Introducing Checkmarx API Security
Today, Checkmarx announces the launch of Checkmarx API Security. For us, this is one of the most exciting product launches of the year, because it addresses such a real and large pain point for...
Read Now
Today, Checkmarx announces the launch of Checkmarx API Security. For us, this is one of the most exciting product launches of the year, because it addresses such a real and large pain point for...
Read Now
When developers and IT engineers think about IT security, they tend to break it down into several niches. There’s AppSec, which focuses on securing applications. There’s infosec, which deals with...
Read Now
As the saying goes, money makes the world go round, and today’s turbulent economic environment demands a stable and secure financial system. People must be confident that they can access their...
Read Now
Today, as it was revealed by Stephen Lacy in his tweet, he shared his findings of a large-scale campaign targeting random GitHub repositories with project clones containing credential stealing...
Read Now
Application Security (AppSec) personnel have a tough job these days trying to secure their applications. Many organizations take a fragmented approach to AppSec and scan engines; they may use...
Read Now
Checkmarx One™ Cloud-Based Application Security Platform Is Expanding its Footprint The average layperson likely envisions “the cloud” as being some anomalous, effervescent thing that has no...
Read Now
Today, open source software is the fuel powering modern application development, allowing developers to innovative fast. With ready-made components, open source enables developers to...
Read Now
When you expose API services to the public internet, you are responsible not only for their reliable operation, but also for their security. Sufficiently securing and protecting a public API is...
Read Now
Reducing software risk and boosting developer and AppSec team productivity are central to our mission here at Checkmarx. We’ve designed the Checkmarx One™ Application Security Platform to be the...
Read Now
The proliferation of APIs today is astonishing. According to a recent report, the number of active APIs will approach 1.7 billion by 2030. You might expect that the majority of those APIs would...
Read Now
Starting an AppSec program of work is no small feat, be that at a small or large corporation. This journey requires a lot of planning, dedication and of course, sweat. Before you even get...
Read Now
An alarming software supply chain attack technique allows threat actors to trick developers into using potentially malicious code. By leveraging the ability to spoof and forge commits’ metadata...
Read Now
If you had to find an analogy for the explosive growth of APIs over the past decade, you might choose to compare them to cell phones. Like cell phones, APIs were once considered a niche...
Read Now
IntellliJ IDEA v. 2022.1 and later bundle the free security plugin that identifies vulnerable packagesBoth declared and transitive packages are identifiedBeyond highlighting vulnerable packages,...
Read Now
The idea was certainly in the air, irresistible and palpable. It was brewing slowly and at some point, could be felt distinctly and unavoidably – Checkmarx sorely needs a new documentation portal...
Read Now
Over a thousand packages and users were created on NPM using an automated process in the past few days. Is it a phase one of an upcoming attack? Checkmarx SCS team detected over 1200 npm packages...
Read Now
To outsource or not to outsource: that is the question. At least, that’s one question you may be asking yourself if you’re trying to decide how to optimize your business’s approach to application...
Read Now
A good developer is an efficient developer and part of being an efficient developer is not re-inventing the wheel for every project or solution. As a result, many of us leverage the benefits of...
Read Now
Our research team at Checkmarx found that the Amazon Photos Android app could have allowed a malicious application, installed on the user’s phone, to steal their Amazon access token. The Android...
Read Now
2 security issues found on spring function cloud. The Spring Framework application provides a flexible and comprehensive method for programming and configuring Java-based enterprise applications....
Read Now
Loading More...