Aqua Security acquires an Israeli company that will protect software developers

Aqua Security, which specializes in cloud application security (Cloud Native), today acquired Argon, which specializes in software supply chain security solutions. After the purchase, Aqua will be able to offer a more complete solution to cloud software developers.

“With the addition of Argon’s solution to Aqua’s platform, we continue to realize our vision to protect the full lifecycle of applications built to run in cloud environments,” said Dror Davidoff, CEO and co-founder of Aqua Security. Cloud Native applications, but there are almost no companies that offer real protection capabilities for these applications, which prevent attacks.

“The addition of Argon’s unique technology further highlights and promotes Aqua’s operations against market competitors, making us the only supplier in the industry that is truly capable of providing true and complete protection of development processes, alongside deployment and operation of cloud applications.”

As cyber attacks get more sophisticated, a different type of attack and attacker is created who gains access to code while writing it. The most recent known attacks on SolarWinds and CodeCov have been of this kind. Attackers operating in this space are increasingly exploiting weaknesses in the software development and deployment process and trying to sabotage it, from code theft to the manipulations that are performed on it.

Organizations are required to take a proactive and modern approach to protecting the integrity of their software and their customers and products. In addition, Aqua’s cyber research team, Team Nautilus, reported attacks targeting the CI / CD tool (Continuous Application Integration and Deployment) and the supply chain of container platforms.

“Leading cloud service providers release software every 15 seconds. A manual solution can not keep up, and the threat of attacks on supply chains has never been greater. The industry requires a new approach,” says Elon Elhadad, CEO and co-founder of Argon. “We believe in Aqua’s vision and we are very pleased to join forces and become the only provider that enables organizations not only to run, but also to build software securely.”

Argon, founded about a year ago by Elon Elhadad and Ilam Milner, provides an agentless solution that allows connection to the existing DevOps platforms that software companies use to build and release software versions to the world. The company’s product instantly maps the entire software supply chain process and using a dedicated engine, based on a security framework written by Argon itself, creating a smart prioritization of vulnerabilities in the process and automatically protecting them. In addition, the company has developed a unique technology that allows to detect and prevent malicious code changes while it is in the process of being released (similar to what happened at the Solarwinds breakout event from last year), which relies, among other things, on principles that are at the forefront of technology.

Argon, backed by Hyperwise Ventures, currently employs 30 team members who work primarily in research and development, most of whom are based in Tel Aviv. The technological teams consist of graduates of elite units in the military such as the 8200 Intelligence Unit and the Horizon Unit of the Air Force, who bring with them an extensive background in security and software. Within six months of the launch of Argon’s product, the solution was implemented by dozens of software companies around the world. “The achievement that Argon has reached in this short time is a direct result of the people who make it up. This is truly an exceptional group of people who are not only professionals in their field, but sincerely believe in our mission,” Ayalon explains.

Argon is expanding its lead in Aqua’s Cloud Native application protection platform
Aqua Security is a pioneer in the security of Cloud Native environments and today it also leads the industry in the Cloud Native application protection platform (CNAPP), which offers a combination of implementing security controls early in development alongside their smooth support to production, while protecting applications wherever They are sliced.

Argon’s solution complements Aqua’s shift-left capabilities by providing full mapping for each version release, showing the trajectory it went through from the time the code was written, through its construction to packaging and installation. When combined with Aqua’s existing capabilities, including its dynamic threat analysis (DTA), customers using the platform can trust the code – regardless of its source.

“There is a big difference between seeing what’s in your infrastructure and actual actions of defending, preventing and stopping actual attacks in a fully automated environment. Aqua differentiates itself from competitors over the years thanks to its capabilities that help bridge gaps. The addition of Argon’s staff and technology is another move For our customers from the growing threats of attacks on the supply chain, “says Amir Jarbi, co-founder and chief technology officer at Aqua Security.