Embattled startup Delve has ‘parted ways’ with Y Combinator

The contention astir Delve appears to person outgo the compliance startup its narration with accelerator Y Combinator.

Delve is nary longer listed among YC’s directory of portfolio companies, and the Delve page seems to person been removed from the YC website. In addition, the startup’s COO Selin Kocalar posted connected X that “YC and Delve person parted ways.”

“I inactive retrieve the time we took our YC interrogation astatine MIT,” Kocalar said. “We’re truthful grateful to the assemblage and each laminitis person we’ve made.”

YC isn’t the archetypal capitalist to region themselves from Delve. Insight Partners besides appears to person deleted posts astir its concern successful the company, though its superior blog station was aboriginal restored.

Meanwhile, Delve continues to propulsion backmost against anonymous claims that it misled clients by telling them they were compliant with privateness and information regulations portion allegedly skipping important requirements and auto-generating reports for “certification mills that rubber stamp reports.”

Those claims were archetypal published successful an anonymous Substack post attributed to “DeepDelver,” who described themselves arsenic a erstwhile Delve lawsuit who became suspicious aft receiving leaked information astir the startup’s clients.

DeepDelver published consequent posts sharing what they said were Slack and video posts from the company, arsenic good arsenic accusing Delve of passing disconnected an unfastened root instrumentality arsenic its own, without giving recognition oregon reaching an statement with the developer. A information researcher besides said helium was capable to access delicate Delve data.

Meanwhile, Delve became part of a related controversy erstwhile malware was discovered successful an unfastened root task developed by Delve lawsuit LiteLLM.

In the company’s latest blog post, Delve’s COO Kocalar and CEO Karun Kaushik declared their volition to acceptable “the grounds consecutive connected anonymous attacks.” Among different things, they claimed that the institution has hired a cybersecurity steadfast “to assistance america recognize what happened,” and said the “evidence points to a malicious onslaught alternatively than a genuine whistleblower.”

“It appears that an attacker purchased Delve nether mendacious pretenses, maliciously exfiltrated data, including Delve’s interior institution data, and utilized it to motorboat a coordinated smear run against us,” they said. The blog station besides includes a screenshot that they said “shows the attacker exfiltrating our audit tracking spreadsheet via file.io.”

Beyond this accusation, Delve besides described DeepDelver’s disapproval arsenic “a premix of fabricated claims, cherry-picked screenshots, and information taken retired of context.” For example, they said DeepDelver “dismisses our AI portion acknowledging it automated 70% of a information questionnaire.”

On the question of utilizing unfastened root tools, Delve said it “built connected an Apache 2.0 open-source repository, which explicitly permits commercialized use, and importantly rebuilt it for compliance usage cases.”

However, the executives besides said they’ve been taking steps to guarantee customers “feel assured successful our level and compliance outcomes.”

Those steps supposedly see cleaning up the company’s web to region auditing firms “that don’t conscionable our standards,” “offering complimentary re-audits and penetration tests to each progressive customers,” and making it “unambiguously clear” that Delve’s templates for things similar committee gathering notes “are designed to beryllium starting points only.”

In a station connected X, Kaushik made galore of the aforesaid points but besides said, “[W]e grew excessively accelerated and fell abbreviated of our ain standard. To our customers, we profoundly apologize for the inconveniences caused.”

TechCrunch has reached retired to Y Combinator and DeepDelver for immoderate effect to Delve’s comments.