Quantcast
Search for: Search what?
Jul 4, 2008  
 Newsletters
Subscribe Free to Product News Alerts
  
Receive customized, daily news on the products you want.
Subscribe   View Sample
 Categories
Industrial Market Trends
OnSite WebReviews
Latest New Product News
Adhesives and Sealants
Agricultural and Farming Products
Architectural and Civil Engineering Products
Automatic ID
Chemical Processing and Waste Management
Cleaning Products and Equipment
Communication Systems and Equipment
Computer Hardware and Peripherals
Construction Equipment and Supplies
Controls and Controllers
Display and Presentation Equipment
Electrical Equipment and Systems
Electronic Components and Devices
Explosives, Armaments and Weaponry
Fasteners and Hardware
Fluid and Gas Flow Equipment
Food Processing and Preparation
Health, Medical and Dental Supplies and Equipment
HVAC
Labels, Tags, Signage and Equipment
Laboratory and Research Supplies and Equipment
Lubricants
Machinery and Machining Tools
Material Handling and Storage
Materials and Material Processing
Mechanical Components and Assemblies
Mechanical Power Transmission
Mining, Oil Drilling & Refining
Mounting and Attaching Products
Non-Industrial Products
Optics and Photonics
Packaging Products & Equipment
Paints and Coatings
Plant Furnishings and Accessories
Portable Tools
Printing and Duplicating Equipment
Retail and Sales Equipment
Robotics
Safety and Security Equipment
Sensors, Monitors and Transducers
Services
Software
Test and Measuring Instruments
Textile Industry Products
Thermal and Heating Equipment
Timers and Clocks
Transportation Industry Products
Vision Systems
Waste Handling Equipment
Welding Equipment and Supplies
Association News
Browse Categories
Browse Companies
 Press Releases
Products in the News
Company News
Mergers & Acquisitions
People in the News
Literature & Websites
 Resources
News Delivery Options
Mobile Edition
PR Resources
Licensing
Advertising
How to Write an effective Press Release
Trade Associations
Small Business Support
MEP


Advertisement

Story Tools
Tools for Registered Users
   Go Back | Send Story by email E-mail |  Print  
   Save Story |  Watch Company  
Related categories:   Software

directory searchSearch for suppliers of:
Data Security Software
View Company Profile at ThomasNet.com
company web site Company web site
more company news View more news from this company

Advertisement

Archive Press Release
(Products mentioned in this Archive Press Release may or may not be available from the manufacturer.)


Fortify Software, Inc

Release date: May 14, 2007

Fortify Software Extends Leadership in Detecting the Most Complete Range of Security Vulnerabilities

Latest rulepack update integrates intellectual property gained from Secure Software acquisition; includes protection from new attacks, such as JavaScript Hijacking

PALO ALTO, Calif., May 14 -- Fortify Software Inc., the market-leading provider of security products that help companies identify, manage and remediate software vulnerabilities to mitigate risks in enterprise security, today announced the release of a major update to the Fortify® Secure Coding Rulepacks. The update includes the integration of intellectual property obtained from Fortify's acquisition of Secure Software as well as coverage of critical vulnerabilities, such as JavaScript Hijacking, that pose a growing threat to modern software systems.

"Hacking techniques are getting more sophisticated by the day, making it critical for organizations to develop internal expertise to stay ahead," said Fortify Founder and Chief Scientist Brian Chess. "This rulepack update reflects a significant amount of new research in Ajax technology and hacking techniques. We're very excited to be in a position to help our customers secure their Web 2.0 applications."

"In addition to Fortify's ongoing internal research, this rulepack update integrates the very best from Secure Software's CodeAssure Knowledgebase," added Jacob West, Manager of Fortify's Security Research Group. "These additions enhance our current offering and will help our customers remain ahead of the hacking community."

Specifically, this rulepack update:

o Incorporates intellectual property from the Secure Software CodeAssure Knowledgebase o Detects the use of Ajax frameworks that are vulnerable to JavaScript Hijacking, including versions of Google Web Toolkit (GWT), Direct Web Remoting (DWR) and Microsoft ASP.NET AJAX (Atlas) o Provides detailed remediation advice to help developers secure Web 2.0 applications o Increases security coverage specific to Java 1.5 and the java.security package o Includes a variety of enhancements for software written in C and C++, including superior support for the GLib, Microsoft Windows, Pthread, and Sun RPC APIs

The integration of these new rules was conducted by Fortify's Security Research Group, a team of software security experts that focuses entirely on identifying new threats and developing ways to protect against them. Thanks to these efforts, Fortify continues to lead the industry in identifying threats and developing solutions to address them.

A full listing of security vulnerability categories can be viewed at http://www.fortifysoftware.com/vulncat/.

The rules developed by the Security Research Group are incorporated into Fortify's Suite of products:

o Fortify® SCA - The world's most proven and widely used source code security analysis solution o Fortify® Defender - A contextual Web application firewall that operates inside the application to provide the most accurate and comprehensive protection o Fortify® Tracer - An essential tool for improving application penetration tests; providing the exact line of code for each vulnerability and identifying parts of the application the test failed to reach

About JavaScript Hijacking

Last month, Fortify documented the first major vulnerability associated specifically with Web 2.0 and Ajax-style software. Termed JavaScript Hijacking, the vulnerability allows an attacker to steal critical data by emulating unsuspecting users. Fortify released an in-depth security advisory that details this vulnerability, how enterprises can determine if they are vulnerable, and how they can fix the issue.

