Podcasts about snyk

On this episode of the Cybersecurity Defenders Podcast we speak with Filip Stojkovski, Staff Security Engineer at Snyk.Filip is a cybersecurity professional with over 15 years of experience. He began his career as a SOC analyst and now leads SecOps engineering at Snyk. Filip also advises organizations on SOAR, AI for SOC, and threat intelligence strategies. He holds multiple SANS certifications, including GSTRT, GCTI, and GCFA, and was recognized as “Threat Seeker of the Year.” He is the creator of the LEAD Threat Intelligence Framework and the Security Automation Development Life Cycle. Filip regularly shares his expertise through industry talks and on his blog: Cyber Security Automation and Orchestration

What does it mean to be a “day one partner” for founders—and how does that change in an era of AI-driven acceleration?On this episode of The Data Minute, Peter sits down with Ed Sim, founding partner of Boldstart Ventures and the voice behind “What's Hot

Large language models are helping developers move faster than ever. But behind the convenience of AI-generated code lies a security vulnerability: package hallucinations. In this episode, Ashok sits down with U.S. Army cybersecurity officer and PhD researcher Joe Spracklen to unpack new research on how hallucinated package names—fake libraries that don't yet exist—can be weaponized by attackers and quietly introduced into your software supply chain. Joe's recent academic study reveals how large language models like ChatGPT and Code Llama are frequently recommending software packages that don't actually exist—yet. These fake suggestions create the perfect opportunity for attackers to register malicious packages with those names, compromising developer machines and potentially entire corporate networks. Whether your team is deep into AI pair programming or just starting to experiment, this conversation surfaces key questions every tech leader should be asking before pushing AI-generated code to production. Unlock the full potential of your product team with Integral's player coaches, experts in lean, human-centered design. Visit integral.io/convergence for a free Product Success Lab workshop to gain clarity and confidence in tackling any product design or engineering challenge. Inside the episode... What "package hallucinations" are and why they matter How AI code assistants can introduce real vulnerabilities into your network Which models were most likely to hallucinate packages Why hallucinated package names are often persistent—not random How attackers could weaponize hallucinated names to spread malware What mitigation strategies were tested—and which ones failed Why simple retrieval-based techniques (like RAG) don't solve the problem Steps security-conscious teams can take today to protect their environments The importance of developer awareness as more non-traditional engineers enter the field Mentioned in this episode Python Package Index (PyPI) npm JavaScript package registry Snyk, Socket.dev, Phylum (dependency monitoring tools) Artifactory, Nexus, Verdaccio (private package registries) ChatGPT, Code Llama, DeepSeek (AI models tested) Subscribe to the Convergence podcast wherever you get podcasts including video episodes on YouTube at youtube.com/@convergencefmpodcast Learn something? Give us a 5 star review and like the podcast on YouTube. It's how we grow. Unlock the full potential of your product team with Integral's player coaches, experts in lean, human-centered design. Visit integral.io/convergence for a free Product Success Lab workshop to gain clarity and confidence in tackling any product design or engineering challenge. Subscribe to the Convergence podcast wherever you get podcasts including video episodes to get updated on the other crucial conversations that we'll post on YouTube at youtube.com/@convergencefmpodcast Learn something? Give us a 5 star review and like the podcast on YouTube. It's how we grow.   Follow the Pod Linkedin: https://www.linkedin.com/company/convergence-podcast/ X: https://twitter.com/podconvergence Instagram: @podconvergence

Gambian Government; Isle of Man Government; Passkeys for Normal People; The Have I Been Pwned Alpine Grand Tour ; Sponsored by Snyk https://www.troyhunt.com/weekly-update-451/See omnystudio.com/listener for privacy information.

Welcome to the Scale with Strive podcast, the place where you come to listen to some of the world's most influential leaders of the SaaS industry.

With the AI hype cycle spiraling forward, and speed often being prioritized over security, many industry leaders, analysts, and data center operators are warning about the dangers lurking in the code many of us use every day. On this episode of The Reboot Chronicles Show, we went to the source, to figure out how that gap is being closed with Serial CEO and top Rebooter, Peter McKay - CEO of Snyk. Snyk is a developer security platform that's reshaping how vulnerabilities are caught, fixed, and prevented—at the source—before the code goes live.Watch or listen in on this episode as Peter shares how he rebooted Snyk, got them to move faster than the hackers, how AI has changed the coding game, why you should “give a shit” and not just “throw crap over the fence”—and how they are on their way toward being a billion-dollar market leader.

Forecast = Prepare for scattered CVEs, rising bot storms, and real-time threat lightning. Keep your digital umbrellas handy! ‍ On this episode of Storm⚡️Watch, we're breaking down the latest shifts in the vulnerability tracking landscape, starting with the ongoing turbulence in the CVE program. As the MITRE-run CVE system faces funding uncertainty and a potential transition to nonprofit status, the global security community is rapidly adapting. New standards and databases are emerging to fill the gaps—Europe's ENISA is rolling out the EU Vulnerability Database to ensure regional control, while China continues to operate its own state-mandated systems. Meanwhile, the CVE ecosystem's chronic delays and the NVD's new “Deferred” status for tens of thousands of older vulnerabilities are pushing teams to look elsewhere for timely, enriched vulnerability data. Open-source projects like OSV.dev and commercial players such as VulnCheck and Snyk are stepping up, offering real-time enrichment, exploit intelligence, and predictive scoring to help organizations prioritize what matters most. The result is a fragmented but innovative patchwork of regional, decentralized, open-source, and commercial solutions, with hybrid approaches quickly becoming the norm for defenders worldwide. We're also diving into Imperva's 2024 Bad Bot Report, which reveals that nearly a third of all internet traffic last year came from malicious bots. These bots are getting more sophisticated—using residential proxies, mimicking human behavior, and bypassing traditional defenses. The report highlights a surge in account takeover attacks and shows that industries like entertainment and retail are especially hard hit, with bot traffic now outpacing human visitors in some sectors. The rise of simple bots, fueled by easy-to-use AI tools, is reshaping the threat landscape, while advanced and evasive bots continue to challenge even the best detection systems. On the threat intelligence front, GreyNoise has just launched its Global Observation Grid—now the largest deception sensor network in the world, with thousands of sensors in over 80 countries. This expansion enables real-time, verifiable intelligence on internet scanning and exploitation, helping defenders cut through the noise and focus on the threats that matter. GreyNoise's latest research shows attackers are exploiting vulnerabilities within hours of disclosure, with a significant portion of attacks targeting legacy flaws from years past. Their data-driven insights are empowering security teams to prioritize patching and response based on what's actually being exploited in the wild, not just theoretical risk. We're also spotlighting Censys and its tools for tracking botnets and advanced threats, including collaborative projects with GreyNoise and CursorAI. Their automated infrastructure mapping and pivoting capabilities are helping researchers quickly identify related malicious hosts and uncover the infrastructure behind large-scale attacks. Finally, VulnCheck continues to bridge the gap during the CVE program's uncertainty, offering autonomous enrichment, real-time exploit tracking, and comprehensive coverage—including for CVEs that NVD has deprioritized. Their Known Exploited Vulnerabilities catalog and enhanced NVD++ service are giving defenders a broader, faster view of the threat landscape, often surfacing critical exploitation activity weeks before it's reflected in official government feeds. As the vulnerability management ecosystem splinters and evolves, organizations are being forced to rethink their strategies—embracing a mix of regional, open-source, and commercial intelligence to maintain visibility and stay ahead of attackers. The days of relying on a single source of truth for vulnerability data are over, and the future is all about agility, automation, and real-time insight. Storm Watch Homepage >> Learn more about GreyNoise >>  

Tom Hulme is a General Partner @ GV and leads GV's European investing. He has led rounds in Monzo, Nothing, GoCardless, Lemonade, Snyk and is widely considered one of the best investors in Europe.  Stan Boland is one of the most successful and respected entrepreneurs in the UK.  In 1999, he co-founded Element 14 which was acquired by Broadcom in 2000 for $640 million. Following this, Boland co-founded Icera Inc. in 2002, a fabless semiconductor company which he sold to Nvidia for $367 million.  In Today's Discussion We Cover: 04:26 Is The UK's Biggest Problem a Talent Problem 09:50 Why We Need to Flood the UK With Venture Capital 10:38 What Europe Can Learn from Stripe and the Collisons 15:21 How the UK Can Use Visas to Retain the Best Talent 16:46 Why the Government Needs to Put 10x More Cash Into Fund of Funds 24:32 Is the London Stock Exchange F****** and Does it Matter? 34:38 What The UK Can Learn From Sequoia and the Norwegian Sovereign Wealth Fund 40:42 What is a “National Goal for Wealth Creation” & How Do We Implement It? 48:10 What are the Most Broken Elements of the UK Tax Regime 52:11 Is It Stupid to Remove the Non-Dom Tax Status 53:15 Why is Now the Time to Be Bullish on China 01:00:19 Biggest Lessons from Working with Jensen Huang 01:08:04 Quick Fire Round: Insights and Predictions    

