FutureTech and angels like Careem co-founder Karl Magnus Olsson, Spidersilk got to work on its MVP.
Their goal was clear: to create "security as a service" for the global market, not just a regional solution.
The remainder of this newsletter is for paid subscribers only.
Don’t miss out! Become a member today.
A subscription gets you full access to our weekly deep-dives, which include:
✅ Analysis, case studies and interviews unpacking trends, companies, or industries, and more.
✅ Access to the strategies, tactics, and wisdom of MENA's best investors and founders.
✅ Practical and actionable guides designed to make you a better investor and technologist.
✅ Unlimited access to our online archive where you can read previous editions of the newsletter.