RiskFront Lab, a mobile app defense startup led by CEO Tomas Brown, has secured $3 million in seed funding from MANTIS Venture Capital, Sequoia Capital, Original Capital and Next Play Ventures.

The company develops runtime security for Android and iOS apps after the app package has already been built. Its approach is aimed at teams that want to protect mobile releases from tampering, instrumentation, debugging, compromised device state, screen capture risk, network interception and modified client behavior without moving every security decision into feature code.

RiskFront Lab's product is built around a release-lane workflow. Teams submit or route a build artifact, attach protection policies, review what was applied, and then monitor runtime signals tied to app version, device state, severity and policy action. The platform is also designed to create evidence that can be used by AppSec, mobile engineering, support, risk and audit teams.

The company is entering a market where mobile apps are no longer simple front ends. Banking, payments, fintech, healthcare access, e-commerce, subscription media, gaming and enterprise apps now contain valuable logic and sensitive user flows on devices that companies do not control. That makes the mobile runtime a practical target for attackers who want to repackage an app, bypass checks, automate abuse or inspect protected flows.

RiskFront Lab says its AI-assisted analysis layer helps turn noisy runtime events into reviewer-ready summaries. The system clusters related signals, suggests severity and routing, and drafts evidence around release versions and policy changes. Enforcement remains tied to customer-defined rules, including warning, blocking, limiting sensitive actions or escalating the event for human review.

With the seed round, RiskFront Lab plans to continue building product depth around post-build protection, release evidence and operational integrations. The goal is not to replace pre-release testing, but to cover the gap between a clean build and the messy conditions of production devices.

For Brown, the opportunity is about making mobile security easier to operate. He said in a prepared press-style quote, "RiskFront Lab is designed to help AppSec set policy, engineers keep shipping, and risk teams understand what each runtime event means."