Copyright TechStartups.com
When Truffle Security’s open-source project TruffleHog first hit GitHub, it quietly became a must-have tool for developers hunting exposed secrets. Fast forward to today, the company behind it has secured a $25 million Series B round led by Intel Capital and Andreessen Horowitz (a16z), with backing from Abstract, Lytical Ventures, and well-known security veterans, including Casey Ellis (Founder, BugCrowd), Emilio Escobar (CISO, Datadog), and Haroon Meer (Founder & CEO, Thinkst). Truffle Security has built its reputation on tackling one of software’s least glamorous but most dangerous problems: leaked credentials. API keys, tokens, and service accounts—the so-called non-human identities (NHIs) that keep modern applications running—have become prime targets for attackers. With AI tools generating more code and automating workflows, these hidden credentials are multiplying fast, creating new security blind spots. The company’s flagship open-source project, TruffleHog, has grown into a global staple for secret detection and remediation. It’s been downloaded more than 15 million times, boasts 23,000 GitHub stars, and runs over 250,000 times a day across developer environments. Truffle Security’s enterprise offering extends this reach with verified secret detection and remediation capabilities across cloud ecosystems. The new funding will help the company expand its customer success and go-to-market operations, scale product development, and extend its NHI analysis capabilities beyond Google Cloud to AWS and Azure. It also supports the launch of TruffleHog GCP Analyze, a new feature that gives organizations deep visibility into leaked Google Cloud service accounts—helping teams understand the scope and impact of each exposure within seconds. “As AI transforms how software is built, the security surface is expanding just as quickly,” said Martin Casado, General Partner at Andreessen Horowitz. “Truffle Security is tackling one of the most urgent challenges in this new era, which is protecting codebases from secret exposure at scale. We’re thrilled to back the team as they continue to define what modern software security looks like in the age of AI.” TruffleHog GCP Analyze builds on the company’s enterprise platform to deliver real-time context around credential leaks, mapping what a compromised secret can access, its inheritance, and the potential blast radius. Instead of spending hours untangling complex IAM permissions, teams can assess exposure in minutes and prioritize the riskiest leaks first. Nick Washburn, Senior Managing Director at Intel Capital, says the investment reflects the urgency of protecting credentials in the age of co-pilots and automation. “In the era of coding co-pilots and third-party APIs, compromised credentials remain one of the leading causes of data breaches,” he said. “With the introduction of TruffleHog GCP Analyze and this latest round of funding, Truffle Security accelerates its mission to make secrets management frictionless, secure, and comprehensive.” According to Verizon’s 2025 Data Breach Investigations Report, credential misuse continues to be one of the top causes of security incidents. That insight underscores why Truffle Security’s focus on non-human identities has caught the attention of major enterprises across tech, retail, and financial services. In the past year, the company has more than doubled its revenue and expanded its customer base across the Fortune 1000. Security experts say this problem isn’t theoretical—it’s happening every day. “Secrets are one of the most likely ways that organizations get compromised. You don’t need fancy exploits if the secrets are right there in the clear,” said Travis McPeak, Security Engineer at Anysphere, the company behind Cursor. For Dylan Ayrey, Truffle Security’s founder and CEO, the mission is about closing those gaps before they lead to real damage. “We are so excited and humbled to grow our community and technology into solving more and more pain points non-human secrets can cause—expanding beyond analyzing secret leaks into secret inventory and productivity tooling,” he said.