A copy of this advisory can be downloaded at http://www.fortifysoftware.com/advisory.jsp.

About Fortify Software, Inc.

Fortify® Software products protect companies from the threats posed by security flaws in business-critical software applications. Its software security products-Fortify SCA, Fortify Manager, Fortify Tracer and Fortify Defender-drive down costs and security risks by automating key processes of developing and deploying secure applications. Fortify Software's customers include government agencies and FORTUNE 500 companies in a wide variety of industries, such as financial services, healthcare, e-commerce, telecommunications, publishing, insurance, systems integration and information management. The company is backed by world-class teams of software security experts and partners.

More information is available at http://www.fortifysoftware.com/.

Source: Fortify Software, Inc.

Web site: http://www.fortifysoftware.com/

Company Information:
Name: Fortify Software, Inc
Address: 2215 Bridgepointe Pkwy, Suite 400
City: San Mateo
State: CA
ZIP: 94404
Country: USA
Phone: 650-358-5600
FAX: 650-358-4600
http://www.fortify.com
More New Product News from this company:
Apr 2, 2008 - Software Suite provides comprehensive software security.
Nov 8, 2006 - Software optimizes black box security testing efficiency.
Mar 3, 2006 - Software delivers security testing to QA professionals.
Feb 21, 2006 - Analysis Tools identify/resolve software security risks.
Nov 30, 2004 - Security Tools help resolve software vulnerabilities.

Other News from this company:
Oct 01, 2007 - U.S. Air Force Bolsters itself for Cyber War by Selecting Fortify's Application Security Suite for Worldwide Development Teams
Mar 19, 2007 - Fortify Software Offers Protection for Vulnerable Web Applications with Fortify Defender for .NET
Feb 01, 2007 - Two Fortify Software Products Named as Finalists in 17th Annual Jolt Product Excellence Awards
Jan 30, 2007 - Fortify Software Expands Vulnerability Detection to Combat New Security Threats against Software
Jan 17, 2007 - Fortify Software Announces Definitive Agreement to Acquire Secure Software, Inc.
Jul 31, 2006 - Fortify Software Contributes Software Security Research to Open Source Community
May 15, 2006 - Fortify Software Sponsors FindBugs Open Source Project
Jan 23, 2006 - Fortify Software to Launch Application Security Solution at DEMO 2006
Jan 16, 2006 - /C O R R E C T I O N -- Fortify Software, Inc./
Jan 16, 2006 - 'Extra' - Fortify Software Launches Online Software Security Community Site

Advertisement

More related stories:
Jul 3, 2008 - Software centralizes Microsoft workload protection/recovery.
Jul 3, 2008 - Appliances offer comprehensive security for SIP trunks.
Jul 3, 2008 - Authentication System promotes security and convenience.
Jul 3, 2008 - Software provide access to attachments blocked by Outlook.
Jul 2, 2008 - Firewall provides geo-location based filtering.
Jul 1, 2008 - Bar Code Software facilitates age verification process.
Jun 30, 2008 - Laptop Software offers theft recovery and identity protection.
Jun 30, 2008 - Email Encryption Software delivers privacy and compliance.
Jun 30, 2008 - System identifies and responds to next-generation threats.
Jun 30, 2008 - Software provides automated discovery of sensitive data.
Jun 27, 2008 - Software ensures sensitive data is secure and auditable.
Jun 24, 2008 - Computer Security Solution keeps mobile data safe.
Jun 24, 2008 - Software helps prevent/reduce damage from fraud.
Jun 23, 2008 - Software safeguards valuable PC files in digital vaults.
Jun 20, 2008 - Software offers hard disk backup solution.
Jun 19, 2008 - Anti-Spam Software enables multi-stage message filtering.
Jun 19, 2008 - Software recovers lost/deleted data from Windows OS.
Jun 19, 2008 - Compliance Software offers policy management capabilities.
Jun 17, 2008 - Software recovers passwords from more than 35 programs.
Jun 17, 2008 - Software proactively helps prevent fraud loss.


Story Tools
Tools for Registered Users
   Go Back |  Send Story by email E-Mail  |  Print  |  Post   
   Save Story |  Watch_Company  


Get Copyright Clearance Want to use this article? Click here for options!
Copyright 2006 Thomas Publishing Company

 

Category Advertisements
Newsroom Advertisers
http://www.rhhfoamsystems.com
Versi-Foam- portable systems come ready to use.

Industrial Vacuum Cleaners from VAC-U-MAX. Field Proven for over 50 years.

Pressurex® Surface Pressure Indicating Sensor - Contact Us For A Free Sample
Brought to you by Thomasnet.com        Browse ThomasNet Directory

News provided by ThomasNet Industrial Newsroom® (TIN). TIN is a comprehensive source of new and timely product information in the industrial marketplace. TIN supplies new product information to the web sites, e-marketplaces and print publications that serve the industrial marketplace. For press release submissions please go to http://www.productnews.com/SubmitPRPage.html. BY ACCESSING, BROWSING AND/OR USING THIS WEB SITE AND/OR ANY WEB SITES PROVIDED BY ProductNews.com, YOU AGREE TO BE BOUND BY THE TERMS OF USE AGREEMENT.

Copyright © 2008 Thomas Publishing Company
Terms of Use - Privacy Policy



1.18