Mirrortab Assembles Strategic Cybersecurity Advisory Board To Set A New Standard In Web Security

Board Includes Top Security and Risk Executives With Leadership Experience at Reddit, SoFi, Databricks, Bank of America, and Chime

SAN FRANCISCO--(BUSINESS WIRE)--#API--MirrorTab, a provider of innovative web app and API security technology, today announced the formation of its Cybersecurity Advisory Board (CAB).

The board brings together top cybersecurity and fraud experts to set a new standard in web security, protecting web apps, APIs, and end-user sessions. Hackers are leveraging AI and browser automation to bypass defenses, making cyber threats more adaptive and harder to detect. As AI adoption accelerates, MirrorTab and its advisory board are working to stay ahead of the evolving TTPs (tactics, techniques and procedures) used by bad actors to conduct fraud and launch increasingly sophisticated malware, bot, data scraping, API manipulation, and session hijacking attacks.

Meet the Inaugural Members of MirrorTab’s CAB:

• Omar Khawaja - Omar leads Databricks' Field Security practice globally, teaches at Carnegie Mellon’s CISO program, and sits on the boards of HITRUST and the FAIR Institute. Previously, he spent nine years as the CISO of Highmark Health, a $26B company, and is currently leading a team that developed an actionable AI security framework for more than 11,000 data and AI customers at Databricks.
• Allison Miller - Allison formerly served as the CISO and VP of Trust at Reddit, and has decades of experience at the intersection of cybersecurity, fraud, and abuse. With experience at Google, Electronic Arts, Visa, and PayPal, she is known for implementing real-time risk prevention and detection systems, with a proven track record of building and protecting customer-facing platforms and services (both B2C and B2B).
• Kevin Moss - Kevin was formerly SoFi’s Chief Risk Officer, and prior to that served as EVP and Chief Risk Officer for the Wells Fargo Consumer Lending Group. A former college professor, he brings his more than 40 years of banking and financial services experience to his role as an advisor to companies that provide risk management and lending/payment solutions in the financial services industry.
• Jeff Trudeau - Jeff is the VP, CIO, and CSO at Chime, the largest fintech neobank. With over 30 years of security leadership across several verticals, he focuses on applying risk management to a company's business strategy to drive positive results. Prior to Chime, Jeff served as CSO at Credit Karma, and held leadership roles at Sutter Health, Kaiser Permanente, Aveksa, KPMG, Netegrity, and UBS.
• Sounil Yu - Sounil is the CTO of Knostic and is recognized by Security Magazine and SC Media as one of the industry's most influential figures. He created the Cyber Defense Matrix and the DIE Triad, which are reshaping approaches to cybersecurity. For these and other contributions, he was inducted into the Cybersecurity Hall of Fame. He previously served as the Chief Security Scientist at Bank of America and brings more than 30 years of security experience to the CAB.

Addressing the New Cybersecurity Battleground

“Today’s hackers are getting smarter, faster, and more targeted. They have weaponized AI and more advanced tooling to bypass web security controls. They’re targeting the gray area of web sessions, the fastest path to revenue. By infiltrating end-user sessions, attackers harvest data, cookies, and tokens - leading to transaction fraud and data exploitation,” said Omar Khawaja, a board member for both HITRUST and the FAIR Institute, and a member of the Carnegie Mellon University faculty (CISO Program). “This critical coverage gap lies beyond the reach of traditional web security tools like WAFs and bot management. The risks become even greater during high-stakes activities, such as payment transfers and the use of health data, to proprietary data sharing, sensitive transactions, and scraping-prone sessions.”

A New Standard for Web Security

To build a more secure future, forward-thinking security teams are adding a critical defense layer to protect both end-user sessions and web applications. These teams are adopting solutions that obfuscate web app sessions, frontend logic, and APIs to prevent snooping, scraping, and credential stuffing; and to block hacking, bots, and malware at the session level.

Unlike traditional solutions that challenge users with captchas and verification checks, MirrorTab challenges the actual threats - stopping scraping, tampering, and manipulation. MirrorTab creates a secure wrapper, ensuring that even if the client is untrusted or compromised, no data leaks occur when the session is protected with MirrorTab.

Looking Ahead

MirrorTab recently announced $8.5 million in seed funding from Valley Capital Partners, Google Ventures, Ludlow Ventures, Altman Capital Fund, NextGen Venture Partners, and Alumni Ventures.

“Our Advisory Board brings together top cybersecurity thought leaders with decades of experience,” added Brian Silverstein, CEO and Founder of MirrorTab. “With their guidance, we’re closing critical web security gaps and delivering the prevention capabilities today’s security teams need. Together, their expertise and our advanced technology will set a new standard in web security, ensuring the highest level of protection for end-user sessions.”

Meet MirrorTab at RSAC 2025

MirrorTab will showcase its innovative web security technology at RSAC 2025, taking place from April 28 - May 1, 2025, in San Francisco, CA. The company will be at booth ESE 44 in the RSAC Early Stage Expo. Additionally, Founder and CEO, Brian Silverstein, will present “Browsers Are the New Battleground: How Hackers Bypass Web Security” on Thursday, May 1, 2025, from 12:50 PM – 1:10 PM PT in the RSAC Early Stage Expo Briefing Center #2.

For more information, please visit: www.mirrortab.com.

About MirrorTab

MirrorTab is a cybersecurity company providing advanced web security solutions that defend web applications and APIs against cyber threats like hacking and malware. By eliminating the client-side attack surface with proprietary isolation technology, MirrorTab blocks harmful extensions, middleware, and malware from accessing APIs, infrastructure, data, and code on any web platform. This server-side solution, with deep integration into existing defense layers (WAF, DDoS, etc.), provides robust protection on any browser without impacting user experience or requiring additional software or plugins. For more information, visit www.mirrortab.com and follow us on LinkedIn.

Contacts

Media:
Jeff Drew
Guyer Group for MirrorTab
P: (617) 233-5109
E: mirrortab@guyergroup.com