Application security - News

The Center for Internet Security, Inc. (CIS®), Astrix Security, and Cequence Security now announced a strategic partnership to develop new cybersecurity guidance tailored to the unique risks of artificial intelligence (AI) and agentic systems.  This collaborative initiative builds on the globally recognised CIS Critical Security Controls® (CIS Controls®), extending its principles into AI environments where autonomous decision‑making, tool and API access, and automated thre...

Cellebrite, a pioneer in AI-powered Digital Investigative and Intelligence solutions for the public and private sectors, announces it has substantially expanded its capabilities through the acquisition of Corellium, a pioneer in Arm-based virtualisation software. The addition of Corellium's technology and world-class technical talent further strengthens Cellebrite's market and technology leadership. Dramatically accelerating time This combination creates the industry's most complete digital...

Intellian Technologies Inc., a global provider of resilient multi-constellation, feature-rich satellite user terminals and communications solutions, and OneWeb, the low Earth orbit (LEO) satellite communications company, have announced a new product portfolio of Intellian Flat Panel user terminals for use on OneWeb’s network.   Flat Panel Series Intellian’s Flat Panel Series is a suite of both Pro and Compact user terminals that deliver exceptional performance in sle...

DigiCert, a global pioneer in intelligent trust, announced that it has joined the F5 Application Delivery and Security Platform (ADSP) Partner Program as a Select Partner. As part of this programme, DigiCert is working with F5 to deliver integrated solutions that enhance security, improve operational efficiency, and simplify multicloud operations for enterprise customers.  DigiCert brings automated certificate lifecycle management, centralised visibility, and policy-driven cryptographic go...

42Crunch, the pioneer in DevSecOps for API security, announced that its freely available API security testing tools for developers—integrated directly into popular IDEs including VS Code, JetBrains, and Eclipse—has surpassed the 2 million downloads worldwide. This milestone reflects the accelerating demand from CISOs for enterprises to adopt a proactive approach to API security.    As AI workloads multiply and organisations rely more heavily on automated systems that consu...

Zimperium, the global pioneer in mobile security, revealed findings from its zLabs team showing that thousands of popular Android applications — including top travel, airline, and weather apps — are still using an outdated mapping component that could put users and enterprises at risk. The investigation, titled “Follow the Map to Enterprise Risk: What’s Inside Popular Android Apps,” found that a legacy library known as libmapbox-gl.so, once part of Mapbox GL Native...

Corero, the distributed denial of service ("DDoS") protection specialists and champion of adaptive, real-time service availability, is pleased to announce good sales traction across Q3 2025, driven by a number of new customer wins and product enhancement launches, as well as a key customer renewal and expansion order in October, delivering a strong start to Q4 2025. Corero delivered a strong Q3 2025, with order intake of $7.4 million (Q3 2024: $6.0 million) and new contract wins secured ac...

ImmuniWeb has introduced new AI-powered penetration testing capabilities within its ImmuniWeb® On-Demand solution and launched two new Continuous Threat Exposure Management (CTEM) packages — ASM (Attack Surface Management) and Dark Web monitoring — in response to emerging cybersecurity risks and novel threats. ImmuniWeb® On-Demand, the company’s award-winning web application penetration testing solution, now offers expert-dr...

HackerOne, a pioneer in offensive security solutions, announces the evolution of HackerOne AI, Hai, from a copilot into an agentic AI system, and the general availability of its AI-native code security product, HackerOne Code. Together, they set a new standard in continuous exposure management by accelerating how enterprises find, prioritise, and remediate vulnerabilities. Hai is HackerOne’s coordinated team of AI agents that continuously analyses and contextualises findings to help organ...

AI-powered cybersecurity firm Shinobi has announced a major expansion of its platform – the ability to penetration test mobile applications with the same skill, reasoning, and precision as human experts, but delivered continuously and at machine speed.  With phones having become vaults for employees’ digital lives, holding money, messages, health data, and work communications, attackers are increasingly targeting mobile apps. New vulnerabilities emerge with every update But t...

