MokN has raised $15m in Series A funding led by GV, formerly Google Ventures, to expand its credential-theft protection platform and scale its “Phish-Back” solution in the UK.
The cybersecurity company, which specialises in protection against credential theft, said the round also included participation from Datadog, existing investors Moonfire and OVNI Capital, and angel investors.
MokN said the funding will support the development of a multi-product platform dedicated to active protection against identity theft, alongside continued international expansion. The company plans to open new offices in the US and increase hiring across sales and marketing, engineering, and customer success in the UK and the US.
The company describes its category as Active Identity Recovery, an approach designed to identify and recover compromised credentials before attackers can use them or before they appear on dark web sources. MokN said more than one million users are already protected across major corporations and mid-sized companies, including organisations in finance, retail, healthcare, and Fortune Global 500 businesses.
Its first product, Baits, deploys realistic decoy access points, such as VPN or webmail portals, that replicate a company’s environment. When attackers attempt to log in using stolen credentials, they hand those details back to defenders, allowing security teams to validate the compromise and trigger recovery workflows.
Luna Schmid, partner at GV, said: “We invested in MokN because of Gautier’s founder-market fit as a former SOC manager and our deep conviction in the team’s ability to address a critical gap in the cybersecurity market,”
“With their initial product, Baits, they’ve developed a sophisticated wedge that turns the tide on attackers by leveraging high-fidelity decoys to trigger immediate, automated recovery workflows. We believe their approach is a game changer for enterprises looking to neutralise credential theft before it can escalate.”
The funding lands at a time when identity-based attacks remain one of the most difficult areas of enterprise cybersecurity to contain. The UK Government’s Cyber Security Breaches Survey 2025/2026 found that 43% of businesses reported experiencing a cyber security breach or attack in the previous 12 months, while phishing remained a dominant feature of cyber crime reported by affected organisations.
MokN also cited ENISA’s Threat Landscape 2025 in arguing that phishing remains a primary means of intrusion in Europe. The pressure is particularly acute for larger organisations, where attackers can use stolen credentials to test remote access points, cloud applications, webmail systems, contractor portals, and other exposed services.
Akshat Goenka, partner at Moonfire, said: “We backed MokN because they are addressing a fundamental blind spot in identity security. Most solutions only react once credentials are misused, whereas MokN operates before exploitation, recovering identities that would otherwise remain invisible. What has impressed us is not just the technical insight, but the speed at which Gautier and the team have translated that into real enterprise adoption and expansion. We believe MokN is building a new control layer in cybersecurity, and this round positions them to establish that category globally, starting with the US and the UK”,
The company’s positioning reflects a broader shift in cyber defence, where detection and response models are being extended toward earlier validation of compromise. Credential theft often creates a lag between exposure and exploitation, particularly when stolen details are tested across multiple systems or traded before use. MokN’s approach is built around narrowing that window.
Gautier Bugeon, CEO and co-founder of MokN, said: “As a former SOC Manager, I experienced firsthand how compromised identities remained a critical blind spot. MokN was built to change that. Today, we work with major enterprises to define a new category—Active Identity Recovery—giving them a proactive edge against identity-based attacks”,
The next stage for the business will test whether Active Identity Recovery can move from a specialist technique into a broader identity security control layer. With fresh backing from GV and other investors, MokN is now seeking to build beyond its initial product wedge, expand its platform, and establish the UK and US as priority markets for growth.
You must be logged in to post a comment.