Welcome to Episode 373 of the State of the New York Knicks podcast! The Knicks just handed the Wizards a beatdown, and We (as in me and Knick fans on twitter space) diving into it all. Tyler Kolek introduces himself to the Knicks rotation—big news there. But before we get into that, I gotta get something off my chest... why are guys like Landry Shamet and Cam Payne getting minutes over guys like Kolek and Pacome Dadiet? We'll break that down. Also, the Knicks are playing without Jalen Brunson, so what's the team's identity looking like without him on the floor? And, Knicks fans, before we dive in, make sure you click the links below for all the latest merch, articles, and more from SNYK. Now, let's get to it!https://snyk-pod.printify.me/https://snykpodcast.substack.com/https://www.youtube.com/@SNYKPodcasthttps://www.twitch.tv/statesnykgaming

Connect to John Gilroy on LinkedIn   https://www.linkedin.com/in/john-gilroy/ Want to listen to other episodes? www.Federaltechpodcast.com Today, we sit down with Karthik Natarajan, Solutions Engineering Manager, U.S. Public Sector, for SNYK. SNYK has garnered a formidable reputation in the commercial sector by helping to identify and fix vulnerabilities in code, open-source dependencies, and container images. Karthik Natarajan acknowledges that no code can be 100% secure; however, one way to improve by a magnitude is to incorporate the “Shift Left” approach. This phrase has been around for twenty years but has recently gained momentum. The concept of shift left moves testing and performance evaluation to an earlier part of the software development lifecycle. But SNYK goes further by applying AI to look at open-source dependencies. When infrastructure transitions to “infrastructure as code,” vulnerabilities may be included. SNYK also looks for vulnerabilities in infrastructure code. The interview ends with Karthik explaining that SNYK's success is due to it being written for cloud applications- it is cloud native.  Also, they judiciously use AI and rigorously check corrections to code that may introduce trouble.    

Episode SummaryIn this episode of The Secure Developer, Danny Allan, CTO of Snyk, sits down with Wayne Chang, Founder and CEO of SpruceID, to explore the evolving landscape of digital identity and security. From self-sovereign identity to the role of AI in authentication, they discuss the future of identity management, the risks of centralized systems, and the benefits of decentralized approaches. They also dive into how policy, compliance, and emerging technologies like passkeys and zero-knowledge proofs are shaping the security ecosystem.Show NotesThe world of digital identity is changing fast, and in this episode of The Secure Developer, we explore how security professionals and developers can navigate this evolving space. Host Danny Allan is joined by Wayne Chang, Founder and CEO of SpruceID, to discuss key trends and challenges in identity management.Topics Discussed:Wayne's Background: From health tech to digital identity, how Wayne's early struggles with integrating health records led to his passion for self-sovereign identity.The Evolution of Digital Identity: Why usernames and passwords are no longer the gold standard, and how newer methods like passkeys and cryptographic credentials improve security.Decentralization vs. Centralization: The trade-offs between federated identity systems (like OAuth and SSO) and self-hosted identity wallets.The Role of AI in Identity Security: How AI is both a tool for improving security and a threat vector for identity fraud.Privacy and Compliance: How regulations like GDPR, CCPA, and emerging state-level laws influence digital identity strategies.The Future of Authentication: The move from multi-factor authentication to "myriad factor authentication," leveraging multiple signals for seamless and secure access.Wayne and Danny also discuss real-world use cases, including the development of mobile driver's licenses, emerging digital identity wallets, and the challenges of ensuring privacy and security while maintaining usability. The conversation highlights how organizations can stay ahead with better authentication practices and privacy-preserving architectures as fraud becomes more sophisticated.LinksSpruceID - Identity infrastructure for the digital worldNIST - The National Institute of Standards and TechnologyNIST SP 800-63 - Digital Identity GuidelinesACLU Digital ID State Legislative RecommendationsSnyk - The Developer Security Company Follow UsOur WebsiteOur LinkedIn

Future of Software, Agents in the Enterprise, and Inception Stage Company Building // MLOps Podcast 293 with Eliot Durbin, General Partner at Boldstart Ventures.Join the Community: https://go.mlops.community/YTJoinIn Get the newsletter: https://go.mlops.community/YTNewsletter // AbstractKey lessons for founders that are thinking about or starting their companies. 15 years of inception stage investing from how data science companies like Yhat went to market in 2013-14 and how that's evolved, to building companies around OSS frameworks like CrewAI; Eliot share's key learnings and questions for founders starting out.// BioEliot is a General Partner @ boldstart ventures since it's founding in 2010. boldstart an inception stage lead investor for technical founders building the next generation of enterprise companies such as Clay, Snyk, BigID, Kustomer, Superhuman, and CrewAI. // Related LinksWebsite: boldstart.vchttps://medium.com/@etdurbin~~~~~~~~ ✌️Connect With Us ✌️ ~~~~~~~Catch all episodes, blogs, newsletters, and more: https://go.mlops.community/TYExploreJoin our slack community [https://go.mlops.community/slack]Follow us on X/Twitter [@mlopscommunity](https://x.com/mlopscommunity) or LinkedIn (https://go.mlops.community/linkedin) Sign up for the next meetup: [https://go.mlops.community/register]MLOps Swag/Merch: [https://shop.mlops.community/]Connect with Demetrios on LinkedIn: /dpbrinkmConnect with Eliot on LinkedIn: /eliotdurbin

What's up, Knicks Nation! Welcome back to episode 366 of the State of the New York Knicks podcast. I'm your host Uncle State, bringing you all the latest and greatest on our beloved Knicks, and yes, I run this podcast solo, so it's just me and you today and knick fans. In tonight's game, the Knicks took down the Philadelphia 76ers in dramatic fashion! Jalen Brunson hit a clutch three-pointer to break the 102-102 tie and seal the win. Absolutely incredible! Meanwhile, Mikal Bridges was on fire with 28 points, really showing out in this game. And don't forget about Josh Hart, who chipped in with a monster 17 rebounds — absolutely key to this victory.As always, if you're a true Knicks fan, make sure you check out the links in the description below. We've got everything from exclusive merch, articles from SNYK, to our Reddit posts, and don't forget our Twitch and YouTube channels where we keep the conversation going.Alright, let's dive into the breakdown of this exciting game — stay tuned, we've got a lot to talk about. Let's go, Knicks!https://www.twitch.tv/statesnykgaminghttps://snyk-pod.printify.me/https://snykpodcast.substack.com/https://www.reddit.com/user/stateofthenykhttps://www.youtube.com/@SNYKPodcast

What's up, Knicks fans! Welcome to episode 367 of the State of the New York Knicks podcast. I'm your host State, running the show twitter space hosting as always, and today we've got an exciting one to break down and the return of our guy Mitchell Robinson The Knicks pulled off a big win against the Memphis Grizzlies, and it was none other than OG who made the biggest shot of his Knicks career — a go-ahead 3-pointer that sealed the deal! Huge moment for him, and that clutch shot wouldn't have been possible without Jalen Brunson, who made a perfect pass to set it up. McBride also played a key role in this one, contributing when it mattered most, and don't forget about Shamet, who hit a timely 3-pointer to give the Knicks the momentum they needed.As always, if you're a Knicks fan, make sure to check out the links in the description — we've got exclusive merch, SNYK articles, Reddit posts, and our Twitch and YouTube channels, where we keep the Knicks talk rolling.Alright, let's dive into all the details of this thrilling victory. Let's go, Knicks!"reddit.com/user/stateofthenyk/https://snykpodcast.substack.com/https://www.youtube.com/@SNYKPodcasthttps://snyk-pod.printify.me/https://www.reddit.com/user/stateofthenyk/

00:00 - PreShow Banter™ — Highest Rated Chalk04:14 - BHIS - Talkin' Bout [infosec] News 2025-01-2008:53 - Story # 1: Data From 15,000 Fortinet Firewalls Leaked by Hackers14:25 - Story # 2: China's Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says16:29 - Story # 3: TikTok reportedly plans ‘immediate' Sunday shutdown in the US if it's banned25:47 - Story # 4: FBI forces Chinese malware to delete itself from thousands of US computers35:06 - WWHF Denver36:03 - BSides San Diego37:23 - Security Stadium38:22 - Story # 5: Exchange 2016 and 2019 reach end-of-life status later this year42:45 - Story # 6: Snyk security researcher deploys malicious NPM packages targeting Cursor.com46:17 - Story # 7: New UEFI Secure Boot flaw exposes systems to bootkits, patch now57:34 - Story # 8: Lawsuit: Allstate used GasBuddy and other apps to quietly track driving

Seth and Ken return once again to talk through the overall effectiveness and purpose of Portswigger's Top 10 Web Hacking Techniques and how it benefits the community. A short discussion on some of the current crop of techniques up for polling. Spurred by recent revelations around Snyk's approach to identifying security issues in npm packages, the duo discusses research techniques and identifying security issues without exploitation or harm. To close out, a discussion on progressing from junior to senior within the security space and challenges in the current market.