Checkmarx, the global pioneer in agentic-AI powered application security testing, announced record-breaking growth for its flagship platform, Checkmarx One, underscoring a wave of customer adoption fuelled by innovation and strategic pioneering. The news comes alongside groundbreaking research from Checkmarx Zero that highlights the urgent need for secure software in an AI-driven development landscape. Record-breaking growth & adoption Checkmarx One has rapidly become the platform of choi...

AlgoSec, a global cybersecurity pioneer, announced a gross dollar retention rate of over 90% in the first half of 2025, following the launch of its AlgoSec Horizon platform.  Since its release, the Horizon platform has gained adoption across industries, underscoring the market need for convergence of cloud and on-premises networks. This widespread adoption has driven a 36% increase in new annual recurring revenue (ARR) in the first half of 2025 compared to 2024. Advanced AI capabilities...

The CHERI Alliance announces that the Electronic Design Automation segment of Siemens Digital Industries Software has joined the non-profit organisation as a member to promote and enable a new level of cybersecurity in the EDA industry. This collaboration marks a significant milestone in CHERI’s mission to advance technological innovations and bolster security measures in the digital landscape. Adoption of CHERI technology The CHERI Alliance is a global consortium that unites a diverse...

Checkmarx, the pioneer in agentic AI-powered application security, released the results of its annual survey titled “Future of Application Security in the Era of AI,” offering a candid assessment of how AI‑accelerated development is reshaping the risk landscape and how to prepare for the year ahead. The study surveyed more than 1,500 CISOs, AppSec managers and developers across North America, Europe and Asia‑Pacific to understand how organisations are adapting to a world where softw...

Invicti Security, the pioneer in dynamic application security testing (DAST), announced the acquisition of Kondukto, the pioneer of the first Application Security Posture Management (ASPM) solution. With this acquisition, Invicti is delivering on what security teams have long demanded: the ability to correlate runtime-validated DAST findings with broader ASPM data to drive precise, scalable, and actionable AppSec programs. By combining Invicti’s recently launched AI-powered DAST with AS...

Pioneering cybersecurity business, Trustonic, has unveiled the launch of Kinibi 700a, the most sophisticated version of its Trusted Execution Environment [TEE] to date. Established in 2012, Trustonic delivers advanced technology systems to drive innovation, protect revenue, and enhance security for device manufacturers worldwide. Through its advanced Trusted Execution Environment [TEE] Kinibi, Trustonic successfully protects over 3 billion connected devices and counts the world’s major...

Absolute Security, a pioneer in enterprise cyber resilience, announced that Absolute Resilience for MSPs has launched a newly certified integration with ConnectWise RMM™ on the ConnectWise Asio™ platform. For more details on this new integration, please visit the ConnectWise Marketplace, which connects Managed Service Providers (MSPs) with a vast ecosystem of third-party integrations designed to enhance their service offerings and drive business growth. Digital ecosystem MSPs will...

A new study from Enterprise Strategy Group (ESG), commissioned by cybersecurity pioneer AlgoSec, has revealed that most organisations are struggling to secure applications across fragmented, hybrid cloud environments.  As more applications are spread between on-premises data centres and multiple cloud providers, traditional approaches to network security are proving ineffective. The report, “The Case for Convergence in Hybrid Multi-cloud, Application-centric Networks,” shows...

Absolute Security, a pioneer in enterprise cyber resilience, announced new innovations available on the Absolute Resilience Platform. An advanced GenAI assistant enables natural-language queries that instantly answer vital questions about the security and compliance status of endpoint devices. Foundation of AI-powered resilience Enhanced application control helps ensure critical endpoint and network security defences are present across every device and operating with maximum effectiveness and...

Appdome, the pioneer in protecting mobile businesses, announced here at Black Hat 2025 the integration of its IDAnchor’s Customer Identity Protection suite into MobileBOT Defence, Appdome’s bot defence offering.  This powerful combination enables mobile brands and businesses to build a virtual Mobile API Gateway on top of any standard backend infrastructure, preventing unauthorised API access, stopping brute-force bot attacks, and eliminating point products for API Protection a...

