The startup Delve has officially parted ways with Y Combinator, as confirmed by its removal from the accelerator's portfolio directory.
Delve's COO, Selin Kocalar, announced on X that YC and Delve have severed their relationship, reflecting on fond memories of their interview at MIT.
The Rise and Controversy of Delve
Delve, a compliance platform leveraging AI to automate 70% of security questionnaires and provide templates for board notes, emerged as a promising player in the space.
Anonymous whistleblower DeepDelver, claiming to be a former customer, accused Delve of offering fake compliance services through certification mills and misleading clients on regulations.
Further allegations included repurposing an open-source tool as proprietary without credit and security lapses allowing data access by researchers.
A related malware discovery in customer project LiteLLM compounded the issues, raising broader security concerns.
Delve's Defense and Apology
In response, Delve published a blog post attributing the leaks to a malicious attacker who exfiltrated data for a smear campaign, backed by cybersecurity investigations.
CEO Karun Kaushik apologized on X for growing too fast and falling short of standards, expressing deep regret to customers for inconveniences.
To rebuild trust, Delve committed to complimentary re-audits, penetration tests, and clarifying that templates are mere starting points.
Impacts and Future Outlook
Investors like Insight Partners temporarily distanced themselves by scrubbing promotional posts amid the fallout.
The split underscores risks in rapid-growth startups and potential trust erosion in accelerators like Y Combinator.
Looking ahead, Delve aims to clean its network, enhance standards, and navigate the controversy toward recovery.
Alfred Lee