Snyk mysteriously deploys apparently malicious packages Baltic sea cable cuts can't be accident, says EU tech chief CISA warns of second BeyondTrust vulnerability Huge thanks to our sponsor, Dropzone AI Does your SOC feel like it's drowning in alerts? Dropzone AI cuts through the noise, triaging 100% of alerts and giving you clear, actionable insights. Ready to break free? Check out the demo at dropzone.ai. For the stories behind the headlines, head on over to CISOSeries.com

The Biden administration is finalizing an executive order to bolster U.S. cybersecurity. Ivanti releases emergency updates to address a critical zero-day vulnerability. A critical vulnerability is discovered in Kerio Control firewall software. Palo Alto Networks patches multiple vulnerabilities in its retired migration tool. Fake exploits for Microsoft vulnerabilities lure security researchers. A medical billing company data breach affects over 360,000. A cyberattack disrupts the city of Winston-Salem. CrowdStrike identifies a phishing campaign exploiting its recruitment branding. Our guest is Danny Allen, CTO from Snyk, sharing how a balanced approach between AI and human oversight can strengthen cybersecurity. The worst of the worst from CES.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Our guest is Danny Allen, CTO from Snyk, sharing how a balanced approach between AI and human oversight can strengthen cybersecurity. Learn more in Snyk's AI Readiness Report about how some companies are still hesitant to adopt AI, despite its clear benefits in addressing human error and keeping up with fast-evolving technology. Selected Reading White House Rushes to Finish Cyber Order After China Hacks (Bloomberg) Zero-Day Patch Alert: Ivanti Connect Secure Under Attack (GovInfo Security) GFI KerioControl Firewall Vulnerability Exploited in the Wild (SecurityWeek)  Palo Alto Networks Patches High-Severity Vulnerability in Retired Migration Tool (SecurityWeek)  Security pros baited by fake Windows LDAP exploits (The Register) Major US medical billing firm breached, 360K+ customers' healthcare data leaked (Cybernews) Recruitment Phishing Scam Imitates CrowdStrike Hiring Process (CrowdStrike) Some Winston-Salem city services knocked offline by cyberattack (The Record) Excelsior Orthopaedics Data Breach Impacts 357,000 People (SecurityWeek)  The 'Worst in Show' CES Products Put Your Data at Risk and Cause Waste, Privacy Advocates Say (SecurityWeek) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Episode SummaryImagine if AI could detect and fix vulnerabilities in your code faster and with greater precision than ever before. That future is already here! In today's episode, we're joined by Berkay Berabi, an AI researcher and Senior Software Engineer at Snyk, to dive into the cutting-edge world of AI-powered vulnerability detection. Berkay offers insight into how Snyk is leveraging a hybrid AI approach to detect and fix vulnerabilities in code, combining human-driven expertise with machine learning for greater accuracy and scalability. He also introduces CodeReduce, a game-changing tool by Snyk that strips away irrelevant code, streamlining the detection process and addressing the challenges posed by complex, multi-step data flows. Through rigorous model testing, Snyk ensures that AI-generated fixes are validated to prevent errors, making the process faster and more reliable.Show NotesIn this fascinating episode of The Secure Developer, host Danny Allan sits down with Berkay Berabi, an AI researcher at Snyk, to explore the groundbreaking CodeReduce technology and its implications for software security. Berabi, who transitioned from electrical engineering to AI research, shares insights into how Snyk is revolutionizing vulnerability detection and remediation using artificial intelligence.The conversation delves deep into the technical aspects of CodeReduce, explaining how this innovative approach reduces complex code structures by up to 50 times their original size while maintaining vulnerability detection capabilities. Berabi explains the sophisticated process of code reduction, analysis, and fix generation, highlighting how AI models can better understand and address security vulnerabilities when working with simplified code. The discussion also covers the challenges of different AI models, from T5 to StarCoder and Mixtral, exploring their varying capabilities, accuracies, and performance trade-offs.The episode critically examines the future of AI in software development, addressing both opportunities and concerns. Berabi and Allan discuss recent findings about AI-generated code potentially introducing new vulnerabilities, referencing Gartner's prediction that by 2027, 25% of software vulnerabilities could be created by AI-generated code. They explore how tools like CodeReduce and other AI-powered security measures might help mitigate these risks while examining the broader implications of AI assistance in software development. This episode offers valuable insights for developers, security professionals, and anyone interested in the intersection of AI and software security.LinksDeepCode AI Fix Research PaperDeepCode AI Fix Blog Post Follow UsOur WebsiteOur LinkedIn

Guy Podjarny is the founder of Tessl - a startup that is rethinking how we build software.Guy previously founded Snyk - a dependency scanning tool worth billions of dollars. Before Snyk, Guy founded Blaze, which he sold to Akamai.This episode is brought to you by WorkOS. If you're thinking about selling to enterprise customers, WorkOS can help you add enterprise features like Single Sign On and audit logs. In this conversation, we talk about the future of programming and the future of DevTools. The future of programming will focus on writing specifications.Trust in AI toolsSnyk is an example of how tools can integrate into existing workflows.Code can become disposable, allowing for flexibility in development.Specifications will serve as repositories of truth in software development.Developers will need to adapt their skills to leverage AI tools effectively.Community collaboration is essential for the evolution of AI development tools.AI simplifies and democratizes the process of software creationThanks to Anna Debenham for making this happen. 

Send us a text00:00 - Intro00:08 - ServiceTitan Surges to $8.9B After Strong Nasdaq IPO01:12 - Snyk Hits $9.4B Valuation with $300M ARR02:10 - OpenAI Rolls Out Real-Time Video Analysis for ChatGPT02:56 - Fleet Space Doubles Valuation to $525M03:37 - Runway Projects $265M Revenue in 202404:12 - Crusoe Raises $600M, Valued at $2.8B04:55 - Google and Samsung Enter XR Market with Mixed-Reality Headset06:31 - Pre-IPO Stock Market Weekly Performance07:16 - Pre-IPO Stock Vintage Index Weekly PerformanceNEW FUND ANNOUNCEMENT*: The AG Dillon Anduril Pre-IPO Stock Fund is now accepting investors. Anduril Industries is a defense technology company that specializes in building advanced artificial intelligence (AI) and autonomous systems for military and national security purposes. Financial advisors only. Email aaron.dillon@agdillon.com to invest or request fund materials. Note important disclosures at the end of this post.Subscribe to AG Dillon Pre-IPO Stock Research at agdillon.com/subscribe;- Wednesday = secondary market valuations, revenue multiples, performance, index fact sheets- Saturdays = pre-IPO news and insights, webinar replays* NOTE: AG Dillon ("AGD") is not affiliated with Anduril. Anduril may require company approval for purchases (aka transfers). AGD has not been pre-approved by Anduril to purchase their stock. AGD purchases pre-IPO stocks in the secondary market and may gain exposure by directly purchasing the stock (on the company's capitalization table) and/or through a third-party fund (aka special purpose vehicle, or SPV).

