Blog
Checkmarx Blog
Expert insights, thoughtful essays, opinionated views, and more. Find them all here.
Evolution of a Software Supply Chain Attacker
•
January 31, 2023
Exploiting GraphQL Query Depth
•
January 3, 2023
Alias and Directive Overloading in GraphQL
•
December 28, 2022
Didn’t Notice Your Rate Limiting: GraphQL Batching Attack
•
December 21, 2022
How 140k NuGet, NPM, and PyPi Packages Were Used to Spread Phishing Links
•
December 14, 2022
KICS News: One Million Downloads and a New Auto-remediation Capability
•
December 14, 2022
Move Over Verbose Error Messages, GraphQL APIs are Here
•
December 7, 2022
How to Use Infrastructure as Code Securely and Avoid Cloud Misconfigurations
•
December 5, 2022
KPIs in QA and AppSec – You Call it Bug, We Call it Vulnerability
•
November 30, 2022
What’s Old Becomes New Again: CSRF Attacks on GraphQL APIs
•
November 28, 2022
Presets, Queries, & Onboarding: The Checkmarx One Difference
•
November 22, 2022
Checkmarx and Partners Join Forces to Tackle Software Supply Chain Risk
•
November 15, 2022
Why Should You Invest in Application Security?
•
November 7, 2022
Checkmarx SCA Now Supports the Ruby Language
•
November 3, 2022
Analysis of OpenSSL CVE-2022-3786 and CVE-2022-3602
•
November 1, 2022
Scan Smarter (and more accurate) with Checkmarx
Findout what the industry’s most accurate flexible and frictionless solution can do for you.