Boost Security Invests in Future Tech with SecureIQx and Korbit.ai Acquisitions

Boost Security Expands its Footprint in AI-Native Application Security

MONTREAL, May 6, 2026 — Boost Security, a frontrunner in the AI-native application security sector, has made headlines today with the announcements of its acquisitions of SecureIQx and Korbit.ai. This strategic move is coupled with an injection of $4 million in additional funding from investors including White Star Capital, Amiral Ventures, Accelia Capital, and Sorensen Capital. The enhancements aim to solidify Boost Security's position as a leader in the market amidst a rapidly evolving technological landscape.

With the ongoing evolution of software development, there is a marked increase in code generation driven by AI tools. Companies are increasingly relying on extensive ecosystems that involve third-party packages and libraries. This shift significantly burdens security teams, who must analyze immense volumes of code and identify which vulnerabilities are genuinely dangerous in production environments.

Boost Security's platform is engineered specifically to operate in sync with modern coding agents, addressing this challenge head-on. The system consolidates Developer Endpoint Protection, Software Supply Chain Security, and AI-Native Application Security Posture Management (ASPM) into a holistic framework. By protecting the entire development lifecycle, it ensures security measures adapt to the pace of software production. The platform actively defends against potential threats, blocks supply chain risks before they can be exploited, and automates the remediation of vulnerable code. This allows engineering teams to focus on speed without being hampered by security concerns.

Catherine Ouellet-Dupuis, a partner at White Star Capital, noted, “Recent high-profile attacks on software supply chains are just the tip of the iceberg. The real concern is that all engineering teams worldwide are producing code powered by AI agents that might introduce risks at an unimaginable speed and scale. You cannot rely on the same agents that generate vulnerabilities to also defend against them. Boost stands out as one of the few platforms built to function outside of this cycle, intercepting threats before they reach production.”

The Strategic Acquisitions

SecureIQx

SecureIQx was founded at MIT and has developed a cutting-edge Software Composition Analysis (SCA) engine. This innovative tool can dissect both binary and source code across numerous programming languages, assisting organizations in determining if vulnerable components are accessible and can be exploited within their applications. This capability is essential for modern software development, where reachability of vulnerabilities can often determine the actual risk.

Korbit.ai

Korbit.ai offers a sophisticated AI-based platform for reviewing pull requests, designed to spot security vulnerabilities, performance flaws, and coding errors during the review phase. Their technology harnesses insights from hundreds of millions of lines of code processed across various companies, making it a valuable asset for elevating the security posture of any development team.

The integration of these technologies into Boost Security's existing platform adds layers of advanced reachability analysis and AI-driven security features for source code analysis. Zaid Al Hamami, founder and CEO of Boost Security, emphasized the urgency of these innovations, stating, “As we enter into a new era of development, it's projected that code production increased 15 times in 2025 compared to the previous year, largely due to automation. Meanwhile, supply chain attacks are growing in number and sophistication. Our acquisitions are aimed at infusing deeper capabilities into our platform to meet these pressing realities.”

Funding to Drive Future Growth

In addition to the acquisitions, Boost Security has secured $4 million in new funding, allowing them to further enhance their platform's capabilities. The support from White Star Capital, Amiral Ventures, Accelia Capital, and Sorensen Capital signifies high investor confidence in the company's vision and the critical role it plays in modern software security.

About Boost Security

Boost Security is recognized as the AI-Native Software Development Lifecycle Defense Platform designed to secure code at the velocity with which it is generated. Their platform combines several critical elements — Developer Endpoint Protection, Software Supply Chain Security, and AI-Native ASPM — into one unified engine. By continuously guarding the AI workspace, preventing supply chain threats, and automatically correcting defective code prior to deployment, Boost Security enables engineering teams to harness the power of AI while maintaining rigorous security standards. For more information, visit boostsecurity.io.