Guy Podjarny founded Tessl, Snyk and Blaze. Tessl is reimagining software development for the AI era and shaping AI Native Development. Snyk created and leads the Developer Security category, and is now a multi-billion dollar company with over 1,000 employees. Guy was previously CTO at Akamai (following its acquisition of Blaze), is an active angel investor, and co-hosts of the AI Native Dev podcast. In Today's Episode with Guy Podjarny We Discuss:  03:02 Discussion on NVIDIA's Market Position 04:14 Will We See a Trough of Disillusionment in AI 07:36 The Future of AI Development and Specialized Models 10:17 Challenges and Opportunities in AI Dev Tools 17:41 Concerns About Closed vs. Open Development Platforms 21:27 Speculations on AI's Role in Application Layers 24:40 Google's Competitive Edge 25:28 IPO and M&A in the Trump Era 26:45 The Future Role of Software Developers 32:20 Security Challenges in AI Development 33:41 Spicy Questions and Charity Donations 36:05 Quickfire Round: Insights and Advice      

In the enterprise security news, Bitsight, Snyk, and Silverfort announce acquisitions Tanium announces an “autonomous” endpoint security offering We find out how much a smartphone costs when it is manufactured in the US CISA's leadership announces resignations Ransomware is going after old versions of Excel Should vendors be doing more about alert fatigue? The latest cybersecurity reports Using AI to mess with scammers All that and more, on this episode of Enterprise Security Weekly. Show Notes: https://securityweekly.com/esw-385

In the enterprise security news, Bitsight, Snyk, and Silverfort announce acquisitions Tanium announces an “autonomous” endpoint security offering We find out how much a smartphone costs when it is manufactured in the US CISA's leadership announces resignations Ransomware is going after old versions of Excel Should vendors be doing more about alert fatigue? The latest cybersecurity reports Using AI to mess with scammers All that and more, on this episode of Enterprise Security Weekly. Show Notes: https://securityweekly.com/esw-385

This is a topic our hosts are very passionate about, and we're excited to discuss with Mariana Padilla, co-founder and CEO of Hackerverse. She wants to change how cybersecurity sales works, with a focus on making the process more transparent and ideally demonstrating a product's efficacy before buyers even need to talk to a sales team. We'll discuss why existing sales processes are broken, how VC funding impacts vendor sales/marketing, and why community-led growth is so important. Why a special segment on Microsoft Ignite announcements? There were a lot of announcements Microsoft is the largest security vendor, in terms of revenue Microsoft and its products are also the biggest and most vulnerable hacking target in the tech industry. In the enterprise security news, Bitsight, Snyk, and Silverfort announce acquisitions Tanium announces an “autonomous” endpoint security offering We find out how much a smartphone costs when it is manufactured in the US CISA's leadership announces resignations Ransomware is going after old versions of Excel Should vendors be doing more about alert fatigue? The latest cybersecurity reports Using AI to mess with scammers All that and more, on this episode of Enterprise Security Weekly. Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-385

This is a topic our hosts are very passionate about, and we're excited to discuss with Mariana Padilla, co-founder and CEO of Hackerverse. She wants to change how cybersecurity sales works, with a focus on making the process more transparent and ideally demonstrating a product's efficacy before buyers even need to talk to a sales team. We'll discuss why existing sales processes are broken, how VC funding impacts vendor sales/marketing, and why community-led growth is so important. Why a special segment on Microsoft Ignite announcements? There were a lot of announcements Microsoft is the largest security vendor, in terms of revenue Microsoft and its products are also the biggest and most vulnerable hacking target in the tech industry. In the enterprise security news, Bitsight, Snyk, and Silverfort announce acquisitions Tanium announces an “autonomous” endpoint security offering We find out how much a smartphone costs when it is manufactured in the US CISA's leadership announces resignations Ransomware is going after old versions of Excel Should vendors be doing more about alert fatigue? The latest cybersecurity reports Using AI to mess with scammers All that and more, on this episode of Enterprise Security Weekly. Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-385

This week, Danny Allen, Snyk's CTO, discusses how AI regulations are influencing both the security of AI tools and the broader software ecosystem and the emphasis on compliance with security standards. This comes on the heels of a recent report which found that the majority of security leaders have begun contemplating banning the use of AI in coding due its security risks. Ben dives into policy changes we might expect from the next FCC chairman. Dave's got the story of a school shut down over deepfake nudes. While this show covers legal topics, and Ben is a lawyer, the views expressed do not constitute legal advice. For official legal advice on any of the topics we cover, please contact your attorney.  Please take a moment to fill out an audience survey! Let us know how we are doing! Links to the stories: Trump Picks Brendan Carr to Lead F.C.C. Explicit deepfake scandal shuts down Pennsylvania school Get the weekly Caveat Briefing delivered to your inbox. Like what you heard? Be sure to check out and subscribe to our Caveat Briefing, a weekly newsletter available exclusively to N2K Pro members on N2K CyberWire's website. N2K Pro members receive our Thursday wrap-up covering the latest in privacy, policy, and research news, including incidents, techniques, compliance, trends, and more. This week's Caveat Briefing covers the story of Chinese President Xi Jinping meeting with outgoing U.S. President Joe Biden at the APEC summit in Peru, discussing key issues like Taiwan, cybercrime, and trade while emphasizing China's desire for stable U.S.-China relations as Donald Trump prepares to assume office. Both leaders highlighted the importance of managing differences, though tensions remain over Taiwan, military provocations, and U.S. trade restrictions on Chinese technology. Curious about the details? Head over to the Caveat Briefing for the full scoop and additional compelling stories. Got a question you'd like us to answer on our show? You can send your audio file to caveat@thecyberwire.com. Hope to hear from you. Learn more about your ad choices. Visit megaphone.fm/adchoices

“It's a bit too early to say that the race is over,” said Philippe Botteri when asked about European startups' AI progress. “I think we're just at the very early innings of this race.” Botteri is a partner at early-stage investment firm Accel with over 13 years under his belt at the firm, leading investments in DocuSign, UiPath and more recently Snyk and Chainalysis. Today on TechCrunch's Equity podcast, host Rebecca Bellan caught up Botteri to dive deep into Accel's Euroscape 2024 Report. Tapping into Botteri's experience in Cloud, SaaS security, and enterprise sectors, the pair discuss AI's rising influence, its impact on software and cloud investments, and how European startups can compete with the US. Listen to the full episode for more about:How AI is eating the software market, with AI and cloud funding predicted to hit $79.2 billion by the end of 2024.The challenges faced by traditional software companies as funding growth slows outside of AI.Why Europe's strong talent pool gives it an edge in the AI race, even as startups on the continent struggle to compete with the ungodly amounts of money U.S. tech giants have.Increased M&A activity globally amid a slow IPO market.Why 2025 will be the year of the “agentic revolution” with AI significantly impacting software development and productivity.Equity is TechCrunch's flagship podcast, produced by Theresa Loconsolo, and posts every Wednesday and Friday. Subscribe to us on Apple Podcasts, Overcast, Spotify and all the casts. You also can follow Equity on X and Threads, at @EquityPod. For the full episode transcript, for those who prefer reading over listening, check out our full archive of episodes over at Simplecast. Credits: Equity is produced by Theresa Loconsolo with editing by Kell. Bryce Durbin is our Illustrator. We'd also like to thank the audience development team and Henry Pickavet, who manages TechCrunch audio products.

In this insightful episode of “World Class with Chris Vasquez,” Chris is joined by Ed Sim, the #1 seed investor in the world, to share his invaluable lessons from 28+ years of venture capital investing. We cover the best startup funding lessons from 28+ years of investing and the exciting world of AI & VC trends in the next 12 months. Ed breaks down his approach to “inception investing,” diving into his unique 5 Ps model for evaluating startups and why starting small with your investments can lead to big payoffs. He shares his philosophy on the importance of having three founders, a concept honed over decades of successful investments. You'll also hear about “The Weekend Test,” Ed's method for evaluating founders' true dedication. As the venture space continues to evolve, Ed discusses the biggest shifts in the industry and how they're shaping the future of startups. He takes a deep dive into the current AI investment landscape and shares stories of successful startups, including Parker Conrad and the rise of Snyk. For founders, this episode is packed with advice on how to market the vision of your startup, when to deploy more capital, and why the first round of funding is so critical. Ed also talks about the ins and outs of launching a VC fund, and the importance of having “skin in the game,” especially as an underdog in the world of venture capital. Ed's journey is one of resilience and determination, and he shares his mantra of staying “poor, hungry, and determined,” a mindset that has guided him through decades of success in investing. If you're interested in venture capital, the future of AI, or want to know how to navigate the startup world from a master investor's perspective, this episode is for you. Tune in for a wealth of knowledge from one of the most successful seed investors in the world.

