Boost Security Inc. raises $4M

Boost Security Inc., a Toronto-based startup specializing in application security, secured $4 million in additional funding to bolster its AI-native software development defense platform. This financial boost coincides with the acquisition of two companies, SecureIQx and Korbit Technologies Inc., which will enhance its platform capabilities. Boost’s platform integrates developer endpoint protection, software supply chain security, and AI-native application security posture management, aiming to address the complexities of contemporary software development security.

SecureIQx, an MIT-founded startup, offers a software composition analysis reachability engine that extends Boost’s analytical reach across various programming languages to evaluate the actual exploitability of vulnerabilities. Korbit Technologies contributes an AI-driven code review system that identifies security flaws and coding errors during the pull request stage. These acquisitions complement Boost’s focus on preventing supply chain threats and auto-remediating vulnerabilities, which are critical as more code is produced by AI.

Boost is positioning its enhanced platform as a competitive alternative to established players like Snyk Ltd., Endor Labs Inc., and Apiiro Ltd. The influx of AI-generated code has intensified the need for advanced security solutions, as highlighted by White Star Capital's partner Catherine Ouellet-Dupuis. The $4 million raised will support the platform's continued development, satisfying the growing demand for comprehensive AI-native security measures in the software industry.

The funding and acquisitions occur amid an evolving cybersecurity landscape, where supply chain and AI-generated code vulnerabilities are increasingly prominent. Boost aims to capitalize on this trend by equipping engineering teams with tools that address these challenges proactively, thus positioning itself distinctively within a burgeoning market.

The strategic integration of these acquisitions is expected to refine the platform's efficacy. While no specific regulatory hurdles are on the horizon, the expansions signal Boost’s ambition to reshape application security dynamics and expand its footprint in a competitive sector.