Koi, a cybersecurity company specialising in endpoint security for the modern software stack, has raised $48m across its seed and Series A rounds.
The funding included a $38m Series A, led by Battery Ventures, Team8, Picture Capital, and NFX, with participation from Cerca Partners.
Koi is developing a new approach to endpoint protection that tackles the growing risk of unmanaged and self-installed software. Its technology applies a centralised security layer that provides visibility, risk analysis, and policy enforcement across environments where traditional endpoint detection and response (EDR) or mobile device management (MDM) tools often fail.
The company said the funding will accelerate its mission to secure what it calls the “software perimeter”, ensuring enterprises gain control over code packages, containers, extensions, AI models and other non-binary software that now make up most enterprise endpoints. The investment will support scaling operations, expanding product capabilities, and growing its customer base.
Koi was founded in 2024 by Amit Assaraf, previously founder of Landa and an IDF Unit 8200 alumnus, alongside co-founders Idan Dardikman and Itay Kruk, who bring experience from Sygnia and Zscaler. The founding team discovered the risks when they created a fake VSCode theme extension, “Darcula Official”, which secretly exfiltrated developers’ source code and machine data. Within a week, the extension had compromised more than 300 organisations worldwide, including large enterprises, a major EDR developer, and a national court network. The project gave rise to “ExtensionTotal”, which evolved into Koi’s wider platform.
Koi claims to be defining a new cybersecurity category as the first endpoint security platform focused on the software perimeter. Its platform, supported by pending patents, includes a Supply Chain Gateway that functions as a checkpoint for incoming software. Features include unified inventory, risk analysis, automated policy enforcement, and preventative remediation. Its AI-first risk engine, Wings, uses intelligence, classification, and sandboxing to identify threats beyond the reach of traditional tools.
“Enterprises have no real control over the software flowing into their environments. Packages, AI models, MCPs, and Extensions are now critical parts of the stack, yet they remain invisible to traditional tools,” Koi co-founder and CEO Amit Assaraf said. “After launching ‘ExtensionTotal’, Fortune 50 companies have reached out, actively looking to buy our solution, long before we came up with one, out of which Koi was born. Koi was built to give security teams the visibility, intelligence, and control they need to govern modern software without slowing innovation.”
“Every major shift in enterprise infrastructure creates an opening for the next cybersecurity leader. Koi is building a new layer of endpoint protection focused on the software perimeter – an area traditional tools overlook,” Team8 partner Ori Barzilay said. “This is a strategic investment in a strong founding team, including two alumni from our earliest portfolio company, ‘Sygnia’, and in what we believe will become the new standard for securing modern endpoints.”
Battery Ventures partner Barak Schoster added, “Koi is tackling one of the biggest blind spots in enterprise security: unmanaged software and AI-driven tools that traditional platforms miss. They’re redefining workstation security, and we’re excited to support this visionary team.”
Koi has already scaled its platform to protect more than 500,000 endpoints globally. Its solutions are currently being used by Fortune 50 companies, major financial institutions, and leading technology firms.
Copyright © 2025 FinTech Global