Guy Podjarny is the founder of Blaze, Snyk, and now Tessl. He's spent decades building at the center of developers and security. His newest company Tessl is reimagining software development, helping shape a new paradigm he calls AI Native Development.We talk through his four quadrant framework for building and investing in AI, plus go into the early days of Blaze and Snyk. He shares lessons on marketing to developers, hiring when no one wanted to work for him, overcoming multiple difficult funding rounds, and lessons from multiple M&A processes.Timestamps:(00:00) Intro(02:21) The four quadrants of building and investing in AI(14:59) Why AI startups are riskier than non-AI startups(19:42) When to sell your company vs keep building(24:57) Why hiring the early team is so hard(26:32) Early marketing tricks from Guy's first company, Blaze(29:09) Strategies for using conferences to grow your brand(33:33) Getting three days of free PR(38:04) Moving to Ottawa(42:11) Why Sales Engineer is an underrated founder stepping stone(45:49) What he learned as CTO of Akamai(48:31) Starting his third company Tessel, and why there's no satisfaction without struggle(50:41) How Snyk got started(54:10) Creating developer-first security(59:59) Secrets for developer marketing(01:02:31) Why podcasts work so well for marketing(01:06:26) Snyk's failed Series AReferencedTessl: https://tessl.io/Snyk: https://snyk.io/Charting Your AI Native Journey: https://www.tessl.io/blog/charting-your-ai-native-journeySecure Developer Podcast: https://snyk.io/podcasts/the-secure-developer/AI Native Dev Podcast: https://www.tessl.io/podcastWe didn't mention it in the podcast, but Guy just announced the AI Native Dev Conference, a virtual conference on Thurs, November 21st. Join him + many others here https://ai-native-devcon.heysummit.com/Follow GuyTwitter: https://x.com/guypodLinkedIn: https://uk.linkedin.com/in/guypoFollow TurnerTwitter: https://twitter.com/TurnerNovakLinkedIn: https://www.linkedin.com/in/turnernovakNewsletter: https://www.thespl.it/

Timestamps: (0:00) Alex and Jason kick off the news show! (3:26) Overview of Harvard's AR glasses tech demo and club projects (10:09) Squarespace - Use offer code TWIST to save 10% off your first purchase of a website or domain at https://www.Squarespace.com/TWIST (11:35) Discussing responsible tech use, privacy, and entrepreneurial aspirations (18:30) Guests' academic focus and future in technology (19:41) LinkedIn Ads - Get a $100 LinkedIn ad credit at http://www.linkedin.com/thisweekinstartups (21:27) AR technology trends, practicality, and ethical considerations (26:10) AI advancements, deepfakes, and AR in healthcare (29:37) Washington Post - TWiST listeners can subscribe for just 50 cents per week for your first year at https://www.washingtonpost.com/twist (31:06) Insights on young founders and the podcast's live format evolution (31:58) Venture capital trends and Initialize Capital's restructuring (39:28) Founders Fund and CRV developments, returning capital to LPs (42:02) Analysis of scale insurgents and successful startup unicorns (46:39) Secondary market opportunities and fund exit strategies (53:00) New Twist 500 members: Snyk and Nym (59:56) TikTok's impact on the music industry and content creators (1:03:48) Investment discussions with Chef Reactions and TikTok creators * Subscribe to the TWiST500 newsletter: https://ticker.thisweekinstartups.com Check out the TWIST500: twist500.com Subscribe to This Week in Startups on Apple: https://rb.gy/v19fcp * Follow AnhPhu: X: https://x.com/AnhPhuNguyen1 LinkedIn: https://www.linkedin.com/in/anhphu5/ * Follow Caine: X: https://x.com/CaineArdayfio LinkedIn: https://www.linkedin.com/in/caine-ardayfio/ * Follow Alex: X: https://x.com/alex LinkedIn: ⁠https://www.linkedin.com/in/alexwilhelm * Follow Jason: X: https://twitter.com/Jason LinkedIn: https://www.linkedin.com/in/jasoncalacanis * Thank you to our partners: (10:09) Squarespace - Use offer code TWIST to save 10% off your first purchase of a website or domain at https://www.Squarespace.com/TWIST (19:41) LinkedIn Ads - Get a $100 LinkedIn ad credit at http://www.linkedin.com/thisweekinstartups (29:37) Washington Post - TWiST listeners can subscribe for just 50 cents per week for your first year at https://www.washingtonpost.com/twist * Great TWIST interviews: Will Guidara, Eoghan McCabe, Steve Huffman, Brian Chesky, Bob Moesta, Aaron Levie, Sophia Amoruso, Reid Hoffman, Frank Slootman, Billy McFarland * Check out Jason's suite of newsletters: https://substack.com/@calacanis * Follow TWiST: Twitter: https://twitter.com/TWiStartups YouTube: https://www.youtube.com/thisweekin Instagram: https://www.instagram.com/thisweekinstartups TikTok: https://www.tiktok.com/@thisweekinstartups Substack: https://twistartups.substack.com * Subscribe to the Founder University Podcast: https://www.youtube.com/@founderuniversity1916

Tamar Yehoshua is the president of product and technology at Glean. Prior to joining Glean, Tamar was chief product officer at Slack, where she led product, design, and research as the company scaled, including a 10x increase in revenue, its public listing, and an acquisition by Salesforce. She also led product and engineering teams at Google, working on search, identity, and privacy, and at A9.com, an Amazon company. Tamar has served on the board of directors for RetailMeNot, ServiceNow, Snyk, and Yext. In our conversation, we discuss:• Why you don't need to be a well-run company to win• The impact of AI on product management and the future of work• How to build strong cross-functional relationships, especially with engineers• Lessons learned from working with leaders like Jeff Bezos and Stewart Butterfield• Strategies for staying ahead in a rapidly evolving tech landscape• Much more—Brought to you by:• Explo—Embed customer-facing analytics in your product• Sprig⁠⁠—Build products for people, not data points• Sidebar—Accelerate your career by surrounding yourself with extraordinary peers—Find the transcript and show notes at: https://www.lennysnewsletter.com/p/you-dont-need-to-be-a-well-run-company-to-win-tamar-yehoshua—Where to find Tamar Yehoshua:• X: https://x.com/TYehoshua• LinkedIn: https://www.linkedin.com/in/tamar-yehoshua-886217/• Newsletter: https://tamaryehoshua.substack.com/—Where to find Lenny:• Newsletter: https://www.lennysnewsletter.com• X: https://twitter.com/lennysan• LinkedIn: https://www.linkedin.com/in/lennyrachitsky/—In this episode, we cover:(00:00) Tamar's background(02:09) Key advice for career success(06:54) Understanding people and motivations(09:33) The importance of impact(11:20) Navigating company chaos(18:40) Career planning: a different perspective(26:22) Lessons from industry leaders(37:59) Building stronger cross-functional relationships(42:00) Streamlining OKR reviews with async methods(45:26) Why you shouldn't worry so much about making users unhappy(47:50) The power of listening in leadership(52:34) How to leverage AI so you don't fall behind(01:06:39) Closing thoughts and lightning round—Production and marketing by https://penname.co/. For inquiries about sponsoring the podcast, email podcast@lennyrachitsky.com.—Lenny may be an investor in the companies discussed. Get full access to Lenny's Newsletter at www.lennysnewsletter.com/subscribe

The FBI and CISA dismiss false claims of compromised voter registration data. The State Department accuses RT of running global covert influence operations. Chinese hackers are suspected of targeting a Pacific Islands diplomatic organization. A look at Apple's Private Cloud Compute system. 23andMe will pay $30 million to settle a lawsuit over a 2023 data breach.  SolarWinds releases patches for vulnerabilities in its Access Rights Manager. Browser kiosk mode frustrates users into giving up credentials. Brian Krebs reveals the threat of growing online “harm communities.” Our guest is Elliot Ward, Senior Security Researcher at Snyk, sharing insights on prompt injection attacks. How theoretical is the Dead Internet Theory? Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Our guest is Elliot Ward, Senior Security Researcher at Snyk, sharing insights on their recent work "Agent Hijacking: the true impact of prompt injection attacks."  Selected Reading FBI tells public to ignore false claims of hacked voter data (Bleeping Computer) Russia's RT news agency has ‘cyber operational capabilities,' assists in military procurement, State Dept says (The Record) The Dark Nexus Between Harm Groups and ‘The Com' (Krebs on Security) China suspected of hacking diplomatic body for Pacific islands region (The Record) Apple Intelligence Promises Better AI Privacy. Here's How It Actually Works (WIRED) Apple seeks to drop its lawsuit against Israeli spyware pioneer NSO (Washington Post) 23andMe settles data breach lawsuit for $30 million (Reuters) SolarWinds Patches Critical Vulnerability in Access Rights Manager (SecurityWeek) Malware locks browser in kiosk mode to steal Google credentials (Bleeping Computer) Is anyone out there? (Prospect Magazine)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Episode #36 of "Can I get that software in blue?", a podcast by and for people engaged in technology sales. If you are in the technology presales, solution architecture, sales, support or professional services career paths then this show is for you! Today we're talking with Jeff Yoshimura, or "Yosh" as his friends and colleagues know him. When it comes to high growth infrastructure companies, Yosh is at the top of his game having served as the Chief Marketing Officer at Synk and at Elastic before that. He's been through 3 IPOs (Salesforce, Zuora, and Elastic) and has some absolutely great stories to tell from his career including how the ELK stack came to appear on the tv show Mr. Robot. Our website: https://softwareinblue.com Twitter: https://twitter.com/softwareinblue LinkedIn: https://www.linkedin.com/showcase/softwareinblue Make sure to subscribe or follow us to get notified about our upcoming episodes: Youtube: https://www.youtube.com/channel/UC8qfPUKO_rPmtvuB4nV87rg Apple Podcasts: https://podcasts.apple.com/us/podcast/can-i-get-that-software-in-blue/id1561899125 Spotify: https://open.spotify.com/show/25r9ckggqIv6rGU8ca0WP2 Links mentioned in the episode: ELK Stack Mr. Robot: https://www.youtube.com/watch?v=3sWxfLNV_wE

