Aikido Security

We're #hiring a new Revenue Operations Specialist in Ghent, Flemish Region. Apply today or share this post with your network.

We're excited to welcome Emanuelle De Backer to the ever growing Aikido family! 👋 Emanuelle De Backer has joined us as our new Office and Ops Lead!

I've had the chance to meet many wonderful customers and partners while in London, including an engaging CTO + CISO dinner last night with the Aikido Security team. Some of the hot topics we covered: - AI security & scrutiny - Future of AI frameworks - ISO vs SOC - When to start a compliance program - Video games (natch) - Football (congrats England!! 🏴󠁧󠁢󠁥󠁮󠁧󠁿) Thank you to the incredible crew who attended despite a very exciting match happening at the same time!

Gaming 🎮 Observability 🔍 ISO vs SOC 📋 LLMs vs ML 🤖 A live "pen" test > 2-1 🏴󠁧󠁢󠁥󠁮󠁧󠁿 🇳🇱 And a load more Just some of the stuff we covered last night. With an amazing bunch of humans who we also call colleagues, customers and friends. Mega fun hosting our very first Vanta x Aikido Security joint dinner. And having Madeline and Stevie in London town too! Plus a lovely result (for many of us) at the end of the night! ⚽ Sally Hanrahan, Demelza Stamp, Tom Jennings, Nipun Gupta, Walter Holohan, Alan Davies Anthony El Raachini

the ~ Ghent connection ~ runs deep!

When it comes to creating exceptional applications, building them is one part. Keeping them safe is another… Until now. Proud to announce our partnership with Laravel. Laravel helps developers create their best work. Laravel Forge makes life & app server management easier for 600k+ developers and growing. Now, they can secure their best work with Aikido. Right where they manage it in Forge. Get security done 🤝 get back to building. Full announcement link in comments below. #php #laravel #appsec #devops #devsecops #security 

Expanding our JavaScript coverage! If you use Deno, we now support dependency scanning for deno lockfiles: deno.lock. Deno is a modern and secure runtime for #JavaScript and #TypeScript. In their words, they exist to "uncomplicate javascript" just as we exist to uncomplicate security. 🤝 ☯ If you don't know deno, check them out. If you do, check us out - and get secured asap. #appsec #devsecops #cybersecurity

Another day, another critical exploitation risk... Some call this one #regreSSHion but we couldn’t resist coining it “oh SSHit” internally tl;dr affected versions of #OpenSSH are vulnerable to an unauthenticated, remote code execution (RCE) vulnerability, that allows an attacker to get root access on the machine...So, close port 22, upgrade OpenSSH to a patched version when you can. our scanners help you find & fix asap – just in time for vacations. #appsec #cybersecurity #devsecops #applicationescurity

🚨 Your airpods are vulnerable! 🚨 There’s a security vulnerability (CVE-2024-27867) in the airpods firmware... tl;dr Apple prob forgot crucial security checks in Fast Connect code paths... Attackers can bypass Airpods connection #security check. So anyone can connect to your Airpods (when in pairing mode or active) by using your easily discoverable Bluetooth MAC address. Meaning attackers can: listen to the microphone, play or control music, access AAP protocol functions... Anyways, Aikido's vulnerability scanner.... won't find CVE-2024-27867 for you. You'll have to buy new airpods - or, better just update them 🫶🫶 #cybersecurity #apple #devsecops #hackernews #airpods #appsec

⚠️ Over 110,000 websites have been affected by a hijacked polyfill supply chain attack. Polyfill is a popular library that incorporates support for modern functions in web browsers. Andrew Betts, Polyfill's creator, has alerted website owners to immediately remove it asap. 🚨 Just shipped: Aikido now detects usage of hostile domain cdn.polyfill[.]io Find, fix & protect yourself in <1 min #polyfill #supplychainattack #cybersecurity #appsec #hackernews #sast