UNITED STATES SECURITIES AND EXCHANGE COMMISSION
Washington, D.C. 20549
FORM 10-K
(Mark One)
☒
ANNUAL REPORT PURSUANT TO SECTION 13 OR 15(d) OF THE SECURITIES EXCHANGE ACT OF 1934
For the fiscal year ended December 31, 2023
or
☐
TRANSITION REPORT PURSUANT TO SECTION 13 OR 15(d) OF THE SECURITIES EXCHANGE ACT OF 1934
For the transition period from to
Commission File Number: 001-33852
VirnetX Holding Corporation
(Exact name of registrant as specified in its charter)
Delaware
(State or other jurisdiction of incorporation or organization)
77-0390628
(I.R.S. Employer Identification No.)
308 Dorla Court, Suite 206
Zephyr Cove, Nevada
(Address of principal executive offices)
89448
(Zip Code)
Registrant’s telephone number, including area code: 775-548-1785
Securities registered pursuant to Section 12(b) of the Act:
Title of each class
Common Stock, par value $0.0001 per share
Trading Symbol(s)
VHC
Name of each exchange on which
registered
NYSE
Securities registered pursuant to section 12(g) of the Act:
None
Indicate by check mark if the registrant is a well-known seasoned issuer, as defined in Rule 405 of the Securities Act. Yes ☐ No ☒
Indicate by check mark if the registrant is not required to file reports pursuant to Section 13 or Section 15(d) of the Act. Yes ☐ No ☒
Indicate by check mark whether the registrant (1) has filed all reports required to be filed by Section 13 or 15(d) of the Securities Exchange Act of
1934 during the preceding 12 months (or for such shorter period that the registrant was required to file such reports), and (2) has been subject to such filing
requirements for the past 90 days. Yes ☒ No ☐
Indicate by check mark whether the registrant has submitted electronically, every Interactive Data File required to be submitted pursuant to Rule 405 of
Regulation S-T (§ 232.405 of this chapter) during the preceding 12 months (or for such shorter period that the registrant was required to submit such files).
Yes ☒ No ☐
Indicate by check mark whether the registrant is a large accelerated filer, an accelerated filer, a non-accelerated filer, smaller reporting company, or an
emerging growth company. See the definitions of “large accelerated filer,” “accelerated filer,” “smaller reporting company,” and “emerging growth
company” in Rule 12b-2 of the Exchange Act.
Large accelerated filer ☐
Emerging growth company ☐
Accelerated filer ☐
Smaller reporting company ☒
Non-accelerated filer ☒
If an emerging growth company, indicate by check mark if the registrant has elected not to use the extended transition period for complying with any
new or revised financial accounting standards provided pursuant to Section 13(a) of the Exchange Act. ☐
Indicate by check mark whether the registrant has filed a report on and attestation to its management’s assessment of the effectiveness of its internal
control over financial reporting under Section 404(b) of the Sarbanes-Oxley Act (15 U.S.C. 7262(b)) by the registered public accounting firm that prepared
or issued its audit report. ☐
If securities are registered pursuant to Section 12(b) of the Act, indicate by check mark whether the financial statements of the registrant included in
the filing reflect the correction of an error to previously issued financial statements. ☐
�Indicate by check mark whether any of those error corrections are restatements that required a recovery analysis of incentive-based compensation
received by any of the registrant’s executive officers during the relevant recovery period pursuant to §240.10D-1(b). ☐
Indicate by check mark whether the registrant is a shell company (as defined in Rule 12b-2 of the Exchange Act). Yes ☐ No ☒
The aggregate market value of the voting and non-voting common equity held by non-affiliates of the registrant as of June 30, 2023, was $29,557,799
based upon the closing price of the common shares of the registrant on June 30, 2023. This calculation does not reflect a determination that certain persons
are affiliates of the registrant for any other purpose.
3,681,970 shares of the registrant’s Common Stock were outstanding as of March 8, 2024.
DOCUMENTS INCORPORATED BY REFERENCE
The information required by Part III of this Annual Report on Form 10-K, to the extent not set forth herein, is incorporated by reference from the
registrant’s definitive proxy statement to be filed with the Securities and Exchange Commission not later than 120 days after December 31, 2023 relating to
the registrant’s 2024 Annual Meeting of Stockholders.
�Item 1.
Item 1A.
Item 1B.
Item 1C.
Item 2.
Item 3.
Item 4.
Business
Risk Factors
Unresolved Staff Comments
Cybersecurity
Properties
Legal Proceedings
Mine Safety Disclosure
INDEX
PART I
PART II
Item 5.
Item 6.
Item 7.
Item 7A.
Item 8.
Item 9.
Item 9A.
Item 9B.
Item 9C.
Market for the Registrant’s Common Equity, Related Stockholder Matters and Issuer Purchases of Equity Securities
[Reserved]
Management’s Discussion and Analysis of Financial Condition and Results of Operations
Quantitative and Qualitative Disclosures about Market Risk
Financial Statements and Supplementary Data
Changes in and Disagreements with Accountants on Accounting and Financial Disclosure
Controls and Procedures
Other Information
Disclosure Regarding Foreign Jurisdictions that Prevent Inspections
Item 10.
Item 11.
Item 12.
Item 13.
Item 14.
Directors, Executive Officers and Corporate Governance
Executive Compensation
Security Ownership of Certain Beneficial Owners and Management and Related Stockholder Matters
Certain Relationships and Related Transactions, and Director Independence
Principal Accounting Fees and Services
PART III
Item 15.
Exhibits and Financial Statement Schedules
PART IV
Page
2
9
22
23
24
24
24
25
26
26
31
31
54
54
54
55
55
55
55
56
56
56
�Index
SPECIAL NOTE REGARDING FORWARD LOOKING STATEMENTS
We have included or incorporated by reference in this Annual Report on Form 10-K (this “Report”), and from time to time we may make statements that
may constitute “forward-looking statements” within the meaning of Section 27A of the Securities Act of 1933, as amended (the “Securities Act”), and
Section 21E of the Securities Exchange Act of 1934, as amended (the “Exchange Act”). These forward-looking statements are based upon our current
expectations, estimates, assumptions, and beliefs concerning future events and conditions and may discuss, among other things, anticipated future
performance (including sales and earnings), products, expected growth, future business plans and costs, the impact of potential and ongoing litigation, the
expectation of future stockholder distributions, statements regarding the Company’s efforts and ability to maintain compliance with the New York Stock
Exchange (“NYSE”) continued listing standard, our beliefs and statements regarding general industry and market conditions and growth rates, as well as
general domestic and international economic conditions. Any statement that is not historical in nature is a forward-looking statement and may be identified
by the use of words and phrases such as “anticipates,” “believes,” “estimates,” “expects,” “intends,” “plans,” “predicts,” “projects,” “will be,” “will
continue,” “will likely result in,” and similar expressions. Readers are cautioned not to place undue reliance on forward-looking statements. Forward-
looking statements are necessarily subject to risks, uncertainties, and other factors, many of which are outside our control, which could cause actual results
to differ materially from such statements and from our historical results and experience. These risks, uncertainties and other factors include, but are not
limited to those described in Item 1A - Risk Factors of this Report and elsewhere in this Report and those described from time to time in our reports filed
with the Securities and Exchange Commission (the “SEC”). Readers are cautioned that it is not possible to predict or identify all the risks, uncertainties and
other factors that may affect future results and that the risks described herein should not be considered a complete list. Any forward-looking statement
speaks only as of the date on which such statement is made, and we undertake no obligation to update or revise any forward-looking statement, whether as
a result of new information, future events or otherwise.
Among others, the forward-looking statements appearing in this Report that may not occur include statements that:
•
We have undertaken activities to commercialize our products and patent portfolio in and outside the United States including VirnetX One™, War
Room™, VirnetX Matrix™, GABRIEL Connection Technology™ and our Secured Domain Name Registry and Technology. These statements may
imply that the worldwide market for our commercialized products is large and will result in significant future revenue for us. However,
commercialization of products such as ours is subject to significant obstacles and risks and may prevent significant future revenues for us.
EXCEPT AS REQUIRED BY LAW, WE UNDERTAKE NO OBLIGATION TO UPDATE OR REVISE ANY FORWARD- LOOKING
STATEMENT AS A RESULT OF NEW INFORMATION, FUTURE EVENTS OR OTHERWISE.
1
�Index
PART I
Item 1.
Business
The Company
We are an Internet security software and technology company with patented technology for Zero Trust Network Access (“ZTNA”) based secure network
communications. VirnetX’s software and technology solutions, including its Secure Domain Name Registry and Technology, VirnetX One™, War Room™,
VirnetX Matrix™, and GABRIEL Connection Technology™, are designed to be device and location-independent, and enable a secure real-time
communication environment for all types of enterprise applications, services, and critical infrastructures. Our technology generates secure connections on a
“single-click” basis, significantly simplifying the deployment of secure real-time communication solutions by eliminating the need for end-users to enter
any encryption information.
Our product portfolio includes sophisticated technologies, products and services that are available for sale worldwide. Our next-generation, VirnetX One™
platform builds upon our patented Secure Domain Name Registry and Technology and GABRIEL Connection Technology™ to further enhance the
security and efficiency of our patented secure communication links. VirnetX One™ is a security-as-a-service platform that protects enterprise applications,
services, and infrastructure from cyber-attacks. Our platform allows businesses and other enterprises of all sizes to add a “security umbrella” as an added
layer on top of their existing infrastructure to further reduce risk and bolster security against ever-growing cyberthreats to data, operating systems, other
infrastructure products and gateway security controllers.
Our War Room™ software product provides safe and secure video conferencing meeting environment where sensitive communications and data is invisible
to those not authorized to view it. War Room™ validates permissions of all the users, and devices requesting access to any secure meeting room prior to
granting access. We believe our War Room™ will be an attractive solution for government and law enforcement agencies as well as all professional sectors
such as legal, financial, and medical where limiting access to confidential data is a critical requirement.
Our VirnetX Matrix™ product provides superior security for internet-enabled enterprise applications and their connected devices, and for control systems
currently deployed by those enterprises (e.g., file servers, data back-up systems, VPN/firewalls). VirnetX Matrix™ provides a true “zero-trust” access
protection, “single-click” ease of use, and is a highly-effective added layer of protection that is deployed simply, without the need for changes to an
enterprise’s existing, in-place infrastructure. We believe VirnetX Matrix™ is an attractive solution for all businesses, cloud and on-premise application
service providers, and original equipment manufacturers (“OEMs”), looking to improve visibility and management of their networks to mitigate morphing
attacks on their networks and for real time access and control of their users.
Our GABRIEL Collaboration Suite™ is a set of communication applications and tools that use our GABRIEL Secure Communication Platform™. It
enables seamless and secure cross platform communications between devices that are enrolled in our “VIRNETX SECURED” network and have our
software installed. Effective May 31, 2023 we have ended the support for our GABRIEL Collaboration Suite™. All the existing customers and partners
have been notified of this announcement.
We have undertaken activities to commercialize our products and intellectual property in and outside the United States including VirnetX One™, War
Room™, VirnetX Matrix™, GABRIEL Connection Technology™ and our Secured Domain Name Registry and Technology. We believe our product
portfolio to secure devices and systems are suitable in areas such as City, County and State Governments, Healthcare, Finance, Legal, Oil and Gas,
Medical, Law Enforcement, National Defense and related support industries. We continue to actively pursue new sales opportunities in and outside of
United States.
2
�Index
During 2023, we actively engaged in discussions with certain third-parties to pitch the capabilities of VirnetX One™. As a result of our efforts, we made a
series of announcements with Solution Synergy, WeSecure, Samsung, Envoy Data Corporation, and Object Security. We also announced new deployments
of our VirnetX Matrix™ product at City of Bridgeport, International Association of Certified ISAOs (IACI) and SkinWalker Ranch. Although there can be
no assurance in this regard, the Company believes that there are opportunities for Company products’ sales directly to, resale arrangements with and/or
adoption as vendor standards by, one or more of these third parties.
We invested in two companies in the artificial intelligence (“AI”) sector partnering with them to augment the Company’s strategy to provide secure AI to
the marketplace. The first investment was with L2 Holdings, LLC (“OmniTeq”), an AI, machine learning (“ML”) and predictive analytics-based solutions
provider with a primary focus on selling into the space and defense sectors. Under the terms of our agreement, OmniTeq will deploy and integrate our
VirnetX One™ family of products at SkinWalker Ranch to secure their data and protect against cyber hackers. Our second investment was with OP Media,
Inc, a dynamic software platform provider, addressing a critical market requirement for transforming static infrastructure processes and knowledgebases
into digital processes that can be continuously optimized using AI, ML, and blockchain technologies for making informed decisions and creating
streamlined workflows in real-time, without requiring coding or programming skills. Further, under the terms of our respective agreements, both OmniTeq
and OP Media have agreed to integrate our VirnetX One™ family of products and services into their solutions and to resell them to their current and future
customers. Both companies have committed to using VirnetX as their exclusive global cybersecurity solution provider and go-to-market partner.
We have an ongoing licensing program under which we offer licenses to our technology, software, and some of our patented inventions, including our
secure domain name registry service, to domain infrastructure providers, communication service providers as well as to system integrators. Our GABRIEL
Connection Technology™ License is offered to OEM customers who want to adopt the GABRIEL Connection Technology™ as their solution for
establishing secure connections using secure domain names within their products. We have developed GABRIEL Connection Technology™ Software
Development Kit to assist with rapid integration of these techniques into existing software implementations.
Our employees include the core development team behind our inventions, technology, and software. Some members of this team have worked together for
over twenty years and were on the same team that invented and developed this technology while working at Leidos. The team has continued its research
and development work to refine our unique network security technology and make it more secure and easy to deploy.
Our portfolio of intellectual property is the foundation of our business model. We currently own approximately 205 total patents and pending applications,
including 72 U.S. patents/patent applications and 133 foreign patents/validations/pending applications. Our patent portfolio is primarily focused on
securing real-time communications over the Internet, and related services, and is used in all our technology and products, some of which were acquired by
our principal operating subsidiary; VirnetX, Inc., from Leidos, Inc., or Leidos, (f/k/a Science Applications International Corporation, or SAIC) in 2006.
We expect to continue to launch new and enhanced security platforms, software products, and services based on our GABRIEL Connection Technology™.
We will provide updates to new and existing customers as they are released to the public. Many small and medium businesses have installed our software
products in their corporate networks. We intend to continue to expand our customer base with targeted promotions and direct sales initiatives to large
enterprise and governmental organizations.
Industry Overview & Trends
We believe that the rapid growth in remote work has accelerated digital business transformation initiatives that would have taken years, into a matter of
months. The demand to work remotely, explosive growth of video conferencing tools and rapid growth in the cloud has created an opportunity to secure
communications regardless of a user’s location, network, or BYOD (bring your own device).
3
�Index
The shift to remote work and expansion of the enterprise network perimeter has driven the growth of ZTNA solutions. The Zero Trust concept treats all
networks like the Internet, where all users and devices are untrusted by default. Their location within the network is not a factor for deciding trust. Each
user and device on the network requires authentication and authorization, based on policy, prior to accessing any applications or resources on the network.
ZTNA facilitates security around remote work, because Zero Trust policies enable granular access control, end-to-end encryption of network
communications and remove application visibility from the public Internet which reduces the potential attack surface. Based on our estimates, using
publicly available market data, we believe that the Zero Trust security market size is projected to grow from $24.8 billion in 2022 to over $60 billion by
2027, at a Compound Annual Growth Rate (CAGR) of 19.4% during the forecast period. We believe Zero Trust represents a growing market and an ideal
fit for our technology and products.
Cloud computing growth has rapidly expanded as enterprises continue to move applications and services to the cloud. The cloud offers scalability,
operations and development efficiency and remote access benefits for their workforce. The cloud technology adoption is expected to continue to increase
quite significantly in industries where the work-from-home initiative is helped to sustain enterprise business functions. However, shifting critical data to the
cloud has resulted in security concerns and the need for enterprises to control access and gain visibility into how information is being used, who is
accessing it and where it is going. Based on our estimates, using publicly available market data, we believe that the global cloud computing security market
size is expected to grow from approximately $43.6 billion in 2022 to over $92.7 billion by 2028, at a CAGR of 13.4% during the forecast period. We
believe our scalable technology allows enterprises to secure applications and services regardless of whether hosting is on-premise or in the cloud.
As billions of connected Internet of Things (“IoT”) devices come online in support of enterprise operations, products, and industrial controls they will need
to be secured and integrated into the enterprise. Facilitated by advancements in 4G/Advanced LTE and high-speed 5G networks, IoT devices will be able to
operate from any network, transmit higher volumes of data including video streaming and sensor data collection and require real-time decisions based on
that data. Without next generation security, these IoT devices represent a large attack surface that manages and controls critical enterprise infrastructure.
These IoT devices can operate from anywhere, and will need to be secured with the same level of network security and ZTNA solutions enterprises are
already deploying for their remote workforce. We believe that the market opportunity for our software and technology solutions is large and expanding as
secure domain names are now an integral part of securing the next generation 5G and 4G/LTE Advanced wireless networks and IoT communications.
Based on our estimates, using publicly available market data, we believe that the size of the global Industrial IoT security market size is projected to grow
from $4.76 billion in 2022 to approximately $23.17 billion by 2028 at a CAGR of 30.2% during the forecasted period with a growing investment in
securing the infrastructure around these devices.
Our Approach & Strategy
We believe that VirnetX One™ software products are positioned to help enterprises adapt to the rapidly evolving threat landscape in work environments
and the growing need to secure communications regardless of a user’s location, network, or device using our GABRIEL Connection Technology™.
4
�Index
VirnetX One™ products deliver ZTNA, allowing enterprises to secure their information, control access and gain visibility into how information is being
used, who is accessing it and where it is going. Our patented technology allows enterprises to license our technology for integration into their products and
services, easily deploy our technology through our VirnetX One™ family of products for endpoint security or securing their communications with our
mobile and desktop applications.
Our strategy is to become the market leader in securing real-time communications over the Internet and to establish our VirnetX One™ and GABRIEL
Connection Technology™ as the industry standard security platforms. Key elements of our strategy are to:
•
Direct sales efforts with larger users, particularly those engaged in defense and others govermental or national initiatives.
•
•
•
•
•
•
•
Actively recruit partners in various vertical markets, including healthcare, finance, legal, government to help us expand our enterprise customer
base.
Promote our next-generation VirnetX One™ platform as a solution for delivering ZTNA, and securing enterprise applications, services, and
infrastructure.
Combine with VirnetX One™ platform with technologies from the companies we have invested in, namely OmniTeq and OPMedia, to enhance
their offerings and provide supplemental sales channels for VirnetX One™
Continue to grow our technology licensing program to commercialize our intellectual property, including our GABRIEL Connection
Technology™.
Grow registration of VirnetX Secure Domain Names as the network segmentation component of our ZTNA solution. Establish VirnetX as the
exclusive, universal registry of secure domain names and enable our customers to act as registrars for their users and broker secure communication
between devices.
Promote War RoomTM video conferencing product in the general market for sale to end-user enterprises, directly and with partners, with targeted
promotions and other marketing programs to assist remote workers and offer an industry leading secure meeting solution.
Promote VirnetX Matrix™ enterprise applications, services, and infrastructure.
Competitive Strengths
We believe the following competitive strengths will enable our success in the marketplace:
•
•
•
Unique patented technology. We are focused on developing innovative technology for securing real-time communications over the Internet and
establishing the exclusive secure domain name registry in the United States and other key markets around the world. Our unique solutions
combine industry standard encryption methods and communication protocols with our patented techniques for automated DNS lookup
mechanisms. Our technology and patented approach enable users to create a secure communication link by generating secure domain names. We
currently own approximately 205 total patents and pending applications, including 72 U.S. patents/patent applications and 133 foreign
patents/validations/pending applications. Our portfolio includes patents and pending patent applications in the United States and other key markets
that support our secure domain name registry service for the Internet.
Scalable licensing business model. We are actively engaged in pursuing additional licensing agreements with industry participants OEMs, service
providers and system integrators within the IP-telephony, mobility, mobile-to-mobile communications, fixed-mobile convergence, and unified
communications end-markets.
Highly experienced research and development team. Our research and development team is comprised of nationally recognized network
security and encryption technology scientists and experts that have worked together as a team for over ten years. During their careers, this team
has developed several cutting-edge technologies for U.S. national defense, intelligence, and civilian agencies, many of which remain critical to our
national security today. Prior to joining VirnetX, our team worked for Leidos, during which time they invented the core technology that is the
foundation of our current technology and software. Based on the collective knowledge and experience of our development team, we believe that
we have one of the most experienced and sophisticated groups of security experts researching vulnerability and threats to real-time communication
over the Internet and developing solutions to mitigate these problems.