This episode is sponsored by Bloomreach.  Bloomreach is a cloud-based e-commerce experience platform and B2B service specializing in marketing automation, product discovery, and content management systems.   Check out Bloomreach: https://www.bloomreach.com Explore Loomi AI: https://www.bloomreach.com/en/products/loomi Other Bloomreach products: https://www.bloomreach.com/en/products In this episode of the Eye on AI podcast, we sit down with Randall Degges, Head of Developer Relations and Security at Snyk, to uncover the impact of AI on cybersecurity and software development.   Randall shares his 20+ years of experience as a software developer and security expert, leading us through Snyk's innovative approach to developer security. We dive into how Snyk is changing vulnerability detection and code generation by leveraging a hybrid AI model—combining symbolic AI for accurate detection and generative AI for smart fixes.   We explore the challenges and opportunities of using AI in code security, discussing whether AI-generated code can ever fully replace human coders or if it's best suited as a powerful tool in a developer's arsenal. Randall also addresses the risks of AI hallucinations in code generation and how Snyk mitigates these through rigorous testing and validation.   Join us as we discuss the future of coding, the role of AI in software development, and how developers can stay ahead in this rapidly evolving landscape.    Don't forget to like, subscribe, and hit the notification bell for more expert insights into the latest AI and cybersecurity trends. Stay Updated: Craig Smith Twitter: https://twitter.com/craigss Eye on A.I. Twitter: https://twitter.com/EyeOn_AI (00:00) Preview and Intro (00:34) Randall Degges Background (01:33) The Role of AI in Security at Snyk (03:28) Symbolic vs. Generative AI in Code Security (04:57) How Snyk Uses Rule-Based AI for Detection (06:48) Challenges with AI-Generated Code Fixes (09:08) The Future of AI in Code Generation (11:56) Integrating AI with Developer Tools (16:06) Risks of AI-Generated Code and Internet Saturation (22:25) The Hybrid AI Approach for Code Security (26:31) Future of AI and Its Impact on Developers (30:02) Snyk's Integration with IDEs and Research Initiatives (33:48) Autonomous Fixes and the Future of AI in Development (41:04) DeepCode AI Fix Engine and Snyk's ID Plugin (46:38) Will AI Replace Developers? (50:16) AI Readiness Report Insights (52:59) Tech Layoffs and Opportunities in AI  

On this episode, Courtney Fay joins the show to give us insight into the internship program at Snyk. Courtney shares feedback from former interns, talks about their company culture and more.

This week we take a deep dive behind-the-scenes look into how the team handled a recent report from Snyk's Security Lab of a local privilege escalation vulnerability in `wpa_supplicant` plus we cover security updates in Prometheus Alertmanager, OpenSSL, Exim, snapd, Gross, curl and more.

How can organizations implement AI safely while reaping its benefits? In this episode of Tech Talks Daily, we sit down with Danny Allan, the Chief Technology Officer of Snyk, to discuss this crucial topic. Recent findings from a Snyk survey reveal that a significant majority of IT managers are concerned about their teams' over-reliance on AI code completion tools, potentially bypassing essential security protocols. With developers facing high burnout rates, the pressure to adopt AI is intensifying. However, as Danny Allan emphasizes, the solution lies not in banning AI but in strategically integrating these tools within organizations. Danny shares Snyk's innovative approach to AI adoption, which includes providing security guardrails and thorough analysis to ensure AI tools are utilized securely. He discusses how Snyk partners with customers to mitigate risks and enhance productivity without compromising security. By implementing a clear plan for AI integration and partnering with experienced vendors like Snyk, companies can balance the productivity gains of AI with robust security measures. We also explore a real-world example where a team of 5000 developers successfully rolled out an AI coding assistant with Snyk's security analysis, achieving significant productivity gains. Danny delves into Snyk's AI Intelligence Framework, which focuses on using AI internally, securing AI implementations, and enhancing products and services with AI capabilities. Are you interested in learning more about how to securely implement AI in your organization? Tune in to hear Danny Allan's insights and discover how Snyk can help you navigate the complexities of AI adoption. As always, we invite you to share your thoughts and experiences on this topic. How is your organization approaching AI integration, and what challenges have you encountered?

Send us a Text Message.WEBINAR ANNOUNCEMENT: AG Dillon will be hosting a webinar on August 7 at 1:30pm ET titled An Introduction to the AG Dillon Top 10 Pre-IPO Stock Fund. Fund invests into the top 10 pre-IPO stock by valuation. Pre-IPO stock exposure to artificial intelligence, robotics, space economy, fintech, virtual/augmented reality in one fund. Pre-IPO Indexing delivers 450% cumulative returns over the last 20 yrs, on average*. Register at www.agdillon.com/webinar. - - - - - - - - - - -Weekly pre-IPO reports…- Valuations, revenue multiples, performance = www.agdillon.com/reports- Market update pdf = www.agdillon.com/update- Index fact sheet = www.agdillon.com/index00:06 | Cerebras Targets October IPO- AI semiconductor company- Targeting IPO launch as soon as October- Enlisted Barclays and Citigroup as lead banks- Confidentially filed with the SEC- 2021 funding round: $4B valuation (primary)- Raised $250M in Series F- Flagship system CS-3 for AI workloads- Secondary market valuation: $5.4B (+26% vs Nov 2021 round)01:01 | OpenAI Rolls Out Advanced Voice Mode- AI large language model company- Launching ChatGPT's Advanced Voice Mode- Initially for ChatGPT Plus users, full rollout in fall 2024- Features hyperrealistic audio responses, emotional recognition- Tested by over 100 external red teamers- Secondary market valuation: $105B (+22% vs Apr 2024 round)01:54 | Harvey's $100M Series C Round- AI startup for lawyers- Raised $100M in Series C led by Google Ventures- Total funding: $206M- Valued at $1.5B (primary)- Uses OpenAI's GPT-4 for legal tasks- Annual recurring revenue and workforce tripled since December03:08 | Canva Acquires Leonardo.ai- Graphic design tech company- Acquired Leonardo.ai to enhance AI tech stack- Leonardo.ai to continue operating independently- Canva's valuation: $28.4B (secondary)- Over 19M registered users, 1B+ images generated- Canva's revenue close to $2B with 180M monthly users04:16 | Ramp's AI-Powered Financial Tools- Business-focused fintech- Uses AI to streamline financial processes for 25,000+ businesses- Customers include Shopify and Boys and Girls Club of America- AI capabilities: OCR for receipt matching, fraud detection, spend optimization- Tripled annual recurring revenue and workforce since December- Secondary market valuation: $8.8B (+15% vs Apr 2024 round)05:44 | Anduril Secures Air Force Contracts- Tech-focused defense contractor- Developing prototypes for Collaborative Combat Aircraft (CCA)- Expected production contracts by 2026- CCA to perform strike, reconnaissance, electronic warfare missions- Secondary market valuation: $15.5B (+11% vs May 2024 round)06:45 | Airtable Acquires Dopt- Productivity SaaS company- Acquired Dopt to enhance AI capabilities- Dopt to wind down service on August 15- Airtable's AI group to integrate Dopt's team- Launched Airtable Cobuilder for app creation via chat interface- Secondary market valuation: $3.5B (-70% vs Dec 2021 round)07:44 | Pre-IPO Stock Market Weekly Performance- www.agdillon.com/reports for full pdf- Pre-IPO +2.91% for week, +69.42% for last 1yr- Up week: Snyk +80.2%, Notion +13.2%, Revolut +8.1%, Airtable 6.9%, Plaid 5.2%- Down week: Hugging Face -16.1%, Groq -10.4%, Cohere -5.6%, Klarna -3.5%, ByteDance -2.5%- Top valuations: ByteDance $286b, SpaceX $210b, OpenAI $105b, Stripe $70b, Databricks $44b08:40 | Pre-IPO Stock Vintage Index Weekly Performance- www.agdillon.com/index for pdf with constituent level perfo

https://codingcat.dev/podcast/secure-coding-beyond-the-surface-with-snyk --- Send in a voice message: https://podcasters.spotify.com/pod/show/codingcatdev/message Support this podcast: https://podcasters.spotify.com/pod/show/codingcatdev/support

