Application Security Trends

Traditional security is well past its expiration date. Learn about the latest trends in AppSec in these posts, from DevOps to SAST and everything in between.

Checkmarx introducing a new partnership with Virtual Subsidiary

Jul 09, 2013 By carolineb | Checkmarx is glad to announce the new partnership with Virtual Subsidiary, a global software service provider located in the UK.
Virtual Subsidiary is a global software service company that provides software to hundreds of its clients in different fields such as marketing, international expansion, accounting, recruitment and channel sales.

Read More »

[Webinar] Optimize Vulnerability Remediation

Jul 08, 2013 By carolineb |    
Developers are often overwhelmed by the number of vulnerability findings returned by source code analysis tools. But a proper visualization of the code flow can pinpoint optimal code fixes. How?
This webinar shows how visual flow graphs can be automatically generated, even without the knowledge of the code’s logic. Using OWASP’s Web Goat as a test-bed, we demonstrate how visualization can help developers and security auditors to: Recognize the correlation between different findings of the same vulnerability
Understand the ripple effect of each specific flaw over the complete code
Locate vulnerability junctions and best-fix locations
Prioritize and effectively mitigate identified vulnerabilities The webinar will take place on Wednesday, July 10, 2013. Presented by Mr. Maty Siman, Founder and CTO of Checkmarx. We will have 3 sessions for the various time zones. 3:00 pm Sydney, Australia (GMT+10:00) – Register here
9:00 am London, UK (GMT+01:00) – Register here
12:00 pm New York, USA (GMT-04:00) – Register here  

Read More »

WordPress Plugin Security on WordPress Tavern

Jul 04, 2013 By carolineb | The Checkmarx Research “The Security State of WordPress’ Top 50 Plugins” has been creating a media buzz, reaching different magazines such as Security Week, CRN, Tech Republic and more respectable sources. WordPress Tavern joins the list and discusses the research.

Read More »

Happy 4th of July! Turn on your speakers…

Jul 03, 2013 By carolineb |

Read More »

Security of WordPress’ Top Plugins

Jun 18, 2013 By matys | Today we published our report “The Security State of WordPress’ Top 50 Plugins” (no reg required).
This report presents Checkmarx’s research which analyzed the security of the top 50 most popular plugins (in general), as well as the top 10 most popular ecommerce plugins.

Read More »

[2013] Summarizing the Gartner Security and Risk Management Summit

Jun 17, 2013 By carolineb | This week I had the pleasure to join the Gartner Security and Risk Management Summit in Washington DC. It was an event filled with insight and direction covering a large range of cyber security issues which challenge industry leaders and executives alike.

Read More »

Summarizing a great Checkmarx Customer Event in Israel

Jun 17, 2013 By carolineb |
We are glad to summarize a successful Checkmarx Customer event! The event took place on June 16th, 2013 at the Crowne Plaza Beach hotel in Tel Aviv, Israel.
The event was characterized by a vibrant and dynamic atmosphere, with interesting knowledge exchange and new bonds and networks. It was all about Application Security, while our guests discussed security challenges in their organizations and how they deal with them on an ongoing base.
We hosted Security Decision makers from Playtech, LivePerson, Conduit, Mediamind, TGS and our Checkmarx Founder and CTO, Maty Siman spoke about Application Security trends and roadmap.

Read More »

What Apple and Google are not Telling you About Mobile Device Security (infographic)

Jun 11, 2013 By carolineb |   Source:

Read More »

Have you ever been scared of… charging your iPhone?! think twice.

Jun 06, 2013 By carolineb | A way to hack into an iPhone only through charging the phone! Georgia Institute of Technology researchers figured out how to attack iPhone with malicious software through a charging cord.
The proof of concept will be presented by the institute at Black Hat USA 2013- giving you another good reason to come to the conference (visiting the Checkmarx booth).

Read More »

The AppSec How-To: Choosing a SAST Tool

Jun 04, 2013 By carolineb | Given the wide range of source code analysis tools, security professionals, auditors and developers alike are faced with a question:
How to assess a Static Analysis Software Testing (SAST) tool for deployment? Choosing the right tool requires different considerations during each stage of the SAST tool evaluation process.

Read More »

Stay Connected

Sign up today & never miss an update from the Checkmarx blog

Get a Checkmarx Free Demo Now

Interested in trying CxSAST on your own code? You can now use Checkmarx's solution to scan uncompiled / unbuilt source code in 18 coding and scripting languages and identify the vulnerable lines of code. CxSAST will even find the best-fix locations for you and suggest the best remediation techniques. Sign up for your FREE trial now.

Checkmarx is now offering you the opportunity to see how CxSAST identifies application-layer vulnerabilities in real-time. Our in-house security experts will run the scan and demonstrate how the solution's queries can be tweaked as per your specific needs and requirements. Fill in your details and we'll schedule a FREE live demo with you.