5
�Index
License and Service Offerings
We offer a diversified portfolio of licenses, software and service offerings focused on securing real-time communications over the Internet. We believe
software products will allow enterprises to seamlessly integrate ZTNA protection into their networks to secure their applications, services, virtualized
resources, and data as it moves into the cloud. Enterprises can quickly deploy VirnetX One software products to protect legacy applications, secure new
cloud-based services and remove application visibility from the public Internet. Enterprises can move towards more granular network access control to
protect their network at the edge and away from legacy VPN technologies. VirnetX One family of software products enables remote employees to securely
interact with on-premise and cloud-based applications, regardless of their location. Enterprises can use VirnetX One platform to secure open-source
applications powering communications, data and analytics, infrastructure, and business services with a focus on making those applications easier to secure,
access and manage.
We believe our software products and technologies provide the foundation for securing real-time communications and collaboration applications for the
enterprise remote workforce. We are exploring creating a marketplace of applications secured by our VirnetX One platform. This approach will allow us to
offer a portfolio of certified applications that can be deployed by the enterprise customers in their business networks with confidence in keeping their
confidential data and communications secure. This marketplace strategy will allow us to offer more flexible licensing options to solve specific customer
use-cases, align with partner product offerings and create upsell opportunities for our products.
Customers
We have undertaken activities to commercialize our products and intellectual property in and outside the United States including VirnetX OneTM, War
RoomTM, VirnetX MatrixTM, GABRIEL Connection TechnologyTM and our Secured Domain Name Registry and Technology. We believe our product
portfolio to secure devices and systems are stable in areas such as City, County and State Governments, Healthcare, Finance, Legal, Oil and Gas, Medical,
Law Enforcement, National Defense and related support industries. We continue to actively pursue new sales opportunities in and one of United States.
During 2023, we actively engaged in discussions with certain third-parties to pitch the capabilities of VimetX OneTM. As a result of our efforts, we made a
series of announcements with Solution Synergy, WeSecure, Samsung, Every Data Corporation, and Object Security We also announced new deployments
of our VimetX MatrixTM product at City of Bridgeport, International Association of Certified ISAOs (IACI) and SkinWalker Ranch. Although there can be
no assurance in this regard, the Company believes that there are opportunities for Company products' sales directly to, resale arrangements with and/or
adoption as vendor standards by, one or more of these third parties.
We have signed Patent License Agreements with Aastra USA, Inc. Avaya, Inc., Microsoft Corporation, Mitel Networks Corporation, NEC Corporation and
NEC Corporation of America, Siemens Enterprise Communications GmbH & Co. KG, and Siemens Enterprise Communications Inc. to license certain of
our patents, for a one-time payment and an ongoing royalty for all future sales through the expiration of the licensed patents with respect to certain current
and future IP-encrypted products.
We are seeking further licensing of our technology, to developers and original equipment manufacturers, or OEMs, of chips, servers, Desktop, mobile
devices such as smart phones, tablets, laptops, net books, and other devices, within the IP-telephony, mobility, fixed- mobile convergence, and unified
communications markets including 5G and 4G/LTE. We have published our royalty rates and guidelines on our website. All forward moving licenses have
adhered to these guidelines and have met or exceeded these rates and we will use these rates and guidelines in all future license negotiations.
Marketing and Sales
We employ a leveraged, partner-oriented marketing and sales strategy for software product and services offerings. We have successfully signed several
Resellers & Managed Service Provider Agreements in various market segments, including healthcare, finance, legal, government, etc., to assist us in selling
our software products to their customers. We plan to directly market our software products, domain name registry services to large enterprises and
government organizations along with our service provider and system integrator customers.
6
�Index
We believe significant opportunities exist for our VirnetX One™, War Room™, VirnetX Matrix™ products and services in areas such as Local and State
Governments, Power and Energy generation, Healthcare, Finance, Legal, Oil and Gas, Medical, Law Enforcement, National Defense and related support
industries. We are actively pursuing a number of sales opportunities, in and outside the United States, for as we seek to extend out our customer base
globally. We expect to leverage our relationship with OmniTeq and Op Media to extend our offering to departments and agencies within the federal
government.
We added a Chief Operating Officer to our Japanese team to further our technology licensing efforts in Japan. We have signed a non-exclusive Distribution
and Service Agreement with IP Dream, a Japanese based strategic technology developer and service provider, to sell our software products as well as
VirnetX’s Secure Domain Name technology to its clients in Japan and greater Asia. Jointly with IP Dream, we are currently pursuing several OEM
opportunities with some of the largest services providers in Japan. Along with our efforts with IP Dream, we continue to explore alternative strategies to
pursue opportunities to work with other third parties in Japan, and elsewhere, using an approach that will seek to capitalize on these opportunities in part by
placing more emphasis on the use of our own employees.
We intend to continue to license our patent portfolio, technology, and software, including our secure domain name registry service, to domain infrastructure
providers, communication service providers as well as to system integrators. We intend to seek further license of our technology and software products, to
enterprise customers, developers and original equipment manufacturers, or OEMs, of chips, servers, Desktop, mobile devices such as smart phones, tablets,
laptops, net books, and other devices, within the IP-telephony, mobility, fixed- mobile convergence, and unified communications markets including 5G and
4G/LTE.
Intellectual Property and Patent Rights
Our intellectual property is primarily comprised of trade secrets, patented know-how, issued and pending patents, copyrights and technological innovation.
We currently own approximately 205 total patents and pending applications, including 72 U.S. patents/patent applications and 133 foreign
patents/validations/pending applications. Our portfolio includes many patents that describe unique systems and methods for securing real- time
communications over the Internet, as well as related services such as the establishment and maintenance of a secure domain name registry. Our software
and technology solutions also may have additional applications relating to operating systems and network security. A complete list of our U.S. patents is
available on our website located at http://www.virnetx.com. Each patent is publicly accessible on U.S. Patent and Trademark Office website at
http://www.uspto.gov. Some of our issued U.S. and foreign patents expire at various times during the period from 2023 to 2034.
Notwithstanding anything to the contrary set forth in any of our filings under the Securities Act or the Exchange Act that might incorporate future filings,
the information set forth on the United States Patent and Trademark Office (the “USPTO”) website, shall not be deemed to be a part of or incorporated by
reference into any such filings. We do not warrant the accuracy, completeness or adequacy of the USPTO website, and expressly disclaim liability for
errors or omissions on such website.
Assignment of Patents
Some of our issued patents and pending patent applications were acquired by our principal operating subsidiary, VirnetX, Inc., from Leidos, pursuant to an
Assignment Agreement dated December 21, 2006, and a Patent License and Assignment Agreement dated August 12, 2005, as amended on November 2,
2006, including documents prepared pursuant to the November amendment, and as further amended on March 12, 2008. We recorded the assignment from
Leidos, with the U.S. Patent Office on December 21, 2006.
7
�Index
Key terms of these agreements are as follows:
•
•
•
Patent Assignment. Leidos, unconditionally and irrevocably conveyed, transferred, assigned, and quitclaimed all its right, title, and interest in and
to the patents and patent applications, as specifically set forth in the assignment document recorded with the U.S. Patent Office, including, without
limitation, the right to sue for past infringement.
License to Leidos, Outside the Field of Use. Effective March 12, 2008, we granted to Leidos, a non-exclusive, royalty free, fully paid, perpetual,
worldwide, irrevocable, sub licensable and transferable right and license permitting Leidos, and its assignees to make, have made, import, use,
offer for sale, and sell products and services covered by, and to make improvements to, the patents and patent applications we acquired from
Leidos, solely outside our field of use.
Compensation Obligations. As consideration for the assignment of the patents and for the rights we obtained from Leidos, as amended, we are
required to make payments to Leidos, based on cash or certain other values generated from those patents. The amount of such payments depends
upon the type of value generated, and certain categories are subject to maximums and other limitations. In 2010, we met our maximum royalty
payment requirement; however, Leidos is also entitled under certain circumstances to receive a portion of the proceeds paid to us for certain
acquisitions of VirnetX and the settlement of certain patent infringement claims of ours.
Government Regulation
We are subject to various federal, state, local, and foreign laws and regulations, including those relating to privacy, data protection and security, intellectual
property, employment and labor, workplace safety, consumer protection, anti-bribery, import and export controls, immigration, federal securities, and tax.
Additional laws and regulations relating to these areas likely will be passed in the future, and these or existing laws and regulations may be interpreted or
enforced in new or expanded manners, each of which could result in significant limitations on how we operate our business.
In particular, the laws governing online secure communications remain unsettled in various respects, even in areas where there has been legislative action.
Uncertainty regarding the interpretation and enforcement of laws governing matters such as intellectual property, privacy, data protection and libel in the
context of online communications and media is likely to remain. New and existing legislation, or changes in its interpretation and enforcement, may
interfere with the growth in use of online secure communications and decrease the acceptance of online secure communications as a viable solution, which
could adversely affect our business.
Due to the Internet’s increasing and evolving use, new laws regulating secure communications may be adopted. These laws and regulations may cover,
among other things, issues relating to privacy, data protection, cybersecurity, pricing, taxation, telecommunications over the Internet, content, copyrights,
distribution and quality of products and services. We intend to work to comply with all new applicable laws and regulations as they are adopted and put in
force. New and evolving laws and regulations, and changes in their enforcement and interpretation, may have material impacts upon our development and
commercialization plans or business practices, and may significantly increase our compliance costs and otherwise adversely affect our business, financial
condition, and results of operations.
The U.S. government has controlled the authoritative domain name system, or DNS, root server since the inception of the Internet. On July 1, 1997, the
President of the United States directed the U.S. Secretary of Commerce to privatize the management of the domain name system in a manner that increases
competition and facilitates international participation in its management.
On September 29, 2006, the U.S. Department of Commerce extended its delegation of authority by entering into a new agreement with the Internet
Corporation for Assigned Names and Numbers, or ICANN, a California non-profit corporation headquartered in Marina Del Rey, California. ICANN is
responsible for managing the accreditation of registry providers and registrars that manage the assignment of top- level domain names associated with the
authoritative DNS root directory. Although it is possible to create and manage other DNS root directories privately without accreditation from ICANN, the
possibility of conflicting name and number assignments makes it less likely that users would widely adopt a top-level domain name associated with an
alternative DNS root directory provided by a non-ICANN- accredited registry service.
8
�Index
Employees and Human Capital
As of December 31, 2023, we had 27 full and part time employees, most of whom work remotely from our corporate offices. We have had a work-from-
home workforce since our inception. The emphasis of our employees is on our technology research and product development with 14 employees focused
on this effort. Our team has been working on enhancing our products and adding new functionality along with successfully filing several new patent
applications in 2022. We also continue building our sales and marketing teams to expand our product-lines and customer base. In 2024, the Chief Operating
Officer to our team in Japan was promoted to Chief Operating Officer of the Company, who will be focused on growing our operations, expanding the
Company's line of security products into Japan as well as the broader Pacific Rim, and transacting with military-affiliated partners within the United States
to facilitate the collaborative development of next-generation cybersecurity and protective artificial intelligence solutions.
In addition to our regular employees, we also engage with consultants on a regular basis. These consultants can be involved in our product development,
customer relations, legal, and/or regulatory compliance and reporting. We have experienced low employee turnover rates over the years with both
employees and consultants participating in our equity incentive plan.
Available Information
We file or furnish various reports, such as registration statements, periodic and current reports, proxy statements and other materials with the SEC. Our
website address is http://www.virnetx.com. You may obtain, free of charge on our website, copies of our annual reports on Form 10-K, quarterly reports on
Form 10-Q, current reports on Form 8-K, and amendments to those reports filed or furnished pursuant to Section 13(a) or 15(d) of the Exchange Act, as
soon as reasonably practicable after we electronically file such material with, or furnish it to, the SEC. The information we post is intended for reference
purposes only; none of the information posted on our website is part of this report or incorporated by reference herein.
The SEC also maintains website at http://www.sec.gov that contains reports, proxy and other information statements, and other information regarding
issuers, including us, that file electronically with the SEC.
Item 1A. Risk Factors
Our operations and financial results are subject to various risks and uncertainties, including those described below, which could adversely affect our
business, financial condition, results of operations, cash flows, and the trading price of our common and capital stock. You should carefully consider the
risks and uncertainties described below in addition to the other information set forth in this Report, including in “Management’s Discussion and Analysis of
Financial Condition and Results of Operations” and our consolidated financial statements and related notes, before making any investment in our common
stock. The risks and uncertainties described below are not the only ones we face. Additional risks and uncertainties not presently known to us or that we
currently believe to be immaterial may also adversely affect our business. If any of these risk factors occur, you could lose substantial value or your entire
investment in our shares.
An investment in our common stock involves a high degree of risk, and the following is a summary of key risk factors when considering an investment.
You should read this summary together with the more detailed description of each risk factor contained in the subheadings further below.
Summary Risk Factors
•
Long and unpredictable sales cycles.
• We have limited technical resources and are at an early stage in commercialization of our products.
•
•
•
•
Intensely competitive market with established brand names.
Our business has been, and may continue to be, negatively affected by shareholders intent upon alternate business strategies.
Our products are subject to governmental export and import controls that could subject us to liability or impair our ability to compete in international
markets.
If we are not able to adequately protect our patent rights and trade secrets, our business would be negatively impacted.
Risks Related to Our Business and Our Financial Reporting
Our operating results may not be consistent and may be difficult to predict and we may not be able to achieve or sustain profitability in the future.
Our operating results have fluctuated in the past due to several factors. We expect that our future operating results may also fluctuate due to the same or
similar factors. We had a net loss of $27.9 million for the year ended December 31, 2023. We had a net loss of $36.3 million for the year ended December
31, 2022. As of December 31, 2023, we had an accumulated deficit of $186 million. The following include some of the factors that may cause our
operating results to fluctuate:
Time and resources required to accelerate transition to new product development and sales strategies targeting large enterprises and government
customers;
Customer adoption of our VirnetX OneTM platform and software products and services;
The number of product license sales of VirnetX Warroom, VirnetX Matrix and associated services;
Adoption of VirnetX OneTM platform by third party application providers of secure communications;
Intensely competitive market with established brands that have larger customer bases, and greater resources than we do;
•
•
•
•
•
•
�Prolonged economic uncertainties or downturns, globally or in certain regions or industries, could materially adversely affect our business;
•
Government export and import control regulations on selling products with encryption technology in certain international markets;
These fluctuations may make our business particularly difficult to manage, adversely affect our business and operating results, make our operating results
difficult for investors to predict and, further, cause our results to fall below investor’s expectations and adversely affect the market price of our common
stock. If we fail to increase our revenue to offset any increases in our operating expenses, we may not achieve or sustain profitability in the future.
9
�Index
We expect that we will experience long and unpredictable sales cycles, which may impact our operating results.
The sales cycle between initial customer contact and execution of a contract or license agreement with a customer or purchaser of our products can vary
widely. We expect that our sales cycles will be long and unpredictable due to several factors, including but not limited to:
•
•
•
•
•
The need to educate potential customers about our patent rights and our product and service capabilities;
Our customers’ willingness to invest potentially substantial resources and modify their network infrastructures to take advantage of our products;
Our customers’ budgetary constraints and timing of their budget cycles;
Delays caused by customers’ internal review processes; and
Long sales cycles may increase the risk that our financial resources are exhausted before we are able to generate significant revenue.
In addition, potential customers of our products include local, state, federal and foreign government authorities. Sales to government authorities can be
extensive and unpredictable. Government authorities generally have complex budgeting, purchasing, and regulatory processes that govern their capital
spending, and their spending is likely to be adversely impacted by economic conditions. In addition, in many instances, sales to government authorities
may require field trials and may be delayed by the time it takes for government officials to evaluate multiple competing bids, negotiate terms, and award
contracts.
For these reasons, the sales cycle associated with our products is subject to a number of significant risks that are beyond our control. Consequently, if
customer orders are not realized or delayed, our revenues and results of operations could be materially and adversely affected.
We have limited technical resources and are at an early stage in commercialization of our VirnetX One™ platform and software products.
Part of our business includes the internal development of commercial products we seek to monetize. This aspect of our business may require significant
capital, time and resources and we cannot guarantee that it will be successful or meet our expectations. Based on the scale of our technical resources, our
limited historical financial data upon which to base our projected revenue or planned operating expenses related to our software products and services, we
may not be able to effectively:
•
•
•
•
•
•
Implement an effective marketing strategy to promote awareness of our products;
Attract and retain customers for our products;
Generate revenues or profit from product sales;
Provide appropriate levels of customer training and technical support for our products;
Rapidly anticipate and adapt to changes in the market and evolving customer requirements;
Protect our products from any system failures or other breaches.
In addition, a high percentage of our expenses are and will continue to be fixed. Accordingly, if we do not generate revenue as and when anticipated, our
losses may be greater than expected and our operating results will suffer.
10
�Index
The market in which we participate is intensely competitive, and if we do not compete effectively, our operating results could be harmed.
The market for Zero Trust Network Access (“ZTNA”) security solutions is rapidly evolving and highly competitive as new entrants and traditional
network solutions companies offer cloud-based cybersecurity solutions. Many of our competitors and potential competitors have established brand
recognition, larger customer bases, and greater resources than we do. Our primary competitors in the zero-trust network access market include Appgate,
Cloudflare, and Illumio. In the enterprise market, our primary competitors include Zscaler (ZPA), Palo Alto Networks (Prisma Access), Cisco (Umbrella),
Citrix (Secure Private Access), Netskope (Private Access for ZTNA) and Cato Networks. As we expand our product offerings and use cases, we will
begin to compete with companies that offer bundled security-as-a-service solutions that include Secure Access Service Edge (SASE) and Security Service
Edge (SSE). With the introduction of new technologies and market entrants, we expect competition to intensify in the future. For example, disruptive
technologies such as generative AI may fundamentally alter the market for our services in unpredictable ways and reduce customer demand. If we fail to
compete effectively, our business will be harmed. Some of our competitors offer their products or services at lower prices or for free as part of a broader
bundled product sale or enterprise license arrangement, which has placed pricing pressure on our business. If we are unable to achieve our target pricing
levels, our operating results will be negatively impacted. For us to compete effectively, we need to introduce new products and services in a timely and
cost-effective manner, meet customer expectations and needs at prices that customers are willing to pay, and continue to enhance the features and
functionalities of our cloud content management platform. In addition, pricing pressures and increased competition could result in reduced sales, lower
margins, losses or the failure of our services to achieve or maintain widespread market acceptance, any of which could harm our business.
Many of our competitors are able to devote greater resources to the development, promotion and sale of their products or services. In addition, many of our
competitors have established marketing relationships and major distribution agreements with channel partners, consultants, system integrators and resellers.
Competitors may offer products or services at lower prices or with greater depth than our services. Our competitors may be able to respond more quickly
and effectively to new or changing opportunities, technologies, standards or customer requirements. Furthermore, some potential customers, particularly
large enterprises, may elect to develop their own internal solutions. For any of these reasons, we may not be able to compete successfully against our
competitors.
Our success depends in part on establishing and maintaining relationships with other companies to distribute our technology and products or to
incorporate our products and services, into their technology or vice versa.
Part of our business strategy is to enter into partnerships, strategic investments, and other cooperative arrangements with third parties. We have invested in
and we continue to seek to invest in or acquire businesses, technologies, or other assets that we believe could complement or expand our business. In
addition, we are regularly involved in cooperative efforts with respect to the incorporation of our products into products of others and vice versa, research
and development efforts, and marketing, distributor and reseller arrangements. These relationships are generally non-exclusive, and some of our partners
also have cooperative relationships with certain of our competitors or offer some products and services that are competitive with ours. If we lose third-party
relationships, if these relationships are not commercially successful, or if we are unable to enter into third-party relationships on commercially reasonable
terms in the future, our business could be negatively impacted.
11
�Index
Our products are highly technical and may contain undetected errors, which could cause harm to our reputation and adversely affect our business.
Our products are highly technical and complex and, when deployed, may contain errors or defects. Despite testing, some errors in our products may only be
discovered after a product has been installed and used by customers. Any errors or defects discovered in our products after commercial release could result
in failure to achieve market acceptance, loss of revenue or delay in revenue recognition, loss of customers and increased service and warranty cost, any of
which could adversely affect our business, operating results, and financial condition. In addition, we could face claims for product liability, tort, or breach
of warranty, including claims relating to changes to our products made by our channel partners. The performance of our products could have unforeseen or
unknown adverse effects on the networks over which they are delivered as well as on third-party applications and services that utilize our services, which
could result in legal claims against us, harming our business. Furthermore, we expect to provide implementation, consulting, and other technical services in
connection with the implementation and ongoing maintenance of our products, which typically involves working with sophisticated software, computing,
and communications systems. We expect that our contracts with customers will contain provisions relating to warranty disclaimers and liability limitations,
which may not be upheld. Defending a lawsuit, regardless of its merit, is costly and may divert management’s attention and adversely affect the market’s
perception of us and our products. In addition, if our business liability insurance coverage proves inadequate or future coverage is unavailable on
acceptable terms or at all, our business, operating results, and financial condition could be adversely impacted.
Malfunctions of third-party communications infrastructure, hardware and software expose us to a variety of risks that we cannot control.
Our business will depend upon, among other things, the capacity, reliability, security, and unimpeded access of the infrastructure owned by third parties that
we will use to deploy our offerings. We have no control over the operation, quality, or maintenance of a significant portion of that infrastructure or whether
those third parties will upgrade or improve their equipment. We depend on these companies to maintain the operational integrity of our connections. If one
or more of these companies is unable or unwilling to supply or expand its levels of service to us in the future, our operations could be severely interrupted.
