Contrast Security

Contrast Security
Contrast Security
Blog Post
  • Contrast Labs' analysis of real world application attack data from January 2018. Overview In January, overall application attack volume just about doubled. Once again this month there were no applications or APIs that were not attacked. Once again, the United States dominated the attack landscape, with almost 2x the rest of the world combined. Also, while there was modest growth in attacks ...

Contrast Security
Contrast Security
Blog Post
  • WAF + ASM: Full Protection for Your Running Application Contrast built and marketed Contrast Protect as a “WAF killer;” a better, more accurate and scalable way to protect your web applications in production. However, our customers told us something completely different. Specifically, they told us the following: They think their WAF is a worthwhile investment and don’t plan to get rid of it ...

Contrast Security
Contrast Security
Blog Post
  • 2018 is "out of the gates" and off to a heck of a start. We hit the trifecta with the following three activities...starting with some new integrations! Our development team has great things planned for both Contrast Asses and Protect with an early-year focus on improving devops integrations and helping improve workflow processes.  Last week we announced Contrast's ability to send third-party l...

Contrast Security
Contrast Security
Blog Post
  • Contrast Labs' analysis of real world application attack data from December 2017. Overview December was a huge month for application layer attacks, with large increases in every category of attack except Padding Oracle. Overall, we saw a 5x increase in attack traffic in December. These attacks included huge increases in SQL injection attacks, attacks on all Struts2 OGNL vulnerabilities (especi...

Contrast Security
Contrast Security
Blog Post
Contrast Security
Contrast Security
Blog Post
  • BAY AREA OWASP MEETUP | Tuesday, Dec. 12th, 6:30-9:00 PM Application security professionals are invited to attend the upcoming OWASP Meetup, December 12th at the Contrast Headquarters in beautiful downtown Los Altos. Join in the merriment as you mingle with your contemporaries and learn about new processes and technologies that are transforming software security. Enjoy a wide selection of hot ...

Contrast Security
Contrast Security
Blog Post
  • Investments signal criticality of securing software applications in the Cloud and DevOps Los Altos, Calif. — December 7, 2017 —  Contrast Security, the pioneer in enabling “self-protecting” software with security safeguards built directly into critical applications, today announced it has landed strategic corporate investments by AXA Strategic Ventures and Microsoft Ventures. This financing is a s...

Contrast Security
Contrast Security
Blog Post
  • More than ever before, the security of a running application is a shared responsibility: The security team needs to detect, monitor and respond to an application layer breach The operations team needs to ensure performance, stability & reliability of the application in the event of a breach The engineering team needs to know what security defects to fix and what libraries & components are s...

Contrast Security
Contrast Security
Blog Post
  • As we mentioned last week, Equifax continues to make headlines and ramifications of building sites with insecure code is taking a its toll. Below you'll read a series of startling comments that appeared this past week by Jeff Williams, Contrast Security Co-Founder and CTO. According to Jeff, the source of the attack was a 3rd-party library called Fireclick, which accesses yet another site, netflam...

Contrast Security
Contrast Security
Blog Post
  • Security Predictions for 2018 The world of software is changing quickly at all of our clients. As we look across tens of thousands of applications and a wealth of vulnerability and attack data, some clear trends emerge. We continue to believe that organizations that move to DevSecOps will thrive against their competition.  Here are some of our thoughts on the changing application security land...

Contrast Security
Contrast Security
Blog Post
  • Software is at the heart of Digital Transformatsion, and organizations are using software more than ever for economic and productivity purposes in order to transform the way they run their business – to address customer needs, for better customer experience, greater efficiency, faster time to market and cost optimization. In short, organizations need to stay relevant, competitive and well posit...

Contrast Security
Contrast Security
Blog Post
  • BAY AREA OWASP MEETUPTuesday, Dec. 12th, 6:30-9:00 PMApplication security professionals are invited to attend the upcoming OWASP Meetup, December 12th at the Contrast Headquarters in beautiful downtown Los Altos. Join in the merriment as you mingle with your contemporaries and learn about new processes and technologies that are transforming software security. Enjoy a wide selection of ...

Contrast Security
Contrast Security
Blog Post
  • Investments signal criticality of securing software applications in the Cloud and DevOps Los Altos, Calif. — December 7, 2017 —  Contrast Security, the pioneer in enabling “self-protecting” software with security safeguards built directly into critical applications, today announced it has landed strategic corporate investments by AXA Strategic Ventures and Microsoft Ventures. This financing is a s...

