Challenge
- High-value stablecoin accounts and third-party liquidity providers (Coinbase, etc.) make Fuze a target for sophisticated attackers, including nation-states.
- Blind spots in detection coverage across the company’s software development environment, from version control systems to collaboration software, and liquidity provider integrations, created a risk of insider threats and unauthorized access.
- Difficulty investigating alerts, often requiring hours of debugging per incident.
- With no SOC in place, the initial plan was to hire 2–3 security engineers to monitor alerts, an expensive approach that would take time for them to ramp up and still leave gaps in coverage.
Solution
- Exaforce’s MDR team continuously monitors high-value cloud and digital wallet services and access, enriching alerts with identity context to flag abnormal activity and block advanced threats before impact quickly.
- Exaforce integrated with GitHub, GWS, AWS, Fireblocks, and more to provide unified visibility and dynamic detections across Fuze’s most critical assets, eliminating blind spots and surfacing real threats.
- With Exabots filtering false positives and MDR analysts handling every remaining alert, Fuze cut investigations from hours to minutes, freeing engineers from the busywork.
- Exaforce delivered instant SOC capabilities, including 24/7 monitoring, automated triage, and expert-led incident response across email, endpoint, cloud infrastructure, and network, without the cost and complexity of staffing an internal team.
Highlights
75% of AWS GuardDuty alerts
automatically triaged as false positives
94% reduction in MTTI
across their environment
4 days, 6 person-hours
saved every 30 days
Protecting the future of finance
Fuze is an emerging powerhouse in digital finance, covering digital assets-as-a-service for banks and launching a full stablecoin platform for both consumers and businesses. With real monetary value flowing through its accounts, Fuze quickly became a high-value target for cybercriminals. The company relies on third-party liquidity providers like Coinbase to power its platform, adding another layer of security complexity. Before Exaforce, Fuze had no dedicated SOC. Security operations were handled piecemeal by SREs using open source tools, leaving blind spots in their security coverage and little confidence in their ability to detect or respond to threats.
By adopting Exaforce’s MDR service that leverages its full-lifecycle AI SOC platform, Fuze gained instant SOC capabilities without the cost and complexity of building one in-house. Within weeks, the company had 24/7 monitoring, automated false positive handling, and enriched visibility across its most critical assets, including cloud infrastructure, repositories, collaboration software, wallet backends, and more.
Exaforce immediately added visibility, with highly accurate detections for their critical systems, including GitHub where they had no previous detections. With Exabots triaging a majority of the alerts as verified false positives and MDR analysts investigating every confirmed finding, incidents were resolved quickly and without draining engineering time. GuardDuty alerts that once consumed two hours of debugging per case now require almost zero internal effort, with Exaforce providing clear answers instead of raw alerts. Immediate wins included surfacing suspicious activity in GitHub that had previously gone unmonitored, enriching OIDC app access from liquidity providers with identity context from their collaboration software, and proactively hunting for potential insider threats.
“Before Exaforce, our team was overwhelmed and lacked the expertise to do what we needed to do to protect our users,” said Srijan R Shetty, Co-Founder & CTO at Fuze. “Now we see everything, with the visibility and coverage to protect our entire platform.”
As Fuze expanded its offering and scaled its stablecoin platform, Exaforce provided not just detection and response but also trusted investigation and hunting. By continuously monitoring and correlating data across cloud, code, identity, and liquidity providers, Exaforce helped Fuze close visibility gaps, reduce risk, and strengthen customer trust in their financial services.
“GuardDuty alerts used to eat up hours of our team’s time. With Exaforce MDR, that dropped to almost zero. We’re not just getting alerts, we’re getting answers,” said Srijan.
With Exaforce, Fuze moved from operating with partial, manual security coverage to running with full SOC capabilities, including continuous monitoring, automated triage, prioritized investigations, and expert-led incident response across email, endpoint, cloud, and network. The result is a safer, more resilient crypto services platform, with reduced risk, freed engineering resources, and faster response to threats.
