Multifactor's Post-Quantum Vault Aims to Lock Down Credentials for AI Agents

The YC-backed startup raised $15 million to build a zero-trust security platform for a future where software acts on its own.

By

About Multifactor

Published

The next security breach may not be caused by a human clicking a malicious link. It could be an AI agent, acting on its own instructions, inadvertently exposing the credentials it was given to access a bank account or a corporate dashboard. This is the patient zero scenario that Multifactor, a Y Combinator startup founded just last year, is built to treat. Its proposed remedy is a post-quantum security platform that functions as a cryptographic vault, allowing both people and autonomous software to use online accounts without ever seeing a password [PRNewswire, Dec 2025].

The Cryptographic Wedge

At its core, Multifactor is betting that the old model of credential sharing,copying passwords into a shared doc or a legacy password manager,is fundamentally broken for an era of AI coworkers. The company's platform uses patented cryptographic techniques to create what it calls "read-only links" for account access [PRNewswire, Nov 2025]. In practice, this means an employee could grant an AI agent permission to log into a Salesforce instance to pull a report, but the agent would never receive the actual login credentials. The access is proxied through Multifactor's zero-trust layer, which handles authentication, authorization, and maintains an audit trail of everything the agent does [Y Combinator, 2025]. The company has launched a free password manager as its initial wedge into the market, positioning it as the first built for the AI era [PRNewswire, Nov 2025].

A Team Built for the Long Game

The technical ambition of the bet is matched by a founding team with deep roots in both cybersecurity and startup building. Co-founder Vivek Nair holds a Ph.D. from UC Berkeley, where his research focused on inferring personal data from VR headset movements, a niche that speaks to a nuanced understanding of privacy risks [Fortune, Aug 2023]. He is a Hertz Foundation fellow and has a track record as a serial entrepreneur, having co-founded remote work tool Pragli and software metering company StacksWare, which was acquired by Avi Networks (VMware) [The Org, 2026] [TechCrunch, Apr 2020]. His co-founder, Colin Roberts, brings a Ph.D. to the partnership [Menlo Times, 2025]. This blend of academic rigor in security and operational experience in shipping software has convinced a notable roster of investors to back the early vision.

The company's $15 million seed round, closed in December 2025, was led by Nexus Venture Partners and included Y Combinator, Taurus Ventures, and a list of angel investors like former DoorDash executive Gokul Rajaram and Front CEO Mathilde Collin [PRNewswire, Dec 2025]. The round is substantial for a three-person team just out of YC, signaling strong conviction in both the problem space and the founders' ability to navigate it.

Seed Round (Dec 2025) | 15 | M USD

The Unproven Motion in a Nascent Field

For all its promise, Multifactor is planting a flag in a field that is still mostly theoretical. The market for securing AI agents is nascent, and the company has not yet disclosed any enterprise customers or deployment metrics. The success of its wedge depends on a future where autonomous AI agents are both pervasive and trusted enough to be given access to critical business accounts,a reality that is more imminent in some tech-forward circles than in regulated industries like healthcare or finance. Furthermore, the competitive landscape, while currently quiet, could heat up quickly. Established identity and access management (IAM) giants like Okta or emerging secrets management platforms could extend their offerings into the AI agent space, leveraging existing enterprise relationships.

The company faces several specific execution risks that will define its next phase:

  • Market timing. Widespread adoption of autonomous AI agents capable of complex tasks is still on the horizon. Multifactor must navigate the gap between today's limited use cases and the future it is building for.
  • Enterprise adoption. Selling a new security paradigm into risk-averse IT departments is historically difficult. The platform will need to demonstrate smooth integration with existing IAM stacks and provide irrefutable audit trails to meet compliance standards.
  • Cryptographic trust. The entire value proposition rests on the integrity and performance of its proprietary, post-quantum cryptographic vault. Any vulnerability or significant latency introduced by the layer could undermine its core utility.

What to Watch in the Next Twelve Months

The coming year will be less about technological breakthroughs and more about proving the model in the wild. The key signals for Multifactor will be pragmatic. Watch for the announcement of its first major enterprise design partners, particularly in sectors like fintech or SaaS where automation is already high. The evolution of its free password manager into a paid, team-oriented product will be a critical test of its initial wedge strategy. Finally, given the seed round's size, strategic hires in enterprise sales and security engineering will indicate how the team is scaling to meet the challenge.

The standard of care today for sharing account access with an automated process is often a brittle and risky affair. It involves creating a dedicated service account with hard-coded credentials, which then sit in a configuration file or a separate secrets manager. If that process needs to be replicated for a new AI tool, the credentials are often shared again, creating a sprawling web of potential exposure points with no unified audit trail. Multifactor's bet is that this patchwork system is the disease state for modern, automated operations, and that a unified, cryptographic platform is the required treatment for organizations that want to safely embrace agentic AI.

Sources

  1. [Y Combinator, 2025] Multifactor Company Profile | https://www.ycombinator.com/companies/multifactor
  2. [PRNewswire, Dec 2025] YC F25 Startup Multifactor Raises $15M Seed Round to Make Online Accounts Safe for AI Agents | https://www.prnewswire.com/news-releases/yc-f25-startup-multifactor-raises-15m-seed-round-to-make-online-accounts-safe-for-ai-agents-302633496.html
  3. [PRNewswire, Nov 2025] YC Startup Multifactor Launches the First Password Manager Built for the AI Era | https://www.prnewswire.com/news-releases/yc-startup-multifactor-launches-the-first-password-manager-built-for-the-ai-era-making-anything-a-read-only-link-302613088.html
  4. [Fortune, Aug 2023] A.I. can use VR headset data to predict personal data, researchers warn | https://fortune.com/2023/08/10/ai-vr-headset-data-predict-user-personal-data-research/
  5. [The Org, 2026] Vivek Nair - Co-Founder, CTO at Pragli | https://theorg.com/org/pragli/org-chart/vivek-nair
  6. [TechCrunch, Apr 2020] Replace non-stop Zoom with remote office avatars app Pragli | https://techcrunch.com/2020/04/14/pragli-remote-office-application/
  7. [Menlo Times, 2025] Multifactor Raises $15 Million Seed Round to Make Online Accounts Safe for AI Agents | https://www.menlotimes.com/post/multifactor-raises-15-million-seed-round-to-make-online-accounts-safe-for-ai-agents

Read on Startuply.vc