March 2, 2015
Earlier this week Gotham Digital Science issued a vulnerability disclosure regarding a vulnerability in Jetty Web Servers. CVE-2015-2080, or JetLeak, allows an unauthenticated remote attacker to read arbitrary data from previous requests submitted to the server by other users. The blog post by Gotham outlines nicely what this vulnerability is and what you need to do address this it. Versions 9.2.... READ MORE›
February 27, 2015
The Wall Street Journal recently published excerpts from an interview with David DeWalt, FireEye’s CEO. As I read through his comments, one in particular got me thinking: “We’ve watched over the last two or three years significant occurrences of just outright destruction. Attempts to really hurt companies or countries with Internet weaponry. You don’t have to wipe out... READ MORE›
February 23, 2015
12360010_m.jpg Kaspersky Lab has released reports stating that bank hackers stole millions via malware. The initial reports indicated that hackers stole approximately $1 billion from over 100 banks in 25 countries — including the United States (although now FS-ISAC claims no US banks were impacted). Whether or not US banks were hit isn’t the most interesting point. What... READ MORE›
February 13, 2015
According to a report by Reuters, New York’s Financial Services Department will undertake “regular” reviews of the security posture at insurers. In the past, the end game of data breaches was fraudulent credit card purchases, but more recently, we are seeing them result in long-term identity theft. As a result, the state of New York is looking to protect its citizens by... READ MORE›
January 27, 2014
Every December security companies pull out their list of predictions for the coming year. These predictions are generally bland, and either cite the specific problem the company addresses as the big trend for the next year, or recycles predictions from previous years. Rather than add to the noise, the Security Research Team at Veracode created a list of resolutions for 2014 that developers could... READ MORE›
August 20, 2013
Once again, our rapid growth has been recognized by a major publication. Veracode has earned the position of #1055 on the 2013 Inc. 500/5000 list of the fastest-growing private companies in the United States. Each year, Inc. Magazine releases its 500|5000 list ranks the fastest-growing private companies in the U.S. The list results are based on the percentage of revenue growth from 2009 to 2012.... READ MORE›
July 3, 2013
Veracode is once again positioned in the “Leaders” quadrant of Gartner, Inc’s 2013 “Application Security Testing Magic Quadrant1”. The quadrant is based on an assessment of a company’s ability to execute and completeness of vision. The detailed report speaks highly of Veracode’s offerings. According to the Gartner report: “Veracode is an established application security testing-as-a- service... READ MORE›
May 31, 2013
Yesterday Ernest & Young announced the finalists for the 2013 Ernst & Young Entrepreneur of the Year for the New England region – and Veracode’s very own Bob Brennan was on the list! The awards program recognizes high-growth entrepreneurs who demonstrate excellence and extraordinary success in areas such as innovation, financial performance and personal commitment to their businesses and... READ MORE›
May 29, 2013
Just a few months after being listed as #20 on Forbes’ “America’s Most Promising Companies”, Red Herring has named Veracode a winner in the Red Herring Top 100 North America list for 2013. The Red Herring Top 100 award recognizes the leading private companies from Americas, celebrating these startups’ innovations and technologies across their respective industries. This year’s awards were hotly... READ MORE›
March 25, 2013
Having well defined and easily understood security policies in place makes it easier to deliver secure applications. However, creating these policies, testing against them and then knowing what actions to take in order to mitigate the risks isn’t always straightforward. SD Elements has integrated the Veracode platform to offer a solution that allows software development teams to create secure... READ MORE›