Application Security Trends

Traditional security is well past its expiration date. Learn about the latest trends in AppSec in these posts, from DevOps to SAST and everything in between.

[video] Carjackers in action

Aug 05, 2013 By carolineb | Who would have imagined that vehicles are starting to require the same protection as laptop computers?
Charlie Miller and Chris Valasek, sponsored by the Pentagon’s research facility demonstrate in a short video how easily a car can be hacked in real time and how they gain full control over the vehicle’s computer.   View full article here

Read More »
ecommerce

Cybercrimes % > eCommerce %

Jul 29, 2013 By carolineb | eCommerce grew by 16% while Cybercrime grew by 23%.
This finding, by Martec shows the growth of cyber attacks in comparison to eCommerce in 2012.  Despite this growth, says the report, which questioned 100 leading UK retailers, retailers aren’t taking fraud as seriously as they should, and as a result smaller retailers have paid seven times more than they should in chargeback fees.

Read More »

The World’s Biggest Data Breaches in One Stunning Visualization

Jul 24, 2013 By carolineb |  
Major data breaches, leaks and hacks often consume the news, but the sheer numbers involved — 6 million records or 300,000 leaked passwords — may be hard to conceptualize, especially in comparison to other attacks.

Read More »

Webinar recording! Using Code Flow Visualization for Optimal Vulnerability Remediation

Jul 23, 2013 By carolineb | Developers are often overwhelmed by the number of vulnerability findings returned by source code analysis tools. But a proper visualization of the code flow can pinpoint optimal code fixes. How?
This webinar shows how visual flow graphs can be automatically generated, even without the knowledge of the code’s logic. Using OWASP’s Web Goat as a test-bed, we demonstrate how visualization can help developers and security auditors to:

Read More »
C2C_logo_def_web-300x100

Please join us in announcing a new partner- Cert2Connect!

Jul 18, 2013 By carolineb | Checkmarx is thrilled to introduce Cert2Connect as our new partner! 
 Cert2Connect is a company located in the Netherlands that provides solutions and professional services in the field of information security and risk management, Cyber Security, Cloud and Mobile Computing platforms. Cert2Connect plays a crucial role in advising organizations for Cloud and Cyber security cost-effectively.

Read More »

The Security State of WordPress’ Top 50 Plugins [Infographic]

Jul 15, 2013 By carolineb |
Read full report – -> Click HERE

Read More »
vsub

Checkmarx introducing a new partnership with Virtual Subsidiary

Jul 09, 2013 By carolineb | Checkmarx is glad to announce the new partnership with Virtual Subsidiary, a global software service provider located in the UK.
Virtual Subsidiary is a global software service company that provides software to hundreds of its clients in different fields such as marketing, international expansion, accounting, recruitment and channel sales.

Read More »

[Webinar] Optimize Vulnerability Remediation

Jul 08, 2013 By carolineb |    
Developers are often overwhelmed by the number of vulnerability findings returned by source code analysis tools. But a proper visualization of the code flow can pinpoint optimal code fixes. How?
This webinar shows how visual flow graphs can be automatically generated, even without the knowledge of the code’s logic. Using OWASP’s Web Goat as a test-bed, we demonstrate how visualization can help developers and security auditors to: Recognize the correlation between different findings of the same vulnerability
Understand the ripple effect of each specific flaw over the complete code
Locate vulnerability junctions and best-fix locations
Prioritize and effectively mitigate identified vulnerabilities The webinar will take place on Wednesday, July 10, 2013. Presented by Mr. Maty Siman, Founder and CTO of Checkmarx. We will have 3 sessions for the various time zones. 3:00 pm Sydney, Australia (GMT+10:00) – Register here
9:00 am London, UK (GMT+01:00) – Register here
12:00 pm New York, USA (GMT-04:00) – Register here  

Read More »
WP_TAVERN

WordPress Plugin Security on WordPress Tavern

Jul 04, 2013 By carolineb | The Checkmarx Research “The Security State of WordPress’ Top 50 Plugins” has been creating a media buzz, reaching different magazines such as Security Week, CRN, Tech Republic and more respectable sources. WordPress Tavern joins the list and discusses the research.

Read More »

Happy 4th of July! Turn on your speakers…

Jul 03, 2013 By carolineb | http://www.youtube.com/watch?v=7ofmV99XH5E#t=20s

Read More »

Stay Connected

Sign up today & never miss an update from the Checkmarx blog

Get a Checkmarx Free Demo Now

Interested in trying CxSAST on your own code? You can now use Checkmarx's solution to scan uncompiled / unbuilt source code in 18 coding and scripting languages and identify the vulnerable lines of code. CxSAST will even find the best-fix locations for you and suggest the best remediation techniques. Sign up for your FREE trial now.

Checkmarx is now offering you the opportunity to see how CxSAST identifies application-layer vulnerabilities in real-time. Our in-house security experts will run the scan and demonstrate how the solution's queries can be tweaked as per your specific needs and requirements. Fill in your details and we'll schedule a FREE live demo with you.

SUBSCRIBE