Also, to the extent that the number of users of networks utilizing our current or future products suddenly increases, the technology platform and secure
hosting services which will be required to accommodate a higher volume of traffic may result in slower response times or service interruptions. System
interruptions or increases in response time could result in a loss of potential or existing users and, if sustained or repeated, could reduce the appeal of the
networks to users. In addition, users depend on real-time communications; outages caused by increased traffic could result in delays and system failures.
These types of occurrences could cause users to perceive that our solution does not function properly and could therefore adversely affect our ability to
attract and retain licensees, strategic partners, and customers.
System failure or interruption or our failure to meet increasing demands on our systems could harm our business.
The success of our license and service offerings will depend on the uninterrupted operation of various systems, secure data centers and other computer
and communication networks that we establish. To the extent, the number of users of networks utilizing our future products suddenly increases, the
technology platform and hosting services which will be required to accommodate a higher volume of traffic may result in slower response times, service
interruptions or delays or system failures. Our systems and operations will also be vulnerable to damage or interruption from, among other things:
12
�Index
•
•
•
•
Power loss, transmission cable cuts and other telecommunications failures;
Damage or interruption caused by fire, earthquake, and other natural disasters;
Computer viruses, electronic break-ins, sabotage, vandalism or software defects; and
Physical or electronic break-ins, sabotage, intentional acts of vandalism, terrorist attacks and other events beyond our control.
System interruptions or failures and increases or delays in response time could result in a loss of potential or existing users and, if sustained or repeated,
could reduce the appeal of the networks to users. These types of occurrences could cause users to perceive that our solution does not function properly and
could therefore adversely affect our ability to attract and retain licensees, strategic partners, and customers, and result in lost revenue, customer
dissatisfaction, or lawsuits against us.
Our business has been, and may continue to be, negatively affected by shareholders intent upon alternate business strategies.
Responding to actions by activist shareholders is costly and time-consuming, has diverted the attention of management, our board of directors and our
employees, and may be disruptive to our operations. Additionally, perceived uncertainties as to our future direction as a result of shareholder activism may
lead to the perception of a change in the direction of our business or other instability, which may be exploited by our competitors, cause concern to our
current or potential customers, and make it more difficult to attract and retain qualified personnel. Furthermore, if customers choose to delay, defer or
reduce transactions with us or do business with our competitors instead of us, then our business, financial condition and operating results would be
adversely affected. In addition, our share price could experience periods of increased volatility as a result of shareholder activism.
If we are not able to adequately protect our patent rights and trade secrets, our business would be negatively impacted.
We believe our patents are valid, enforceable, and valuable. Notwithstanding this belief, third parties may make claims of infringement with respect to our
products or services or invalidity claims with respect to our patents or become aware of our trade secrets by way of leaks from bad actors within or outside
of our employee base or otherwise, and such claims could give rise to material cost for defense or settlement or both, and such claims or leaks could
jeopardize or substantially delay a successful outcome of litigation we are or may become involved in, divert resources away from our other activities, limit
or cease our related revenues, or otherwise materially and adversely affect our business. Additionally, several of our patents are currently, and other patents
may in the future be, subject to USPTO post-grant inter partes review proceedings (“IPR”) which may result in all, or part of these patents being
invalidated, or the claims of our patents being limited. Unfavorable or adverse outcomes in our litigation or IPRs or material leaks of trade secrets may
result in losses, exhaustion of financial resources, reduction in our ability to protect our intellectual property rights, or other adverse effects, which could
encumber our ability to develop and commercialize our products. Even if we are successful in protecting our intellectual property rights, they may not
ultimately provide us with any competitive advantages and may be less valuable than we currently expect. These risks may be heightened in countries other
than the United States where laws regarding patent protection are less developed and may be negatively affected by the fact that legal standards in the
United States and elsewhere for protection of intellectual property rights in Internet-related businesses are uncertain and still evolving. In addition, there are
a significant number of United States and foreign patents and patent applications in our areas of interest, and we expect that significant litigation in these
areas will continue and will add uncertainty to the value of certain patents and other intellectual property rights in our areas of interest. If we are unable to
protect our intellectual property rights or otherwise realize value from them, our business would be negatively affected.
13
�Index
If we experience security breaches or incidents, we could be exposed to liability and our reputation and business could suffer.
We expect to retain certain confidential and proprietary customer information in our secure data centers and secure domain name registry, as well as
personal data and other confidential and proprietary information relating to our business. It will be critical to our business strategy that our facilities and
infrastructure remain secure and are perceived by the marketplace to be secure. Our secure domain name registry operations will also depend on our ability
to maintain our computer and telecommunications equipment in effective working order and to reasonably protect our systems against interruption, and
potentially depend on protection by other registrars in the shared registration system. The secure domain name servers that we will operate will be critical
hardware to our registry services operations. Additionally, we maintain confidential and proprietary business information, including trade secrets. We
expect to have to expend significant time and money to maintain or increase the security of our products, facilities, and infrastructure. Security technologies
are constantly being tested by computer professionals, academics and “hackers.” Advances in computer capabilities and the techniques for attacking
security solutions, new discoveries in the field of cryptography or other events or developments could result in compromises or breaches of our security
measures and could make some or all our products obsolete or unmarketable. Likewise, we may need to dedicate engineering and other resources to
eliminate security vulnerabilities and may find it necessary or appropriate to repair or replace products already sold or licensed to our customers. Despite
the security measures that we and our service providers utilize, our infrastructure and that of our service providers may be vulnerable to physical break-ins,
ransomware, computer viruses, other malicious code attacks by hackers, phishing attacks, social engineering, or similar disruptive problems. Any
disruption or security breach or incident that we or our service providers suffer or are perceived to suffer, including any such disruption, breach or incident
resulting in a loss of, or damage to, data or systems, or inappropriate disclosure, access, loss, or other processing of confidential, financial, proprietary or
personal information, including data related to our personnel, could result in loss, disclosure or other unauthorized processing of such data, could delay our
research and development or commercialization efforts, could compel us to comply with breach notification laws and regulations, subject us to mandatory
corrective action, and otherwise subject us to liability under laws and regulations that protect the privacy and security of personal information. It is possible
that we may have to expend additional financial and other resources to address such problems. The increase in remote work by our personnel and those of
third parties in recent years has resulted in increased vulnerability to cyber-attacks. As a provider of Internet security software and technology, we may be
the target of dedicated efforts by hackers and other third parties to overcome or defeat our security measures. Any physical or electronic break-in or other
security breach or incident or compromise impacting our products, or any information stored at our secure data centers and domain name registration
systems, including any compromise due to human error or employee or contractor malfeasance, may jeopardize the security of information stored on our
premises or in the computer systems and networks of our customers. Additionally, any such data security incident, or the perception that one has occurred
could also result in adverse publicity, harm to our reputation and competitive position, and therefore adversely affect the market’s perception of the security
of electronic commerce and communications over IP networks as well as the security or reliability of our services, which could have a material adverse
impact on our business, financial condition, and results of operation.
14
�Index
A security breach or other security incident, or the perception any such event has occurred, could require a substantial level of financial resources to
address and otherwise respond to, may be difficult to identify or address in a timely manner, and could result in claims, investigations, inquiries, and other
proceedings or actions by private parties or governmental entities that may divert management’s attention and require the expenditure of significant time
and resources, and which may cause us to incur substantial fines, penalties, or other liability and related legal and other costs. Any actual or perceived
security breach or other security incident may also harm our reputation, result in a loss of customers, and make it more difficult or impossible for us to
successfully market to others. Any of the foregoing matters could harm our business, operating results and financial condition.
Our products are subject to governmental export and import controls that could subject us to liability or impair our ability to compete in international
markets.
Because we incorporate encryption technology into our products, certain of our products are subject to U.S. export controls and may be exported outside
the U.S. only with the required export license or through an export license exception. If we were to fail to comply with U.S. export licensing requirements,
U.S. customs regulations, U.S. economic sanctions, or other laws, we could be subject to substantial civil and criminal penalties, including fines,
incarceration for responsible employees and managers, and the possible loss of export or import privileges. Obtaining the necessary export license for a
particular sale may be time-consuming and may result in the delay or loss of sales opportunities. Furthermore, U.S. export control laws and economic
sanctions prohibit the shipment of certain products to U.S. embargoed or sanctioned countries, governments, and persons. Even though we take precautions
to ensure that we comply with all relevant regulations, any failure by us or any partners to comply with such regulations could have negative consequences
for us, including reputational harm, government investigations, and penalties.
In addition, various countries regulate the import of certain encryption technology, including through import permit and license requirements, and have
enacted laws that could limit our ability to distribute our products or could limit our end-customers’ ability to implement our products in those countries.
Changes in our products or changes in export and import regulations may create delays in the introduction of our products into international markets,
prevent our end-customers with international operations from deploying our products globally or, in some cases, prevent or delay the export or import of
our products to certain countries, governments, or persons altogether. Any change in export or import regulations, economic sanctions, or related
legislation, shift in the enforcement, or scope of existing regulations, or change in the countries, governments, persons, or technologies targeted by such
regulations, could result in decreased use of our products by, or in our decreased ability to export or sell our products to, existing or potential end-customers
with international operations. Any decreased use of our products or limitation on our ability to export to or sell our products in international markets would
likely adversely affect our business, financial condition, and results of operations.
15
�Index
Privacy and data security concerns, data collection and transfer restrictions and related domestic or foreign regulations may limit the use and adoption
of our solutions and adversely affect our business.
Personal privacy, information security, and data protection are significant issues in the United States, Europe, and many other jurisdictions where we have
operations or offer our products. The regulatory framework governing the collection, processing, storage and use of confidential and proprietary business
information and personal data is rapidly evolving. The United States federal and various state and foreign governments have adopted or proposed
requirements regarding the collection, distribution, use, security and storage of personally identifiable information and other data relating to individuals,
and federal and state consumer protection laws are being applied to enforce regulations related to the online collection, use and dissemination of data.
Further, many foreign countries and governmental bodies, including the European Union (“EU”), where we conduct business, have laws and regulations
concerning the collection and use of personal data obtained from their residents or by businesses operating within their jurisdiction. These laws and
regulations often are more restrictive than those in the United States. Laws and regulations in these jurisdictions apply broadly to the collection, use,
storage, disclosure, and security of data that identifies or may be used to identify or locate an individual, such as names, email addresses and, in some
jurisdictions, IP addresses.
We also expect that there will continue to be new proposed laws, regulations and industry standards concerning privacy, data protection and information
security in the United States, the EU, and other jurisdictions. For example, the European Commission adopted a General Data Protection Regulation (the
“GDPR”) that became fully effective on May 25, 2018, superseding prior EU data protection legislation, imposing more stringent EU data protection
requirements, and providing for greater penalties for noncompliance. The United Kingdom has enacted a Data Protection Act and legislation referred to as
the UK GDPR that substantially implements the GDPR and provides for a penalty regime similar to the GDPR. We may be required to incur substantial
expense in order to make significant changes to our product and business operations in connection with obtaining and maintaining compliance with the
GDPR and similar legislation, such as the UK GDPR and UK Data Protection Act, all of which may adversely affect our revenue and product sales.
California has enacted legislation, the California Consumer Privacy Act (the “CCPA”) that, among other things, requires covered companies to provide
disclosures to California consumers, and afford such consumers abilities to opt-out of certain sales of personal information. The CCPA was modified and
expanded by the California Privacy Rights Act (the “CPRA”), which was approved by California voters in the November 2020 election. Additionally,
other U.S. states continue to propose, and in certain cases adopt, privacy-focused legislation. For example, Connecticut, Virginia, and Colorado have
enacted legislation similar to the CCPA and CPRA that has taken effect in 2023; Utah has enacted such legislation that is effective as of December 31,
2023; Florida, Montana, Oregon, and Texas have enacted similar legislation that becomes effective in 2024; Delaware, Tennessee, and Iowa have enacted
similar legislation that will take effect in 2025; and Indiana has enacted similar legislation that will become effective in 2026. We cannot yet fully
determine the impact these or future laws, regulations and standards may have on our business, but they may require us to modify our data processing
practices and policies and to incur substantial costs and expenses in efforts to comply. Privacy, data protection and information security laws and
regulations are often subject to differing interpretations, may be inconsistent among jurisdictions, and may be alleged to be inconsistent with our current
or future practices. Additionally, we may be bound by contractual requirements applicable to our collection, use, processing, and disclosure of various
types of data, including personal data, and may be bound by, or voluntarily comply with, self-regulatory or other industry standards relating to these
matters. These and other requirements could reduce demand for our products, increase our costs, impair our ability to grow our business, or restrict our
ability to store and process data or, in some cases, impact our ability to offer our service in some locations and may subject us to liability. Any failure or
perceived failure to comply with applicable laws, regulations, industry standards, and contractual obligations may adversely affect our business. Further,
in view of new or modified federal, state, or foreign laws and regulations, industry standards, contractual obligations and other legal obligations, or any
changes in their interpretation, we may find it necessary or desirable to fundamentally change our business activities and practices or to expend significant
resources to modify our product and otherwise adapt to these changes. We may be unable to make such changes and modifications in a commercially
reasonable manner or at all, and our ability to develop new products and features could be limited.
16
�Index
The costs of compliance with and other burdens imposed by laws, regulations and standards may limit the use and adoption of our service and reduce
overall demand for it, or lead to significant fines, penalties, or liabilities for any noncompliance. Privacy, information security, and data protection
concerns, whether valid or not valid, may inhibit market adoption of our platform, particularly in certain industries and foreign countries.
Risks Related to Ownership of Our Common Stock
We do not regularly pay dividends on our common stock and thus stockholders must look to appreciation of our common stock to realize a gain on their
investments.
Our dividend policy is within the discretion of our Board of Directors and will depend upon various factors, including our business, financial condition,
results of operations, capital requirements, and investment opportunities. We therefore cannot make assurances that our Board of Directors will determine
to pay regular or special dividends in the future. Accordingly, unless our Board of Directors determines to pay dividends, stockholders will be required to
look to appreciation of our common stock to realize a gain on their investment, which may not occur.
The exercise of our outstanding stock options, warrants, and RSUs would result in a dilution of our current stockholders’ voting power and an increase
in the number of shares eligible for future resale in the public market which may negatively impact the market price of our stock.
The exercise of our outstanding vested stock options, warrants, and RSUs would dilute the ownership interests of our existing stockholders. As of
December 31, 2023, we had outstanding options, warrants and RSUs to purchase an aggregate of 348,717 shares of common stock representing
approximately 10% of our total shares outstanding of which 287,503 were vested and therefore exercisable. To the extent outstanding stock options or
warrants are exercised, additional shares of common stock will be issued, existing stockholders’ percentage voting interests will decline and the number of
shares eligible for resale in the public market will increase. Such increase may have a negative effect on the value or market trading price of our common
stock.
Investors may have limited influence because ownership of our common stock is limited.
As of December 31, 2023, our executive officers and directors beneficially owned approximately 14% of our outstanding common stock. Because of their
beneficial ownership interest, our officers and directors could significantly influence stockholder actions of which you disapprove or that are contrary to
your interests. This ability to exercise significant influence could prevent or significantly delay another company from acquiring or merging with us.
17
�Index
Our protective provisions in our Amended and Restated Certificate of Incorporation and bylaws could make it difficult for a third party to successfully
acquire us even if you would like to sell your stock to them.
We have protective provisions in our Amended and Restated Certificate of Incorporation and bylaws that could delay, discourage, or prevent a third party
from acquiring control of us without the approval of our Board of Directors. These protective provisions include:
•
•
•
•
•
•
A staggered Board of Directors: Only one or two directors (of our five-person Board of Directors) will be up for election at any given annual meeting.
This delays the ability of stockholders to affect a change in control of us because it would take two annual meetings to effectively replace a majority
of the Board of Directors.
Blank check preferred stock: Our Board of Directors has the authority to establish the rights, preferences, and privileges of our 10,000,000 authorized,
but unissued, shares of preferred stock. Therefore, this stock may be issued at the discretion of our Board of Directors with preferences over your
shares of our common stock in a manner that is materially dilutive to you. In addition, blank check preferred stock can be used to create a “poison
pill” which is designed to deter a hostile bidder from buying a controlling interest in our stock without the approval of our Board of Directors. We
have not adopted such a “poison pill;” but our Board of Directors can do so in the future, very rapidly and without stockholder approval.
Advance notice requirements for director nominations and for business to be brought before stockholder meetings: Stockholders wishing to submit
director nominations or raise matters to a vote of the stockholders must provide notice to us within very specific date windows and in very specific
form to have the matter voted on at a stockholder meeting. This gives our Board of Directors and management more time to react to stockholder
proposals generally and could also permit us to disregard a stockholder proposal to the extent such proposal is not submitted in accordance with the
bylaws.
No stockholder actions by written consent: No stockholder or group of stockholders may take action by written consent. Along with the advance
notice requirements described above, this provision also gives our Board of Directors and management more time to react to proposed stockholder
actions.
Super majority requirement for stockholder amendments to the bylaws: Stockholder proposals to alter or amend our bylaws or to adopt new bylaws
can only be approved by the affirmative vote of at least 66 2/3% of the outstanding shares of our common stock.
No ability of stockholders to call a special meeting of the stockholders: A special meeting of the stockholders, other than as required by statute, may
be called at any time by the Board of Directors, or by the chairman of the board, or by the president, and any power of stockholders to call a special
meeting of stockholders is specifically denied. Accordingly, stockholders, even those who represent a significant percentage of our shares of common
stock, may need to wait for the annual meeting before nominating directors or raising other business proposals to be voted on by the stockholders.
In addition, the provisions of Section 203 of the Delaware General Corporation Law govern us. These provisions may prohibit large stockholders,
particularly those owning 15% or more of our outstanding voting stock, from merging or combining with us for a certain period of time.
18
�Index
These and other provisions in our Amended and Restated Certificate of Incorporation, our bylaws and under Delaware law could discourage potential
takeover attempts, reduce the price that investors might be willing to pay for shares of our common stock in the future and result in the market price being
lower than it would be without these provisions.
Our amended and restated bylaws designate a state or federal court located within the State of Delaware as the exclusive forum for substantially all
disputes between us and our stockholders, which could limit our stockholders’ ability to choose the judicial forum for disputes with us or our directors,
officers, or employees.
Our amended and restated bylaws provide that, unless we consent in writing to the selection of an alternative forum, the sole and exclusive forum for (1)
any derivative action or proceeding brought on our behalf, (2) any action asserting a claim of breach of a fiduciary duty owed by any of our directors,
stockholders, officers, or other employees to us or our stockholders, (3) any action arising pursuant to any provision of the Delaware General Corporation
Law, or our amended and restated certificate of incorporation or amended and restated bylaws or (4) any other action asserting a claim that is governed by
the internal affairs doctrine shall be the Court of Chancery of the State of Delaware (or, if the Court of Chancery does not have jurisdiction, another State
court in Delaware or the federal district court for the District of Delaware), in all cases subject to the court having jurisdiction over indispensable parties
named as defendants.
However, notwithstanding the exclusive forum provisions, our amended and restated bylaws explicitly state that they would not preclude the filing of
claims brought to enforce any liability or duty created under federal securities laws, including the Securities Act or the Exchange Act.
Any person or entity purchasing or otherwise acquiring any interest in any of our securities shall be deemed to have notice of and consented to this
provision. This exclusive-forum provision may limit a stockholder’s ability to bring a claim in a judicial forum of its choosing for disputes with us or our
directors, officers, or other employees, which may discourage lawsuits against us and our directors, officers, and other employees. If a court were to find
this exclusive-forum provision in our amended and restated bylaws to be inapplicable or unenforceable in an action, we may incur additional costs
associated with resolving the dispute in other jurisdictions, which could harm our results of operations.
General Risk Factors
We may need to raise additional capital to support our business growth, and this capital may be dilutive, may cause our stock price to drop or may not
be available on acceptable terms, if at all.
We may need to raise additional capital, which may not be available to us when needed or may not be available on terms acceptable to us, to support our
business growth or to respond to business opportunities, challenges, or unforeseen circumstances, including sales under our past and any future shelf
registration statements. Our ability to obtain additional capital, if and when required, will depend on our business plans, investor demand, our operating
performance, the condition of the capital markets, the terms of our current contractual obligations and other factors.
19
�Index
If we raise additional funds through the issuance of equity, equity-linked or debt securities, including those under our past and any future shelf registration
statements, those securities may have rights, preferences, or privileges senior to the rights of our common stock, and our existing stockholders may
experience dilution. Additionally, we are unable to predict the future success of any future offerings. Sales of a substantial number of shares of our common
stock in the public market, or the perception that these sales or other financings might occur, could depress the market price of our common stock, and
could also impair our ability to raise capital through the sale of additional equity securities. If we issue debt securities or incur indebtedness, we could
experience increased future payment obligations and a need to comply with restrictive covenants, such as limitations on our ability to incur additional debt,
limitations on our ability to acquire, sell or license intellectual property rights and other operating restrictions that could adversely impact our ability to
conduct our business. If we are unable to obtain additional capital or are unable to obtain additional capital on satisfactory terms, our ability to continue to
support our business growth or to respond to business opportunities, challenges, or other circumstances could be adversely affected, and our business may
be harmed.
