Listen to this article
Echo has raised $15 million in seed funding to develop AI-powered application infrastructure that eliminates software vulnerabilities at the container image level. Led by Notable Capital and Hyperwise Ventures, the funding supports Echo’s approach of using AI agents to build and maintain clean, secure base images. The platform reduces remediation timelines from 120 days to 24 hours and helps enterprises achieve compliance without overhauling existing systems.
Why the Software Security Model Is Broken
Software development is accelerating due to AI, but this speed is expanding the vulnerability attack surface across the ecosystem. Echo addresses this issue by targeting the root cause: container base images. These images serve as the foundation for most applications, yet they often carry hidden vulnerabilities that are difficult to eliminate using traditional tools.
In 2025, vulnerability exploitation has increased by 34%, matching a 61% year-over-year surge in the number of newly discovered software vulnerabilities. Echo’s founders argue that existing solutions prioritize chasing and categorizing vulnerabilities rather than removing them at the base level. Echo was created in response to what it views as a system that reacts instead of prevents.
Where Echo Gets Its $15M and Who’s Backing It
Echo secured $15 million in seed funding to accelerate its mission. The round was led by Notable Capital and Hyperwise Ventures, with additional support from SVCI. The investment is intended to support growth following a series of successful early deployments.
Oren Yunger, Managing Partner at Notable Capital, emphasized that Echo’s infrastructure-first approach could unlock significant cost savings across the $17 billion vulnerability management sector. Nathan Shuchman, Managing Partner at Hyperwise Ventures, noted that Echo removes the burden of managing vulnerabilities from businesses entirely.
How Echo Uses AI to Build Clean, Secure Infrastructure
Echo’s platform leverages AI agents to perform the following key tasks:
- Analyze the core elements of standard open-source container images
- Rebuild clean base images from scratch, stripping out vulnerabilities
- Continuously patch those images as new threats are discovered
This method ensures that Echo’s container images maintain full functional parity with original images, while substantially reducing the potential for exploitation. The AI-driven architecture builds a new layer of security where vulnerabilities are eliminated during image construction, not after deployment.
Recommended: HeroDevs Receives $125M Strategic Growth Investment From PSG And Album
Why Echo’s Clients Are Cutting Security Response Times by 80%
The average remediation time for vulnerabilities in the industry is 120 days. Echo claims to reduce this timeline to just 24 hours. This reduction is achieved by eliminating the need for traditional patching and scanning cycles, thanks to the AI-generated clean images.
Scott Roberts, CISO of UiPath, stated that Echo’s vulnerability-free base images have significantly reduced patching workloads and saved both time and money for his team. Echo’s solution integrates with existing security tools, including scanners and CNAPPs, making adoption easier and providing ongoing visibility.
What Makes Echo’s Infrastructure FedRAMP-Friendly and Easy to Adopt
Echo provides ready-to-deploy container images that are FIPS-validated, supporting cloud-based companies that are working toward FedRAMP compliance. This is particularly relevant for businesses seeking U.S. federal contracts.
Unlike other solutions, Echo does not require its customers to adopt proprietary or non-standard operating software. The platform is built for ease of use and minimal disruption, offering the flexibility to opt in or out as needed. This lowers the barrier to adoption and shortens deployment timelines for security teams.
What Echo’s Strategy Signals About the Future of Application Security
Echo’s approach centers on removing vulnerabilities at the infrastructure level using AI rather than treating vulnerabilities as an operational burden. By addressing the issue within the base images, Echo positions itself as an infrastructure company with security outcomes, not a traditional cybersecurity vendor.
The $15 million investment reflects growing interest in solutions that create secure-by-design environments. Echo’s platform reshapes expectations for remediation speed, compliance readiness, and operational simplicity, offering a model where vulnerabilities are no longer assumed to be an inevitable part of software development.
Please email us your feedback and news tips at hello(at)dailycompanynews.com
