OX Security raises $60 million to help developers focus on the most important 5% of APPSEC risks in the AI ​​era

With the rise of ambience coding, it is a new era defined by AI-assisted creativity, rapid prototyping and faster speeds than ever code generation – developers transport software at unprecedented speeds. But while there is no denying productivity gains, security debt is still increasing. In response, cybersecurity innovator OX Security has announced a $60 million B round to address one of the most pressing challenges in modern development: separating signals from noise in application security. This round led by DTCP, with participation from IBM Ventures, Microsoft, Swisscom Ventures, Evolution Equity Partners and Team8, increased the total funding for OX to $94 million.

This fund appeared at a critical moment. The generated AI code generation tools are flooded code bases with clean but potentially fragile code, while traditional human-led projects continue to introduce their own risks. Regular Application Security (APPSEC) tools have not been extended to match this new reality – instead, they bombarded the team with alerts, most of which do not represent real threats. The result is developer fatigue, wasted time, and neglected vulnerabilities that can lead to catastrophic violations.

“As AI-generated code becomes the new norm, the risks it introduces are often hidden under seemingly harmless code, and flaws are traditional security tools that are not built for detection.” explain Neatsun ZivCEO and co-founder of OX Security. “OX is a groundbreaking proxy code review powered by AI and enhanced by critical thinking modules that mimic the judgment of top security engineers. By constantly modeling risks in AI and human-generated code, we identify and identify actual vulnerabilities. matter. ”

AI is the security of the world generated by AI

The core of OX security approach is a philosophy Accuracy exceeds volume. Instead of trying to solve all theoretical vulnerabilities, Ox focuses on what is really the real problem Exploitable, reachable and influential. These flaws can actually be weaponized by the attacker and lead to actual violations.

Their platform uses a powerful Application Security Posture Management (ASPM) engine to connect points between static and dynamic analytics, software composition, CI/CD pipeline, cloud infrastructure, and runtime behavior. It goes beyond universal alerts by modeling exploitability, analyzing attack paths to achieve performance, and relating discovery to business impacts. The result is a risk profile that is meaningful, manageable and immediately possible.

OX’s AI-driven priority engine is integrated with over 100 developers and security tools. Due to its trivial deployment process (usually completed in just a few hours), Depevops and AppSec teams can embed OX directly into existing workflows without slowing down any speed.

Real problem: Too many alarms and insufficient context

From SAST and DAST to SCA, CSPM and runtime monitoring, today’s enterprises use a tangled security tool network. However, the disadvantage of this tool spread is that the alarm range without uniform priorities is poor. Developers eventually ignore or delay fixes, security teams waste time separating low-priority issues, and the key vulnerability of confusion disappears.

“Any security tool can find endless vulnerabilities and issue an uninterrupted stream of alerts,” Ziv additional. “We’re here to tell you which specific vulnerabilities will actually compromise you and make it painfully clear what to fix in the first place.”

OX’s platform provides code-to-cloud traceability, transforms security issues into developer-friendly terms, and provides guided fix suggestions. Its unified dashboard concentrates vulnerability, risk assessment, and remediation workflows – the help map team reduces the average remediation measures (MTTR) from weeks to days.

Why now? The perfect storm of AppSec

In recent blog posts Ziv Explain why this funding is not only timely, but also urgent.

“There is more code than ever before – the scope of genai. Public vulnerabilities are growing at an alarming rate. Threat participants are performing attacks faster, weaponizing software vulnerabilities in record time, usually with the help of AI.

This imbalance creates dangerous dynamics: more attack surfaces, faster utilization, but same security coverage. Established in 2021 by Check Point veterans Neatsun Ziv and Lior Arzi, OX directly responds to this new landscape, especially the wake-up call from Solarwinds supply chain attacks.

Their goal is simple but transformative: to build an AppSec platform that actually reduces risks, rather than being overwhelming by data-driven teams, but by helping them solve important things.

Trusted by global leaders

Today, OX Security (including Microsoft, IBM, Sofi, Etoro, FICO, FICO, Tomorrow.io, and 888 Holdings) trust OX Security in over 200 organizations in fintech, healthcare, cloud and enterprise software.

Security executives always cite OX’s ease of integration, excellent customer support, and its ability to provide actual security improvements. CISO Proof highlights the capabilities the platform offers:

• End-to-end traceability
• Faster decomposition and resolution
• Automatic remediation workflow
• Confidence in code before deployment

“OX Security supports our need for transparency and end-to-end traceability” explain Danny Wishlitzkyits person in charge and proximity to cybersecurity. “This gives us greater control – covering vulnerabilities and improving accuracy throughout the development lifecycle.”

What’s next? Establish a safe future

This latest $60 million infusion will power Ox’s next wave of innovation. According to the company, upcoming priorities include:

• Deeper support for the entire toolchain
• More accurate risk modeling
• The entire SDLC is widely visibility
• Enhanced automation of classification and repair
• Global listing expansion

OX plans continue to lead the transition from fragmented tools to unified, AI-powered application security, especially as Vibe encoding and Genai are at the heart of how software is built.

“The cattle are precise blades sliced ​​through the noise of endless fragility.” explain Dean ShaharManaging Director of DTCP. “As Genai accelerated code creation exceeds human scale, OX provides laser-emitting accuracy to ensure an ever-expanding attack surface.”

The future of AppSec is not to detect more, but to learn more. OX security is embracing a new paradigm where alerts are contextual, risks are quantifiable, and fixes are determined based on real-world impacts.

For the construction of developers and security professionals Atmosphere codingOX offers something that the industry is desperately missing: clear.

“Let’s stop chasing the noise,” explain Ziv. “And focus on the important 5%.