Application Security Vulnerabilities
The Road to DevSecOps: Addressing the Challenges of Open Source Software
Stephen Gates | | Application Security Vulnerabilities, Blog, DEVOPS, DevSecOps, SCA, Software Composition Analysis, Software Developers
Although software is significantly changing our work, home, and personal lives, many don’t realize that today’s software is made up of numerous ingredients. Some of the software we use daily contains pieces ...
AppSec, the developer way: Transforming security from a “dirty word” to a common practice
Dana Raveh | | Application Security Testing, Application Security Vulnerabilities, Blog, DEVOPS, DevOps workflows, DevSecOps, Software Developers
In a world where one data breach is all it takes to destroy a business, only the prepared and vigilant ones that embrace security in their operations can prevent disaster. Yet, if ...
Solidity Top 10 Common Issues
Erez Yalon | | Application Security Awareness, Application Security Testing, Application Security Vulnerabilities, Blog, Software Developers, Top 10 Issues
In 2018, we performed our initial research about the current state of security in the context of Smart Contracts, focusing on those written in Solidity “a contract-oriented, high-level language for implementing smart ...
Checkmarx Named a Leader in the 2020 Gartner Magic Quadrant for Application Security Testing
Christy Lynch | | Application Security Testing, Application Security Vulnerabilities, AST, Blog, Gartner Magic Quadrant, Market Leader
Today marks the much-anticipated release of the 2020 Gartner Magic Quadrant for Application Security Testing (AST)*, and we’re thrilled to announce that Checkmarx has been named a Leader for the third consecutive ...
Kudos to the Unsung Heroes in our Current Times: Software Developers
Stephen Gates | | Application Security Awareness, Application Security Testing, Application Security Vulnerabilities, Blog, SAST, SCA, Software Developers
As the world duly salutes our front-line medical professionals, first responders, military and police, factory workers, delivery drivers, construction teams, repair technicians, store clerks, farmers, truckers, pharmacists, cooks, and millions of other ...
Why “Shift Left” in DevOps is really “Shift Center”
Stephen Gates | | Application Security Awareness, Application Security Testing, Application Security Vulnerabilities, Blog, Security Vulnerabilities, Shift Center
In an industry full of acronyms and buzz words, the term “shift left” surfaced as a result of organizations waiting to perform software security testing until the end of the development process ...
Recommendations for Friends and Family on Staying Cyber Safe While Working Remotely
Matthew Rose | | Application Security Vulnerabilities, Blog, Cyber Safety, Cyber Security, remote exploit, Security Vulnerabilities
The world as a whole is coming together to quell the spread of COVID-19 by limiting social interaction, and in some instances, initiating full quarantines. Schools are closed for weeks, if not ...
A Message From Our CEO: Checkmarx’s Acquisition & The Road Ahead
Emmanuel Benzaquen | | Application Security Vulnerabilities, Blog, Digital Transformation, security risks, Software Security, Software-borne Risks
We are all living in unconventional and unprecedented times. The entire world is adjusting to the rapidly-changing dynamics brought on by Coronavirus (COVID-19). Here at Checkmarx, we are taking deliberate and preventative ...
Discussing AppSec Policies within DevSecOps
Stephen Gates | | Application Security Vulnerabilities, AppSec Program, Automating Security Testing, Blog, developers, security policies, Technical Blog
There’s no denying that today’s digital ecosystem must be protected. But preventing increasingly frequent and severe attacks, which often target customer data and confidential information, requires more out of your organization’s security ...
RSA Conference 2020 Wrap-Up: From Software Security to SoulCycle
Stephen Gates | | Application Security Vulnerabilities, Automating Security Testing, Blog, CxFlow, developers, RSA Conference, Technical Blog
Another year, another RSA Conference USA in the books! From talking software security and DevOps with thousands of attendees, to launching new research and solutions, and hosting a SoulCycle fitness class for ...