# Cypherleak

> Automated cyber risk monitoring and scoring for insurance underwriters

## At a glance

| Field | Value |
| --- | --- |
| Category | Underwriting & Risk |
| Type | Solutions Provider |
| Region | EMEA |
| Headquarters | Abu Dhabi, UAE |
| Founded | 2022 |
| Stage | Startup |
| Employees | 1-10 |
| Funding | Seed |

## Overview

Cypherleak is a cyber risk scoring and monitoring platform for insurers, underwriters, and enterprises assessing cyber exposure. The company uses a domain name alone to generate continuous risk assessments, enabling cyber insurance carriers to evaluate applicants and price premiums without requiring technical security expertise from the underwriter.

The platform delivers a composite cyber risk score -- CypherScore -- on a 0-100 scale derived from over 50 data points, including attack surface mapping, dark web credential exposure, vulnerability scanning, and active breach indicators. Coverage spans external-facing assets, leaked passwords, ransomware listings, and PII records on criminal marketplaces. The SaaS interface provides results through a web dashboard with AI-generated remediation guidance.

Founded in April 2022 and based at Hub71 in Abu Dhabi, Cypherleak has grown to serve more than 1,000 corporate customers across Europe and the MEA region, primarily SMEs. The company closed a USD 750,000 seed round in September 2023 led by QIC Digital Venture Partners (Qatar Insurance Company), Maroc Numeric Fund II, Hub71, and Sunny Side Venture Partners.

## Products & services

### CypherScore \(Cyber Risk Rating\)

An AI-powered risk scoring engine that assigns real-time cyber risk ratings from 0 to 100 using more than 50 passively gathered data points from a company's domain. Insurers use CypherScore for underwriting assessment, risk appetite definition, premium pricing, and ongoing monitoring throughout the policy period.

**Key features:**

- Real\-time, continuously updated risk score
- 50\+ data points aggregated passively from the domain
- Point\-in\-time underwriting assessment and ongoing monitoring
- Consistent scoring methodology for carrier underwriting workflows

*Target users:* Cyber insurance underwriters, insurance carriers, MGAs

### Dark Web and Password Leak Monitoring

Monitors public and dark web sources for exposed credentials, ransomware data dumps, machine access listings, and customer PII on criminal forums and IRC channels. Uses only the organization's domain to identify affected accounts and leaked records.

**Key features:**

- Dark web and criminal marketplace scanning
- Exposed credential detection by domain
- Ransomware data leak alerts
- PII and machine access listing identification

*Target users:* Insurance carriers, enterprises, SMEs

### Attack Surface Management \(ASM\)

Maps external internet-facing assets of a company through a web-based interface to give insurers and security teams an accurate view of third-party and own-network exposure.

**Key features:**

- Full external asset discovery from domain
- Internet\-facing infrastructure mapping
- Web\-based interface for insurer and enterprise users
- Supports both insurance due diligence and internal security use cases

*Target users:* Insurance carriers, enterprise security teams

### Vulnerability Scanner

Automated scanning of infrastructure to identify vulnerabilities. Uses machine learning and risk models to deliver customized security ratings.

**Key features:**

- Automated infrastructure vulnerability scanning
- ML\-driven risk modeling
- Customized security rating output

*Target users:* Enterprises, insurance carriers

### Professional Security Services

Cypherleak offers security professional services alongside its SaaS platform, including penetration testing (web applications, networks, APIs, social engineering), security audits (ISO 27001, SOC 2, GDPR compliance), managed security/SIEM management, incident response, security training (phishing simulations), and vCISO services.

**Key features:**

- Penetration testing across web, network, API, and social engineering vectors
- Compliance audit support \(ISO 27001, SOC 2, GDPR\)
- 24/7 managed security and SIEM
- Incident response and digital forensics
- vCISO advisory services

*Target users:* SMEs, enterprises without in\-house security teams

## Category & focus

- Subcategories: Cyber Risk Scoring, Attack Surface Management, Dark Web Monitoring
- Insurance verticals: Specialty/E&S, P&C Commercial
- Target customers: Carriers, MGAs/MGUs

## Notable customers

- 1,000\+ corporate end\-users across Europe and MEA \(as of September 2023\), primarily SMEs

## Links

- Website: <https://cypherleak.com>
- Directory profile: <https://insurtechlist.com/companies/cypherleak/>
- Linkedin: <https://www.linkedin.com/company/cypherleak>
- Portal/login: <https://portal.cypherleak.com/login>

---

*Last updated: 2026\-06\-13*