Recent Searches

Home
Making the Right AppSec Decisions
Solution Brief-FUSION-Checkmarx Correlation Engine

Solution Brief-FUSION-Checkmarx Correlation Engine

Previous Article

New Technique Used by Attackers in NPM to Avoid Detection

Checkmarx SCS team recently detected several malicious NPM packages using a new evasion technique, enhancing dependency confusion attacks to help malicious packages avoid detection. This novel...
Next Article

The Case for Correlation in the World of AppSec Testing

Most developers and AppSec pros understand the value of Application Security Testing. From running security scans early during software development to running a final scan after an application...

Recommended Resources

Checkmarx API Security.2

Read Now
Checkmarx API Security.1

Read Now
Checkmarx API Security.3

Read Now
Amazon Quickly Fixed a Vulnerability in Ring Android App That Could Expose Users’ Camera Recordings

Intro Researchers at Checkmarx found that the Ring Android app could have allowed a malicious application installed on the user’s phone to expose their personal data, geolocation, and camera...

Read Now
Malicious PyPi User Strikes Again with Typosquatting, StarJacking and Unpacks Tailor-made Malware written in C#

A known malicious contributor has published two new Python packages trying to mimic popular ones to lure developers into downloading them and infect their machines with Cobalt Strike. This...

Read Now
The Checkmarx Approach to API Security

Read Now
Typosquatting Campaign Targeting Python’s Top Packages, Dropping GitHub Hosted Malware with DGA Capabilities

On Saturday, August 13th, Checkmarx’s Software Supply Chain Security Typosquatting engine detected a large-scale attack on the Python ecosystem with multi-stage persistent malware. The PyPi user...

Read Now
Solution_Brief-CheckmarxOne Application Security Platform

Read Now
Introducing Checkmarx API Security

Today, Checkmarx announces the launch of Checkmarx API Security. For us, this is one of the most exciting product launches of the year, because it addresses such a real and large pain point for...

Read Now
AWS ReInforce - AWS on Air

Watch Now
Understanding the Top API Security Risks

When developers and IT engineers think about IT security, they tend to break it down into several niches. There’s AppSec, which focuses on securing applications. There’s infosec, which deals with...

Read Now
Solution_Brief-API Security

Read Now
Banking on the Cloud: Navigating the Transition to AWS Cloud-Native Application Development in Financial Services

As the saying goes, money makes the world go round, and today’s turbulent economic environment demands a stable and secure financial system. People must be confident that they can access their...

Read Now
[Partner Recruitment] Panorama y nuevas oportunidades para los canales

Watch Now
Large Scale Campaign Created Fake GitHub Projects Clones with Fake Commit Added Malware

Today, as it was revealed by Stephen Lacy in his tweet, he shared his findings of a large-scale campaign targeting random GitHub repositories with project clones containing credential stealing...

Read Now
A Practical Example of the Power of Checkmarx Fusion

Application Security (AppSec) personnel have a tough job these days trying to secure their applications. Many organizations take a fragmented approach to AppSec and scan engines; they may use...

Read Now
A Guide to Modern API Security

Read Now
When It Comes to Cloud, Location Matters

Checkmarx One™ Cloud-Based Application Security Platform Is Expanding its Footprint The average layperson likely envisions “the cloud” as being some anomalous, effervescent thing that has no...

Read Now
Why Great Code is Secure Code

Today, open source software is the fuel powering modern application development, allowing developers to innovative fast. With ready-made components, open source enables developers to...

Read Now
Fixing a Crucial Shortfall in Your AppSec Program

Watch Now

Return to Home