Get Attio, the next generation of CRM: https://bit.ly/AttioThePeel Ed Sim is the Founder of boldstart ventures, which partners with bold founders reinventing the enterprise stack at the inception stage. Ed takes us inside the journey building boldstart, from its first $1m fund in 2010 up to $850m in AUM today. Timestamps: (00:00) Intro (03:48) Evolution of early stage investing(05:11) Inception stage investing (10:32) Backing bold founders reinventing the enterprise stack(11:20) Repeatable ways to build enterprise businesses (12:04) The 5 P's of early stage investing (14:12) Backing Guy Podjarny and Snyk (18:18) Knowing when to follow-on (19:18) The 3 Ch's of a good board member (22:01) How Ed's board role changes over time (24:20) Balancing founder friendly with returns (27:20) How to build customer relationships (30:24) Advice for closing customers (33:47) Creating the Seed category in 2009/10 (37:31) boldstart's $1m Fund 1 (39:00) Why Ed didn't join a large firm in 2012 (39:55) boldstart's $16.5m Fund 2 (40:26) Why LPs passed on the first funds (43:11) Leading rounds in Kustomer, Snyk, BigID, and Blockdaemon in Fund 3 (47:09) Why $112m Fund 4 was the hardest to raise(50:52) Ed's approach to LP fundraising (55:12) Inside Meta's acquisition of Kustomer and sale back to the founders (59:52) Backing Rahul from Superhuman a 2nd time (01:00:52) The different GTM playbooks (01:02:20) Importance of contract size and time to close (01:05:07) Why AI makes security more important (01:06:11) When to switch from founder-led sales(01:07:46) Backing ProtectAI after a conference (01:08:28) Balancing between inbound and outbound sales (01:09:55) Winners and losers in AI (01:15:26) Building the boldstart team (01:25:19) Lessons being an interim CEO (01:27:15) How ZIRP pulled revenue forward (01:29:08) The death of high growth software (01:32:58) Identifying startup opportunities incumbents won't crush (01:35:00) Second order effects of AI (01:36:46) Using "Intuitive TAM" to size new markets (01:38:04) Investing before there's a market map (01:38:57) Balancing family, fitness, and career Referenced: https://boldstart.vc/ Turning Down HBS: https://x.com/edsim/status/1315644287007240193 Ed's tweet on raising Fund 4: https://x.com/edsim/status/1315644287007240193 Second Order Effects of AI: https://www.whatshotit.vc/p/whats-in-enterprise-itvc-379 Death of Hyper Growth: https://x.com/edsim/status/1797613384994623808 Where to find Ed: Twitter: https://twitter.com/edsim LinkedIn: https://www.linkedin.com/in/edsim/ Newsletter: https://www.whatshotit.vc/ Where to find Turner: Twitter: https://twitter.com/TurnerNovak LinkedIn: https://www.linkedin.com/in/turnernovak/ Newsletter: https://www.thespl.it/

CSAC recommends key changes to the  Joint Cyber Defense Collaborative. Cloud vendor Snowflake says single-factor authentication is to blame in their recent breach. Publishers sue Google over pirated ebooks. The FBI shares LockBit decryption keys. V3B is a phishing as a service campaign targeting banking customers. Commando Cat targets Docker servers to deploy crypto miners. Our guest is Danny Allen, Snyk's CTO, discussing how in the rush to implement GenAI, some companies are bypassing best practices and security policies. Club Penguin fans stumble upon a cache of secrets in the house of mouse. Our 2024 N2K CyberWire Audience Survey is underway, make your voice heard and get in the running for a $100 Amazon gift card. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Guest is Danny Allen, Snyk's CTO, discussing how in the rush to implement GenAI, companies bypass best practices and security policies. This highlights a clear gap between those in leadership looking to adopt AI tools and the teams who are utilizing them. Learn more in Snyk Organizational AI Readiness Report.  Selected Reading CISA advisors urge changes to JCDC's goals, operations, membership criteria (The Record) CISA says 'patch now' to 7-year-old Oracle WebLogic bug (The Register) Snowflake says users with single-factor authentication targeted in attack (SC Media) Advance Auto Parts stolen data for sale after Snowflake attack (Bleeping Computer) Major Publishers Sue Google Over Ads for Pirated Ebooks (Publishing Perspectives) FBI unveils 7,000 decryption keys to aid LockBit victims (Silicon Republic)  Hackers Attacking Banking Customers Using Phishing-As-A-Service V3B Toolkit (GB Hackers) Commando Cat: A Novel Cryptojacking Attack Abusing Docker Remote API Servers (Trend Micro) Club Penguin fans breached Disney Confluence server, stole 2.5GB of data (Bleeping Computer)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this episode of the Application Security Podcast, host Chris Romeo welcomes James Berthoty, a cloud security engineer with a diverse IT background, to discuss his journey into application and product security. The conversation spans James's career trajectory from IT operations to cloud security, his experiences with security tools like Snyk and StackHawk, and the evolving landscape of Dynamic Application Security Testing (DAST) and API security. They delve into the practical challenges of CVEs, reachability analysis, and the complexities of patching in mid-sized companies. James shares his views on the often misunderstood role of WAF and the importance of fixing issues over merely identifying them. The discussion concludes with insights into James's initiative, Latio Tech, which aims to help security professionals evaluate and understand application security products better. James Berthoty's LinkedIn post: AppSec Kool-Aid Statements I Disagree Withhttps://www.linkedin.com/posts/james-berthoty_appsec-kool-aid-statements-i-disagree-with-activity-7166084208686256128-tb1U?utm_source=share&utm_medium=member_desktopWhat is Art by Leo Tolstoyhttps://www.gutenberg.org/files/64908/64908-h/64908-h.htmFOLLOW OUR SOCIAL MEDIA: ➜Twitter: @AppSecPodcast➜LinkedIn: The Application Security Podcast➜YouTube: https://www.youtube.com/@ApplicationSecurityPodcast Thanks for Listening! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Episode SummaryIn this special episode of “The Secure Developer,” host Danny Allan interviews Snyk founder Guy Podjarny about the origins and evolution of Snyk. Guy shares his journey from conceptualizing Snyk in the shower to building it into a developer-first security platform. They discuss the challenges and successes of integrating security into the developer workflow, the importance of open-source security, and the impact of AI on the industry. Guy also provides insights into Snyk's focus on remediation and the future of autonomous developer security.Show NotesIn this episode of The Secure Developer, host Danny Allan sits down with Guy Podjarny, founder of Snyk, for an engaging conversation about the company's journey and its impact on the DevSecOps landscape. Guy shares the story of Snyk's inception, from the initial idea sparked in a shower to its development into a leading developer-first security platform. He discusses the challenges faced in the early days, including the need to balance depth and breadth in their security solutions and how these experiences shaped Snyk's approach to integrating security seamlessly into the developer workflow.Guy delves into the pivotal moments that defined Snyk's evolution, such as the decision to focus on open-source security and the subsequent expansion into container and infrastructure as code security. He highlights the importance of making security tools that developers love and can easily adopt, which has been a cornerstone of Snyk's philosophy. The conversation also touches on the strategic acquisitions that bolstered Snyk's capabilities, particularly the acquisition of DeepCode, which brought innovative AI-driven static analysis into the fold.As the discussion moves forward, Guy and Danny explore the future of security in the AI era. They consider the potential of AI to revolutionize how vulnerabilities are detected and fixed, envisioning a future where code can be autonomously corrected without developer intervention. Guy emphasizes the need for a holistic approach to security, one that combines static analysis with runtime insights to provide comprehensive protection.This episode offers a deep dive into the philosophy, challenges, and innovations that have driven Snyk's success. It provides listeners with valuable insights into the evolution of developer-first security and the role of AI in shaping the future of software development. Whether you're a developer, security professional, or tech enthusiast, this conversation is packed with lessons and foresight that you won't want to miss. Tune in to hear from one of the leading minds in DevSecOps and learn how Snyk continues to lead the charge in making security an integral part of the development process.LinksSnyk Open SourceSnyk CodeDevSecCon Follow UsOur WebsiteOur LinkedIn

Sam Altman is the CEO @ OpenAI, the company on a mission is to ensure that artificial general intelligence benefits all of humanity. OpenAI is one of the fastest-scaling companies in history with a valuation of $90BN and $2BN+ in revenue. Brad Lightcap is the COO @ OpenAI and the man responsible for the incredible scaling of sales, GTM, partnerships and business to today being over $2BN in revenue. Arthur Mensch is the Co-Founder and CEO of Mistral AI. Since its inception in May 2023, Mistral has raised over $520M in funding from investors like Andreeseen Horowitz, General Catalyst, Lightspeed Venture Partners, and Microsoft with a current valuation of $2 billion.  Des Traynor is a Co-Founder of Intercom, and has built and led many teams within the company, including Product, Marketing, and Customer Support. Today Des leads all of Intercom's R&D efforts, and parts of Intercom's marketing. Tom Hulme is a Managing Partner of GV (Google Ventures), and leads the European team. Today, GV has over $10BN in AUM and Tom has led investments in Lemonade.com (IPO), Snyk, Secret Escapes, Blockchain.com, GoCardless, and Currency Cloud (exited to Visa). Tomasz Tunguz is the Founder and General Partner @ Theory Ventures, just announced last week, Theory is a $230M fund that invests $1-25m in early-stage companies that leverage technology discontinuities into go-to-market advantages. Sarah Tavel is a General Partner @ Benchmark, one of the most successful and renowned venture firms in the world. At Benchmark, Sarah has led rounds in Chainalysis, Hipcamp, Medely, Rekki, Glide, Cambly and more. In Today's Episode We Discuss: Will foundation models be commoditised? What is the end state for the foundation model landscape in 10 years? How will large cloud provider incumbents approach M&A with smaller foundation model providers? When will we see marginal revenue exceed marginal cost in the foundation model business model? Where is the value: the application layer or the infrastructure layer? How can startups know whether they will be threatened by OpenAI? What are good tests/questions to know if you are in the path of one of the large foundation models? How does the business model of SaaS fundamentally change in a world of AI? Will we see the end of per-seat pricing in a new world of AI? What is the right way to approach pricing in a world of AI? Consumption? Tokens?  