The departure of Kendall Larsen, our Chief Executive Officer and President, and/or other key personnel could compromise our ability to execute our
strategic plan and materially harm our business.
Our success depends on the skills, experience, and performance of our key personnel. Due to the specialized nature of our business and limited staff, we are
particularly dependent on Kendall Larsen, our Chief Executive Officer and President. We have no employment agreements with any of our key executives
that prevent them from leaving us at any time. In addition, we do not maintain key person life insurance for any of our officers or key employees. The loss
of Mr. Larsen, or our failure to retain other key personnel or plan for the succession of key personnel, would jeopardize our ability to execute our strategic
plan and materially harm our business.
We will need to recruit and retain additional qualified personnel to successfully grow our business.
Our future success will depend, in part, on our ability to attract and retain qualified engineering, operations, marketing, sales and executive personnel.
Inability to attract and retain such personnel could adversely affect our business. Competition for engineering, operations, marketing, sales, and executive
personnel is intense, particularly in the technology and Internet sectors and in the regions where we conduct our business. We may need to invest
significant amounts of cash and equity to attract and retain employees and expend significant time and resources to identify, recruit, train and integrate such
employees, and we may never realize returns on these investments. Additionally, we can provide no assurance that we will attract or retain such personnel.
War, terrorism, other acts of violence, or natural or manmade disasters as well as macroeconomic conditions may affect the markets in which we
operate, our clients and our service delivery.
Our business may be adversely affected by instability, disruption, or destruction in a geographic region in which we operate, regardless of cause, including
war, terrorism, riot, civil insurrection, or social unrest, and natural or manmade disasters, including famine, flood, fire, earthquake, storm, or pandemic
events and spread of disease, such as the COVID-19 pandemic. Our business may also be adversely affected by further downturn in macroeconomic
conditions, including inflation and rising interest rates, global political and economic uncertainty and tensions, such as the ongoing Russia-Ukraine and
Israel-Hamas conflicts as well as any related political or economic response, counter responses or otherwise, financial services sector instability, a
reduction in business confidence and activity, financial market volatility, and other factors. Such events can adversely affect our operations or the economy
as a whole and may cause our customers to delay their decisions on spending for the services we provide and perpetuate significant changes in regional and
global economic conditions and cycles. These events may also pose risks to our personnel and to physical facilities and operations, which could adversely
affect our financial results.
20
�Index
Trading in our common stock is limited and the price of our common shares may be subject to volatility.
Our common stock is currently listed on the NYSE and was previously listed on the NYSE American LLC (formerly the NYSE MKT LLC). Over the past
years, the market price of our common stock has experienced significant fluctuations. Between January 1, 2023, and December 31, 2023, the adjusted
closing price on the NYSE for our common stock ranged between $3.53 and $12.60, adjusted for a 1-for-20 reverse stock split effective October 26, 2023.
The price of our common stock may continue to be volatile as a result of several factors, some of which are beyond our control. These factors include, but
not limited to, the following:
•
•
•
•
•
•
Annual variations, actual or anticipated, in our operating results;
Significant changes in our management;
Large purchases or sales of common stock or derivative transactions related to our stock;
Actual or anticipated announcements of new products or services by us or competitors;
General conditions in the markets in which we compete; and
General social, political, economic, and financial conditions, including the significant volatility in the global financial markets.
In addition, we believe there has been and may continue to be substantial trading in derivatives of our stock, including short selling activity or related
similar activities, which are beyond our control, and which may be beyond the full control of the SEC and Financial Institutions Regulatory Authority or
“FINRA.” While the SEC and FINRA rules prohibit some forms of short selling and other activities that may result in stock price manipulation, such
activity may nonetheless occur without detection or enforcement. We have held conversations with regulators concerning trading activity in our stock;
however, there can be no assurance that should there be any illegal manipulation in the trading of our stock, it will be detected, prosecuted, or successfully
eradicated. Significant short selling market manipulation could cause our stock trading price to decline, to become more volatile, or both. For more
information regarding trading in our common stock and listing on the NYSE, see additional risk factors included elsewhere in this Annual Report on Form
10-K.
We have broad discretion in how we apply our funds, and we may not use these funds effectively, which could affect our results of operations and cause
our stock price to decline.
Our management has broad discretion in the application of our existing cash, cash equivalents and investments and could spend these funds in ways that do
not improve our results of operations or enhance the value of our common stock. Pending their use, we may invest our available funds in a manner that
does not produce income or that loses value. The failure by our management to apply our available funds effectively could result in financial losses that
could cause the price of our common stock to decline and delay the development of our products.
In addition, an entity that, among other things, is or holds itself out as being engaged primarily, or proposes to engage primarily, in the business of
investing, reinvesting, owning, trading, or holding certain types of securities would be deemed an Investment Company under the Investment Company Act
of 1940 (the “1940 Act”). If we do not manage our investments and business in a manner that meets the requirements for an exemption under the 1940 Act,
we may be deemed to be an investment company under the 1940 Act and subject to additional limitations on operating our business including limitations
on the issuance of securities, which may make it difficult for us to raise capital.
21
�Index
Item 1B. Unresolved Staff Comments
None.
22
�Index
Item 1C. Cybersecurity
Cybercriminals, hackers, and threat-actors are becoming more sophisticated and effective every day. To mitigate threats to our business, we take a
comprehensive approach to cybersecurity risk management and make securing the data that our customers and other stakeholders entrust to us a top
priority. We are committeed to safeguarding the confidentiality, integrity, and availability of all physical and electronic information assets to ensure that
regulatory, operational, and contractual requirements are fulfilled. Our board of directors (the “Board”) and our management are actively involved in the
oversight of our risk management program, of which cybersecurity represents an important component. As described in more detail below, we have
established policies, processes and practices for assessing, identifying, and managing material risks from cybersecurity threats. We have devoted significant
resources to implement and maintain security measures to meet regulatory requirements and customer expectations, and we intend to continue to make
significant investments to maintain the security of our data and cybersecurity infrastructure. Notwithstanding the extensive approach we take to
cybersecurity, we may not be successful in preventing or mitigating a cybersecurity incident that could have a material adverse effect on us. While we have
technology and processes in place to detect and respond to cybersecurity threats, we are continually at risk from the evolving cybersecurity threat
landscape. We have not previously experienced a cybersecurity event that was determined to be material, and our business strategy, results of operations
and financial condition have not been materially affected by risks from cybersecurity threats. For additional information regarding risks from cybersecurity
threats, please refer to Item 1A, “Risk Factors,” in this Annual Report on Form 10-K.
Risk Management and Strategy
We have developed detailed policies, processes and practices for assessing, identifying, and managing material risks from cybersecurity threats as a part of
our overall risk management program and are based on frameworks established by the National Institute of Standards and Technology (“NIST”), and other
applicable industry standards. This does not imply that we meet any particular technical standards, specifications or requirements, however, we do use these
frameworks as a guide to help us identify, assess, and manage cybersecurity risks relevant to our business. Our cybersecurity program in particular focuses
on the following key areas:
Collaboration
Our cybersecurity risks are identified and addressed through a comprehensive, cross-functional approach. Key security, risk, and compliance stakeholders
meet regularly to develop strategies for preserving the confidentiality, integrity and availability of our own and our customer’s information, identifying,
preventing and mitigating cybersecurity threats, and effectively responding to cybersecurity incidents. We maintain controls and procedures that are
designed to ensure prompt escalation of certain cybersecurity incidents so that decisions regarding such incidents can be made by management, the Board,
and legal counsel in a timely manner.
Risk Assessment
We conduct cybersecurity risk assessments annually, quarterly and upon certain triggering events. Such risk assessments take into account information from
internal stakeholders, known information security vulnerabilities, and information from external sources (e.g., reported security incidents that have
impacted other companies, industry trends, and recommendations from our IT vendors). The results of the assessment are used to drive alignment on, and
prioritization of, initiatives to enhance our security controls, make recommendations to improve processes, and inform a broader enterprise-level risk
assessment that is presented to our Board and members of senior management.
Technical Safeguards
We regularly assess and deploy technical safeguards designed to protect our information systems and infrastructure from cybersecurity threats. Such
safeguards are regularly evaluated and improved based on vulnerability assessments, cybersecurity threat intelligence and incident response experience.
Incident Response and Recovery Planning
We have established comprehensive incident response and management plans and continue to regularly test and evaluate the effectiveness of those plans.
Our incident response and management plans address — and guide our employees, management, and Board on — our response to a cybersecurity incident.
In the event of an incident, we intend to follow our incident response playbook, which outlines the steps to be followed from incident detection to
mitigation, recovery and notification, including notifying functional areas (e.g., legal), as well as the Board and senior management, as appropriate.
Third-Party Risk Management
We have implemented controls designed to identify and mitigate cybersecurity threats associated with our use of third-party service providers. Such
providers are subject to security risk assessments at the time of onboarding, contract renewal, and upon detection of an increase in risk profile. We use a
variety of inputs in such risk assessments, including information supplied by providers and third parties. In addition, we encourage our providers to meet
appropriate security procedures, controls and responsibilities and investigate security incidents that have impacted our third-party providers, as appropriate.
Education and Awareness
Our policies require each of our employees to contribute to our cybersecurity efforts. We regularly remind employees of the importance of handling and
protecting customer and employee data, including through privacy and security trainings to enhance employee awareness of how to detect and report
cybersecurity threats and cybersecurity incidents.
Governance
Board Oversight
The Nominating and Corporate Governance Committee (the “Committee”) and senior management oversee our cybersecurity risk processes and policies.
The Committee receives regular reports from senior management about the prevention, detection, mitigation, and remediation of cybersecurity incidents,
including security risks and information security vulnerabilities. The Committee also ensures that procedures for safeguarding the Company’s information
technology (“IT”) systems are documented and implemented, monitors the effectiveness of the Company’s cybersecurity program for protecting against
internal and external threats as well as disaster recovery and disruption mitigation, and addresses deficiencies as the threat and business landscape continues
to evolve. The Board receives regular updates from the Committee based on such oversight and communications with senior management regarding
�cybersecurity risk resulting from risk and control maturity assessments, progress of risk reduction initiatives, external auditor feedback and relevant internal
and industry cybersecurity incidents.
Our Board has technical and industry expertise in risk management, computer security and information technology matters. Specifically, the chairperson of
the Committee has 39 years of experience in the cybersecurity field, is a former sub-chairman of the NIST Board of Assessment for Programs/National
Research Council and holds CISSP and CRISC certifications.
Management’s Role
Our chief technology officer (“CTO”), Director of IT (Information Technology), Director of SecDevOps (Security, Development Operations) (collectively,
the “Security Team”) have primary responsibility for assessing and managing cybersecurity risks. The Security Team reviews security performance metrics,
identifies security risks, and assesses the status of approved security enhancements. The Security Team also considers and makes recommendations on
security policies and procedures, security service requirements, and risk mitigation strategies.
Our CTO has served in various roles in information technology and information security for over 30 years, He holds a PhD in Information Technology and
has been with VirnetX since 2007. Our Director of IT has served in various roles in information technology for 29 years. He holds degree in Computer
Technology. Our SecDevOps Director has served in various roles in information technology and information security for over 33 years.
23
�Index
Item 2.
Properties
Our principal executive offices are located at 308 Dorla Court, Suite 206, Zephyr Cove, Nevada, 89448. We lease this property, which comprises
approximately 2,090 square feet of office space, from a third party for a term that ends in October 2025. Additionally, we lease a facility in Farmington,
Utah. The space includes 28,970 square feet to be used for technical integration and training. The lease continues through April 2029. We believe that our
office and facility leases are suitable and appropriately support our current business needs.
Item 3.
Legal Proceedings
See Note 12 in the notes to our consolidated financial statements.
Item 4.
Mine Safety Disclosure
Not applicable.
24
�Index
PART II
Item 5.
Market for the Registrant’s Common Equity, Related Stockholder Matters and Issuer Purchases of Equity Securities
Market Information
Our common stock currently trades under the symbol “VHC” on the NYSE.
Holders of Record
As of December 31, 2023, we had 41 stockholders of record. Because many of our shares of common stock are held of record by brokers and other
institutions on behalf of stockholders, we are unable to estimate the total number of beneficial stockholders represented by such record holders.
Dividend Policy
See Note 8 in the notes to our consolidated financial statements.
Since our founding as a public company in 2007, each time we have been successful in generating cash relating to the successful outcome of litigation, we
have made a special distribution to common shareholders. In 2010, a distribution of $10 per common share closely followed a litigation outcome that
resulted in our receipt of $200 million. In 2020, a distribution of $20.00 per share closely followed a litigation outcome that resulted in our receipt of $454
million. In 2023, we paid a one-time capital dividend of $20 share of common stock, to shareholders. Over the course of VirnetX’s history as a public
company VirnetX has distributed over $165.9 million in cash to shareholders.
Securities Authorized for Issuance under Equity Compensation Plan
See Item 12, Security Ownership of Certain Beneficial Owners and Management and Related Stockholder Matters for information regarding securities
authorized for issuance.
Stock Performance Graph
This performance graph shall not be deemed “filed” for purposes of Section 18 of the Exchange Act, or incorporated by reference into any filing of VirnetX
Holding Corporation under the Securities Act or the Exchange Act, except as shall be expressly set forth by specific reference in such filing. The stock
price performance reflected on this graph is not necessarily indicative of future stock price performance. See the disclosure in part I, Item 1A. “Risk
Factors” for more information regarding the risks in investing in our common stock.
The graph below matches VirnetX Holding Corp’s cumulative 5-Year total shareholder return on common stock with the cumulative total returns of the
S&P 500 index and the RDG Technology Composite index. The graph tracks the performance of a $100 investment in our common stock and in each index
(with the reinvestment of all dividends) from 12/31/2018 to 12/31/2023.
25
�Index
*$100 invested on 12/31/18 in stock or index, including reinvestment of dividends.
Fiscal year ending December 31.
Copyright© 2024 Standard & Poor’s, a division of S&P Global. All rights reserved.
12/18
12/19
12/20
12/21
12/22
12/23
VirnetX Holding Corp
S&P 500
RDG Technology Composite
100.00
100.00
100.00
158.33
131.49
142.93
246.02
155.68
222.56
126.92
200.37
266.61
63.46
164.08
181.18
44.33
207.21
261.37
Recent Sales of Unregistered Securities
None.
Item 6.
[Reserved]
Item 7.
Management’s Discussion and Analysis of Financial Condition and Results of Operations
26
�Index
The Company
We are an Internet security software and technology company with patented technology for Zero Trust Network Access (“ZTNA”) based secure network
communications. VirnetX’s software and technology solutions, including its Secure Domain Name Registry and Technology, VirnetX One™, War Room™,
VirnetX Matrix™, and GABRIEL Connection Technology™, are designed to be device and location-independent, and enable a secure real-time
communication environment for all types of enterprise applications, services, and critical infrastructures. Our technology generates secure connections on a
“single-click” basis, significantly simplifying the deployment of secure real-time communication solutions by eliminating the need for end-users to enter
any encryption information.
Our product portfolio includes sophisticated technologies, products and services that are available for sale worldwide. Our next-generation, VirnetX One™
platform builds upon our patented Secure Domain Name Registry and Technology and GABRIEL Connection Technology™ to further enhance the
security and efficiency of our patented secure communication links. VirnetX One™ is a security-as-a-service platform that protects enterprise applications,
services, and infrastructure from cyber-attacks. Our platform allows businesses and other enterprises of all sizes to add a “security umbrella” as an added
layer on top of their existing infrastructure to further reduce risk and bolster security against ever-growing cyberthreats to data, operating systems, other
infrastructure products and gateway security controllers.
Our War Room™ software product provides safe and secure video conferencing meeting environment where sensitive communications and data is invisible
to those not authorized to view it. War Room™ validates permissions of all the users, and devices requesting access to any secure meeting room prior to
granting access. We believe our War Room™ will be an attractive solution for government and law enforcement agencies as well as all professional sectors
such as legal, financial, and medical where limiting access to confidential data is a critical requirement.
Our VirnetX Matrix™ product provides superior security for internet-enabled enterprise applications and their connected devices, and for control systems
currently deployed by those enterprises (e.g., file servers, data back-up systems, VPN/firewalls). VirnetX Matrix™ provides a true “zero-trust” access
protection, “single-click” ease of use, and is a highly-effective added layer of protection that is deployed simply, without the need for changes to an
enterprise’s existing, in-place infrastructure. We believe VirnetX Matrix™ is an attractive solution for all businesses, cloud and on-premise application
service providers, and original equipment manufacturers (“OEMs”), looking to improve visibility and management of their networks to mitigate morphing
attacks on their networks and for real time access and control of their users.
Our GABRIEL Collaboration Suite™ is a set of communication applications and tools that use our GABRIEL Secure Communication Platform™. It
enables seamless and secure cross platform communications between devices that are enrolled in our “VIRNETX SECURED” network and have our
software installed. Effective May 31, 2023 we have ended the support for our GABRIEL Collaboration Suite™. All the existing customers and partners
have been notified of this announcement.
We have undertaken activities to commercialize our products and intellectual property in and outside the United States including VirnetX One™, War
Room™, VirnetX Matrix™, GABRIEL Connection Technology™ and our Secured Domain Name Registry and Technology. We believe our product
portfolio to secure devices and systems are suitable in areas such as City, County and State Governments, Healthcare, Finance, Legal, Oil and Gas,
Medical, Law Enforcement, National Defense and related support industries. We continue to actively pursue new sales opportunities in and outside of
United States.
During 2023, we actively engaged in discussions with certain third-parties to pitch the capabilities of VirnetX One™. As a result of our efforts, we made a
series of announcements with Solution Synergy, WeSecure, Samsung, Envoy Data Corporation, and Object Security. We also announced new deployments
of our VirnetX Matrix™ product at City of Bridgeport, International Association of Certified ISAOs (IACI) and SkinWalker Ranch. Although there can be
no assurance in this regard, the Company believes that there are opportunities for Company products’ sales directly to, resale arrangements with and/or
adoption as vendor standards by, one or more of these third parties.
27
�Index
We invested in two companies in the artificial intelligence (“AI”) sector partnering with them to augment the Company’s strategy to provide secure AI to
the marketplace. The first investment was with L2 Holdings, LLC (“OmniTeq”), an AI, machine learning (“ML”) and predictive analytics-based solutions
provider with a primary focus on selling into the space and defense sectors. Under the terms of our agreement, OmniTeq will deploy and integrate our
VirnetX One™ family of products at SkinWalker Ranch to secure their data and protect against cyber hackers. Our second investment was with OP Media,
Inc, a dynamic software platform provider, addressing a critical market requirement for transforming static infrastructure processes and knowledgebases
into digital processes that can be continuously optimized using AI, ML, and blockchain technologies for making informed decisions and creating
streamlined workflows in real-time, without requiring coding or programming skills. Further, under the terms of our respective agreements, both OmniTeq
and OP Media have agreed to integrate our VirnetX One™ family of products and services into their solutions and to resell them to their current and future
customers. Both companies have committed to using VirnetX as their exclusive global cybersecurity solution provider and go-to-market partner.
We have an ongoing licensing program under which we offer licenses to our technology, software, and some of our patented inventions, including our
secure domain name registry service, to domain infrastructure providers, communication service providers as well as to system integrators. Our GABRIEL
Connection Technology™ License is offered to OEM customers who want to adopt the GABRIEL Connection Technology™ as their solution for
establishing secure connections using secure domain names within their products. We have developed GABRIEL Connection Technology™ Software
Development Kit to assist with rapid integration of these techniques into existing software implementations.
Our employees include the core development team behind our inventions, technology, and software. Some members of this team have worked together for
over twenty years and were on the same team that invented and developed this technology while working at Leidos. The team has continued its research
and development work to refine our unique network security technology and make it more secure and easy to deploy.
Our portfolio of intellectual property is the foundation of our business model. We currently own approximately 205 total patents and pending applications,
including 72 U.S. patents/patent applications and 133 foreign patents/validations/pending applications. Our patent portfolio is primarily focused on
securing real-time communications over the Internet, and related services, and is used in all our technology and products, some of which were acquired by
our principal operating subsidiary; VirnetX, Inc., from Leidos, Inc., or Leidos, (f/k/a Science Applications International Corporation, or SAIC) in 2006.
We expect to continue to launch new and enhanced security platforms, software products, and services based on our GABRIEL Connection Technology™.
We will provide updates to new and existing customers as they are released to the public. Many small and medium businesses have installed our software
products in their corporate networks. We intend to continue to expand our customer base with targeted promotions and direct sales initiatives to large
enterprise and governmental organizations.
Litigation
We are subject to various legal proceedings, the outcomes of which are inherently uncertain. We record any potential gains related to legal proceedings only
after cash is collected. We record a liability when it is probable that a loss has been incurred and the amount is reasonably estimable, the determination of
which requires significant judgment. Resolution of legal matters in a manner inconsistent with management’s expectations could have a material impact on
our financial condition and operating results. See Note 12 in the notes to our consolidated financial statements for more information.
