Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Mobile

10/12/2016
07:00 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

WhiteHat Security Partners with NowSecure For Mobile Application Security Testing Solution

WhiteHat Sentinel Mobile Express features automated static and dynamic testing to quickly detect and verify mobile application vulnerabilities

Santa Clara, Calif., October 11, 2016 – WhiteHat Security, the only application security provider that combines the best of technology and human intelligence, today announced WhiteHat Sentinel Mobile Express™, a new addition to its mobile application security offerings powered by technology from mobile security solution pioneer NowSecure. The solution provides fast and accurate mobile application security testing using a combination of NowSecure’s fully-automated static, dynamic, and interactive assessment technology and augmented by expert verification and analysis by WhiteHat Security’s Threat Research Center team. The new solution supports iOS and Android applications, with detailed views and reporting integrated into the WhiteHat Sentinel platform.

The proliferation of mobile application development is apparent today, and enterprises are taking steps to accelerate its current pace of growth. According to Gartner, “By 2020, more than 75% of enterprises will have adopted at least one mobile app development platform to accelerate their digital business transformation strategy, up from approximately 33% in 2015.” With the expansion of the mobile application development market comes a rise in the use of mobile applications, and with that, the increased risk that vulnerable applications pose to organizations.

Created in response to the demand for mobile application security testing solutions that address common pain points of the modern software development lifecycle (SDLC), Sentinel Mobile Express:

        Speeds up time-to-detection with automated static and dynamic (SAST and DAST) app security testing

       Accommodates agile and DevOps build-and-deploy cycles

        Tests the actual builds by installing and testing mobile apps on physical Android and iOS devices in the cloud, not emulators

        Provides detailed descriptions of vulnerabilities and offers remediation guidance

Sentinel Mobile Express is integrated with the WhiteHat Sentinel Software-as-a-Service (SaaS) platform, which enables businesses to quickly deploy a scalable application security program across the entire software development lifecycle.

“WhiteHat Security’s authority in the application security world is unquestionable,” said Andrew Hoog, CEO and Co-Founder, NowSecure. “We share the belief that security starts with security-aware development, and our mission is to provide fast and accurate security testing that integrates with the agile processes that mobile development teams rely on. It’s an honor to be partnering with WhiteHat Security, and to combine our respective areas of expertise to deliver an industry-leading solution for mobile application security.”

“There’s a real need in the market for a fast and effective mobile application security solution, a need that just hasn’t been met by any of the application security players to date,” said Craig Hinkley, CEO of WhiteHat Security. “The powerful combination of WhiteHat and NowSecure makes it possible for organizations to apply the same security rigor to their mobile apps that they’ve been able to bring to their enterprise apps for years. The speed at which people and enterprises have adopted and are relying on mobile devices to do business is dizzying, and having a best-of-breed solution for securing the mobile apps at the heart of that business is essential. Sentinel Mobile Express is the right solution at the right time in the evolution of mobile.”

Both WhiteHat Security and NowSecure are participating in AppSec USA 2016 taking place this week in Washington, DC from October 11-14.  Learn more about Sentinel Mobile Express by visiting WhiteHat in booth G6, and NowSecure in booth G3.

Additional resources:

 

      Blog: Securing Mobile Applications with NowSecure

      Sentinel Mobile Express data sheet

 

About NowSecure

NowSecure is the mobile app security technology company enterprises trust to help them deliver secure customer experiences through mobile apps and manage risk associated with mobile-centric workforces using dual-use devices. We deliver mobile app security testing, mobile app certification, third-party mobile app vetting, incident response, and compliance solutions. Our team of researchers, engineers, and support professionals discovers vulnerabilities, develops solutions, and refines best practices to power enterprise mobile app security strategies. For more information about NowSecure, visit https://www.nowsecure.com.

About WhiteHat Security

WhiteHat Security has been in the business of securing web applications for 15 years. Combining advanced technology with the expertise of its global Threat Research Center (TRC) team, WhiteHat delivers application security solutions that reduce risk, reduce cost and accelerate the deployment of secure applications and web sites. The company’s flagship product, WhiteHat Sentinel, is a software-as-a-service platform providing dynamic application security testing (DAST), static application security testing (SAST), and mobile application security assessments. The company is headquartered in Santa Clara, Calif., with regional offices across the U.S. and Europe. For more information on WhiteHat Security, please visit www.whitehatsec.com, and follow us on Twitter, LinkedIn and Facebook.

Gartner, Inc., Magic Quadrant for Mobile App Development Platforms, 15 June 2016

 

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: We need more votes, check the obituaries.
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-1070
PUBLISHED: 2021-01-26
NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the apply_binaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an un...
CVE-2021-1071
PUBLISHED: 2021-01-26
NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r32.5, contains a vulnerability in the INA3221 driver in which improper access control may lead to unauthorized users gaining access to system power usage data, which may lead to...
CVE-2020-23774
PUBLISHED: 2021-01-26
A reflected XSS vulnerability exists in tohtml/convert.php of Winmail 6.5, which can cause JavaScript code to be executed.
CVE-2020-23776
PUBLISHED: 2021-01-26
A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacker can modify the request header 'HOST' value to cause the server to send the request.
CVE-2021-3309
PUBLISHED: 2021-01-26
packages/wekan-ldap/server/ldap.js in Wekan before 4.87 can process connections even though they are not authorized by the Certification Authority trust store,