Tom Hulme is a Managing Partner of GV (Google Ventures), and leads the European team. Today, GV has over $10BN in AUM and Tom has led investments in Lemonade.com (IPO), Snyk, Secret Escapes, Blockchain.com, GoCardless, Blue Vision Labs (exited to Lyft), and Currency Cloud (exited to Visa). Prior to joining venture full-time, Tom was one of Europe's most successful angel investors with a 5x DPI track record and 20x+ TVPI. In Today's Episode with Tom Hulme We Discuss: 1. Lessons from a 24x TVPI Angel Track Record: What are Tom's biggest lessons from his biggest winners angel investing? What are Tom's biggest takeaways from the 0's in his angel track record? What is the biggest advice Tom would give to angel investors starting out today? What are the single biggest mistakes Tom sees angel investors make today? 2. The Four Pillars of Venture Capital: What does Tom believe are the four key components of being successful as a VC? Why does Tom describe VC as "being a founder on anti-depressants"? How does Tom categorise the three different types of investors that exist? Sourcing, selecting, servicing: What is Tom best at and what is he worst at? 3. The Conventional Wisdom in Venture That is Not True: Why does Tom believe it is BS that you should never sell your winners? Why does Tom believe he has never had complete conviction in any of the companies he invests in? Why does Tom believe the "everything has to be a fund returner mindset" is BS? Why naivety doesn't lead to great founders? Why employees at rocketships are the best founders? 4. AI: Foundation Models, Generative AI, The Incumbents: Where Does the Value Go: Does Tom believe there is money to be made investing in foundation models? Why does Tom liken investing in foundation models to investing in power stations? Where does Tom believe there is value in the application layer? Why does Tom think that generative AI is largely a sustaining innovation? Why does Tom think Microsoft will win the next wave of AI? Who else is well-positioned? Why does Tom believe there is a correlation between those that fear monger around AGI and those that need funding for their businesses?  

Episode SummaryIn this episode of The Secure Developer we're joined by Brian Vallelunga, Founder and CEO of Doppler, to discuss the importance of secrets management in modern application development. Brian shares his journey in creating Doppler, a secrets manager designed for developers and DevOps teams, and highlights the challenges organizations face in managing sensitive data such as API keys, database credentials, and certificates. The conversation explores best practices for secure secret storage, the need for industry-wide adoption of secrets rotation, and the potential impact of AI on the future of secrets management and identity-based authentication.Show NotesIn this insightful episode of The Secure Developer, we sit down with Brian Vallelunga, Founder and CEO of Doppler, to dive deep into the critical topic of secrets management in modern application development. Brian shares Doppler's unique founding story, which began as a crypto machine learning marketplace but pivoted to address the pressing need for effective secrets management solutions.Throughout the conversation, Brian and Danny explore the challenges developers and organizations face when managing sensitive data, such as API keys, database credentials, and certificates. They discuss best practices for secure secret storage, emphasizing the importance of encryption, seamless integration with developer workflows, and creating a positive developer experience.The discussion also touches on the industry's struggle with secrets rotation and the need for standardization across providers to enable effective rotation strategies. Brian and Danny consider the potential role of compliance requirements, such as SOC 2, in driving the adoption of robust secrets management practices.Looking to the future, the pair explores the impact of artificial intelligence on secrets management and the potential shift towards identity-based authentication. They envision a world where AI agents dynamically provision infrastructure and manage the connections between various services, with secrets managers facilitating seamless authentication.Tune in to this engaging episode to gain valuable insights into the evolving landscape of secrets management and discover how industry leaders like Snyk and Doppler are working to secure the future of application development.LinksTwilioStripeNullifyVercelKubernetesAmazon Web ServicesGitHub CopilotMagicSnyk - The Developer Security CompanyFollow UsOur WebsiteOur LinkedIn Follow UsOur WebsiteOur LinkedIn

This week Allan is joined by Leigh Honeywell (CEO of Tall Poppy) Nathan Case (Federal CISO at Snyk), and Ryan Macababbad (Currently looking.  HIRE HER!), three cybersecurity professionals with broad backgrounds in cyber, and all three of whom are neurodivergent.   Allan in fact, has been recently diagnosed as being on the autism spectrum, albeit 'high functioning' (as the diagnosis indicates) or 'low support needed' (as the autism community prefers to call it).   With his recent diagnosis, Allan decided to reach out to friends in the neurodiverse community to discuss: The positives of neurodivergence Neurotypical responses and stereotypes about the ND community Cybersecurity-specific benefits to being ND Tips/Advice/Support for those who suspect or know that that they are ND  

Jamin Ball is a Partner @ Altimeter Capital where he sits on the board of Airbyte, Clickhouse, dbt Labs, Prisma, Tabular. Jamin has also led investments in Deel, MotherDuck, Personio and Starburst. Prior to Altimeter, Jamin spent 5 years at Redpoint where he led investments in Workato, Monte Carlo, Cityblock Health, Root Insurance. Ed Sim is one of the best seed round investors in venture as the Founder and Managing Partner @ Boldstart, Ed focuses specifically on developer, infra and SaaS at pre-seed and seed round. Over the last decade, Ed has backed some of the best including Snyk, BigID, Kustomer, Front and Superhuman. In Today's Episode We Discuss: 1. How to Invest Successfully in 2024: What are the three biggest mistakes growth investors can make in 2024? Why should founders not start a platform company? What were Jamin and Ed's biggest mistakes from the ZIRP era? How does Jamin justify paying an $8BN price for Hopin? What were his lessons? 2. The M&A Markets in 2024: Did Figma kill the M&A markets for 2024? What should we expect in M&A? Why will private companies buying private companies be a massive segment in 2024? What are Ed and Jamin's biggest tips to founders considering selling their company in 2024? 3. When Will IPOs Come Back: What will be the catalyst to the opening of the IPO markets? Will Stripe and Databricks go public in 2024? What others should we expect? What are the three requirements for a company to go public in 2024? 4. Firesales: Investors Need Cashback: Why does Ed believe now is the time in the cycle where late-stage investors want cash back to distribute back to their LPs or to recycle? What should we expect to see in terms of acqui-hires and firesales? What are the different incentives when comparing founders vs early stage VCs vs late stage VCs when it comes to acquisitions?

In this supper club episode of Syntax, Wes and Scott talk with Darcy Clarke about his career path in tech, working with Wes back in the day, why he decided to build vlt volt, and the biggest sick pick list yet! Show Notes 00:32 Welcome 01:38 Building a tweet wall back in the day 08:54 How did you land at npm? npm 19:40 Why do we need another package manager and registry? 22:11 What is vlt volt? vlt: a new home for open source vlt /vōlt/ (@vltpkg) / X Shipping ESM with Mark Erikson Bun Yarn Nx 27:18 Do you see a future where we don't pre-compile before shipping? 29:32 Why would pnpm be faster than npm? 31:14 What are the problems with symlinking? 33:08 What's happening with Yarn? Verdaccio Cloudsmith jfrong Sonatype socket.dev Snyk.io Dependency Confusion 37:42 What do you think about config files? antfu Config of File Nesting for VS Code The massive bug at the heart of the npm ecosystem WebTorrent 41:02 VS Code tip - file nesting patterns 41:59 How does on-prem registry work? 47:29 Where does Socket.dev and Snyk security fit? 52:46 Sick Picks 04:41 How did you get vlt.sh? 05:30 How did you get @Darcy? Sick Picks Flat Coat Goldendoodle Scientific American Nespresso BlackBerry (2023) - IMDb BlackBerry (2023) Letterboxd Matthias Wandel Blink-182 Official Site Moneen Bring Me The Horizon Shameless Plugs vlt: a new home for open source Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads