Checkmarx consistently challenges the boundaries of application security, to make application security easy and natural for the software developer community; and at the same time give CISOs the ability and control they need to fulfill their role in the best

A new advisory by SentinelLabs and Checkmarx has linked a threat actor called ‘JuiceLedger’ to the first known phishing campaign targeting Python Package Index (PyPI) users.

The official software repository for the Python language, Python Package Index (PyPI), has been targeted in a complex supply chain attack that appears to have successfully poisoned at least two legitimate projects with credential-stealing malware, researchers said on Thursday (9/2/2022).

Security firm Checkmarx found that one in three software packages from PyPI contains a flaw that can lead to malicious code being automatically installed.

A ‘HIGH severity’ app blunder put Ring doorbell video recordings at risk, it’s been revealed. Tech giant Amazon quietly updated the Ring app for Android in May to fix the security slip-up.

Earlier this year, security researchers uncovered a way to access a customer’s Ring security camera footage by hacking the Android app for the service. On Thursday, cybersecurity vendor Checkmarx disclosed(Opens in a new window) the flaw after the Amazon-owned Ring had a chance to

Amazon has patched a vulnerability in the Ring Android application which, left unchecked, had the potential to expose the personal data of Ring product owners, including their video recordings and location data, according to researchers at application security specialist Checkmarx.

Amazon quietly but quickly patched a vulnerability in its Ring app that could have exposed users’ camera recordings and other data, according to security firm Checkmarx.