Endor Labs boosts AppSec platform for AI-generated code
SandboxAQ launches platform to secure AI agent identities
CISO news
Endor Labs boosts AppSec platform for AI-generated code
E ndor Labs has announced a major expansion of its application security( AppSec) platform, designed for the rise of AI-generated code.
The company, which claims to be the fastest-growing AppSec firm, is leveraging a comprehensive security dataset to power its platform, enabling it to prioritise and remediate risks and even automatically apply fixes.
Endor Labs’ platform uses Agentic AI and analysis of 4.5 million open-source projects and AI models, mapping over 150 risk factors. This powers AI agents that operate within the software development lifecycle, going beyond simple alerts.
The company has also announced a US $ 93 million Series B funding round, led by DFJ Growth.
Endor Labs is launching its first capabilities built on this platform, including AI Security Code Review. The feature uses multiple AI agents to review pull requests for architectural changes that could impact security, such as the addition of vulnerable AI systems, modifications to authentication and changes to data handling.
The aim is to highlight high-risk changes, reduce false positives and allow security engineers to focus on critical issues.
“ We’ re looking for better ways to scale how we identify business logic risks and unknown unknowns in our codebase,” said Mark Breitenbach, Security Engineer at Dropbox.
“ Traditional static analysis tools haven’ t really given us the lift we need. Being able to detect risks that we’ d otherwise miss manually or through traditional automation is hugely valuable.”
SandboxAQ launches platform to secure AI agent identities
andboxAQ, an AI and cybersecurity solutions provider, has launched AQtive Guard, a platform designed to manage
S and secure Non-Human Identities( NHIs) and cryptographic assets used by AI agents.
SandboxAQ’ s Large Quantitative Models( LQMs) power AQtive Guard’ s Discover and Protect modules, providing enhanced visibility, control and remediation.
The company specialises in the rapid increase in AI agents within enterprise environments and the subsequent rise in sophisticated cyberthreats.
Interoperability with Palo Alto Networks allows AQtive Guard to ingest firewall logs, improving network security posture, vulnerability detection and security compliance.
“ There will be more than one billion AI agents with significant autonomous power in the next few years,” said Jack Hidary, CEO of SandboxAQ.“ Enterprises are giving AI agents a vastly increased range of capabilities to impact customers and real-world assets. This creates a dangerous attack surface for adversaries. AQtive Guard’ s Discover and Protect modules address this urgent issue.”
Threats are managed by offering real-time vulnerability detection and mitigation. The Discover module enables organisations to inventory and control NHIs and cryptographic assets, aiding in compliance and meeting regulatory requirements. The Protect module automates remediation workflows and enforces protection policies.
SandboxAQ has also announced integrations with CrowdStrike and Palo Alto Networks. AQtive Guard integrates with the CrowdStrike Falcon platform to provide customers with visibility into their non-human identity and cryptographic inventories and to remediate vulnerabilities.
WWW. INTELLIGENTCISO. COM 9