Commitments and Related Party Transactions
We lease our offices in Nevada under an operating lease with a third party expiring in October 2025. We recognize rent expense on a straight-line basis
over the term of the lease.
We have a facility lease in Utah to be used for technical integration and as a training facility. This lease requires monthly payments and expires in April
2029.
We have a 12-month non-exclusive service agreement, for the use of an aircraft from K2 Investment Fund LLC (“LLC”) for business travel for our
employees. Our Chief Executive Officer and Chief Administrative Officer are the managing partners of the LLC and control the equity interests of the
LLC. We pay for the Company’s business usage of the aircraft at a rate of $8 per flight hour.
In March 2024, we renewed our facility lease, used for corporate, promotional and marketing purposes. The renewal period begins in 2025, continues for
10 years through 2035, requires either a single payment of $6,000, or annual payments each March, beginning in 2025 starting at $600 and increasing
annually for a total commitment of approximately $7,500.
28
�Index
Critical Accounting Policies and Estimates
The preparation of financial statements in conformity with U.S. GAAP requires us to make estimates and assumptions that affect the reported amounts of
assets and liabilities and disclosure of contingent assets and liabilities at the date of the financial statements and the reported amounts of revenues and
expenses during the reported period. The critical accounting policies we employ in the preparation of our consolidated financial statements are those which
involve income taxes, fair value of financial instruments and stock-based compensation.
Use of Estimates
We prepare our consolidated financial statements in accordance with U.S. GAAP. In doing so, we have to make estimates and assumptions that affect our
reported amounts of assets, liabilities, revenues, and expenses, as well as related disclosure of contingent assets and liabilities. In some cases, we could
reasonably have used different accounting policies and estimates. In some cases, changes in the accounting estimates are reasonably likely to occur from
period to period. Accordingly, actual results could differ materially from our estimates. To the extent that there are material differences between these
estimates and actual results, our financial condition or results of operations will be affected. We base our estimates on past experience and other
assumptions that we believe are reasonable under the circumstances, and we evaluate these estimates on an ongoing basis. We refer to accounting estimates
of this type as critical accounting policies and estimates, which we discuss further below. We have reviewed our critical accounting policies and estimates
with the Audit Committee of our Board of Directors.
Investments
Investments classified as available-for-sale are recorded at fair market value. Unrealized gains and losses are reported as other comprehensive income.
Realized gains and losses are recorded in income in the period they are realized using specific identification of each security's cost basis. We invest our
excess cash primarily in highly liquid debt instruments including corporate, government and federal agency securities, with contractual maturities less than
two years. By policy, we limit the amount of credit exposure to any one issuer.
We have elected the investment measurement alternative for other investments without readily determinable fair values. During 2023, we invested $2,000
in L2 Holdings LLC and $500 in OP Media Inc. These investments are carried at our initial cost less any impairment, because we do not have the ability to
exercise significant influence over operating and financial matters. For these investments, we adjust the carrying value for any purchases or sales of our
ownership interests. Periodically, we evaluate these investments for impairment. If we identify an impairment, we reduce the carrying value for the
impairment loss with a charge to earnings. We have not identified any impairment as of December 31, 2023.
Income Taxes
We account for income taxes using the asset and liability method. The asset and liability method require the recognition of deferred tax assets and liabilities
for expected future tax consequences of temporary differences that currently exist between the tax basis and financial reporting basis of our assets and
liabilities. We calculate current and deferred tax provisions based on estimates and assumptions that could differ from actual results reflected on the income
tax returns filed during the following years. Adjustments based on filed returns are recorded when identified in the subsequent years. The effect on deferred
taxes for a change in tax rates is recognized in income in the period that the tax rate change is enacted. In assessing our deferred tax assets, we consider
whether it is more likely than not that all or some portion of the deferred tax assets will not be realized.
A valuation allowance is provided for deferred income tax assets when, in our judgment, based upon currently available information and other factors, it is
more likely than not that all or a portion of such deferred income tax assets will not be realized. The determination of the need for a valuation allowance is
based on an on-going evaluation of current information including, among other things, historical operating results, estimates of future earnings in different
taxing jurisdictions and the expected timing of the reversals of temporary differences. We believe the determination to record a valuation allowance to
reduce a deferred income tax asset is a significant accounting estimate because it is based, among other things, on an estimate of future taxable income in
the United States and certain other jurisdictions, which is susceptible to change and may or may not occur, and because the impact of adjusting a valuation
allowance may be material. In determining when to release the valuation allowance established against our net deferred income tax assets, we consider all
available evidence, both positive and negative. We continually assess our ability to generate sufficient taxable income during future periods in which our
deferred tax assets may be realized. If and when we believe it is more likely than not that we will recover our deferred tax assets, we will reverse the
valuation allowance if any, as an income tax benefit in our statements of operations.
We account for our uncertain tax positions in accordance with U.S. GAAP. The U.S. GAAP method of accounting for uncertain tax positions utilizes a two-
step approach to evaluate tax positions. Step one, recognition, requires evaluation of the tax position to determine if based solely on technical merits it is
more likely than not to be sustained upon examination. Step two, measurement, is addressed only if a position is more likely than not to be sustained. In
step two, the tax benefit is measured as the largest amount of benefit, determined on a cumulative probability basis, which is more likely than not to be
realized upon ultimate settlement with tax authorities. If a position does not meet the more likely than not threshold for recognition in step one, no benefit
is recorded until the first subsequent period in which the more likely than not standard is met, the issue is resolved with the taxing authority, or the statute
of limitations expires. Positions previously recognized are derecognized when we subsequently determine the position no longer is more likely than not to
be sustained. Evaluation of tax positions, their technical merits, and measurements using cumulative probability are highly subjective management
estimates. Actual results could differ materially from these estimates.
29
�Index
Fair Value
Fair value is the price that would result from an orderly transaction between market participants at the measurement date. A fair value hierarchy prioritizes
the inputs used to measure fair value. The hierarchy gives the highest priority to unadjusted quoted prices in active markets for identical assets or liabilities
(Level 1 measurement) and the lowest priority to unobservable inputs (Level 3 measurement). Level 2 measurements utilize either directly or indirectly
observable inputs in markets other than quoted prices in active markets.
Our financial instruments are stated at amounts that equal, or approximate, fair value. When we estimate fair value, we utilize market data or assumptions
that we believe market participants would use in pricing the financial instrument, including assumptions about risk and inputs to the valuation technique.
We use valuation techniques, primarily the income and market approach, which maximizes the use of observable inputs and minimize the use of
unobservable inputs for recurring fair value measurements.
Stock-based Compensation
We account for stock-based compensation using the fair value recognition method in accordance with U.S. GAAP. We recognize these compensation costs
on a straight-line basis over the requisite service period of the award, which is generally a vesting term of 4 years. We recognize forfeitures, if any, when
they occur. In addition, we record stock-based compensation expense for awards granted to non-employees at fair value of the consideration received or the
fair value of the equity instruments issued, as they vest, over the performance period. See Note 6 in the notes to our consolidated financial statements for
more information.
Results of Operations (all amounts in this section are expressed in thousands)
Revenue
Revenue
2023
$
2022
7 $
48
Revenue generated in 2023 was $7, compared to $48 in 2022. The change in revenue from 2022 to 2023 was the expiration of contracts with NEC and
Mitel.
Licensing Costs
Licensing costs
Research and Development Expenses
Research and Development
2023
$
2023
$
2022
— $
(4)
2022
9,713 $
6,406
Research and development costs include expenses paid to outside development consultants and compensation-related expenses for our engineering staff.
Research and development costs are expensed as incurred. Our research and development expenses in 2023 were $9,713 compared to $6,406 in 2022. The
fluctuation in 2023 compared to 2022 was primarily due to changes in engineering compensation costs, including bonuses.
Selling, General and Administrative Expenses
Selling, General and Administrative
2023
$
2022
21,739 $
15,722
Selling, general and administrative expenses include compensation costs for management and administrative personnel, as well as expenses for outside
legal, accounting, and consulting services. Our selling, general and administrative expenses in 2023 were $21,739 compared to $15,722 in 2022. The
increase in selling, general and administrative expenses was primarily due to outside services and additional compensation costs, including bonuses.
30
�Index
Interest and Other Income, net
Interest and Other Income
Interest and other income in 2023 was $3,495 compared to $1,848 in 2022, due to higher interest rates.
Effective Income Tax Rate
A reconciliation of the United States federal statutory income tax rate to our effective income tax rate is as follows:
United States federal statutory rate
State taxes, net of federal benefit
Valuation allowance
Stock based compensation
R&D Credit
Other
Effective income tax rate
2023
$
2022
3,495 $
1,848
Year
Ended
December
31,
2023
Year
Ended
December
31,
2022
21.00%
(0.01)%
(20.31)%
(0.58)%
2.20%
(2.03)%
0.28%
21.00%
(0.55)%
(91.21)%
(9.44)%
1.22%
(0.29)%
(79.27)%
The Company’s effective tax rate for 2023 and 2022 was substantially lower than the statutory Federal income tax rate primarily due to our valuation
allowance, additionally in 2022 our effective tax rate was further reduced by stock based compensation, including expiring options.
Liquidity and Capital Resources
As of December 31, 2023, our cash and cash equivalents totaled $26,289 and our short-term investments totaled $27,258 compared to $86,561 and
$65,462, respectively, as of December 31, 2022. We expect that our cash and cash equivalents and short-term investments as of December 31, 2023, will be
sufficient to fund our current level of selling, general and administration costs and provide related working capital for the foreseeable future. Over the
longer term, we expect to derive the majority of our future revenue from license fees and royalties associated with our patent portfolio, technology,
software and secure domain name registry and product sales.
Item 7A. Quantitative and Qualitative Disclosures about Market Risk
Consistent with the rules applicable to “smaller reporting companies,” we have omitted the information required by Item 7A.
Item 8.
Financial Statements and Supplementary Data
Set forth below, are the audited consolidated financial statements for our company accompanied by all reports thereon of Farber Hass Hurley LLP (PCAOB
No. 223)
31
�Index
FINANCIAL STATEMENTS
Financial Statements Index
Report of Farber Hass Hurley LLP, Independent Registered Public Accounting Firm
Consolidated Balance Sheets of VirnetX Holding Corporation as of December 31, 2023 and December 31, 2022
Consolidated Statements of Operations of VirnetX Holding Corporation for the years ended December 31, 2023, and December 31, 2022
Consolidated Statements of Comprehensive (Loss) of VirnetX Holding Corporation for the years ended December 31, 2023, and December 31,
2022
Consolidated Statements of Stockholders’ Equity of VirnetX Holding Corporation for the years ended December 31, 2023, and December 31,
2022
Consolidated Statements of Cash Flows of VirnetX Holding Corporation for the years ended December 31, 2023, and December 31, 2022,
Notes to Consolidated Financial Statements of VirnetX Holding Corporation
Page
33
35
36
37
38
39
40
32
�Index
REPORT OF INDEPENDENT REGISTERED PUBLIC ACCOUNTING FIRM
To the Board of Directors and
Stockholders of VirnetX Holding Corporation
Opinion on the Financial Statements
We have audited the accompanying consolidated balance sheets of VirnetX Holding Corporation (the “Company”) as of December 31, 2023 and 2022, and
the related consolidated statements of operations, comprehensive loss, stockholders’ equity, and cash flows for each of the years in the two-year period
ended December 31, 2023, and the related notes (collectively referred to as the “financial statements”). In our opinion, the financial statements present
fairly, in all material respects, the financial position of the Company as of December 31, 2023 and 2022, and the results of its operations and its cash flows
for each of the years in the two-year period ended December 31, 2023, in conformity with accounting principles generally accepted in the United States of
America.
Basis for Opinion
These financial statements are the responsibility of the Company’s management. Our responsibility is to express an opinion on the Company’s financial
statements based on our audits. We are a public accounting firm registered with the PCAOB and are required to be independent with respect to the
Company in accordance with the U.S. federal securities laws and the applicable rules and regulations of the Securities and Exchange Commission and the
PCAOB.
We conducted our audits in accordance with the standards of the PCAOB. Those standards require that we plan and perform the audit to obtain reasonable
assurance about whether the financial statements are free of material misstatement, whether due to error or fraud. Our audits included performing
procedures to assess the risks of material misstatement of the financial statements, whether due to error or fraud, and performing procedures that respond to
those risks. Such procedures included examining, on a test basis, evidence regarding the amounts and disclosures in the financial statements. Our audits
also included evaluating the accounting principles used and significant estimates made by management, as well as evaluating the overall presentation of the
financial statements. We believe that our audits provide a reasonable basis for our opinion.
Critical Audit Matter
The critical audit matter communicated below is a matter arising from the current period audit of the financial statements that was communicated or
required to be communicated to the audit committee and that: (1) relate to accounts or disclosures that are material to the financial statements and (2)
involved our especially challenging, subjective, or complex judgments. The communication of the critical audit matter does not alter in any way our
opinion on the financial statements, taken as a whole, and we are not, by communicating the critical audit matter below, providing a separate opinion on the
critical audit matter or on the accounts or disclosures to which it relates.
33
�Index
Description of the Matter
Other Investments
As discussed in Note 2 to the financial statements, the Company purchased equity interests in two private entities. Given
that the entities do not have a readily determinable fair market value, management must consider various factors,
including the Company’s ability to apply significant influence to the overall operations of the entities, in determining the
classification and the initial value of the Other Investments. In addition, management must also evaluate the investments
as of each reporting period to determine if there are any factors that would impact the recognized value of Other
Investments.
Our determination that the classification and the valuation of Other Investments is a critical audit matter results from the
significant judgment by management when assessing the recognition method of the initial purchase as well as the
ongoing analysis of the valuation of the investments. This in turn led to a high degree of auditor judgment, subjectivity,
and effort in performing procedures relating to management’s assessment of the initial recognition and valuation of Other
Investments.
Audit Procedures
Our principal audit procedures related to the Company’s Other Investments included the following:
- We evaluated management’s analysis regarding their ability to apply significant influence in the operations of the
entities by obtaining information of the ownership percentage of the entities, composition of the respective boards,
and any other relevant factors in determining their recognition method being recognized as cost in accordance with
Accounting Standards Codification 321.
- We also evaluated management’s assessment of impairment factors or any observable transactions from inception
of the investments through year-end to determine whether an adjustment in the recognized value was necessary.
This includes reviewing management’s internal analysis as well as any publicly available data regarding any
factors or events that could impact the entities’ values.
/s/ Farber Hass Hurley LLP
We have served as the Company’s auditor since 2008.
Chatsworth, California
March 15, 2024
34
�VIRNETX HOLDING CORPORATION
CONSOLIDATED BALANCE SHEETS
(in thousands, except share amounts)
ASSETS
As of
December 31, 2023
As of
December 31, 2022
Index
Current assets:
Cash and cash equivalents
Investments available for sale
Accounts receivables
Prepaid expenses and other current assets
Total current assets
Prepaid expenses and other assets
Property and equipment, net
Other investments
Total assets
LIABILITIES AND STOCKHOLDERS’ EQUITY
Current liabilities:
Accounts payable and accrued liabilities
Accrued payroll and related expenses
Other liabilities, current
Total current liabilities
Other liabilities
Total liabilities
Commitments and contingencies (Note 4)
Stockholders’ equity:
Preferred stock, par value $0.0001 per share Authorized: 10,000,000 shares at December 31, 2023 and
December 31, 2022, Issued and outstanding: 0 shares at December 31, 2023 and December 31, 2022
Common stock, par value $0.0001 per share
Authorized: 100,000,000 shares at December 31, 2023 and December 31, 2022, Issued and outstanding:
3,618,431 and 3,571,232 shares, at December 31, 2023 and December 31, 2022, respectively
Additional paid-in capital
Accumulated deficit
Accumulated other comprehensive loss
Total stockholders’ equity
Total liabilities and stockholders’ equity
See accompanying notes to consolidated financial statements.
35
$
$
$
$
$
$
$
26,289
27,258
2
282
53,831
4,014
67
2,500
60,412
440
316
498
1,254
3,145
4,399
86,561
65,462
14
224
152,261
703
11
—
152,975
373
311
47
731
—
731
—
—
—
242,520
(186,495)
(12)
56,013
60,412
$
—
239,753
(87,195)
(314)
152,244
152,975
�Index
VIRNETX HOLDING CORPORATION
CONSOLIDATED STATEMENTS OF OPERATIONS
(in thousands, except share and per share amounts)
Revenue
Operating expense:
Licensing costs
Research and development
Selling, general and administrative expenses
Total operating expense
(Loss) from operations
Interest and other income, net
(Loss) before taxes
Income tax (provision) benefit
Net (loss)
Basic (loss) per share
Diluted (loss) per share
Weighted average shares outstanding basic
Weighted average shares outstanding diluted
Year Ended
December 31, 2023
$
7
Year Ended
December 31, 2022
48
$
—
9,713
21,739
31,452
(31,445)
3,495
(27,950)
79
(27,871) $
(7.79) $
(7.79) $
3,579
3,579
(4)
6,406
15,722
22,124
(22,076)
1,848
(20,228)
(16,032)
(36,260)
(10.17)
(10.17)
3,565
3,565
$
$
$
See accompanying notes to consolidated financial statements.
36
�Index
VIRNETX HOLDING CORPORATION
CONSOLIDATED STATEMENTS OF COMPREHENSIVE (LOSS)
(in thousands)
Net (loss)
Other comprehensive (loss) income, net of tax:
Change in unrealized (loss) gain on investments, net
Change in foreign currency translation, net
Total other comprehensive (loss) gain, net of tax
Comprehensive (loss)
See accompanying notes to consolidated financial statements.
37
Year Ended
December 31, 2023
$
(27,871) $
Year Ended
December 31, 2022
(36,260)
306
(4)
302
(27,569) $
(246)
—
(246)
(36,506)
$
�Index
VIRNETX HOLDING CORPORATION
CONSOLIDATED STATEMENTS OF STOCKHOLDERS’ EQUITY
(in thousands, except share amounts)
Total shareholders’ equity, beginning balances
Common stock and additional paid-in capital:
Beginning balances
Common stock issued for options/RSUs/RS, net
Stock-based compensation
Ending balances
Accumulated deficit
Beginning balances
Net (loss)
Dividends
Ending balances
Accumulated other comprehensive loss:
Beginning balances
Change in unrealized investment (loss) gain, net
Change in foreign currency translation, net
Ending balances
Total shareholders’ equity, ending balances
Dividends per share
See accompanying notes to consolidated financial statements.
38
Year Ended
December 31,
2023
2022
$
152,244
$
185,449
239,753
(11)
2,778
242,520
(87,195)
(27,871)
(71,429)
(186,495)
(314)
306
(4)
(12)
236,452
(29)
3,330
239,753
(50,935)
(36,260)
—
(87,195)
(68)
(246)
—
(314)
$
$
56,013
$
152,244
20
$
—
�Index
VIRNETX HOLDING CORPORATION
CONSOLIDATED STATEMENTS OF CASH FLOWS
(in thousands)
Cash flows from operating activities:
Net (loss)
Adjustments to reconcile net (loss) to net cash from operating activities:
Year Ended
December 31, 2023
Year Ended
December 31, 2022
$
(27,871) $
(36,260)
Depreciation
Stock-based compensation
Bad debt
Deferred income taxes
Changes in assets and liabilities:
Prepaid expenses and other current assets
Accounts payable and accrued liabilities
Other liabilities
Accrued payroll and related expenses
Accrued licensing costs
Accounts receivable
Prepaid income taxes
Net cash used in operating activities
Cash flows from investing activities:
Purchase of property and equipment
Purchase of investments at cost
Purchase of investments
Proceeds from sale or maturity of investments
Net cash provided by (used in) investing activities
Cash flows from financing activities:
Dividend
Withholding taxes paid on cashless exercise of restricted stock and restricted stock units
Net cash used in financing activities
Net (decrease) in cash and cash equivalents
Cash and cash equivalents, beginning of period
Cash and cash equivalents, end of period
Cash paid for income taxes
$
$
See accompanying notes to consolidated financial statements.
39
9
2,778
15
—
(3,369)
67
3,596
5
—
(3)
—
(24,773)
(65)
(2,500)
(47,215)
85,721
35,941
(71,429)
(11)
(71,440)
(60,272)
86,561
26,289
—
$
$
7
3,330
—
16,032
331
35
(54)
41
(355)
3
(3)
(16,893)
—
—
(67,070)
28,535
(38,535)
—
(29)
(29)
(55,457)
142,018
86,561
2
�Index
VIRNETX HOLDING CORPORATION
NOTES TO CONSOLIDATED FINANCIAL STATEMENTS
(in thousands except share, per share and per device amounts)
Note 1 − Formation and Business of the Company
VirnetX Holding Corporation, which we refer to as “we”, “us”, “our”, “the Company” or “VirnetX”, is engaged in the business of commercializing a
portfolio of patents. We seek to derive revenue from selling our software products including VirnetX War Room™ and VirnetX Matrix™ and licensing our
technology, including VirnetX One™, and our secure domain name technology GABRIEL Connection Technology™, to various original equipment
manufacturers (“OEMs”) and others, that use our technologies in the development and manufacturing of their own products within the IP-telephony,
mobility, fixed-mobile convergence, and unified communications markets or who seek to secure their systems and applications.
