Check Point® Software Technologies Ltd.(link is external) announced that its Infinity Platform has been named the top-ranked AI-powered cyber security platform in the 2025 Miercom Assessment.
Backslash Security Emerges from Stealth
March 22, 2023
Backslash Security, a new cloud-native application security solution for enterprise AppSec teams, emerged from stealth, announcing an $8 million round led by StageOne Ventures, First Rays Venture Partners, D. E. Shaw & Co. and a roster of security veterans as angel investors, including technology entrepreneur and investor Shlomo Kramer, Ron Zoran (former CRO at CyberArk) and Brian Fielder (General Manager and CTO Enterprise Security at Microsoft), among others.
Backslash provides unified code and cloud-native security by correlating cloud context to code risk, bolstered by automated threat modeling, code risk prioritization and simplified remediation across applications and teams. With Backslash, enterprise AppSec teams can now see, prioritize and easily act upon high-risk code combinations, called “toxic code flows,” in their cloud-native applications.
“AppSec teams are stuck with a decades-old paradigm of noisy vulnerability scanners, while cloud security teams have been enjoying modern, visual ways to zero in on and secure cloud infrastructure risks and vulnerabilities,” said Shahar Man, co-founder and CEO of Backslash. “Backslash is here to uplevel the cloud-native security game for AppSec professionals by capturing the full context of cloud-native application security risk – because soon enough, most applications will run on cloud, and application security will be what matters most. The Backslash team is honored to have the support of renowned cybersecurity entrepreneurs and investors to help us achieve our vision.”
"Backslash's approach to Application Security stands out as a game changer," said Yuval Cohen, founder and managing partner at StageOne Ventures. "Their unique solution offers contextual code risk visibility and visually maps the cloud-native application posture, providing unparalleled insight into security risks. We firmly believe that this innovative technology will have a significant impact on the industry."
“AppSec teams are struggling as companies rapidly shift to cloud-based deployment environments because the traditional solutions just aren’t keeping up,” said Brian Fielder, General Manager, CTO Enterprise Security at Microsoft. “The Backslash team has built a truly cloud-native approach to application security, bringing a new, visual, lightweight paradigm to the AppSec industry."
Backslash was specifically designed to address the persistent, time-consuming and manual ways of discovering and mapping application code risks, and the cloud-native context gaps left unaddressed by previous generation, noisy SAST tools. The company was founded by industry veterans Shahar Man, formerly Vice President at Aqua Security and SAP, and Yossi Pik, formerly Co-founder and CTO of FARMIGO (acquired by GrubMarket) and Vice President at SAP. Backed by extensive cloud-native application expertise and experience across cloud/ serverless and microservices, the Backslash Cloud-Native Application Security solution provides AppSec teams with security insights and business context to the code risk, while tracking the security posture of different applications and teams involved.
“There can be friction between developers and security teams because traditional application security methods are disruptive to cloud-native development. Developers need an accurate way to efficiently identify and fix code issues in their workflows, without being overwhelmed by alerts or false positives, while security needs a scalable way to manage risk,” said Melinda Marks, senior analyst at Enterprise Strategy Group. “Backslash has developed a solution to address this gap utilizing the properties of the stack and modern development environments to give security teams the context they need to support development as it scales.”
Through unified visual mapping of threat models and application posture, AppSec teams can quickly prioritize code risks based on the relevant cloud context, reducing false positives, alerts and fatigue; and they can significantly cut MTTR (mean time to recovery) by enabling developers with the evidence they need to take ownership of the process. Specifically, the Cloud-Native Application Security solution brings the following capabilities to enterprise AppSec teams:
- Contextual visibility: Empowers AppSecs teams with the automatic discovery and mapping of cloud-native application code and its dependencies via contextual visual dashboards, without the need to read or understand the underlying code
- Automatic threat model visualization: Automatically maps and serves up a preferred threat model
- Automatic high-risk code prioritization, informed by application cloud posture in production
- Quick-fix remediation: Simplifies vulnerability and risk remediation with intelligently automated risk identification
- Scale by policy alignment: Frees up AppSec teams to set and enforce the optimal cloud-native security policies while significantly cutting the time and resources needed to chase code issues
Industry News
April 10, 2025
Orca Security announced the Orca Bitbucket App, a cloud-native seamless integration for scanning Bitbucket Repositories.
April 10, 2025
The Live API for Gemini models is now in Preview, enabling developers to start building and testing more robust, scalable applications with significantly higher rate limits.
April 09, 2025
Backslash Security(link is external) announced significant adoption of the Backslash App Graph, the industry’s first dynamic digital twin for application code.
April 09, 2025
SmartBear launched API Hub for Test, a new capability within the company’s API Hub, powered by Swagger.
April 09, 2025
Akamai Technologies introduced App & API Protector Hybrid.
April 09, 2025
Veracode has been granted a United States patent for its generative artificial intelligence security tool, Veracode Fix.
April 09, 2025
Zesty announced that its automated Kubernetes optimization platform, Kompass, now includes full pod scaling capabilities, with the addition of Vertical Pod Autoscaler (VPA) alongside the existing Horizontal Pod Autoscaler (HPA).
April 08, 2025
Check Point® Software Technologies Ltd.(link is external) has emerged as a leading player in Attack Surface Management (ASM) with its acquisition of Cyberint, as highlighted in the recent GigaOm Radar report.
April 08, 2025
GitHub announced the general availability of security campaigns with Copilot Autofix to help security and developer teams rapidly reduce security debt across their entire codebase.
April 08, 2025
DX and Spotify announced a partnership to help engineering organizations achieve higher returns on investment and business impact from their Spotify Portal for Backstage implementation.
April 07, 2025
Appfire announced its launch of the Appfire Cloud Advantage Alliance.
April 07, 2025
Salt Security announced API integrations with the CrowdStrike Falcon® platform to enhance and accelerate API discovery, posture governance and threat protection.
April 07, 2025
Lucid Software has acquired airfocus, an AI-powered product management and roadmapping platform designed to help teams prioritize and build the right products faster.
April 03, 2025
StackGen has partnered with Google Cloud Platform (GCP) to bring its platform to the Google Cloud Marketplace.
