Cyb3r Operations Raises £4M to Fix the Blindspot That Causes a Third of All Cyber Breaches

Cyb3r Operations, a London-based cybersecurity startup, has raised £4 million ($5.4 million) in a funding round led by Octopus Ventures, with follow-on investment from proptech VC Pi Labs. The round brings the company's total funding to £5 million.

The startup, founded in 2021 by Vincent Cook, is tackling one of the most persistent problems in enterprise security: third-party cyber risk.

More than a third of major cyber incidents now involve third parties. Yet most organisations still rely on annual questionnaires, spreadsheets, and static audits to manage these risks.

As companies depend on growing networks of SaaS tools, cloud services, AI applications, and suppliers, cyber risk increasingly sits outside their direct control.

"One of the biggest problems in cybersecurity today isn't just how advanced threat actors are getting. It's that we're stumbling over our own processes. Organisations lack basic visibility into where risk actually sits," said Vincent Cook, Founder and CEO of Cyb3r Operations.

Cook built the company to replace fragmented, manual processes with continuous, automated oversight that integrates directly into an organisation's tech stack.

The platform surfaces critical vulnerabilities across third-party ecosystems, undisclosed sanctions risks, shadow IT, fourth-party exposures, and supply-chain weaknesses that traditional assessments miss entirely.

"Exporting vendor lists from CRM or procurement systems and manually uploading them into another siloed tool is no longer good enough," Cook added.

"Most organisations have developed an allergic reaction to third-party risk management because the market is full of meaningless risk scores and static assessments that don't reflect how companies actually work."

"Real risk sits in relationships, dependencies, employee exposure, and how those things change over time. Our mission is to enable organisations the ability to continuously detect, assess, and respond to threats in order to stay ahead."

Rather than producing abstract risk scores like letter grades or numbers out of 100, Cyb3r Operations shows which external relationships matter most, how risk is evolving, and where security teams should act first.

The company now partners with some of the largest organisations in the world to monitor third-party cyber risks across their supply chains in real time.

The timing is notable. According to the 2025 Verizon Data Breach Investigations Report, 30% of all data breaches now involve a third party, double the rate from the previous year.

The World Economic Forum's Global Cybersecurity Outlook 2025 found that 54% of large organisations identified supply chain challenges as the biggest barrier to achieving cyber resilience.

"We invested in Cyb3r Operations because they're tackling a critical blind spot in cybersecurity: the growing gap between perceived third-party risk and real exposure," said Constanza Diaz, Investor at Octopus Ventures.

"As organisations scale their digital ecosystems, risk now flows through suppliers, SaaS tools and hidden dependencies, but most teams are still operating reactively. Cyb3r Operations delivers continuous, contextual visibility across the tech stack, making third-party risk genuinely actionable."

The funding will go toward scaling the platform, deepening its threat intelligence capabilities, and expanding to more organisations managing third-party and supply-chain cyber risk.

For UK founders building in the cybersecurity space, Cyb3r Operations represents a pattern worth studying: identifying a problem enterprises know they have but are still solving with manual processes, then building automation that fits into existing workflows.

It's the kind of practical application that investors are increasingly backing as the UK cements its position as Europe's leading tech hub.