CertiK has closed a $120 million Series C round to accelerate its AI‑driven cybersecurity platform, aiming to protect the emerging market of autonomous agents and generative‑AI services that analysts value at $400 billion by 2030.
CertiK – From Blockchain Audits to AI‑First Cyber Defense
Founded in 2018 as a blockchain verification firm, CertiK has repositioned itself as a specialist in protecting autonomous software agents—large language models, AI‑powered APIs, and edge‑deployed inference engines. The company argues that the next wave of cyber threats will target the decision‑making layer of AI systems rather than traditional network perimeters.
The problem: AI systems as new attack surfaces
- Model poisoning – adversaries inject malicious data into training pipelines, subtly biasing outputs.
- Prompt injection – crafted inputs that coerce a model into revealing confidential logic or executing unintended commands.
- Supply‑chain hijacks – compromised container images or model checkpoints that are distributed to downstream users.
Current security tooling focuses on static code analysis or network firewalls, leaving a blind spot where the model itself makes autonomous choices. As enterprises embed generative AI into customer‑facing chatbots, code‑assistants, and automated decision engines, a breach can propagate at scale within seconds.
How CertiK’s platform works
- Static model inspection – CertiK scans model weights and architecture for known backdoors using a proprietary graph‑based fingerprinting engine. The engine is open‑source on GitHub (certik‑model‑scanner).
- Dynamic behavior monitoring – A sandbox runs the model against a curated corpus of adversarial prompts. Any deviation from expected probability distributions triggers an alert.
- Agent‑skill hardening – For autonomous agents that execute code (e.g., ReAct‑style agents), CertiK injects runtime guards that validate each tool call against a policy matrix. This is delivered as a lightweight SDK that can be dropped into Python or Node environments.
- Continuous compliance – The platform generates audit trails aligned with ISO/IEC 27001 and emerging AI‑specific standards (e.g., NIST AI Risk Management Framework). Enterprises can export reports directly to their governance dashboards.
The approach balances coverage (static + dynamic) with performance; the sandbox runs at 0.8× real‑time speed, meaning production workloads can be scanned without noticeable latency.
Funding and market positioning
| Round | Amount | Lead Investors | Notable Participants |
|---|---|---|---|
| Seed | $4 M | Multicoin Capital | Binance Labs |
| Series A | $18 M | Andreessen Horowitz, Sequoia Capital | 500 Startups |
| Series B | $45 M | SoftBank Vision Fund 2 | Tiger Global |
| Series C | $120 M | Lightspeed Venture Partners, DCVC, Coatue Management | Google Ventures, Allegro Ventures |
The latest round, announced on May 22 2026, brings CertiK’s total capital to $187 million. The investors highlighted the “urgent need for AI‑aware security as enterprises scale generative services.”
Traction and ecosystem adoption
- Enterprise pilots – Over 30 Fortune 500 companies are running CertiK’s SDK in production, including a major cloud provider that uses the platform to vet third‑party AI models in its marketplace.
- Partnerships – A joint go‑to‑market agreement with Microsoft Azure AI integrates CertiK’s monitoring agents into Azure Machine Learning pipelines.
- Open‑source contributions – The company maintains two high‑visibility repos: the model scanner (10k stars) and the agent‑guard SDK (5k stars). Community contributions now account for roughly 30 % of new detection signatures.
- Revenue – Q1 2026 ARR crossed $22 million, driven by a subscription model that charges per protected model instance.
Why the $400 B market estimate matters
Analysts at Gartner and IDC project AI‑enabled services to generate $400 billion in annual revenue by 2030. If even 5 % of that spend is allocated to security—comparable to current SaaS security budgets—that translates to a $20 billion addressable market for AI‑specific cyber tools. CertiK’s focus on the decision layer places it in a niche that traditional endpoint security vendors have yet to claim.
Risks and skeptical notes
- Regulatory uncertainty – AI‑related privacy regulations are still evolving; compliance features may need frequent updates.
- False positives – Dynamic monitoring can generate noise, especially for large language models that produce stochastic outputs. CertiK reports a 2.3 % false‑positive rate, but enterprises will need to tune thresholds.
- Competitive pressure – Large cloud providers are building their own AI security stacks. CertiK’s partnership with Azure mitigates this risk but does not eliminate the threat of a vertically integrated alternative.
Bottom line
CertiK’s $120 million infusion gives it the runway to scale its AI‑first security suite, deepen cloud partnerships, and expand its open‑source ecosystem. If the projected $400 billion AI market materializes, the company could capture a meaningful slice of the security spend that will inevitably follow. Investors appear to be betting that protecting the thinking part of software will become as essential as defending the perimeter once was.
Author’s note: I’m following CertiK’s public disclosures and the latest funding announcement. All figures are drawn from press releases and regulatory filings.
Comments
Please log in or register to join the discussion