Our portfolio of intellectual property is the foundation of our business model. We currently own approximately 205 total patents and pending applications,
including 72 U.S. patents/patent applications and 133 foreign patents/validations/pending applications. Our patent portfolio is primarily focused on
securing real-time communications over the Internet, as well as related services such as the establishment and maintenance of a secure domain name
registry. Our patented methods also have additional applications in the key areas of device operating systems and network security. The subject matter of all
our U.S and foreign patents and pending applications relates generally to securing communications over the Internet and such covers all our technology and
other products. Some of our issued U.S. and foreign patents expire at various times during the period from 2023 to 2034.
Note 2 − Summary of Significant Accounting Policies
The preparation of financial statements in conformity with accounting principles generally accepted in the United States requires us to make estimates and
assumptions that affect the reported amounts of assets and liabilities and disclosure of contingent assets and liabilities at the date of the financial statements
and the reported amounts of revenues and expenses during the reported period. The critical accounting policies we employ in the preparation of our
consolidated financial statements are those which involve impairment of long-lived assets, income taxes, fair value of financial instruments and stock-based
compensation.
Use of Estimates
We prepare our consolidated financial statements in accordance with U.S. GAAP. In doing so, we have to make estimates and assumptions that affect our
reported amounts of assets, liabilities, revenues, and expenses, as well as related disclosure of contingent assets and liabilities. In some cases, we could
reasonably have used different accounting policies and estimates. In some cases, changes in the accounting estimates are reasonably likely to occur from
period to period. Accordingly, actual results could differ materially from our estimates. To the extent that there are material differences between these
estimates and actual results, our financial condition or results of operations will be affected. We base our estimates on past experience and other
assumptions that we believe are reasonable under the circumstances, and we evaluate these estimates on an ongoing basis. We refer to accounting estimates
of this type as critical accounting policies and estimates, which we discuss further below. We have reviewed our critical accounting policies and estimates
with the Audit Committee of our Board of Directors.
Basis of Consolidation
The consolidated financial statements include the accounts of VirnetX Holding Corporation and our wholly owned subsidiaries. All intercompany balances
and transactions have been eliminated.
Revenue Recognition
The Company derives revenue from licensing and royalty fees from contracts with customers which often span several years. We account for this revenue
in accordance with Accounting Standards Codification (“ASC”) Topic 606, Revenue from Contracts with Customers. A performance obligation is a
promise in a contract to transfer a distinct good or service to the customer. A contract’s transaction price is allocated to each distinct performance obligation
and recognized as revenue when, or as, the performance obligation is satisfied. Our revenue arrangements may consist of multiple-element arrangements,
with revenue for each unit of accounting recognized as the product or service is delivered to the customer.
40
�Index
With the licensing of our patents, performance obligations are generally satisfied at a point in time as work is complete when our patent rights are
transferred to our customers. We generally have no further obligation to our customers regarding our technology.
Certain contracts may require our customers to enter into a hosting arrangement with us and for these arrangements, revenue is recognized over time,
generally over the life of the servicing contract.
The Company actively monitors and enforces its intellectual property (“IP”) rights, including seeking appropriate compensation from third parties that
utilize the Company’s IP without a license. As a result, the Company may, from time to time, receive payments as part of a settlement or compensation for
a patent infringement dispute. Proceeds received are allocated to each element identified in the settlement or compensation, based on the fair value of each
element. Generally, settlements and compensation may include the following elements: the value of a license or royalty agreement, cost reimbursement,
damages, and interest. Elements identified related to licensing and royalty are recognized as revenue. Elements identified as reimbursed costs are generally
recorded as a reduction to the reported expenses. Elements identified as damages or interest are generally recorded in other income in the condensed
consolidated statement of operations.
Licensing Costs
Included in operating expenses are licensing costs we incurred in conjunction with a patent infringement case.
Contingent Gains
ASC Topic 450-30-25, Contingent Gains, prohibits recognition of contingent gains until realized. Accordingly, we do not record contingent gains ahead of
such realization. Management generally considers any such gains as realized only upon the collection of cash.
Cash and Cash Equivalents
We consider all highly liquid investments purchased with original maturities of three months or less at the date of purchase to be cash equivalents. Our cash
and cash equivalents are not subject to significant interest rate risk due to the short maturities of these investments.
Investments
Investments classified as available-for-sale are recorded at fair market value. Unrealized gains and losses are reported as other comprehensive income.
Realized gains and losses are recorded in income in the period they are realized using specific identification of each security’s cost basis. We invest our
excess cash primarily in highly liquid debt instruments including corporate, government and federal agency securities, with contractual maturities less than
two years. By policy, we limit the amount of credit exposure to any one issuer.
We have elected the investment measurement alternative for other investments without readily determinable fair values. During 2023, we invested $2,000
in L2 Holdings LLC and $500 in OP Media Inc. These investments are carried at our initial cost less any impairment, because we do not have the ability to
exercise significant influence over operating and financial matters. For these investments, we adjust the carrying value for any purchases or sales of our
ownership interests. Periodically, we evaluate these investments for impairment. If we identify an impairment, we reduce the carrying value for the
impairment loss with a charge to earnings. We have not identified any impairment as of December 31, 2023.
Concentration of Credit Risk and Other Risks and Uncertainties
Our cash and cash equivalents are primarily maintained at two major financial institutions in the United States. Deposits held with these financial
institutions may exceed the amount of insurance provided on such deposits. A portion of those balances are insured by the Federal Deposit Insurance
Corporation, or FDIC. In 2023, we had, at times, funds that were uninsured. We do not believe that we are subject to any unusual financial risk beyond the
normal risk associated with commercial banking relationships. We have not experienced any losses on our deposits of cash and cash equivalents.
41
�Index
Fair Value
The carrying amounts of our financial instruments, including cash equivalents, accounts payable, and accrued liabilities, approximate fair value because of
their generally short maturities.
Property and Equipment
Property and equipment are stated at historical cost, less accumulated depreciation, and amortization. Depreciation and amortization are computed using the
accelerated and straight-line methods over the estimated useful lives of the assets, which range from five to seven years. Repair and maintenance costs are
charged to expense as incurred.
Leases
The Company determines if an arrangement is a lease at inception in accordance with ASC Topic 842. Operating lease right-of-use (“ROU”) assets are
included in Prepaid expenses, and other assets on the Condensed Consolidated Balance Sheets. ROU assets represent the Company’s right to use an
underlying asset for the lease term and lease liabilities represent the Company’s obligation to make lease payments arising from the lease. ROU assets and
lease liabilities are recognized at the commencement date based on the present value of lease payments over the lease term, using the risk-free rate, U.S.
prime rate, of 8.5% in 2023.
Intangible Assets
We record intangible assets at cost, less accumulated amortization. Amortization of intangible assets is provided over their estimated useful lives, which
can range from 3 to 15 years, on either a straight-line basis or as revenue is generated by the assets.
Impairment of Long-Lived Assets
We identify and record impairment losses on long-lived assets used in operations when events and changes in circumstances indicate that the carrying
amount of an asset might not be recoverable, but not less than annually. Recoverability is measured by comparison of the anticipated future net
undiscounted cash flows to the related assets’ carrying value. If such assets are deemed impaired, the impairment to be recognized is measured by the
amount by which the carrying amount of the assets exceeds the projected discounted future net cash flows arising from the asset.
Research and Development
Research and development costs include expenses paid to outside development consultants and compensation related expenses for our engineering staff.
Research and development costs are expensed as incurred.
Income Taxes
We account for income taxes using the asset and liability method. The asset and liability method requires the recognition of deferred tax assets and
liabilities for expected future tax consequences of temporary differences that currently exist between the tax basis and financial reporting basis of our assets
and liabilities. We calculate current and deferred tax provisions based on estimates and assumptions that could differ from actual results reflected on the
income tax returns filed during the following years. Adjustments based on filed returns are recorded when identified in the subsequent years. The effect on
deferred taxes for a change in tax rates is recognized in income in the period that the tax rate change is enacted. In assessing our deferred tax assets, we
consider whether it is more likely than not that all or some portion of the deferred tax assets will not be realized.
42
�Index
The 2017 U.S. Tax Cuts and Jobs Act changes IRC Section 174, regarding capitalization of book research and development (“R&D”) expenses for income
tax purposes. Effective for tax years beginning in 2022 IRC Section 174 requires the capitalization of book R&D expenses which are capitalized and
amortized over 5 years for domestic R&D expenses and over 15 years for foreign R&D expenses. To date there has been limited guidance from the IRS on
how to quantify the amount of book R&D expenses subject to capitalization, including the indirect expenses supporting the R&D function. Due to the
limited guidance, some assumptions were made in our estimates.
A valuation allowance is provided for deferred income tax assets when, in our judgment, based upon currently available information and other factors, it is
more likely than not that all or a portion of such deferred income tax assets will not be realized. The determination of the need for a valuation allowance is
based on an on-going evaluation of current information including, among other things, historical operating results, estimates of future earnings in different
taxing jurisdictions and the expected timing of the reversals of temporary differences. We believe the determination to record a valuation allowance to
reduce a deferred income tax asset is a significant accounting estimate because it is based, among other things, on an estimate of future taxable income in
the United States and certain other jurisdictions, which is susceptible to change and may or may not occur, and because the impact of adjusting a valuation
allowance may be material. In determining when to release the valuation allowance established against our net deferred income tax assets, we consider all
available evidence, both positive and negative. We continually assess our ability to generate sufficient taxable income during future periods in which our
deferred tax assets may be realized. If and when we believe it is more likely than not that we will recover our deferred tax assets, we will reverse the
valuation allowance as an income tax benefit in our statements of operations.
We account for our uncertain tax positions in accordance with U.S. GAAP, which utilizes a two-step approach to evaluate tax positions. Step one,
recognition, requires evaluation of the tax position to determine if based solely on technical merits it is more likely than not to be sustained upon
examination. Step two, measurement, is addressed only if a position is more likely than not to be sustained. In step two, the tax benefit is measured as the
largest amount of benefit, determined on a cumulative probability basis, which is more likely than not to be realized upon ultimate settlement with tax
authorities. If a position does not meet the more likely than not threshold for recognition in step one, no benefit is recorded until the first subsequent period
in which the more likely than not standard is met, the issue is resolved with the taxing authority, or the statute of limitations expires. Positions previously
recognized are derecognized when we subsequently determine the position no longer is more likely than not to be sustained. Evaluation of tax positions,
their technical merits, and measurements using cumulative probability are highly subjective management estimates. Actual results could differ materially
from these estimates.
Stock-Based Compensation
We account for stock-based compensation using the fair value recognition method in accordance with U.S. GAAP. We recognize these compensation costs
on a straight-line basis over the requisite service period of the award, which is generally a vesting term of 4 years. We recognize forfeitures, if any, when
they occur. In addition, we record stock-based compensation expense for awards granted to non-employees at fair value of the consideration received or the
fair value of the equity instruments issued, as they vest, over the performance period (See Note 6 - Stock-Based Compensation).
Earnings per Share
Basic earnings per share are computed by dividing earnings available to common stockholders by the weighted average number of outstanding common
shares during the period. Diluted earnings per share is computed by dividing net income by the weighted average number of shares outstanding during the
period increased to include the number of additional shares of common stock that would have been outstanding if the potentially dilutive securities had
been issued.
New Accounting Pronouncements
In December 2023, the FASB issued ASU No. 2023-09, Income Taxes (Topic 740): Improvements to Income Tax Disclosures, which requires
disaggregated information about an entity’s effective tax rate reconciliation as well as information on income tax paid. The guidance in this ASU is
effective for public companies with annual periods beginning after December 15, 2024. We plan to adopt the guidance for the fiscal year ending December
31, 2025. We are currently evaluating the effect adoption of this ASU will have on our consolidated financial statements.
43
�Index
Note 3 − Property and Equipment
Our major classes of property and equipment were as follows:
Office furniture
Computer equipment
Total
Less accumulated depreciation
Total property and equipment, net
Depreciation expense for 2023 and 2022 was $9 and $7, respectively.
Note 4 − Commitments, Contingencies and Related Party Transactions
December 31
2023
2022
143 $
92
235
(168)
67 $
79
92
171
(160)
11
$
$
We have a service agreement for the use of an aircraft from K2 Investment Fund LLC (“LLC”) for business travel for our employees. We incurred
approximately $1,097 and $1,123 in rental fees and reimbursements to the LLC in 2023 and 2022, respectively. We pay for the Company’s business usage
of the aircraft and have no right to purchase. Our Chief Executive Officer and Chief Administrative Officer are the managing partners of the LLC and
control the equity interests of the LLC. We entered into a 12-month non-exclusive agreement with the LLC for use of the plane at a rate of $8 per flight
hour, with no minimum usage requirement. The agreement contains other terms and conditions normal in such transactions and can be cancelled by either
us or the LLC with 30 days’ notice. The agreement renews on an annual basis unless terminated by either party. Neither party has exercised their
termination rights.
See Note 13 for further discussion of our lease commitments.
Note 5 − Stock Plan
Our stockholders approved the Amended and Restated Equity Incentive Plan (the “A&R Plan”) at our annual shareholders’ meeting in June 2023, which
added 175,000 shares to the plan. Our prior plan expired March 29, 2023; no further awards will be made under the prior plan, and the A&R Plan will
govern awards granted under the prior plan. The A&R Plan provides for the granting of stock options, restricted stock units (“RSUs”) and restricted stock.
Options granted under the A&R Plan are granted with an exercise price equal to the fair value of the of our stock on the date of grant. RSUs and restricted
stock are granted at the fair value of our stock on the date of grant because they have no exercise price. The fair value of options, RSUs and restricted stock
are expensed over the vesting periods. All options, RSUs and restricted stock are subject to forfeiture if service terminates prior to the shares vesting. At
December 31, 2023, there were 225,778 shares available for grant under the A&R Plan.
Note 6 − Stock-Based Compensation
The following tables summarize information and activity under the plan for the indicated periods.
Options Outstanding
Range of
Exercise Prices
Number
Outstanding
Weighted
Average
Remaining
Contractual
Life (Years)
Weighted
Average
Exercise
Price
Options Vested and Exercisable
Weighted
Average
Remaining
Contractual
Life (Years)
Weighted
Average
Exercise
Price
Number
Exercisable
$ 10.00 - 31.60
$ 34.80 - 139.00
$ 290.40 - 308.00
41,925
275,217
12,875
330,017
8.45 $
4.66 $
0.49 $
4.98 $
44
28.67
90.31
304.24
90.63
17,519
252,243
12,875
282,637
8.45 $
4.42 $
0.49 $
4.49 $
28.16
90.00
304.24
95.70
�Index
Outstanding, December 31, 2021
Options granted
Options exercised
Options cancelled
Outstanding, December 31, 2022
Options granted
Options exercised
Options cancelled
Outstanding, December 31, 2023
Options exercisable, December 31, 2023
Outstanding, December 31, 2021
RSUs granted
RSUs vested
RSUs cancelled
Outstanding, December 31, 2022
RSUs granted
RSUs vested
RSUs cancelled
Outstanding, December 31, 2023
Outstanding, December 31, 2022
Restricted stock granted
Restricted stock vested
Restricted stock cancelled
Outstanding, December 31, 2023
Number of
Shares
319,868
40,050
$
—
(19,120)
340,798
1,875
—
(12,656)
330,017
282,637
$
$
$
Options
Weighted
Average
Exercise
Price
Weighted
Average
Remaining
Contractual
Life (Years)
Aggregate
Intrinsic
Value
139.80
29.60
—
501.20
106.60
10.00
—
510.21
90.63
95.70
—
—
—
—
—
—
—
—
4.98
4.49
$
$
$
$
—
—
—
—
—
—
—
—
—
—
RSUs
Weighted
Average
Grant Date
Fair Value
Aggregate
Intrinsic
Value
Number of
RSUs
25,457
12,918
(10,770)
—
27,605
1,250
(11,405)
—
17,450
$
$
$
107.80
29.20
103.00
—
73.00
10.00
83.81
—
60.81
$
$
$
—
—
—
—
—
—
—
—
—
Restricted Stock
Weighted
Average
Grant Date
Fair Value
Number of
Restricted Stock
Aggregate
Intrinsic
Value
$
—
36,927
(3,617)
(604)
$
32,706
—
9.12
9.19
9.60
9.11
$
$
—
—
—
—
—
Intrinsic value is calculated as the difference between the per-share market price of our common stock on the last trading day of 2023, which was $7 and
the exercise price of the awards. For awards exercised, the intrinsic value is the difference between market price and the exercise price on the date of
exercise.
45
�Index
Stock-based compensation expense is included in operating expense for each period as follows:
Stock-Based Compensation by Type of Award
Stock options
RSUs
Restricted stock
Total stock-based compensation expense
Year Ended
December 31, 2023
$
Year Ended
December 31, 2022
2,303
$
1,027
$
3,330
1,960
778
40
2,778
$
As of December 31, 2023, there was $3,006 of unrecognized stock-based compensation expense; $2,025 related to unvested stock options, $683 related to
unvested RSUs, and $298 related to unvested restricted stock. These costs are expected to be recognized over a weighted-average period of 1.8 years for
options, 1.74 years for RSUs, and 3.54 years for restricted stock.
The fair value of each option grant was estimated on the date of grant using the Black-Scholes option pricing model using the following weighted average
assumptions:
Expected stock price volatility
Risk-free interest rate
Expected life term
Expected dividends
Year Ended
December 31, 2023
Year Ended
December 31, 2022
81.39%
3.9%
5.5 years
0%
85.39%
3.09%
6.2 years
0%
Based on the Black-Scholes option pricing model, the weighted average estimated fair value of employee stock options granted was $6.96 and $21.77 per
share during 2023 and 2022, respectively. The expected life was determined using the simplified method outlined in ASC 718, “Compensation - Stock
Compensation”. Expected volatility of the stock options was based upon historical data and other relevant factors.
Note 7 − Earnings Per Share
Basic earnings per share are based on the weighted average number of shares outstanding for a period. Diluted earnings per share are based upon the
weighted average number of shares and potentially dilutive common shares outstanding. Potential common shares outstanding principally include stock
options, RSUs and unvested restricted stock under our stock plan and warrants. During 2023 and 2022 we incurred losses; therefore, the effect of any
common stock equivalent would be anti-dilutive.
The table below sets forth the basic and diluted loss per share calculations:
Net (loss) income
Basic weighted average number of shares outstanding
Effect of dilutive securities
Diluted weighted average number of shares outstanding
Basic (loss) earnings per share
Diluted (loss) earnings per share
46
Year Ended December 31,
2023
2022
$
(27,871) $
(36,260)
3,579
—
3,579
$
$
(7.79) $
(7.79) $
3,565
—
3,565
(10.17)
(10.17)
�Index
Note 8 − Common Stock
Each share of common stock has the right to one vote. The holders of common stock are entitled to receive dividends whenever funds are legally available
and when declared by our Board of Directors, subject to the prior rights of holders of all classes of stock outstanding having priority rights as to dividends.
Our restated articles of incorporation authorize us to issue up to 100,000,000 shares of $0.0001 par value common stock.
Effective October 25, 2023, every 20 shares of our common stock outstanding was combined into one share of common stock. Proportional adjustments
were also made to the number of restricted stock, common stock issuable upon the exercise of options, warrants as well as common stock issuable upon the
vesting of RSUs. The exercise price of all equity awards were also proportionally adjusted. The accompanying financial statements include the effect of
this adjustment on all periods presented.
Dividends
In 2023, we paid a one-time capital dividend of $20 per share of common stock to shareholders. The timing and amount of future dividends, if any, will
depend on market conditions, corporate business and financial considerations and regulatory requirements.
Warrants
In 2020, we issued warrants for the purchase of 1,250 shares of common stock at an exercise price of $115 per share, exercisable on the date of grant,
expiring in April 2025. The weighted average fair value at the grant date was $83.20 per warrant. The fair value at the grant date was estimated utilizing the
Black-Scholes valuation model with the following weighted average assumptions (i) dividend yield on our common stock of 0 percent (ii) expected stock
price volatility of 97 percent (iii) a risk-free interest rate of 0.27 percent and (iv) and expected option term of 5 years.
Warrants
Issued
Exercise
Price
Outstanding and
Exercisable
December 31, 2022
Issued
Exercised
Cancelled
Terminated /
1,250 $
115
1,250
—
—
Note 9 − Employee Benefit Plan
Outstanding and
Exercisable
December 31, 2023
1,250
—
Expiration Date
April 30, 2025
We sponsor a defined contribution 401k plan covering substantially all our employees. Our matching contribution to the plan was approximately $229 and
$179 in 2023 and 2022, respectively.
