With 80% of cyber incidents now identity-based, Saporo raises €7 million to address the gaps attackers exploit

Lausanne cybersecurity startup, Saporo – a graph-native identity security company that lets defenders see enterprise environments the way attackers do – has raised €7 million in Series A funding.

The round was led by TIN Capital, with participation from G+D Ventures, CDP Venture Capital through its Corporate Partners I – ServiceTech fund, XAnge, Lightbird VC and Session VC.

Beyond capital, each investor will play a strategic role in Saporo’s growth: TIN Capital will support the expansion of its network and business in Northern Europe, G+D Ventures will facilitate market development in Germany, and CDP Venture Capital will drive opportunities in Italy.

Olivier Eyries, co-founder and CEO, Saporo says: “The identity security market is deceptive. ITDR and access graphs create a false sense of security, often not fixing systemic risk and not giving the real attacker’s perspective. In large enterprises, identity graphs routinely surface over a billion attack paths. Fixing them one by one is effectively a century-long project.”

In 2025, EU-Startups reported only a small number of funding rounds in areas adjacent to Saporo’s graph-native identity security focus.

These included WiseBee, a US-Bulgarian autonomous cyber-defence startup, which secured €2.1 million to advance its agentic defence platform, and Norway-based Bsure, which raised €1.8 million to help organisations detect risky and inactive Microsoft accounts within their identity infrastructure.

With a combined total of roughly €3.9 million flowing into related startups, Saporo’s €7 million Series A stands out as one of the largest identity-focused funding events covered in 2025.

The comparatively smaller rounds for WiseBee and Bsure suggest that much of the sector remains early-stage, while Saporo’s more substantial raise may reflect growing investor confidence in identity-centric security approaches and provide the company with greater capacity for expansion across Europe and into the US.

“Our customers use Saporo to remove around eighty percent of those paths within the first year, which delivers faster risk reduction and far lower remediation effort. With this pan-European investor group, we are scaling to meet demand from large enterprise and regulated sectors across Europe, while building a measured footprint in the US,” adds Eyries.

Founded in 2021, Saporo maps and analyses millions to billions of potential attack paths across hybrid identity systems – spanning on-prem Active Directory, cloud directories and non-human identities – so security teams can proactively eliminate the riskiest routes to critical assets.

The company has recorded 100% YoY growth since its previous round and plants to use the capital to expand one-click and assisted remediation workflows, extend hybrid identity coverage beyond Microsoft Active Directory, Entra ID and AWS to Google Workspace/Cloud and GitHub, as well as strengthen its presence in France, Switzerland, Benelux, Germany, and Italy, with selective US expansion.

The company currently employs people across Switzerland, France and the US. Saporo will scale its R&D, sales and marketing teams throughout 2026, supported by engineering productivity gains from internal AI adoption that have reportedly increased output by 30-40%.

Guillaume Eyries, co-founder and CEO, Saporo explains: “Attackers don’t break in – they log in. The question isn’t whether a single identity gets compromised, but what it can do next. Saporo gives defenders the attacker’s view of their hybrid identity fabric so they can remove risky paths before an incident. This round lets us double down on automation and broaden multi-cloud and developer-ecosystem coverage to match how real-world attacks traverse Microsoft, Google, AWS, Okta and GitHub.”

According to the company, identity-based attacks now drive roughly 80% of cyber incidents, and more than 90% of successful breaches stem from gaps in access segmentation across Active Directory, Entra ID, AWS, Okta and other identity systems.

Analysts estimate that 85% of breaches could be disrupted through stronger identity controls, yet most organisations still struggle with the scale of over-permissions, misconfigurations and shadow admins – 40% of which can be exploited in a single step.

Roel Reijnen, Lead Investor, TIN Capital says: “Saporo is redefining the future of identity security. The team’s talent, ambition, and ability to execute are simply exceptional. Their technology outperforms every competitor we’ve seen – delivering real, hard risk reduction instead of adding dashboards and complexity. This is the strongest European platform in the market, and together with CDP Venture Capital, G+D Ventures and XAnge, we’re backing Saporo to become a clear ISPM category leader.”

This ongoing resilience is driving strong adoption across financial services, healthcare, government, manufacturing and technology with over 140% customer retention, where hybrid identity complexity and regulatory pressure are highest.

Powered by graph databases and graph theory, Saporo analyses paths across on-prem AD, cloud directories and machine identities. It surfaces the most dangerous paths to critical assets and the minimal configuration changes needed to break most of them – work that is allegedly impossible to perform manually.

EU-Startups also covered Saporo’s €2.3 million pre-Seed round in 2022.