Nokod Security

Thanks, Mirko Zorz and Help Net Security, for this interview with our CTO Amichai Shulman. In this deep dive into the unique risks of no-code environments, Amichai explains how the abstraction layer in these platforms obscures critical aspects, such as data flow, identity propagation, and control logic, making it much harder for security teams to maintain visibility and control. Amichai points out that the risk in no-code applications and citizen development isn’t environment misconfigurations—it’s primarily about interactions of poorly described logic with corporate data. This leads to a range of application-layer vulnerabilities, including SQL injection, path traversal, and others.  Read more here: https://lnkd.in/dAt9jK78 #Cybersecurity #NoCode  #AppSec #ApplicationSecurity #RPA #AIAgents #CitizenDevelopment #ShadowIT

In his recent article on Dark Reading - “How to Lock Down the No-Code Supply Chain Attack Surface” - Nokod’s CTO, Amichai Shulman highlights the growing risks of supply chain attacks in no-code development environments. Third-party connectors—a core feature of no-code development—enable applications to interact seamlessly with cloud services, databases, and enterprise software. While these integrations significantly boost efficiency and innovation, they also introduce new entry points for adversaries, underscoring the critical challenge of maintaining visibility across these complex ecosystems and adding a security layer to citizen development. Read more here: https://lnkd.in/e9KVkxtn #Cybersecurity #NoCode #SupplyChainSecurity #AppSec #ThirdPartyRisk #CitizenDevelopment

Nokod is thrilled to be referenced by Gartner in the 2025 research “How to Support and Govern Low-Code Applications for Citizen Development” by Mukul C. Saha and Oleksandr Matvitskyy. Challenges covered and the aim of this report are described as:  “Low-code/no-code platforms speed development, but few citizen developers can use them effectively and safely. This research shows software engineering leaders how to support and govern low-code/no-code use at scale so that citizen developers can build high-quality applications quickly and securely.” Read more in our press release here: https://lnkd.in/dq6d9d-C Gartner clients can access the full report here: https://lnkd.in/d44sfZQn Gartner Disclaimer Gartner is a registered trademark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. All rights reserved. Gartner does not endorse any vendor, product, or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

We are thrilled to welcome Noam Cohen to the Nokod team as our new Product Manager. Noam, we're excited to have you on board and can't wait to see your impact in shaping our product vision. Here's to new beginnings and the exciting journey ahead! #WelcomeToTheTeam

Our CEO, Yair Finzi, recently sat down with Pulse 2.0 to discuss the challenges of no-code security. In this interview, Yair shares his journey in the cybersecurity industry, the inspiration behind Nokod Security, and Nokod's critical role in securing no-code, RPA, and AI application and automation development. But it is not all about Nokod: "There’s still a disconnect in many organizations between what employees are actually doing and what security teams think they’re doing. (...) I encourage every security officer to take a closer look at the digital activities happening on the ground. (...) Understanding and addressing these blind spots is crucial for staying ahead of emerging security risks." Read the full interview here: https://lnkd.in/dybUaG4z Thanks to Amit Chowdhry! #NoCodeSecurity #Cybersecurity #ApplicationSecurity #RPA #AI #AppSec #Leadership #Innovation #nocode #lowcode

No-code is booming, but is your #SDLC ready? Yair Finzi's latest article on Forbes dives deep into securing the Software Development Lifecycle for applications and automations developed in no-code environments. Yair gives tips on how to build security into your no-code SDLC, not bolt it on as an afterthought. A must-read for AppSec leaders and security-conscious organizations:  https://lnkd.in/dwmYjVCT #AppSec #NoCode #Security #SSDLC #ForbesTechCouncil #ApplicationSecurity #Cybersecurity #LowCode #Nocode #LCNC #Citizendevelopment #RPA

Think low-code/no-code apps are just an internal risk? Think again. Citizen-developed apps handle sensitive enterprise data—but how much of that data is unknowingly exposed to external attackers? Join us on Tuesday, February 11, 2025, at 1 pm EDT (10 am PT | 6 pm BST) for a webinar that pulls back the curtain on: >>> The real attack surface of low-code/no-code apps >>> Hidden risks of LCNC development to enterprise data and systems >>> Proven strategies to secure citizen development at scale Join our CTO, Amichai Shulman as he leads an eye-opening session (including a live Q&A) that will give you a chance to rethink security in the age of LCNC adoption. Don’t let hidden risks catch you off guard. Secure your spot to learn how to protect your enterprise: https://lnkd.in/dn42reZm #Cybersecurity #LCNC #LowCode #NoCode #EnterpriseSecurity #AppSec #CitizenDevelopers #Webinar

We’re thrilled to have Assaf Cohen join our team as a Solution Engineer, helping us drive our mission to revolutionize application security for low-code/no-code platforms. Assaf will play a pivotal role in bringing our innovative solutions to life for our customers. With deep expertise in supporting AppSec teams, Assaf brings a wealth of knowledge that will empower organizations to build LCNC apps securely, innovate faster, and stay one step ahead of evolving threats. We can’t wait to see the impact you’ll make, Assaf! Please join us in giving Assaf a warm Nokod welcome! #CompanyCulture #NewHires #SolutionEngineer #AppSec #NewBeginnings #Teamwork

Attention cybersecurity professionals and business leaders. Are your citizen developers inadvertently creating a playground for cybercriminals? Low-code/no-code (#LCNC) apps have revolutionized internal processes, but they're now emerging as a critical external threat vector. It's time to shatter the myth that these apps and automation pose only internal risks. Join us for an eye-opening webinar, "Code Less, Risk More? The LCNC Security Paradox," led by renowned security expert and Nokod CTO Amichai Shulman. >> Discover how seemingly innocent applications may expose your enterprise's most sensitive data to attackers. >> Learn strategies to fortify your defenses against this new threat landscape. >>> Date: Tuesday, February 11, 2025 >>> Time: 1 PM EST | 10 AM PT >>> Duration: 45 minutes (including Q&A) REGISTER HERE: https://lnkd.in/dn42reZm #Cybersecurity #EnterpriseRisk #ApplicationSecurity #Appsec #LowCode #NoCode #DigitalTransformation #CitizenDevelopment #Webinar #RPA

Is your CTEM program overlooking LCNC security risks? The likely answer is yes. CTEM too often misses the severe vulnerabilities introduced by low-code/no-code (LCNC) apps and RPA. In his latest blog, our CEO, Yair Finzi, explains why LCNC security must be part of your Continuous Threat Exposure Management (CTEM) strategy and shares actionable steps to safeguard your enterprise. If you want to strengthen your security posture with CTEM, this is a must-read.  Dive into Yair’s insights and practical guidance here: https://lnkd.in/d9ZYraFz #CTEM #CyberSecurity #ApplicationSecurity #Appsec #RPA  #LCNC #LowCode #NoCode #Vulnerabilities #Threatmanagement #DigitalTransformation #CitizenDevelopment