{"id":205843,"date":"2025-11-17T14:00:00","date_gmt":"2025-11-17T14:00:00","guid":{"rendered":"https:\/\/entertainment.runfyers.com\/index.php\/2025\/11\/17\/mcp-ai-agent-security-startup-runlayer-launches-with-8-unicorns-11m-from-khoslas-keith-rabois-and-felicis-techcrunch\/"},"modified":"2025-11-17T14:00:00","modified_gmt":"2025-11-17T14:00:00","slug":"mcp-ai-agent-security-startup-runlayer-launches-with-8-unicorns-11m-from-khoslas-keith-rabois-and-felicis-techcrunch","status":"publish","type":"post","link":"https:\/\/entertainment.runfyers.com\/index.php\/2025\/11\/17\/mcp-ai-agent-security-startup-runlayer-launches-with-8-unicorns-11m-from-khoslas-keith-rabois-and-felicis-techcrunch\/","title":{"rendered":"MCP AI agent security startup Runlayer launches with 8 unicorns, $11M from Khosla\u2019s Keith Rabois and Felicis | TechCrunch"},"content":{"rendered":"


\n<\/p>\n

\n

On Monday, a new Model Context Protocol security startup called Runlayer<\/a> launched out of stealth with $11 million in seed funding from Khosla Ventures\u2019 Keith Rabois and Felicis.\u00a0<\/p>\n

It was created by third-time founder Andrew Berman (previous companies: baby-monitor maker Nanit and an AI video conferencing tool, Vowel, that sold to Zapier in 2024<\/a>).<\/p>\n

In the four months since Runlayer launched its product in stealth, it has signed dozens of customers, including eight unicorns or public companies like Gusto, dbt Labs, Instacart, and Opendoor, it says.\u00a0It also nabbed David Soria Parra, the lead creator of MCP, as an angel and advisor, Berman tells TechCrunch.\u00a0(Parra did not respond to our request for comment.)\u00a0<\/p>\n

Parra\u2019s team at Anthropic launched the protocol <\/a>in November 2024 as an open source project. MCP has since become the de facto standard for allowing AI agents to connect with the data and systems they need to work independently. It allows agents to access data, move it, alter it, and execute business processes without human oversight.\u00a0<\/p>\n

The protocol is now supported by every major model maker including OpenAI<\/a>, Microsoft, AWS, and Google, as well as thousands of tech and enterprise companies<\/a>; just to name a few: Atlassian, Asana, Stripe, Block, and others ranging from banks to consumer goods manufacturers.\u00a0<\/p>\n

\u201cEveryone talks about AI,\u201d Berman, Runlayer\u2019s CEO, told TechCrunch, \u201cbut AI is really only as useful as the tools and the resources it has access to.\u201d<\/p>\n

The problem is, the MCP protocol itself doesn\u2019t include much security out of the box<\/a>, so many MCP implementations have already been found to be vulnerable in a variety of ways.<\/p>\n

\n
\n

Techcrunch event<\/p>\n

\n

\n\t\t\t\t\t\t\t\t\tSan Francisco<\/span>
\n\t\t\t\t\t\t\t\t\t\t\t\t\t|<\/span>
\n\t\t\t\t\t\t\t\t\t\t\t\t\tOctober 13-15, 2026<\/span>\n\t\t\t\t\t\t\t<\/p>\n<\/p><\/div>\n<\/p><\/div>\n<\/div>\n

The poster children are probably GitHub and Asana. In May, researchers at Invariant Labs<\/a> discovered a prompt injection vulnerability in MCP servers that allowed them to grab data from private GitHub repositories (ones that shouldn\u2019t have been accessible to the public).\u00a0Asana discovered and fixed a vulnerability in its MCP server in June<\/a> that could have exposed customer data. There have since been many more types of attacks<\/a> found to work on common MCP server setups.\u00a0\u00a0<\/p>\n

As you might expect, such security issues have given rise to numerous MCP security products, including products from big-name companies like Cloudflare, Docker, and Wiz \u2014 as well as a host of startups<\/a> tackling more specific products.\u00a0<\/p>\n

The most common type of MCP security product these days is a gateway, essentially a security layer for identifying the agents and controlling their access to apps.\u00a0<\/p>\n

Runlayer plans to stand out in this crowded market by being an all-in-one security tool that combines a gateway with features like threat detection that analyzes every MCP request; observability that watched all agentic activity across all MCP servers that IT has permitted; enterprise development where IT can build custom AI automations for enterprise users; and detailed permissions that work with existing identity providers like Okta and Entra.\u00a0<\/p>\n

Like other competitors, such as open source Obot<\/a>, Runlayer business users are presented with an Okta-like catalog of the pre-vetted MCP servers that their IT will allow agents to access.\u00a0Runlayer matches the agents\u2019 app permissions to the human users\u2019 permissions. For instance, some people might have read-only access to financial systems, some write access (the ability to change the data). Others have no access at all.\u00a0\u00a0<\/p>\n

Berman believes Runlayer stands out from the crowd, not just with the breadth of the product, but because of the team\u2019s experience. He founded the startup because, after selling Vowel to Zapier, he became the director of Zapier\u2019s AI, and built one of the first MCP servers, working closely at the time with OpenAI and Anthropic, he said.\u00a0\u00a0<\/p>\n

\u201cWhat are the problems that we saw with the protocol? One, it was the security risk because it was adopted so quickly,\u201d he said. There were \u201cblind spots\u201d in areas like observability and audits, that make it risky for enterprises to roll out to users.<\/p>\n

So in August, \u201cwe left our jobs. We signed up David Soria Parra, the creator of the spec, and in four months, we\u2019ve signed up eight unicorns,\u201d he said of himself and his co-founders from Zapier Tal Peretz and Vitor Balocco.<\/p>\n

Other advisors and investors in the company, Berman says, include head of security at Cursor Travis McPeak, and founder of Neon Nikita Shamgunov.\u00a0<\/p>\n<\/div>\n


\n
Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

On Monday, a new Model Context Protocol security startup called Runlayer launched out of stealth with $11 million in seed funding from Khosla Ventures\u2019 Keith Rabois and Felicis.\u00a0 It was created by third-time founder Andrew Berman (previous companies: baby-monitor maker Nanit and an AI video conferencing tool, Vowel, that sold to Zapier in 2024). In […]<\/p>\n","protected":false},"author":1,"featured_media":205844,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[14],"tags":[],"class_list":{"0":"post-205843","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-tech"},"_links":{"self":[{"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/posts\/205843","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/comments?post=205843"}],"version-history":[{"count":0,"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/posts\/205843\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/media\/205844"}],"wp:attachment":[{"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/media?parent=205843"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/categories?post=205843"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/entertainment.runfyers.com\/index.php\/wp-json\/wp\/v2\/tags?post=205843"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}