Application Security Testing - Tagged - Security Boulevard
What is the ROI of Checkmarx Application Security Testing (AST)?

What is the ROI of Checkmarx Application Security Testing (AST)?

When it comes to IT security initiatives, many enterprises struggle to quantify business value and return on investment (ROI), often viewing their security spend solely as an insurance expense – a must-have ...
Preventing Developer Burnout in the Age of Rapid Software Delivery

Preventing Developer Burnout in the Age of Rapid Software Delivery

“Burnout” happens across all jobs and industries, especially tech. However, developers have always been particularly at-risk of falling victim to burning out, and the COVID-19 pandemic, and the resulting digital shift driven ...
Application Security: Turbulence Often Leads to Transformation

Application Security: Turbulence Often Leads to Transformation

Most security and risk (S&R) professionals in our industry have heard of Top 10 Lists. For example, OWASP and their community of contributors have expanded their Top 10 security projects to include ...
On the Road to DevSecOps: Security and Privacy Controls per NIST SP 800-53

On the Road to DevSecOps: Security and Privacy Controls per NIST SP 800-53

This past March, the National Institute of Standards and Technology (NIST) released the NIST Special Publication 800-53, Revision 5, which was their final public draft revision. According to the abstract, “This publication ...
Integrating Checkmarx Security Results within GitLab

Integrating Checkmarx Security Results within GitLab

The automation and integration of Application Security Testing (AST) is essential for building out a true DevSecOps program. Automation is the easy part. Invoke a security scanners’ REST API or a command ...
Meetup.com Vulnerabilities Cause Privilege Escalation and Payment Redirection

Privilege Escalation on Meetup.com Enabled Redirection of Payments

The Checkmarx Security Research Team recently audited the security of several high-profile websites, including Meetup.com. For those who are not familiar with Meetup.com, it allows users to create an event where people ...
On the Road to DevSecOps: Securing the Software Driving Mobility

On the Road to DevSecOps: Securing the Software Driving Mobility

The automotive industry is experiencing radical change—and software is the catalyst. Progressively more software, increasingly intelligent components, and new methods of interaction are finding their way into automobiles of all sizes and ...
AppSec, the developer way: Transforming security from a “dirty word” to a common practice

AppSec, the developer way: Transforming security from a “dirty word” to a common practice

In a world where one data breach is all it takes to destroy a business, only the prepared and vigilant ones that embrace security in their operations can prevent disaster. Yet, if ...
Solidity Top 10 Common Issues

Solidity Top 10 Common Issues

In 2018, we performed our initial research about the current state of security in the context of Smart Contracts, focusing on those written in Solidity “a contract-oriented, high-level language for implementing smart ...
Checkmarx Named a Leader in the 2020 Gartner Magic Quadrant for Application Security Testing

Checkmarx Named a Leader in the 2020 Gartner Magic Quadrant for Application Security Testing

Today marks the much-anticipated release of the 2020 Gartner Magic Quadrant for Application Security Testing (AST)*, and we’re thrilled to announce that Checkmarx has been named a Leader for the third consecutive ...