The Cybersecurity Startup That Raised $28M to Fight AI-Generated Phishing Attacks
For decades, phishing was a numbers game. Cast a wide net, see what sticks. The kind of attack that could fool a CEO took weeks of reconnaissance, carefully crafted language, and a fair bit of luck. Then generative AI flipped the equation entirely.
Ocean, an agentic email security platform emerging from stealth today, is betting that fighting AI requires counter-AI that works differently from the legacy tools most organizations rely on. The company just announced $28 million in total funding led by Lightspeed Venture Partners, with backing from Picture Capital and Cerca Partners, plus a roster of angel investors that reads like a who’s-who of cybersecurity founders — including Wiz co-founder Assaf Rappaport and Armis co-founders Yevgeny Dibrov and Nadir Izrael.
A Founder Who Crossed the Line and Came Back
Founder and CEO Shay Shwartz brings an unusual perspective to the problem. As a teenager, he was the one sending those phishing emails. Caught at age 16, he pivoted to defense, spending nearly a decade in Israel’s elite intelligence units working on projects connected to the Iron Dome missile defense system. Later, he joined Axis, a startup that was acquired by HPE.
That arc — hacker turned defender — gives Ocean a vantage point most security founders don’t have. Shwartz understands not just how phishing works, but how the economics of it change when AI does the heavy lifting.
“In the past, only highly sophisticated hackers could pull off spear-phishing due to the sheer amount of time, research, and manual labor needed,” Shwartz told TechCrunch. “AI just made the entire process automatic, so the scale is much, much bigger now.”
Why Traditional Email Security Falls Short
Vendors like Proofpoint, Mimecast, and even newer players like Abnormal Security have built solid defenses against traditional phishing. But AI-generated attacks operate differently. An LLM can harvest public information about a target, understand their role and relationships, and craft a personalized email indistinguishable from legitimate correspondence — at machine speed and scale.
Ocean’s approach is to deploy its own small language model that sits in front of every inbox, analyzing the full context of incoming messages. The model evaluates the sender’s intent against the recipient’s organizational relationships and behavioral patterns.
“This is like having a guard at every door,” Shwartz explained. The company claims it’s already reviewing billions of emails monthly for customers including Kayak, Kingston Technology, and Headspace.
Agentic Security as the Next Wave
The term “agentic” gets thrown around a lot in AI circles right now, but in Ocean’s context it means something concrete: the platform doesn’t just flag suspicious emails for human review — it takes action autonomously based on organizational policy and real-time context analysis. That’s the difference between a warning light and an airbag.
This matters because the volume of AI-generated phishing attempts is already outstripping human analysts’ ability to triage them. According to recent industry reports, AI-powered social engineering attacks have increased by over 300% year-over-year, making automation not just convenient but necessary.
What Startup Founders Should Watch For
Ocean’s emergence with heavyweight backing signals three things for the broader startup ecosystem. First, email security is entering a new arms race where the defensive technology must evolve as fast as the offensive capability. Second, having a founder with genuine domain expertise — someone who’s lived both sides of the problem — remains a powerful signal for investors. And third, the “agentic” trend is moving from buzzword to business model faster than most realize.
For startup founders themselves, this is a reminder that your inbox is likely the most exposed surface of your business. Most early-stage companies run on lean security teams (or none at all), making them prime targets for AI-generated phishing. If a platform like Ocean can deliver guard-level protection without requiring a dedicated security operations center, that’s not just a product pitch — it’s a real shift in what’s possible for smaller teams.
Original story by Marina Temkin at TechCrunch: From teen hacker to Iron Dome researcher, this founder raised $28M to fight AI phishing
