News | Checkmarx Application Security


Your one stop for the latest application security articles, stories, and trends. Stay on top of the news and know what’s happening, both at Checkmarx and in the industry at large.


​Checkmarx adopted by allPay to reduce software vulnerabilities and increase security
November 4, 2016

Checkmarx, a global leader in software application security, and allPay, a financial technology enterprise with a third-party payment platform, has announced allPay’s full implementation of Checkmarx solutions to increase its security posture.... Read More

The State of U.S. Federal Cybersecurity in 2016
November 3, 2016

One malicious email can, and has, jeopardized the sensitive data of countless U.S. civilians. How? Federal agencies collect and store some of the most sensitive and top secret data. This data ranges from top secret defense IP’s in the Department of Defense (DOD), current and former federal employee personal records... Read More

Why don’t developers have a ‘spellchecker’ for security’?
October 31, 2016

Built-in security education Checkmarx is one of several vendors looking to address that very issue. "We take source code, and do the analysis on 10 or 100 lines of code,... Read More

Top Culture Changes to Make DevOps a Reality – Part 2
October 26, 2016

The most important culture change required to embrace DevOps in an organization is to forget about the traditional silo approach. Departments are no more responsible for their own delivery but... Read More

13 IT leaders confess their scary stories and deep, dark fears
October 25, 2016

Doomed to repeat mistakes “In my many years of experience helping some of the largest organizations in the world roll out effective application security programs utilizing SAST the scariest trend... Read More

The state of testing within application security
October 21, 2016

Testing is an integral part of application security (AppSec) but according to the recent SANS State of Application Security report recently commissioned by Checkmarx, how organisations test is very diverse. The report identifies how organisations test, who is responsible for testing, what organisations are finding and how they are remediating those... Read More

Top Factors That Impact Application Performance 2016 – Part 4
October 17, 2016

APP DESIGN: SECURITY I think application performance is a huge subject but with what the world of software is going through today a lot has to do with security. I believe that the ability to deliver applications which have been developed with security in mind from the start will have... Read More

7 ways DevOps benefits CISOs and their security programs
October 4, 2016

DevOps can be beneficial Organizational culture and its processes and technology are evolving at a pace we have never experienced before. As a result, we can’t just sit back and wait for the “DevOps fad” to fade away because it isn’t going to. It’s not a fad – it’s an... Read More

Yahoo to be sued over mega breach
September 27, 2016

Yahoo will be sued over the mega breach that was revealed last week. A resident of New York, Ronald Schwartz, filed the suit on Friday in a California court represented by law firms Robbins Geller Rudman as well as Dowd and Labaton Sucharow. The suit states that if only Yahoo... Read More

Securing code to fight cyber crime
September 27, 2016

Amit Ashbel, Cyber Security Evangelist, Checkmarx, explains why automated application security testing is the first step in combating cyber crime. The world is moving at an incredible pace. New technologies are regularly announced and whole ecosystems developed around them; such as the internet of things (IoT) for example. However, with... Read More

Checkmarx Announces AppSec Coach
September 19, 2016

Checkmarx announced availability of a new secure coding eLearning platform, called AppSec Coach, providing Checkmarx customers the ability to address one of the greatest challenges in the software industry when it comes to application security: finding an effective way to provide developers knowledge and skills to write secure code. The... Read More

Checkmarx wants to help developers write more secure code
September 19, 2016

An organization’s security isn’t the responsibility of its IT department alone. Development teams need to be vigilant too and take measures to rid their software of vulnerabilities, a requirement that... Read More

New products of the week 9.19.16
September 19, 2016

AppSec Coach Key features: AppSec Coach provides an education platform to train developers the principles of application security and secure coding. Unlike other solutions, the AppSec Coach is used in the context of the developer’s work, when it is needed most. More info. Continue reading on Network World. Read More

Promoting secure code from within: the gamification approach
September 19, 2016

By exposing developers to security as part of the coding process, they can learn more about creating secure code and so reduce the time needed for testing. Recent research claims that a quarter of third party apps are high risk and although they're banned in some organisations, policing that ban... Read More

New products of the week 9.12.16
September 12, 2016

CxSAST, Swift Programming Language Support Key features: New Swift language support, provides Checkmarx CxSAST users with the ability to identify, and mitigate security, quality and compliance issues in their Swift code. More info.     Read more on Network World here.  Read More

Checkmarx Announces Support For Swift Programming Language Vulnerability Detection And Remediation
September 7, 2016

Checkmarx, a global leader in application security testing, today announced Swift language support, providing Checkmarx users with the ability to identify and mitigate security, quality and compliance issues in their... Read More

Election exploits: What you need to know [infographic]
September 7, 2016

In late August, the FBI warned state election officials about an attack on voter registration databases from Illinois and Arizona. "According to the FBI’s alert, 'an unknown actor' attacked a state election database by using widely available penetrating testing tools, including Acunetix, SQLMap, and DirBuster," reported IDG's Michael Kan. "The... Read More

Corbyn announces digital ‘bill of rights’
September 1, 2016

Jeremy Corbyn intends to introduce a digital ‘bill of rights' in the UK. The leader of the Labour party presented his intentions in Shoreditch as he unveiled the ‘digital democracy manifesto', setting out proposed guarantees for citizens in the online space. Amit Ashbel, cyber-security evangelist at Checkmarx questions whether the... Read More

Real World Problems Solved By Application and Data Security
September 1, 2016

To gather insights on the state of application and data security, we spoke with 19 executives who are involved in application and data security for their clients. Here's what they told... Read More

Training Tips to Help Developers Snag Security Gold
August 29, 2016

The 2016 Summer Olympics in Rio de Janeiro caught the collective attention of the world, which watched as best-in-class athletes from countries from around the world competed for the coveted medals and honor for their countries. For those competing, the road to this year's Summer Olympics was paved with trial... Read More

Skip to content