With the rise of vibe coding—a brand new period outlined by AI-assisted creativity, speedy prototyping, and faster-than-ever code era—builders are delivery software program at unprecedented velocity. However whereas the productiveness good points are simple, the safety debt is mounting. In response, cybersecurity innovator OX Safety has introduced a $60 million Collection B funding spherical to deal with some of the urgent challenges in fashionable growth: separating sign from noise in software safety. The spherical, led by DTCP with participation from IBM Ventures, Microsoft, Swisscom Ventures, Evolution Fairness Companions, and Team8, brings OX’s complete funding to $94 million.
This funding comes at a vital second. Generative AI Code Era instruments are flooding codebases with clean-looking however doubtlessly weak code, whereas conventional human-led engineering continues to introduce its personal dangers. Standard Utility Safety (AppSec) instruments haven’t scaled to match this new actuality — as a substitute, they bombard groups with alerts, most of which don’t signify actual threats. The result’s developer fatigue, wasted time, and neglected vulnerabilities that may result in catastrophic breaches.
“As AI-generated code turns into the brand new regular, the dangers it introduces are sometimes hidden beneath seemingly innocuous code, flaws that conventional safety instruments should not constructed to detect,” stated Neatsun Ziv, CEO and Co-founder of OX Safety. “OX is pioneering agentic code overview, powered by AI and enhanced with vital considering modules that mimic the judgment of prime safety engineers. By constantly modeling danger throughout each AI and human-generated code, we determine and prioritize the vulnerabilities that really matter.”
AI-Powered Safety for an AI-Generated World
On the core of OX Safety’s method is a philosophy of precision over quantity. Reasonably than attempting to handle each theoretical vulnerability, OX focuses on the 5% of points which might be really exploitable, reachable, and impactful. These are the failings that would realistically be weaponized by attackers and result in precise breaches.
Their platform makes use of a strong Utility Safety Posture Administration (ASPM) engine to attach the dots between static and dynamic evaluation, software program composition, CI/CD pipelines, cloud infrastructure, and runtime behaviors. It goes past generic alerts by modeling exploitability, analyzing assault path reachability, and correlating findings with enterprise impression. The result’s a danger profile that’s significant, manageable, and instantly actionable.
OX’s AI-driven prioritization engine integrates with over 100 developer and safety instruments. Because of its trivial deployment course of—typically full in only a few hours—DevOps and AppSec groups can embed OX straight into present workflows with out slowing something down.
The Actual Drawback: Too Many Alerts, Not Sufficient Context
From SAST and DAST to SCA, CSPM, and runtime monitoring, immediately’s enterprises use a tangled net of safety instruments. However the draw back of this tooling sprawl is a crushing quantity of alerts with no unified prioritization. Builders find yourself ignoring or delaying fixes, safety groups waste time triaging low-priority points, and the vital vulnerabilities get misplaced within the chaos.
“Any safety device can discover countless vulnerabilities and subject a nonstop stream of alerts,” Ziv added. “We’re right here to let you know which particular vulnerabilities will truly get you breached – and make it painfully clear what to repair first.”
OX’s platform supplies code-to-cloud traceability, translating safety points into developer-friendly phrases, and providing guided repair suggestions. Its unified dashboard centralizes vulnerabilities, danger assessments, and remediation workflows—serving to groups scale back their imply time to remediation (MTTR) from weeks to days.
Why Now? A Excellent Storm for AppSec
In a latest weblog publish, Ziv defined why this funding spherical isn’t just well timed—it’s pressing.
“Extra code is generated than ever earlier than—a lot of it by GenAI. Disclosed vulnerabilities are rising at a staggering tempo. Menace actors are executing assaults quicker, weaponizing software program vulnerabilities in report time—typically with the help of AI. Regardless of all this, AppSec budgets and sources have remained comparatively flat.”
This imbalance creates a harmful dynamic: extra assault floor, quicker exploits, however the identical restricted safety protection. OX was based in 2021 by Neatsun Ziv and Lior Arzi, veterans from Test Level, in direct response to this new panorama—notably the wake-up name of the SolarWinds provide chain assault.
Their purpose was easy however transformative: construct an AppSec platform that really reduces danger—not by overwhelming groups with knowledge, however by serving to them repair what issues.
Trusted by International Leaders
At present, OX Safety is trusted by over 200 organizations throughout fintech, healthcare, cloud, and enterprise software program—together with Microsoft, IBM, SoFi, eToro, FICO, Tomorrow.io, and 888 Holdings.
Safety executives constantly cite OX’s ease of integration, distinctive buyer help, and its potential to ship actual safety enhancements. CISO testimonials spotlight the platform’s potential to supply:
- Finish-to-end traceability
- Sooner triaging and backbone
- Automated remediation workflows
- Confidence in code earlier than deployment
“OX Safety helps our want for transparency and end-to-end traceability,” stated Danny Wishlitzky, Head of IT and Cybersecurity at Proximity. “This supplies us with larger management—blocking vulnerabilities and enhancing accuracy all through the event lifecycle.”
What’s Subsequent? Constructing the Way forward for Safe Improvement
This newest $60 million infusion will energy OX’s subsequent wave of innovation. In keeping with the corporate, upcoming priorities embrace:
- Deeper help throughout the complete toolchain
- Much more exact danger modeling
- Broader visibility all through the SDLC
- Enhanced automation of triage and fixes
- International go-to-market enlargement
OX plans to proceed main the shift from fragmented tooling to unified, AI-driven software safety—particularly as vibe coding and GenAI grow to be core to how software program is constructed.
“OX is the precision blade that slices by way of the noise of countless vulnerabilities,” stated Dean Shahar, Managing Director at DTCP. “As GenAI accelerates code creation past human scale, OX delivers laser-sharp accuracy to safe the ever-expanding assault floor.”
The way forward for AppSec isn’t about detecting extra—it’s about figuring out extra. OX Safety is ushering in a brand new paradigm the place alerts are contextual, dangers are quantifiable, and fixes are prioritized based mostly on real-world impression.
For builders and safety professionals constructing within the period of vibe coding, OX provides one thing the business has been desperately lacking: readability.
“Let’s cease chasing noise,” stated Ziv. “And give attention to the 5% that issues.”