SecurityBridge, the creator of the Cybersecurity Command Centre for SAP, announced the acquisition of CyberSafe, a UK-based pioneer in multi-factor authentication (MFA) and single sign-on (SSO) solutions for SAP users. The acquisition marks a significant milestone in SAP security innovation, as CyberSafe’s flagship TrustBroker® products will further enrich the SecurityBridge platform capabilities. A two-way integration enables customers to transition from password-based authentication...

Cequence Security, a pioneer in application security, unveiled the Cequence AI Gateway, a powerful new solution enabling enterprises to take full advantage of the productivity gains promised by agentic AI. Bridging the gap between AI agents and enterprise applications, the AI Gateway enables instant connectivity with the guardrails enterprises need to stay in control.         Power of artificial intelligence Enterprises, eager to embrace the power of a...

Appdome, the pioneer in protecting mobile businesses, announced IDAnchor™, the industry’s first Customer Identity Protection (CIP) solution for the mobile economy. IDAnchor fingerprints each release, installation, and device used to access, log in, and generate transactions in a mobile app. It combines this immutable chain of trust with real-time threat signals to bring sign-in alerts and unrecognised device notifications to every mobile app in the world and create a perimeter defen...

Immersive, the pioneer in people-centric cybersecurity, announces its Immersive One AI-powered Lab Builder feature to give customers and partners powerful new ways to rapidly improve cyber skills across teams through customised labs and learning experiences. With this new tool supporting Immersive’s Prove, Improve, Benchmark, and Report (PIBR) approach, cyber pioneers will be able to easily create hands-on exercises and simulations for their technical workforce, including offensive, defen...

Zimperium, the world pioneer in mobile security, reveals new zLabs research detailing an advanced evolution of the GodFather Android banking Trojan that weaponises on-device virtualisation to hijack nearly 500 legitimate mobile applications. The technique allows attackers to run the real app inside a malicious sandbox, capture every tap and credential in real time, and bypass traditional overlay-based defenses. GodFather Android banking Trojan The following are some features of the GodFather...

Lab 1, the major AI, Exposed Data Intelligence platform, launched “File Previews”, an industry-first capability for businesses to safely preview exposed files breached through direct cyberattacks, supplier breaches, employee and contractor errors, cloud misconfigurations and more. Lab 1 uses sophisticated AI agents to scrape breached datasets from the surface, deep and dark web, extracting and analysing file contents, to rapidly identify an organisation’s exposure. Files are...

Invicti, the pioneer in dynamic application security testing (DAST), announced the launch of its next-gen Application Security Platform featuring AI-powered scanning capabilities, enhanced DAST performance, and full-spectrum visibility into application risk. The platform enables organisations to detect and fix real vulnerabilities faster and with greater accuracy. DAST-first platform “Your applications are dynamic, shouldn’t your AppSec tools be too?” said Neil Roseman, CEO...

Corero, the distributed denial of service ("DDoS") protection specialists, is pleased to announce the first two customer wins adopting CORE (Corero Observability and Resiliency Ecosystem) architecture – Corero’s next-generation platform designed to unify visibility and defensive action across disparate security infrastructure. First announced on 29 October 2024, the CORE platform initial capabilities include Traffic Analysis (“TA”), Zero Trust Access Control (&...

Semperis, a provider of AI-powered identity security and cyber resilience, released new research into nOAuth known vulnerability in Microsoft’s Entra ID that enables full account takeover in vulnerable SaaS apps with minimal attacker effort, posing a severe risk to enterprises relying on cross-tenant Entra integrations. Eric Woodruff, Semperis’ Chief Identity Architect, presented his findings this week at the Troopers 2025 in Heidelberg, Germany. Semperis’ follow-up research...

Domino Data Lab, provider of the pioneering Enterprise AI Platform trusted by the world’s largest AI-enabled enterprises, announced its Spring 2025 Release — a major platform update that helps enterprises ship trusted AI products faster. The release introduces a unified system for productivity, governance, and delivery—turning fragmented initiatives into an AI factory for trusted, repeatable outcomes. It also announced Zero-to-AI, a new service offering designed to catalyse pr...