Parasoft announces the opening of its new office in Northeast Ohio.
Veracode Acquires Longbow Security
April 03, 2024
Veracode announced the acquisition of Longbow Security, a provider of security risk management for cloud-native environments.
The integration of Longbow into Veracode enables security teams to discover cloud and application assets quickly and easily assess their threat exposure using automated issue investigation and root cause analysis. Longbow provides a centralized view of risk for cloud assets and applications, thereby simplifying complex workflows, enabling faster and more effective remediation, and improving overall security posture. The result is reduced risk and fewer vulnerabilities in applications and cloud infrastructures.
“Security teams are drowning in alerts that lack sufficient detail on the level of business risk, degree of exploitability of a flaw, and specific code-level insight to keep pace with remediation requirements. As a result, risk continues to accumulate,” said Brian Roche, Chief Product Officer at Veracode. “With the combination of Veracode and Longbow, teams can get a comprehensive view of their risk, automate prioritization of what matters most, and, with Veracode Fix, automate remediation of code security flaws.”
With Longbow, Veracode customers can address these challenges in four ways:
- Unified visibility of risk across applications, code, and cloud. This gives teams insight to tackle significant issues that matter most to the business.
- Orchestrated remediation from code to cloud, enabling teams to prioritize and remediate with Veracode’s AI-driven fix capabilities.
- Actionable insights with ‘Best Next Action’ advice, so customers can conduct a root cause analysis and pinpoint the best path to remediation.
- Continuous monitoring and assessment via real-time vulnerability discovery across application portfolios and runtime environments, meaning customers know exactly what is running and where.
Derek Maki, Co-Founder & Chief Product Officer at Longbow said, “We founded Longbow with a mission to simplify an increasingly complex application security risk management process and help organizations reduce risk at scale. By joining forces with Veracode, our combined solutions provide unmatched visibility, automation, and remediation capability for security and engineering teams. We are excited to take cloud-native application security to the next level.”
“This is the perfect fit for Longbow,” said Dayne Myers, Co-founder & Chief Executive Officer of Longbow. “After careful consideration, we believe that our technology and team align seamlessly with Veracode's vision, making this the best choice for Longbow’s future."
Sam King, Chief Executive Officer at Veracode, said: “The integration of our solutions provides organizations with a holistic application risk management platform that spans code to cloud. Veracode combined with Longbow advances the field of application security and enables customers to secure their increasingly complex application landscape more efficiently.”
Longbow is available immediately.
Industry News
May 02, 2024
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
May 02, 2024
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
May 02, 2024
Nokod Security announced the general availability of the Nokod Security Platform.
May 02, 2024
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
May 01, 2024
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
May 01, 2024
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.
May 01, 2024
ActiveState unveiled Get Current, Stay Current (GCSC) – a continuous code refactoring service that deals with breaking changes so enterprises can stay current with the pace of open source.
May 01, 2024
Lineaje released Open-Source Manager (OSM), a solution to bring transparency to open-source software components in applications and proactively manage and mitigate associated risks.
May 01, 2024
Synopsys announced the availability of Polaris Assist, an AI-powered application security assistant on the Synopsys Polaris Software Integrity Platform®.
April 30, 2024
Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
April 30, 2024
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.
April 30, 2024
F5 announced new security offerings: F5 Distributed Cloud Services Web Application Scanning, BIG-IP Next Web Application Firewall (WAF), and NGINX App Protect for open source deployments.
April 29, 2024
Code Intelligence announced a new feature to CI Sense, a scalable fuzzing platform for continuous testing.
April 29, 2024
WSO2 is adding new capabilities for WSO2 API Manager, WSO2 API Platform for Kubernetes (WSO2 APK), and WSO2 Micro Integrator.