Note 10 − Income Taxes
The income tax provision (benefit) is comprised of the following:
Current:
Federal
State
Foreign
Deferred:
Federal
State
Total income tax (benefit) provision
47
Year Ended
December 31, 2023
Year Ended
December 31, 2022
$
$
$
—
2
—
2
(79)
(2)
(81)
(79) $
—
3
—
3
15,920
109
16,029
16,032
�Index
A reconciliation of the United States federal statutory income tax rate to our effective income tax rate is as follows:
United States federal statutory rate
State taxes, net of federal benefit
Valuation allowance
Stock based compensation
R&D Credit
Other
Effective income tax rate
Deferred tax assets (liabilities) consist of the following:
Deferred tax assets:
Reserves and accruals
Research and development credits and other credits
Net operating loss carry forward
Stock based compensation
Other
Total deferred tax assets
Valuation allowance
Deferred tax assets after valuation allowance
Total deferred tax liability – depreciation and amortization
Net deferred tax assets
Year Ended
December 31, 2023
Year Ended
December 31, 2022
21.00%
(0.01)%
(20.31)%
(0.58)%
2.20%
(2.03)%
0.28%
21.00%
(0.55)%
(91.21)%
(9.44)%
1.22%
(0.29)%
(79.27)%
As of
December 31, 2023
As of
December 31, 2022
$
$
$
65
1,110
15,262
4,360
2,382
23,179
$
$
(23,179)
—
—
—
$
147
430
11,988
5,018
970
18,553
(18,553)
—
—
—
Pursuant to IRC Section 174, we capitalized direct and indirect research and development costs for our tax return totaling $8,599 in 2023 and $5,140 in
2022, of which $1,888 will be amortized in our 2023 tax return and $514 in our 2022 tax return. At December 31, 2023, unamortized capitalized direct and
indirect research and development costs for our tax return totaled $11,337, resulting in a deferred tax asset of $2,381.
At December 31, 2023, we had federal and state net operating loss carryforwards of approximately $72,645 and $109,435, respectively. Federal net
operating loss carryforwards do not expire. None of the state net operating loss carryforward is apportioned to a deferred tax asset, because currently we do
not have operations in states where losses accumulated. The state net operating loss carryforward begins expiring in 2029. We provide full valuation
allowances for our net deferred tax assets, including NOL carryforwards generated during the years, based on our evaluation of positive and negative
evidence, including our history of operating losses and the uncertainty of generating future taxable income that would enable us to realize our deferred tax
assets.
We are required to recognize the financial statement effects of a tax position when it is more likely than not, based on the technical merits, that the position
will be sustained upon examination. At December 31, 2023, we have no uncertain tax positions.
Our tax years for 2005 and forward are subject to examination by the U.S. tax authority and various state tax authorities. These years are open due to NOLs
and tax credits generated in these years were utilized in 2020. The statute of limitation for these years shall expire three years after the date of filing 2020
income tax returns, which is October 2024.
Our policy is to recognize interest and penalties, if any, accrued on any unrecognized tax benefits, as a component of income tax expense. We had no
interest or penalties accrued in 2023.
48
�Index
Note 11 − Fair Value Measurement
Fair value is the price that would result from an orderly transaction between market participants at the measurement date. A fair value hierarchy
prioritizes the inputs used to measure fair value. The hierarchy gives the highest priority to unadjusted quoted prices in active markets for identical assets
or liabilities (Level 1 measurement) and the lowest priority to unobservable inputs (Level 3 measurement). Level 2 measurements utilize either directly or
indirectly observable inputs in markets other than quoted prices in active markets.
Our financial instruments are stated at amounts that equal, or approximate, fair value. When we estimate fair value, we utilize market data or assumptions
that we believe market participants would use in pricing the financial instrument, including assumptions about risk and inputs to the valuation technique.
We use valuation techniques, primarily the income and market approach, which maximizes the use of observable inputs and minimize the use of
unobservable inputs for recurring fair value measurements.
Mutual funds: Valued at the quoted net asset value (NAV) of shares held.
U.S. agency and treasury securities: Fair value measured at the closing price reported on the active market on which the individual securities are traded.
The following table shows the adjusted cost, gross unrealized gains, gross unrealized losses, and fair value of our financial assets as of December 31, 2023
and 2022 (in thousands):
Cash
Level 1:
Mutual funds
U.S. agency and treasury securities
Total
$
December 31, 2023
Adjusted
Cost
Unrealized
Gains
Unrealized
Losses
Fair
Value
Cash
and Cash
Equivalents
Investments
Available
for Sale
$
1,452
$
—
$
—
$
1,452
$
1,452
$
—
20,040
32,046
52,086
53,538
$
—
27
27
27
$
—
(18)
(18)
(18) $
20,040
32,055
52,095
53,547
$
20,040
4,797
24,837
26,289
$
—
27,258
27,258
27,258
Cash
Level 1:
Mutual funds
U.S. agency and treasury securities
Total
December 31, 2022
Adjusted
Cost
Unrealized
Gains
Unrealized
Losses
Fair
Value
Cash
and Cash
Equivalents
Investments
Available
for Sale
$
16,949
$
—
$
—
$
16,949
$
16,949
$
—
66,493
68,958
135,451
152,400
$
$
—
9
9
9
$
—
(386)
(386)
(386) $
66,493
68,581
135,074
152,023
$
66,493
3,119
69,612
86,561
$
—
65,462
65,462
65,462
The maturities of our investments generally range from within one to two years. Actual maturities could differ from contractual maturities due to call or
prepayment provisions.
Note 12 − Litigation (all dollar amounts in this section are expressed in thousands except for rates per device)
We have several intellectual property infringement lawsuits pending in the United States Court of Appeals for the Federal Circuit (“USCAFC”).
49
�Index
VirnetX Inc. v. Apple, Inc. (Case 6:12-CV-00855-LED) (“Apple II”)
This case began on November 6, 2012, when we filed a complaint against Apple Inc. (“Apple”) in United States District Court (“USDC”) in which we
alleged that Apple infringed on certain of our patents, (U.S. Patent Nos. 6,502,135, 7,418,504, 7,921,211 and 7,490,151). We sought damages and
injunctive relief. The accused products include the iPhone 5, iPod Touch 5th Generation, iPad 4th Generation, iPad mini, and the latest Macintosh
computers. The USDC entered a Final Judgment and issued its Memorandum Opinion and Order regarding post-trial motions, affirming the jury’s verdict
of $502,600 and granting VirnetX motions for supplemental damages, a sunset royalty, and the royalty rate of $1.20 per infringing iPhone, iPad and Mac
products, pre-judgment and post-judgment interest and costs. Apple filed a notice of appeal with the United States Court of Appeals for the Federal Circuit
(“USCAFC”) in the Apple II case.
On October 9, 2018, USCAFC docketed the appeal as Case No. 19-1050 - VirnetX Inc. v. Apple Inc. On November 22, 2019, the USCAFC issued an
opinion affirming the district court’s findings that Apple is precluded from making certain invalidity arguments and that Apple infringed the ‘135 and ‘151
patents; reversing the USDC’s finding that Apple infringed the ‘504 and ‘211 patents; and remanding the case for proceedings on damages. Apple sought
panel and en banc rehearing, which the USCAFC denied on February 10, 2020.
On February 22, 2021, the USCAFC docketed the appeal as Case No. 19-1672. Apple’s opening brief was filed on June 2, 2021. VirnetX filed its
responsive brief on July 26, 2021. Apple filed its reply brief on September 13, 2021. Oral arguments were held on September 8, 2022. On March 31, 2023,
the USCAFC issued its decision vacating the USDC’s judgement in this matter and remanding it back to the USDC with instructions to dismiss the case as
moot. On July 14, 2023 the District Court vacated its prior Final Judgment against Apple dated January 6, 2021 and dismissed the case as moot. On May 1,
2023, VirnetX filed a petition for panel rehearing. On June 27, 2023, the petition for panel rehearing was denied, and the mandate issued on June 30, 2023.
VirnetX filed a petition for a writ of certiorari with the United States Supreme Court, on September 20, 2023. On February 20, 2024, the Supreme Court
denied our petition. We are evaluating all our options in this matter.
VirnetX Inc. v. Mangrove Partners Master Fund, Ltd., Apple Inc. (USCAFC Case 20-2271) and VirnetX Inc. v. Mangrove Partners Master
Fund, Ltd., Apple Inc., and Black Swamp, LLC (USCAFC Case 20-2272)
On September 15, 2020, we filed with the USCAFC an appeal of the invalidity findings by the Patent Trial and Appeal Board (“PTAB”) in inter-partes
review proceedings IPR2015-01046 and IPR2016-00062 involving our U.S. Patent No. 6,502,135, and an appeal of the invalidity findings by the PTAB in
inter-partes review proceedings IPR2015-1047, IPR2016-00063, and IPR2016-00167 involving our U.S. Patent No. 7,490,151. On September 25, 2020,
the USCAFC issued an order consolidating the two appeals. On December 15, 2020, we filed a motion to vacate the PTAB decisions below and to remand
these appeals to the PTAB. On March 16, 2021, the USCAFC denied the motion without prejudice to us raising the challenges made in the motion in our
opening brief. Our opening brief was filed on June 7, 2021.
On June 23, 2021, the USCAFC entered an order directing us (and parties in other appeals that raised Appointments Clause challenges) to file a brief
explaining how they believe their cases should proceed in light of the Supreme Court’s decision in United States v. Arthrex, Inc., 141 S. Ct. 1970 (2021).
On July 7, 2021, we filed a brief in response to the court’s order. Other parties, including the U.S. Patent and Trademark Office (“USPTO”) filed their
responses on July 21, 2021. On August 19, 2021, USCAFC issued an order remanding these appeals for the limited purpose of allowing VirnetX the
opportunity to request rehearing of the PTAB’s final written decisions by the Director of the USPTO. The USCAFC retained jurisdiction over the appeals
in the meantime. On September 20, 2021, we filed our requests for Director rehearing with the USPTO. On October 29, 2021, our requests for Director
rehearing were denied. We subsequently filed an amended opening brief to the USCAFC on December 10, 2021, the other parties filed response briefs on
February 2, 2022, and we filed a reply brief on February 22, 2022. All the briefings have been completed. The oral arguments in this matter were held on
September 8, 2022. On March 30, 2023, the USCAFC issued its decision affirming PTAB’s decisions finding certain claims of the ‘135 patent and the
‘151 patent to be unpatentable. On June 5, 2023, VirnetX filed a petition for panel rehearing. On June 22, 2023, the petition for panel rehearing was
denied, and the mandate issued on June 29, 2023. VirnetX filed a petition for a writ of certiorari with the United States Supreme Court, on September 20,
2023. On February 20, 2024, the Supreme Court denied our petition. We are evaluating all our options in this matter.
50
�Index
VirnetX Inc. v. Hirshfeld (USCAFC Case 17-2593, -2594)
On September 22, 2017, we filed with the USCAFC an appeal of the invalidity findings by the PTAB in inter-partes review proceeding IPR2016-00693
involving our U.S. Patent No. 7,418,504, and an appeal of the invalidity findings by the PTAB in inter-partes review proceeding IPR2016-00957
involving our U.S. Patent No. 7,921,211. On September 16, 2021, USCAFC issued an order remanding these appeals for the limited purpose of allowing
VirnetX the opportunity to request rehearing of the PTAB’s final written decisions by the Director of the USPTO. The USCAFC retained jurisdiction over
the appeals in the meantime. On October 18, 2021, we filed our requests for Director rehearing with the USPTO. On January 7, 2022, our requests for
Director rehearing were denied. On January 21, 2022, we informed the USCAFC about the denial of Director rehearing and requested that the court
dismiss the appeal involving IPR2016-00957 as moot and vacate the PTAB’s underlying decision. On April 4, 2022, the USCAFC vacated the PTAB’s
decision in IPR2016-00957 and remanded Appeal No. 17-2594 with instructions to dismiss. In the April 4, 2022 order, the USCAFC further set a briefing
schedule, in Appeal No. 17-2593. VirnetX filed its opening brief on September 12, 2022. The USPTO filed its response brief on December 20, 2022.
VirnetX filed its reply brief on February 14, 2023. On April 18, 2023, VirnetX filed a motion to hold this appeal in abeyance pending the disposition of
any petition for rehearing in the No. 20-2271, -2272 appeal, and pending the United States Supreme Court’s disposition of a pending petition for a writ of
certiorari in Arthrex, Inc. v. Smith & Nephew, Inc., No. 22-639. That motion was denied on June 1, 2023. On October 20, 2023, the USCAFC issued a
decision finding the appeal moot in view of its concurrent decision in USCAFC No. 22-2234. VirnetX sought rehearing, which was denied, and the
mandate to close the case was issued on January 12, 2024.
VirnetX Inc. v. Cisco Systems, Inc. (USCAFC Case 19-1671)
On March 18, 2019, we filed with the USCAFC an appeal of the invalidity findings by the PTAB in inter-partes re-examination proceeding 95/001,679
involving our U.S. Patent No. 6,502,135. On October 5, 2021, USCAFC issued an order remanding these appeals for the limited purpose of allowing
VirnetX the opportunity to request rehearing of the PTAB’s final written decisions by the Director of the PTO. The USCAFC retained jurisdiction over
the appeals in the meantime. Our request for Director rehearing with the PTO was filed on November 5, 2021. On January 10, 2022, our request for
Director rehearing was denied. We informed the USCAFC about the denial of Director rehearing. VirnetX’s opening brief was filed on June 23, 2022.
The USPTO’s response brief was filed on August 2, 2022, and Cisco’s response brief was filed on September 2, 2022. VirnetX filed its reply brief on
October 7, 2022. On April 18, 2023, VirnetX filed a motion to hold this appeal in abeyance pending the disposition of any petition for rehearing in the
No. 20-2271, -2272 appeal, and pending the Supreme Court’s disposition of a pending petition for a writ of certiorari in Arthrex, Inc. v. Smith & Nephew,
Inc., No. 22-639. The motion, filed on April 18, 2023, was denied on June 1, 2023. On October 20, 2023, the USCAFC issued a decision finding the
appeal moot in view of its concurrent decision in USCAFC No. 22-1523 and its prior decision in USCAFC No. 20-2271. VirnetX sought rehearing,
which was denied, and the mandate to close the case was issued on January 12, 2024.
VirnetX Inc. v. Apple Inc. (USCAFC Case 22-1523) (“Apple Reexam I”)
On March 10, 2022, we filed with the USCAFC an appeal of the invalidity findings by the PTAB in inter-partes re-examination proceeding 95/001,682
involving our U.S. Patent No. 6,502,135. Our opening brief was filed on August 22, 2022. Apple and USPTO each filed a response brief on December 28,
2022. VirnetX filed its reply brief on February 8, 2023. On April 18, 2023, VirnetX filed a motion to hold this appeal in abeyance pending the disposition
of any petition for rehearing in the No. 20-2271, -2272 appeal, and pending the Supreme Court’s disposition of a pending petition for a writ of certiorari in
Arthrex, Inc. v. Smith & Nephew, Inc., No. 22-639, which was denied on June 1, 2023. On October 20, 2023, the USCAFC issued a decision affirming the
PTAB’s invalidity findings. VirnetX sought rehearing, which was denied, and the mandate to close the case was issued on January 12, 2024.
VirnetX Inc. v. Apple Inc. (USCAFC Case 22-1997) (“Apple Reexam II”)
On July 6, 2022, we filed with the USCAFC an appeal of the invalidity findings by the PTAB in inter-partes re-examination proceeding 95/001,697
involving our U.S. Patent No. 7,490,151. On October 17, 2022, we filed a motion to remand the appeal in light of the PTAB’s refusal to permit Director
rehearing. On January 23, 2023, the USCAFC denied that motion without prejudice to the parties raising their arguments in the merits briefs. VirnetX
opening brief was filed on May 8, 2023, and Apple and the USPTO each filed a response brief on July 24, 2023. VirnetX filed its reply brief on
September 1, 2023. We currently await scheduling of oral arguments.
51
�Index
VirnetX Inc. v. Cisco Systems, Inc. (USCAFC Case 22-2234)
On September 16, 2022, we filed with the USCAFC an appeal of the invalidity findings by the PTAB in inter-partes re-examination proceeding
95/001,851 involving our U.S. Patent No. 7,418,504. We filed our opening brief on February 28, 2023. Cisco’s response brief was filed on May 10, 2023,
and VirnetX reply brief was filed on June 21, 2023. On October 20, 2023, the USCAFC issued a decision affirming the PTAB’s invalidity findings. The
mandate to close the case was issued on December 26, 2023.
VirnetX Inc. v. Cisco Systems, Inc. (USCAFC Case 23-1765)
On April 7, 2023, we filed with the USCAFC an appeal of the invalidity findings by the PTAB in inter-partes re-examination proceeding 95/001,714
involving our U.S. Patent No. 7,490,151. The certified list is due to be filed by the USPTO by May 30, 2023, and our opening brief will be due 60 days
thereafter. In addition, on April 21, 2023, Cisco filed a cross-appeal. On September 29, 2023, VirnetX filed a motion to remand. That motion was denied
without prejudice to VirnetX raising the same arguments in its opening appeal brief in an order dated December 27, 2023, which also set the deadline for
VirnetX to file an opening brief for February 5, 2024. VirnetX filed its opening brief on February 5, 2024, and Cisco’s opening/response brief’s is currently
due March 18, 2024
Other Legal Matters
One or more potential intellectual property infringement claims may also be available to us against certain other companies who have the resources to
defend against any such claims. Although we believe these potential claims are likely valid, commencing a lawsuit can be expensive and time-consuming,
and there is no assurance that we could prevail on such potential claims if we made them. In addition, bringing a lawsuit may lead to potential
counterclaims which may distract our management and our other resources, including capital resources, from efforts to successfully commercialize our
products.
Currently, we are not a party to any other pending legal proceedings and are not aware of any proceeding threatened or contemplated against us.
Note 13 − Leases
In October 2023, we renewed our lease for office space in Nevada with a third party recording an ROU asset and lease liability of $102. The lease requires
monthly payments of $4.6 and expires in October 2025. At December 31, 2023, our ROU asset and lease liability totaled $93. Lease expense totaled $55 in
2023 and $54 in 2022.
In October 2023, we executed a facility lease in Utah to be used for technical integration and as a training facility recording an ROU asset and a lease
liability of $3,587. This operating lease requires monthly payments starting at $72, includes periodic increases, provides six months of free rent, and
expires in April 2029. At December 31, 2023, our ROU asset and lease liability totaled $3,479 and $3,546, respectively. Lease expense totaled $140 in
2023.
The weighted average remaining life of the office and facility leases discussed above is approximately 5 years, and the related lease liability is as follows:
Due in 2024
Due in 2025
Due in 2026
Due in 2027
Due in 2028
Thereafter
Total undiscounted lease liability
Less: imputed interest
Total lease liability
$
$
$
$
$
$
$
$
$
494
946
927
954
983
336
4,640
(1,001)
3,639
We also lease a facility for corporate promotional and marketing purposes which was prepaid at inception and expires in 2025. At December 31, 2023 and
2022, the ROU asset totaled $349 and $648, respectively; lease expense totaled $300 per year in 2023 and 2022. In March 2024, we renewed our facility
lease, used for corporate, promotional and marketing purposes. The renewal period begins in 2025, continues for 10 years through 2035, requires either a
single payment of $6,000, or annual payments each March, beginning in 2025 starting at $600 and increasing annually for a total commitment of
approximately $7,500.
52
�Index
We have a service agreement for the use of an aircraft from a related party discussed in more detail in Note 4. We incurred approximately $1,097 and
$1,123 in rental fees and reimbursements to the entity in 2023 and 2022, respectively.
Note 14 − Subsequent Event
In January 2024, we issued 71,000 shares of restricted stock from our Amended and Restated Equity Incentive Plan.
53
�Index
Item 9.
Changes in and Disagreements with Accountants on Accounting and Financial Disclosure
None.
Item 9A. Controls and Procedures
Evaluation of Disclosure Controls and Procedures
Under the supervision and with the participation of our management, including our Chief Executive Officer and Chief Financial Officer, we conducted an
evaluation of the effectiveness of the design and operation of our disclosure controls and procedures, as defined in Rules 13a-15(e) and 15d-15(e) under the
Securities Exchange Act of 1934, as amended, December 31, 2023.
The purpose of this evaluation was to determine whether as of December 31, 2023 our disclosure controls and procedures were effective to provide
reasonable assurance that the information we are required to disclose in our filings with the SEC, (i) is recorded, processed, summarized and reported
within the time periods specified in the SEC’s rules and forms and (ii) accumulated and communicated to our management, including our Chief Executive
Officer and Chief Financial Officer, as appropriate to allow timely decisions regarding required disclosure.
Based on their evaluation, our Chief Executive Officer and Chief Financial Officer have concluded that as of December 31, 2023, our disclosure controls
and procedures were effective.
Changes in Internal Control Over Financial Reporting
There were no changes in our internal controls over financial reporting (as such term is defined in rules 13a-15(f) under the Securities Exchange Act of
1934, as amended) during the fiscal year ended December 31, 2023, that have materially affected, or are reasonably likely to materially affect, our internal
controls over financial reporting.
