Check Point® Software Technologies Ltd. announced a collaboration with Microsoft that utilizes the Microsoft Azure OpenAI Service to enhance Check Point Infinity AI Copilot, marking a significant advancement in cyber security AI applications.
Bugcrowd announced the launch of Bugcrowd Classic Pen Test, the latest product powered by the Bugcrowd platform focused on providing customers with on-demand access to methodology-driven pen testing at a fixed price.
Leveraging Bugcrowd's global network of pen testers, Bugcrowd Classic Pen Test adds to the company's Pen Test Portfolio, helping organizations reduce testing timelines while meeting critical compliance requirements and adhering to security best practices.
Bugcrowd Next Gen Pen Test (NGPT), and now Classic Pen Test, both eliminate these challenges by providing immediate access to an on-demand global network of pay-per-engagement, or pay-per-finding pen testers, thoroughly vetted, intelligently matched, and expertly managed through the Bugcrowd platform. Bugcrowd Classic Pen Test programs can be launched in under 72 hours, and provide Day-1 visibility into incoming vulnerabilities as they are received and validated. To further support rapid remediation, SDLC integrations like JIRA, GitHub, and ServiceNow push prioritized vulnerabilities to the places where development teams work, so they can fix and ship secure products faster. Customers also benefit from always-on platform reporting in addition to a full methodology-based compliance report for ultimate program transparency and real-time visibility.
"Organizations with regulatory and compliance requirements, and dynamic development cycles, need rapid, reliable, and fully-integrated pen testing, whenever, and wherever it best fits their application security lifecycle," said Mark Milani, Global Head of Product and Engineering at Bugcrowd. "Classic Pen Test provides customers predictability within their security budgets and transparency in their security programs. Powered by Bugcrowd's platform, Classic Pen Test offers the same immediate access to the Crowd, same expert triage, management, and SDLC integrations as Bugcrowd NGPT."
Organizations can also choose add-ons like customized executive reporting, rush reporting, retesting, and even pen tester filtering by skill, geography, experience, and more. Other benefits to customers only possible through the Bugcrowd platform include:
- Fewer than 72 hours set up time: CrowdMatch skills-matching technology helps rapidly assemble the perfect team from thousands of available testers.
- Support for high-volume testing: Access to an always available pool of researchers powered by the crowd plus platform automation speeds resourcing and launch. Get fresh eyes on multiple targets at once.
- Real-time results and SDLC integrations: Receive vulnerabilities as they are submitted and validated rather than at the end of the assessment. SDLC integrations help fix fast.
- Methodology-driven and Always-on reports: Satisfy compliance requirements like PCI-DSS with options to expedite or enhance. Added platform views maximize transparency.
- Stackable pay-per-test bundles: Purchase blocks of testing pre- or post-scoping for maximum flexibility.
- Curated packages: Add-ons like retesting, executive reporting, and fast-track testing help create the right test for any engagement.
Industry News
ArmorCode announced ArmorCode Risk Prioritization, providing a 3D scoring approach for managing application security risks.
AppViewX and Fortanix announced a partnership to offer cloud-delivered secure digital identity management and code signing.
WaveMaker has updated its platform in response to customer demand for more sophisticated API and code management tools.
Vercara announced the launch of UltraAPI™, a product suite that protects APIs and web applications from malicious bots and fraudulent activity while ensuring regulatory compliance.
Legit Security announced the launch of its standalone enterprise secrets scanning product, which can detect, remediate, and prevent secrets exposure across the software development pipeline.
Progress announced a strategic partnership with Veeam® Software, the #1 leader by market share in Data Protection and Ransomware Recovery, to provide customers with an enterprise-ready cyber defense solution that strengthens the security of their business-critical data.
GitGuardian released its Software Composition Analysis (SCA) module.
DataStax announced a milestone in its journey to simplify enterprise retrieval-augmented generation (RAG) for developers by integrating with Microsoft Semantic Kernel.
Check Point® Software Technologies Ltd. is collaborating with NVIDIA to enhance the security of AI cloud infrastructure. Integrating NVIDIA BlueField DPUs, which feature a broad range of purpose-built, innovative security capabilities, the new Check Point AI Cloud Protect solution will help prevent threats at both the network and host levels.
Sentry announced the release of Autofix, an AI-powered feature to debug and fix code in minutes, saving important time and resources.
Apiiro announced a product integration and partnership with Secure Code Warrior, the agile developer security training platform, to extend its ASPM technology and processes to the people layer.
Progress announced that Progress® Semaphore™, its metadata management and semantic AI platform, was named a Champion in SoftwareReviews’ 2024 Metadata Management Emotional Footprint Awards.
The Cloud Native Computing Foundation® (CNCF®) has partnered with Udemy, an online skills marketplace and learning platform.
GitLab has acquired Oxeye, the provider of a cloud-native application security and risk management solution.