Updated:
Cybereason
Cybereason, acquired by LevelBlue in 2025, built an AI-driven XDR platform validated by MITRE.
Cybereason
A robust XDR platform validated by MITRE for detection and response is enhanced by elite cyber resilience expertise. Talk to an Expert today.
General information
Firm type
Asset Manager
Year founded
—
AUM
Undisclosed
Location
Region
North America
Country
United States
City
Boston
Corporate office
Boston, MA, United States
Sector focus
Frequently asked questions
Is Cybereason still an independent company?
No. Managed security provider LevelBlue completed its acquisition of Cybereason in May 2025, according to the company's website. The combined entity integrates Cybereason's XDR platform with LevelBlue's managed detection, response, and retainer services. The acquisition closed after Cybereason had raised over $750 million in venture backing from firms including SoftBank and Alphabet's CapitalG.
What exactly is a MalOp?
A MalOp, short for malicious operation, is Cybereason's term for a fully contextualized visualization of an entire attack from root cause to every affected endpoint and user. Instead of alert-centric triage, the platform correlates multi-stage attacker behavior into a single storyline, which Cybereason claims reduces investigation and remediation time significantly. The concept anchors the company's differentiation from alert-heavy EDR tools.
Does Cybereason run its own SOC, and do they offer managed services?
Yes. Cybereason provides 24/7 managed detection and response out of its global security operations centers, alongside retainer-based incident response and compromise assessment engagements. Post-acquisition by LevelBlue, these services are amplified by LevelBlue's existing elite human expertise and IR bench. The combined entity positions itself to underwrite resilience outcomes, not just software delivery.
How was Cybereason capitalized before the LevelBlue acquisition?
Cybereason raised over $800 million in funding across multiple venture rounds, with notable backers including SoftBank Group, Alphabet's CapitalG, and CRV. The company used the capital to scale engineering, build out global offices, and sustain growth against well-funded competitors like CrowdStrike and SentinelOne. Exact post-money valuations at exit have not been publicly disclosed.
What is Cybereason's relationship with the MITRE ATT&CK evaluations?
Cybereason has promoted that it achieved 100% detection, visibility, accuracy, and SOC efficiency in a recent MITRE ATT&CK Enterprise Evaluation — the industry's most rigorous adversary emulation framework. The firm uses this result to anchor technical credibility in competitive bake-offs against other EDR/XDR vendors. The exact evaluation round and adversary profile tested are cited on the firm's website.
Profile maintained by Altss using OSINT (open-source intelligence), regulatory filings, licensed data partners, and verified direct submissions. Read the methodology. Last updated: . Continuous refresh with full update cycles at least every 30 days.
Need institutional-grade insight on asset managers?
Altss delivers:
Prefer a guided tour?
We’ll walk you through: