News | Checkmarx Application Security


Your one stop for the latest application security articles, stories, and trends. Stay on top of the news and know what’s happening, both at Checkmarx and in the industry at large.


Jenkins World 2017 Highlights the Growing Ubiquity of Continuous Integration
August 31, 2017

Matt Rose, global director of application security strategy at Checkmarx, said that Jenkins is the bellwether for the CI/CD world. “Most of our customers are using Jenkins in some way.... Read More

Gigster receives $20M in funding, Checkmarx’s DevSecOps platform, and Okta’s two-factor authentication — SD Times news digest: August 30, 2017
August 30, 2017

At Jenkins World 2017, Checkmarx announced its new Interactive Application Security Testing solution, CxIAST, which gives teams continuous application security testing in real time, with zero scan time, accuracy and... Read More

Mobile data theft a risk from shared app libraries
August 16, 2017

Matthew Rose, ‎global director of application security strategy at Checkmarx, an application security software vendor headquartered in Israel, said there were a number of ways a shared library might be... Read More

Alert: Avoid These Security Cameras Like the Plague
August 3, 2017

The Loftek CXS-2200 and VStarcam C7837WIP, which look nearly identical, contained more than a dozen vulnerabilities between them, many of which would let an attacker take over the camera from the internet. "The vulnerabilities just kept on coming," the report notes. "A malicious user can exploit your device to track... Read More

Two IP-enabled cameras full of flaws
August 3, 2017

Checkmarx researchers said a pair of IP-enabled security cameras have nearly two dozen flaws that would make them vulnerable to attack. Loftek DSS-2200 and VStarcam C7837WIP, manufactured in China and aimed at the consumer market, also can be pressed into service as botnets to execute distributed denial of service (DDoS)... Read More

Two Popular IP Cameras Riddled With Vulnerabilities
August 3, 2017

Two consumer-grade IP-enabled security cameras manufactured by Loftek and VStartcam are riddled with nearly two dozen vulnerabilities that expose them to remote attacks. According to researchers, more than 1.3 million of the cameras are in use today, with 200,000 models located in the United States. Based on a report released... Read More

Remotely Exploitable Flaws Found in Popular IP Cameras
August 2, 2017

Checkmarx researchers have analyzed a couple of IP cameras from Loftek and VStarcam and discovered several new vulnerabilities and variations of previously found flaws. In Loftek’s CXS 2200 camera, experts discovered cross-site request forgery (CSRF) flaws that can be exploited to add new admin users, server-side request forgery (SSRF) flaws... Read More

Checkmarx: Proactive Threat Protection
July 31, 2017

Today’s cyber landscape leaves no room for mistakes when it comes to the security of software and applications. Enterprises are well aware of the harsh consequences of a cyberattack. Moreover, with end users expecting software vendors to deliver cutting edge software at the speed of light, enterprises find themselves constantly... Read More

Playing Games To Learn Code, Checkmarx Acquires Codebashing
July 26, 2017

Application security testing company Checkmarx has now acquired the somewhat aggressively named Codebashing, a company that specializes in game-like application security education and training for software application developers.   Read the full article on Forbes Read More

Checkmarx acquired Codebashing
July 26, 2017

Checkmarx has acquired Codebashing, an application security education company that delivers Game-like AppSec Training for Developers. Traditional secure coding education is ineffective and cannot scale to deliver continuous and across the board secure coding knowledge. Long training courses disrupt the developer’s daily routine and don't address the specific challenge as... Read More

Checkmarx Acquires Codebashing to Redefine Secure Coding Education
July 25, 2017

Through Acquisition, Checkmarx will Provide Interactive Tools to Further Developer Application Security Knowledge and Deliver Secure Applications Even Faster.  Checkmarx, a global leader in application security testing solutions, today announced its acquisition of Codebashing, a leading application security education company that delivers Game-like AppSec Training for Developers. Read the full article... Read More

Checkmarx Acquires Codebashing
July 25, 2017

Checkmarx announced the acquisition of Codebashing, an application security education company that delivers Game-like AppSec Training for Developers. By shifting security left and empowering developers to deliver secure applications, this acquisition allows Checkmarx to introduce continuous, in-context, bite sized secure coding training. Effective training allows enterprises to grow their in-house... Read More

Israel’s Checkmarx buys security education firm Codebashing
July 25, 2017

Israel's Checkmarx, which provides application security testing technology, said on Monday it acquired UK-based Codebashing, an application security education company.   Click here to continue reading Read More

SD Times news digest: July 24, 2017
July 24, 2017

Checkmarx acquires security education provider Application security testing provider Checkmarx announced the acquisition of Codebashing, a app security education company that delivers game like app security training for developers. Together, the companies will provide tools to further developer application security knowledge and deliver secure apps. According to Checkmarx, traditional ways... Read More

Checkmarx snaps up Codebashing to boost secure coding development
July 24, 2017

Checkmarx has acquired Codebashing, an application security training company. The application security testing firm said on Monday that the deal is expected to improve Checkmarx's training and the education of development... Read More

SQL injection vulnerability found in popular WordPress plugin, again
July 3, 2017

Nor is it the first time that a vulnerable plugin has provided a route into WordPress. In 2013, Checkmarx released a report showing that 20 percent of WordPress plugins and seven of... Read More

DevOps & Security: Top 4 Myths Debunked
June 20, 2017

In DevOps, when you’re deploying hundreds, possibly thousands, of features and bug fixes a week, security cannot afford to be an afterthought. The beautiful thing about DevOps is that it is a process that continues to get more streamlined, faster and efficient – and deployments will be that much better... Read More

The importance of application security in an increasingly connected world
May 5, 2017

We're living in a world where technology is increasingly part of our everyday lives. Unfortunately, despite the advantages that all of this new technology offers, it also comes with risk.... Read More

April 2017: The month in hacks and breaches
May 2, 2017

More than 500,000 Australian websites went dark on April 13 thanks to a DDoS attack, and the month ended with a hacker stealing an entire unreleased season of Netflix’s Orange Is the New Black show.  Scroll down to see a timeline of all of last month’s hacks and breaches, compiled... Read More

Microsoft Build Partners
May 1, 2017

Checkmarx is an application security software company, whose mission is to provide enterprise organizations with application security testing products and services that empower developers to deliver secure applications.  The new Checkmarx (CxSAST) Microsoft Visual Studio Team Services Plugin allows organizations with agile development practices to embed security into their software... Read More

Skip to content