Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
Cobalt announced the launch of Agile Pentesting, a new offering that provides more control and flexibility to better meet the needs of today’s businesses through versatile, ad hoc pentesting.
Agile Pentesting allows organizations to proactively identify and address vulnerabilities at a faster, more frequent rate to minimize risk. In contrast to what Cobalt calls Comprehensive Pentesting, which is often done in support of business drivers like compliance or M&A activity, the new offering helps accelerate customers’ DevOps journeys while aligning with their CI/CD pipelines.
Agile Pentesting allows organizations to focus on a specific area of an asset, such as a new feature or product release, specific vulnerability, or incremental testing. Other common use cases include delta feature testing, exploitable vulnerability testing, single OWASP category testing and microservice testing. Cobalt’s pentest offerings cover assorted use cases to provide holistic security testing with PtaaS.
“Agile Pentesting marks the next stage in the evolution of PtaaS,” said Russ Cobb, CMO of Cobalt. “Our customers were very clear in what they needed: pentesting that supports their own velocity of innovation. They don’t just pay lip service to DevSecOps, they’ve made it a reality. With this new offering, Cobalt is deepening its ability to meet the needs of modern security programs.”
Today’s businesses are contending with seismic shifts in the world of technology as well as what is broadly known as “the Great Resignation.” Agile Pentesting is a response to these market dynamics, applying the same principles of innovation and speed to allow customers to reap the following benefits:
- Maximize the output of security teams with smaller pentest engagements that often act as a “second set of eyes”
- Proactively identify and address security gaps at a faster rate to save time and minimize risk
- Accelerate secure build-to-release timelines by bringing pentesting closer to their SDLC
Customers can start running Agile Pentests in the Cobalt platform on October 3, 2022.
Industry News
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.
F5 announced new security offerings: F5 Distributed Cloud Services Web Application Scanning, BIG-IP Next Web Application Firewall (WAF), and NGINX App Protect for open source deployments.
Code Intelligence announced a new feature to CI Sense, a scalable fuzzing platform for continuous testing.
WSO2 is adding new capabilities for WSO2 API Manager, WSO2 API Platform for Kubernetes (WSO2 APK), and WSO2 Micro Integrator.
OpenText™ announced a solution to long-standing open source intake challenges, OpenText Debricked Open Source Select.
ThreatX has extended its Runtime API and Application Protection (RAAP) offering to provide always-active API security from development to runtime, spanning vulnerability detection at Dev phase to protection at SecOps phase of the software lifecycle.
Canonical announced the release of Ubuntu 24.04 LTS, codenamed “Noble Numbat.”
JFrog announced a new machine learning (ML) lifecycle integration between JFrog Artifactory and MLflow, an open source software platform originally developed by Databricks.
Copado announced the general availability of Test Copilot, the AI-powered test creation assistant.
SmartBear has added no-code test automation powered by GenAI to its Zephyr Scale, the solution that delivers scalable, performant test management inside Jira.
Opsera announced that two new patents have been issued for its Unified DevOps Platform, now totaling nine patents issued for the cloud-native DevOps Platform.
mabl announced the addition of mobile application testing to its platform.
Spectro Cloud announced the achievement of a new Amazon Web Services (AWS) Competency designation.
GitLab announced the general availability of GitLab Duo Chat.