Contrast Security
Contrast Security
Blog Post
  • New product capabilities to enable integration with AWS Elastic Beanstalk, Amazon EC2 and Amazon RDS Los Altos, Calif. — Nov. 15, 2017 — Contrast Security, a pioneer in enabling “self-protecting” software with security safeguards built directly into critical applications, today announced integrations to deploy applications securely on AWS Elastic Beanstalk, Amazon Elastic Compute Cloud (Amazon EC...

Contrast Security
Contrast Security
Blog Post
  • Ed Amoroso, former CISO of AT&T, and Founder and CEO of TAG Cyber, sat down for a conversation with Contrast Security CEO Alan Naumann, and CTO and Co-founder Jeff Williams. In these two, ten-minute interviews, Ed digs into the minds of these "security influencers." You'll get their take on what works (and doesn't) in software security. They cover topics such as how to improve DevOp...

Contrast Security
Contrast Security
Blog Post
  • Round led by Battery Ventures validates “self-protecting” software and sets standard for application security; Equifax breach shows criticality of sector Los Altos, Calif. — October 19, 2017 — Contrast Security, the pioneer in enabling “self-protecting” software with security safeguards built directly into critical applications, today announced it has completed a $30 million Series C financing ro...

Contrast Security
Contrast Security
Blog Post
  • More than ever before, the security of a running application is a shared responsibility: The security team needs to detect, monitor and respond to an application layer breach The operations team needs to ensure performance, stability & reliability of the application in the event of a breach The engineering team needs to know what security defects to fix and what libraries & components are ...

Contrast Security
Contrast Security
Blog Post
  • As we mentioned last week, Equifax continues to make headlines and ramifications of building sites with insecure code is taking a its toll. Below you'll read a series of startling comments that appeared this past week by Jeff Williams, Contrast Security Co-Founder and CTO. According to Jeff, the source of the attack was a 3rd-party library called Fireclick, which accesses yet another site, netflam...

Contrast Security
Contrast Security
Blog Post
  • Yes, we have all seen the headlines.  But, don’t think that the issues that arose from the Equifax breach and the Struts 2 vulnerability will disappear any time soon. Last time I checked, we seen 34 articles published that Contrast was either quoted or referenced. Below are just a few article links pertaining to the event that include insights from one of Contrast Security’s cyber secu...

Contrast Security
Contrast Security
Blog Post
  • Leader in Security Software Enables Continuous Security for Cloud Applications Los Altos, Calif. — Sept. 26, 2017 — Contrast Security, the first company to enable self-protecting software, today announced it has developed cloud-ready integrations with IBM Cloud, Microsoft Visual Studio Team Services, Pivotal Cloud Foundry®, and two-way integrations with Jira. These new features and al...

Contrast Security
Contrast Security
Blog Post
  • It's hard to overstate what's happening here. The FBI, New York and Massachusetts Attorneys General, and Congress are now running inquiries into the Equifax breach. More will come. It's clear that the U.S. economy will change in some way as a result of this Struts 2 vulnerability. It may be macabre and indulgent, but you can’t help but to speculate on the consequences:

Contrast Security
Contrast Security
Blog Post
  • On Tuesday, September 5, 2017, a critical new Remote Code Execution (RCE) vulnerability was disclosed against all previous versions of the Apache Struts 2 REST Plugin [1] available in those packages with Struts 2 between 2.0.0 and 2.5.12 (inclusive). The library uses XStream to deserialize HTTP input without any type enforcement, allowing attackers to specify unexpected types and cause...

Contrast Security
Contrast Security
Blog Post
  • How have modern assets like cloud instances, web-based applications, mobile devices, application containers, and others affected your security and risk management program? It's way past time for organizations to realize how ridiculous it is to not expect web applications and APIs to be attacked. There is no perimeter, and there are no "internal" applications. Application security isn'...

Contrast Security
Contrast Security
Blog Post

Out-Market Your Competitors?

Get complete competitive insights on over 2.2 million companies to drive your marketing strategy.

Create Free Account Log in

By signing up, you agree to the Terms of Service and Privacy Policy.

Out-Market Your Competitors

Get complete competitive insights on over 2.2 million companies to drive your marketing strategy.

Create Free Account

Already a user?  Log in

By signing up, you agree to the Terms of Service and Privacy Policy.