Australia markets closed
  • ALL ORDS

    7,426.60
    +76.00 (+1.03%)
     
  • AUD/USD

    0.7012
    -0.0020 (-0.28%)
     
  • ASX 200

    7,182.70
    +70.20 (+0.99%)
     
  • OIL

    113.81
    +1.41 (+1.25%)
     
  • GOLD

    1,814.00
    -4.90 (-0.27%)
     
  • BTC-AUD

    42,517.53
    -1,144.64 (-2.62%)
     
  • CMC Crypto 200

    669.22
    +426.54 (+175.76%)
     

Veracode Releases Enhanced API Scanning to Tackle Fastest-Growing Cyber Attack Vector

·4-min read
  • 90% of web applications contain exposed APIs, making them more vulnerable to attacks from cyber criminals 1

BURLINGTON, Mass., November 09, 2021--(BUSINESS WIRE)--Veracode, the largest global provider of application security testing (AST), has launched an advanced scanning tool that enables organizations to find and fix vulnerabilities in APIs (Application Programming Interfaces) – the fastest-growing attack surface. The new capability leverages Veracode’s powerful Dynamic Analysis (DAST) scanning engine to provide comprehensive security insights and remediation guidance for APIs as early and efficiently as possible.

With the rapid acceleration of digital transformation for businesses as a result of COVID-19, APIs are more critical than ever to build modern applications. They allow easy data transmission from one product or service to another, making information available on many systems. At the same time, they also create a desirable attack vector for cyber criminals.

According to Gartner®2, "by 2022, API abuses will move from an infrequent to the most-frequent attack vector, resulting in data breaches for enterprise web applications."

"The explosion of APIs means that application development is becoming more fragmented and decentralized in nature, so the attack surface is growing exponentially," said Brian Roche, Chief Product Officer at Veracode. "As such, API scanning has become the most-requested feature by our customers as they look for a solution that saves time, frees up resources, and provides peace of mind."

Leading Pest Control Company Kills Bugs with API Scanning

Veracode’s API Scanning has streamlined the vulnerability identification, prioritization, and remediation process for an internationally renowned pest control specialist. "Modern applications are more complex than ever, and we need to understand our risk level so that we can respond quickly and efficiently," a Principal IT Architect at the company said. "Veracode’s Dynamic API scanning has saved our teams many hours of remediation work by isolating high severity vulnerabilities and provided assurance that our APIs are secure before they are integrated into larger applications."

API Scanning Ensures Early and Efficient Vulnerability Remediation

The new feature allows security and vulnerability managers to analyze their APIs as soon as they are available in a network accessible runtime environment, and before they are incorporated into bigger applications. API scan results are grouped by severity and provide detailed remediation guidance within a single dashboard alongside other Dynamic Analysis scans. This makes it easy for security teams to prioritize vulnerabilities and access the details required for developers to fix insecure code quickly, facilitating smooth collaboration between security and development teams.

Roche added, "Strong API security is fast becoming one of the top concerns for enterprises and a table stakes capability for CISOs. In a world where every relationship should start with zero trust, regular API scanning must be a cornerstone of any robust software security strategy."

1 Gartner, Gartner’s API Strategy Maturity Model, Saniye Alaybeyi, Mark O’Neill, 27 April 2021.

2 Gartner, API Security: What You Need to Do to Protect Your APIs, Mark O'Neill, Dionisio Zumerle, Jeremy D'Hoinne, 1 March 2021.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

About Veracode

Veracode is the leading AppSec partner for creating secure software, reducing the risk of security breach, and increasing security and development teams’ productivity. As a result, companies using Veracode can move their business, and the world, forward. With its combination of process automation, integrations, speed, and responsiveness, Veracode helps companies get accurate and reliable results to focus their efforts on fixing, not just finding, potential vulnerabilities.

Veracode serves thousands of customers worldwide across a wide range of industries. The Veracode solution has assessed more than 45 trillion lines of code and helped companies fix more than 68 million security flaws.

Learn more at www.veracode.com, on the Veracode blog and on Twitter.

Copyright © 2021 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.

View source version on businesswire.com: https://www.businesswire.com/news/home/20211109005711/en/

Contacts

Katy Gwilliam
kgwilliam@veracode.com

Our goal is to create a safe and engaging place for users to connect over interests and passions. In order to improve our community experience, we are temporarily suspending article commenting