Management’s Report on Internal Control Over Financial Reporting
Our management is responsible for establishing and maintaining adequate internal control over financial reporting for the Company. Internal control over
financial reporting is a process to provide reasonable assurance regarding the reliability of our financial reporting for external purposes in accordance with
accounting principles generally accepted in the United States of America. Internal control over financial reporting includes maintaining records that in
reasonable detail accurately and fairly reflect our transactions; providing reasonable assurance that transactions are recorded as necessary for preparation of
our financial statements; providing reasonable assurance that receipts and expenditures of Company assets are made in accordance with management
authorization; and providing reasonable assurance that unauthorized acquisition, use or disposition of Company assets that could have a material effect on
our financial statements would be prevented or detected on a timely basis. Because of its inherent limitations, internal control over financial reporting is not
intended to provide absolute assurance that a misstatement of our financial statements would be prevented or detected.
Management conducted an evaluation of the effectiveness of our internal control over financial reporting based on the framework in Internal Control –
Integrated Framework (2013) issued by the Committee of Sponsoring Organizations of the Treadway Commission. Based on this evaluation, management
concluded that the Company’s internal control over financial reporting was effective as of December 31, 2023. There were no changes in our internal
control over financial reporting during the period ended December 31, 2023, that have materially affected, or are reasonably likely to materially affect, our
internal control over financial reporting.
Item 9B.
Other Information
Securities Trading Plans of Directors and Executive Officers.
During the three months ended December 31, 2023, the Company did not adopt, modify or terminate and no directors or officers, as defined in Rule 16a-
1(f), adopted, modified or terminated a "Rule 10b5-1 trading arrangement" or a "non-Rule 10b5-1 trading arrangement," each as defined in Regulation SK
Item 408.
54
�Index
Item 9C. Disclosure Regarding Foreign Jurisdictions that Prevent Inspections
None.
PART III
Item 10.
Directors, Executive Officers and Corporate Governance
The information required by this item will be contained in our definitive proxy statement to be filed with the SEC in connection with our 2024 Annual
Meeting of Stockholders (the “Proxy Statement”), which is expected to be filed not later than 120 days after the end of our fiscal year ended December 31,
2023 and is incorporated in this report by reference.
Item 11.
Executive Compensation
The information required by this item will be set forth in the Proxy Statement and is incorporated herein by reference.
Item 12.
Security Ownership of Certain Beneficial Owners and Management and Related Stockholder Matters
The information required by this item will be set forth in the Proxy Statement and is incorporated herein by reference.
Securities Authorized for Issuance Under the Equity Compensation Plans
Our Amended and Restated Equity Incentive Plan (the “A&R Plan”) was approved by our shareholders in June 2023. Our prior plan expired March 29,
2023; no further awards will be made under the prior plan, and the A&R Plan will govern awards granted under the prior plan. The A&R Plan allows us to
grant stock options, restricted stock units (“RSUs”) and restricted stock. Options granted under the A&R Plan are granted with an exercise price equal to
the fair value of the of our stock on the date of grant. RSUs and restricted stock are granted at the fair value of our stock on the date of grant. The fair value
of options, RSUs and restricted stock are expensed over the vesting periods. All awards are subject to forfeiture if service terminates prior to the shares
vesting. At December 31, 2023, there were 225,778 shares available for grant under the A&R Plan.
Plan Category
Equity compensation plans approved by security holders
Equity compensation plans not approved by security holders
Total
Number of
Securities to be
Issued Upon
Exercise of
Outstanding
Options and
RSUs
Weighted-Average
Exercise Price of
Outstanding
Options and RSUs
Number of
Securities
Remaining
Available for
Future Issuance
Under Equity
Compensation
Plans
347,467 $
—
347,467 $
89.32
—
89.32
225,778
225,778
During 2023, we granted 1,875 stock options and 1,251 RSUs to members of our Board of Directors and 36,927 restricted stock awards to our employees
respectively.
55
�Index
Item 13.
Certain Relationships and Related Transactions, and Director Independence
The information required by this item will be set forth in the Proxy Statement and is incorporated herein by reference.
Item 14.
Principal Accounting Fees and Services
The information required by this item will be set forth in the Proxy Statement and is incorporated herein by reference.
Item 15.
Exhibits and Financial Statement Schedules
(a)
The following documents are filed as part of this Annual Report on Form 10-K
PART IV
(1)
Financial Statements: See the Index to Consolidated Financial Statements under Item 8 of this Annual Report on Form 10-K.
(2)
(3)
Financial Statement Schedule: Financial statement schedules are omitted because they are not applicable, or the required information is shown in
the financial statements or notes thereto. All other schedules are omitted because of the absence of conditions under which they are required or
because the required information is given in the financial statements or the notes thereto.
Exhibits: The documents listed in the Exhibit Index of this Annual Report on Form 10-K are incorporated by reference or are filed with this
Annual Report on Form 10-K, in each case as indicated therein (numbered in accordance with Item 601 of Regulation S-K).
56
�Index
Exhibit
Number
3.1
3.2
3.3
4.2
4.3
4.4
4.5
10.1
10.2*
10.3*
10.4*
10.5*
10.6*
10.7*
10.8*
10.9*
10.10
10.11**
10.12
10.13
10.14
10.15
10.16**
10.17**
10.18*
10.19*
10.20
EXHIBIT INDEX
Description
Amended and Restated Certificate of Incorporation of the
Company, as amended.
Certificate of Amendment to the Amended and Restated Certificate
of Incorporation of the Company.
Amended and Restated Bylaws of the Company.
Specimen Common Stock Certificate.
Form of Senior Indenture.
Form of Subordinated Indenture.
Description of Capital Stock.
Form of Indemnification Agreement.
2007 Stock Plan, as amended.
Amended Form of Stock Option Agreement – 2007 Stock Plan.
Form of Restricted Stock Unit Award Agreement – 2007 Stock
Plan.
2013 Equity Incentive Plan, as amended.
Amended and Restated 2013 Equity Incentive Plan.
Form of Stock Option Agreement – 2013 Equity Incentive Plan and
Amended and Restated 2013 Equity Incentive Plan.
Form of Restricted Stock Unit Agreement – 2013 Equity Incentive
Plan and Amended and Restated 2013 Equity Incentive Plan.
Form of Restricted Stock Agreement – Amended and Restated
2013 Equity Incentive Plan.
Patent License and Assignment Agreement by and between the
Company and Leidos, Inc. (formerly Science Applications
International Corporation) dated as of August 12, 2005.
Amendment No. 1 to Patent License and Assignment Agreement
by and between the Company and Leidos, Inc. dated as of
November 2, 2006.
Amendment No. 2 to Patent License and Assignment Agreement
by and between VirnetX, Inc. and Leidos, Inc. dated as of March
12, 2008.
Security Agreement by and between the Company and Leidos, Inc.
dated as of August 12, 2005.
Assignment Agreement between the Company and Leidos, Inc.
dated as of December 21, 2006.
Professional Services Agreement by and between the Company and
Leidos, Inc. dated as of August 12, 2005.
Settlement and License Agreement, by and between Microsoft
Corporation and VirnetX, Inc., dated May 14, 2010.
Amended Settlement and License Agreement, by and between
Microsoft Corporation and VirnetX, Inc., dated December 17,
2014.
Hire Letter by and between Katherine Allanson and the Company,
dated as of September 1, 2021.
Offer Letter by and between Darl C. McBride and the Company,
dated as of December 22, 2023.
Cooperation Letter Agreement, dated March 29, 2023, among The
Radoff Family Foundation, Bradley L. Radoff, JEC II Associates,
LLC, Michael Torok and the Company.
57
Incorporated by reference herein
Form
8-K
Exhibit No. Filing Date
11/01/2007
3.1
File No.
000-26895
8-K
3.1
10/25/2023
001-33852
Filed
Herewith
8-K
S-3
S-3
S-3
10-K
10-K
10-Q
10-Q
10-Q
3.1
4.1
4.2
4.4
4.6
10.1
10.2
4.5
10.3
1/27/2023
07/30/2018
07/30/2018
07/30/2018
03/16/2020
03/18/2019
05/10/2012
05/10/2011
05/10/2012
DEF 14A Appendix A 04/13/2021
06/15/2023
S-8
03/02/2015
10-K
10.1
10.6
001-33852
333-226413
333-226413
333-226413
001-33852
001-33852
001-33852
001-33852
001-33852
001-33852
333-272677
001-33852
10-K
10.7
03/02/2015
001-33852
10-Q
10.2
08/11/2023
001-33852
8-K
10.4
07/12/2007
000-26895
8-K
10.6
07/12/2007
000-26895
8-K
10.1
03/18/2008
001-33852
8-K
8-K
8-K
10.5
10.7
10.8
07/12/2007
000-26895
07/12/2007
000-26895
07/12/2007
000-26895
10-Q/A 10.1
01/31/2011
001-33852
10-K
10.23
03/02/2015
001-33852
10-Q
10.1
11/08/2021
001-33852
8-K
10.1
03/30/2023
001-33852
X
�Index
10.21
10.22*
21.1
23.1
24.1
31.1
31.2
32.1†
32.2†
97.1*
Warrant to Purchase Shares of Common Stock of the Company by
and between the Company and Odeon Capital Group LLC, dated as
of April 29, 2020.
Outside Director Compensation Policy, as amended.
Subsidiaries of VirnetX Holding Corporation.
Consent of Farber Hass Hurley LLP, Independent Registered Public
Accounting Firm.
Power of Attorney (contained on signature page hereto)
Chief Executive Officer Certification pursuant to Rule 13a-14(a) of
the Securities Exchange Act.
Chief Financial Officer Certification pursuant to Rule 13a-14(a) of
the Securities Exchange Act.
Chief Executive Officer Certification pursuant to 18 U.S.C. Section
1350 as adopted pursuant to Section 906 of the Sarbanes-Oxley Act
of 2002
Chief Financial Officer Certification pursuant to 18 U.S.C. Section
1350 as adopted pursuant to Section 906 of the Sarbanes-Oxley Act
of 2002.
Compensation Recovery Policy of the Company as adopted
November 8, 2023.
101.INS XBRL Instance Document
101.SCH XBRL Taxonomy Extension Schema Document
101.CAL XBRL Taxonomy Extension Calculation Linkbase Document
101.DEF XBRL Taxonomy Extension Definition Linkbase Document
101.LAB XBRL Taxonomy Extension Label Linkbase Document
101.PRE XBRL Taxonomy Extension Presentation Linkbase Document
104
Cover Page Interactive Data File (formatted as inline XBRL and
contained in Exhibit 101)
10-Q
10.2
05/15/2023
001-33852
10-K
21.1
03/16/2021
001-33852
X
X
X
X
X
X
X
X
X
X
X
X
X
X
*
Indicates management contract or compensatory plan.
**
Confidential treatment has been granted by the SEC as to certain portions of this exhibit.
***
Portions of this exhibit have been omitted pending a determination by the SEC as to whether these portions should be granted confidential
treatment.
†
The certifications attached as Exhibit 32.1 and 32.2 that accompany this Report are not deemed filed with the Securities and Exchange
Commission and are not to be incorporated by reference into any filing of VirnetX Holding Corporation under the Securities Act or the Exchange
Act, whether before or after the date of this Report, irrespective of any general incorporation language contained in such filing.
58
�Index
SIGNATURES
Pursuant to the requirements of Section 13 or 15(d) of the Securities Exchange Act of 1934, the registrant has duly caused this Annual Report on Form 10-
K to be signed on its behalf by the undersigned, thereunto duly authorized.
Dated: March 15, 2024
VirnetX Holding Corporation
/s/ Kendall Larsen
Name: Kendall Larsen
Title: Chief Executive Officer and President
By:
59
�Index
POWER OF ATTORNEY
KNOW ALL PERSONS BY THESE PRESENTS, that each person whose signature appears below constitutes and appoints Kendall Larsen as his attorney-
in-fact, with full power of substitution, for him in any and all capacities, to sign any amendments to this Annual Report on Form 10-K, and to file the same,
with exhibits thereto and other documents in connection therewith with the Securities and Exchange Commission, hereby ratifying and confirming all that
said attorney-in-fact, or his substitute or substitutes may do or cause to be done by virtue hereof.
Pursuant to the requirements of the Securities Exchange Act of 1934, this Annual Report on Form 10-K has been signed below by the following persons on
behalf of the registrant and in the capacities indicated.
Name
/s/Kendall Larsen
Kendall Larsen
/s/Katherine Allanson
Katherine Allanson
/s/Robert D. Short III
Robert D. Short III
/s/Gary Feiner
Gary Feiner
/s/Michael F. Angelo
Michael F. Angelo
/s/Thomas M. O’Brien
Thomas M. O’Brien
Capacity
Director, Chief Executive Officer and President
(Principal Executive Officer)
Chief Financial Officer
(Principal Financial Officer and
Principal Accounting Officer)
Director
Director
Director
Director
Date
March 15, 2024
March 15, 2024
March 15, 2024
March 15, 2024
March 15, 2024
March 15, 2024
�CONSENT OF INDEPENDENT REGISTERED PUBLIC ACCOUNTING FIRM
We hereby consent to the incorporation by reference in the Registration Statements on Form S-8 (Nos. 333-149883, 333-196064, 333-218467, and 333-
258131) of our reports dated March 15, 2024, relating to the consolidated financial statements of VirnetX Holding Corporation (the “Company”), appearing
in this Annual Report on Form 10-K of the Company for the year ended December 31, 2023.
EXHIBIT 23.1
/s/ Farber Hass Hurley LLP
Chatsworth, California
March 15, 2024
�EXHIBIT 31.1
CERTIFICATION OF PRINCIPAL EXECUTIVE OFFICER PURSUANT TO SECURITIES EXCHANGE ACT OF 1934 RULES 13a-14(a)
AND 15d-14(a), AS ADOPTED PURSUANT TO SECTION 302 OF THE SARBANES-OXLEY ACT OF 2002
I, Kendall Larsen, certify that:
1.
2.
3.
4.
I have reviewed this Annual Report on Form 10-K of VirnetX Holding Corporation for the fiscal year ended December 31, 2023;
Based on my knowledge, this report does not contain any untrue statement of a material fact or omit to state a material fact necessary to make the
statements made, in light of the circumstances under which such statements were made, not misleading with respect to the period covered by this
report;
Based on my knowledge, the financial statements, and other financial information included in this report, fairly present in all material respects the
financial condition, results of operations and cash flows of the registrant as of, and for, the periods presented in this report;
The registrant’s other certifying officer and I are responsible for establishing and maintaining disclosure controls and procedures (as defined in
Exchange Act Rules 13a-15(e) and 15d-15(e)) and internal control over financial reporting (as defined in Exchange Act Rules 13a-15(f) and 15d-
15(f)) for the registrant and have:
(a) Designed such disclosure controls and procedures, or caused such disclosure controls and procedures to be designed under our supervision, to ensure
that material information relating to the registrant, including its consolidated subsidiaries, is made known to us by others within those entities,
particularly during the period in which this report is being prepared;
(b) Designed such internal control over financial reporting, or caused such internal control over financial reporting to be designed under our supervision,
to provide reasonable assurance regarding the reliability of financial reporting and the preparation of financial statements for external purposes in
accordance with generally accepted accounting principles;
(c) Evaluated the effectiveness of the registrant’s disclosure controls and procedures and presented in this report our conclusions about the effectiveness
of the disclosure controls and procedures, as of the end of the period covered by this report based on such evaluation; and
(d) Disclosed in this report any change in the registrant’s internal control over financial reporting that occurred during the registrant’s most recent fiscal
quarter (the registrant’s fourth fiscal quarter in the case of an annual report) that has materially affected, or is reasonably likely to materially affect,
the registrant’s internal control over financial reporting; and
5.
The registrant’s other certifying officer and I have disclosed, based on our most recent evaluation of internal control over financial reporting, to the
registrant’s auditors and the audit committee of the registrant’s board of directors (or persons performing the equivalent functions):
(a) All significant deficiencies and material weaknesses in the design or operation of internal control over financial reporting which are reasonably
likely to adversely affect the registrant’s ability to record, process, summarize and report financial information; and
(b) Any fraud, whether or not material, that involves management or other employees who have a significant role in the registrant’s internal control over
financial reporting.
Date: March 15, 2024
/s/ Kendall Larsen
Kendall Larsen
President and Chief Executive Officer
(Principal Executive Officer)
�EXHIBIT 31.2
CERTIFICATION OF PRINCIPAL FINANCIAL OFFICER PURSUANT TO SECURITIES EXCHANGE ACT OF 1934 RULES 13a-14(a) AND
15d-14(a), AS ADOPTED PURSUANT TO SECTION 302 OF THE SARBANES-OXLEY ACT OF 2002
I, Katherine Allanson, certify that:
1.
2.
3.
4.
I have reviewed this Annual Report on Form 10-K of VirnetX Holding Corporation for the fiscal year ended December 31, 2023;
Based on my knowledge, this report does not contain any untrue statement of a material fact or omit to state a material fact necessary to make the
statements made, in light of the circumstances under which such statements were made, not misleading with respect to the period covered by this
report;
Based on my knowledge, the financial statements, and other financial information included in this report, fairly present in all material respects the
financial condition, results of operations and cash flows of the registrant as of, and for, the periods presented in this report;
The registrant’s other certifying officer and I are responsible for establishing and maintaining disclosure controls and procedures (as defined in
Exchange Act Rules 13a-15(e) and 15d-15(e)) and internal control over financial reporting (as defined in Exchange Act Rules 13a-15(f) and 15d-
15(f)) for the registrant and have:
(a) Designed such disclosure controls and procedures, or caused such disclosure controls and procedures to be designed under our supervision, to ensure
that material information relating to the registrant, including its consolidated subsidiaries, is made known to us by others within those entities,
particularly during the period in which this report is being prepared;
(b) Designed such internal control over financial reporting, or caused such internal control over financial reporting to be designed under our supervision,
to provide reasonable assurance regarding the reliability of financial reporting and the preparation of financial statements for external purposes in
accordance with generally accepted accounting principles;
(c) Evaluated the effectiveness of the registrant’s disclosure controls and procedures and presented in this report our conclusions about the effectiveness
of the disclosure controls and procedures, as of the end of the period covered by this report based on such evaluation; and
(d) Disclosed in this report any change in the registrant’s internal control over financial reporting that occurred during the registrant’s most recent fiscal
quarter (the registrant’s fourth fiscal quarter in the case of an annual report) that has materially affected, or is reasonably likely to materially affect,
the registrant’s internal control over financial reporting; and
5.
The registrant’s other certifying officer and I have disclosed, based on our most recent evaluation of internal control over financial reporting, to the
registrant’s auditors and the audit committee of the registrant’s board of directors (or persons performing the equivalent functions):
(a) All significant deficiencies and material weaknesses in the design or operation of internal control over financial reporting which are reasonably
likely to adversely affect the registrant’s ability to record, process, summarize and report financial information; and
(b) Any fraud, whether or not material, that involves management or other employees who have a significant role in the registrant’s internal control over
financial reporting.
Date: March 15, 2024
/s/ Katherine Allanson
Katherine Allanson
Chief Financial Officer
(Principal Financial Officer and Principal Accounting Officer)
�EXHIBIT 32.1
CERTIFICATION OF PRINCIPAL EXECUTIVE OFFICER PURSUANT TO 18 U.S.C. SECTION 1350, AS ADOPTED PURSUANT TO
SECTION 906 OF THE SARBANES-OXLEY ACT OF 2002
In connection with the Annual Report of VirnetX Holding Corporation (the “Company”) on Form 10-K for the fiscal year ended December 31, 2023 as
filed with the Securities and Exchange Commission on March 15, 2024 (the “Report”), I, Kendall Larsen, President and Chief Executive Officer of the
Company, certify, pursuant to 18 U.S.C. Section 1350, as adopted pursuant to Section 906 of the Sarbanes-Oxley Act of 2002, that, to my knowledge:
(1)
The Report fully complies with the requirements of Section 13(a) or 15(d) of the Securities Exchange Act of 1934; and
(2)
The information contained in the Report fairly presents, in all material respects, the financial condition and results of operations of the Company.
Date: March 15, 2024
/s/ Kendall Larsen
Kendall Larsen
President and Chief Executive Officer
(Principal Executive Officer)
�EXHIBIT 32.2
CERTIFICATION OF PRINCIPAL FINANCIAL OFFICER PURSUANT TO 18 U.S.C. SECTION 1350, AS ADOPTED PURSUANT TO
SECTION 906 OF THE SARBANES-OXLEY ACT OF 2002
In connection with the Annual Report of VirnetX Holding Corporation (the “Company”) on Form 10-K for the fiscal year ended December 31, 2023 as
filed with the Securities and Exchange Commission on March 15, 2024 (the “Report”), I, Katherine Allanson, Chief Financial Officer of the Company,
certify, pursuant to 18 U.S.C. Section 1350, as adopted pursuant to Section 906 of the Sarbanes-Oxley Act of 2002, that, to my knowledge:
(1)
The Report fully complies with the requirements of Section 13(a) or 15(d) of the Securities Exchange Act of 1934; and
(2)
The information contained in the Report fairly presents, in all material respects, the financial condition and results of operations of the Company.
Date: March 15, 2024
/s/ Katherine Allanson
Katherine Allanson
Chief Financial Officer
(Principal Financial Officer and Principal Accounting Officer)
