Risk

7/1/2013
03:52 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Cenzic Grants Rights On Some Key Patents To WhiteHat Security

Litigation between the two companies will be dismissed

Campbell, CA – July 1, 2013 – Cenzic, the leading provider of application security intelligence to reduce security risks, today announced that Santa Clara, Calif.-based WhiteHat Security has licensed Cenzic's foundational patents. Under this license agreement, Cenzic extends certain rights to WhiteHat to utilize its patents. Litigation between the two companies will be dismissed, with prejudice, with this license.

As part of this license agreement, WhiteHat, for an undisclosed sum, has licensed Cenzic's patents and related applications, which are foundational for web application scanner products and related services. These Cenzic patents and applications have been licensed by other leading web application security providers, including HP, IBM, and NTObjectives. With this license agreement, Cenzic also receives rights to all of WhiteHat's issued patents and related applications.

"We're glad that WhiteHat Security has taken responsibility in recognizing the value of our foundational patents in the application security space and are thereby licensing them," said John Weinschenk, CEO and President of Cenzic. "This further validates the unique distinction of Cenzic's technology patents to the extent that several large players and former competitors in the space utilize our technology today to strengthen their own capabilities. We're pleased to see our unique and differentiated technology innovations being adopted in this way."

About Cenzic

Cenzic provides the leading application security intelligence platform to continuously assess Cloud, Mobile and Web applications to reduce online security risk. Cenzic's solutions scale from single applications to enterprise-level deployments with hybrid approaches that enable testing of applications at optimal levels. Cenzic helps brands of all sizes protect their reputation and manage security risk in the face of malicious attacks. Cenzic's solutions are used in all parts of the software development lifecycle, and most importantly in production, to protect against new threats even after the application has been deployed. Cenzic's application security intelligence platform is architected to handle web, cloud and mobile applications and is the first to provide risk reduction recommendations for business, application developers and specific applications. Today, Cenzic secures more than half a million online applications and trillions of dollars of commerce for Fortune 1000 companies, all major security companies, government agencies, universities and SMBs. More information about Cenzic can be found at www.cenzic.com.

Comment  | 
Print  | 
More Insights
Comments
Threaded  |  Newest First  |  Oldest First
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
6 Security Trends for 2018/2019
Curtis Franklin Jr., Senior Editor at Dark Reading,  10/15/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-10839
PUBLISHED: 2018-10-16
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the network. A user inside guest could use this flaw to crash the Qemu process resulting in DoS.
CVE-2018-13399
PUBLISHED: 2018-10-16
The Microsoft Windows Installer for Atlassian Fisheye and Crucible before version 4.6.1 allows local attackers to escalate privileges because of weak permissions on the installation directory.
CVE-2018-18381
PUBLISHED: 2018-10-16
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
CVE-2018-18382
PUBLISHED: 2018-10-16
Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" (aka user/edit-profile) action.
CVE-2018-18374
PUBLISHED: 2018-10-16
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.