SOURCE: Cenzic


February 21, 2012 09:03 ET

Cenzic Introduces Application Security Intelligence to Combat New Mobile Application Threats

New Solution Secures Applications on Any Platform, Detects Hacker Exploits in Mobile Applications

CAMPBELL, CA--(Marketwire - Feb 21, 2012) - Cenzic Inc., the leading provider of application security intelligence to reduce security risks, today introduced a new application security intelligence™ service that secures mobile applications on all mobile platforms, via the cloud.

The new solution scans and provides risk mitigation recommendations for mobile applications with an emphasis on securing their back end web services. By protecting these mobile web services, Cenzic enables application developers and enterprises to effectively combat the next generation of mobile security attacks.

"Mobile applications have given us new ways to interact, play, and boost productivity, but they've also exposed a dark side," said John Weinschenk, CEO at Cenzic. "Hackers have sought to exploit the popularity of mobile applications due to their numbers and potential payoff. In the race to curtail these threats, many vendors have missed the mark by focusing exclusively on endpoint security -- securing the information on the mobile device itself. Back end services are the next frontier for hackers because they provide the biggest payoff. Compromising a mobile device gives them access to limited information, while compromising a back end service gives them access to potentially millions of records. The best way to thwart their efforts is for enterprises to secure all web services exposed to the Internet."

Cenzic's new mobile application security intelligence solution gives insight across all mobile applications and back end services, providing recommendations on how to reduce risks originating from specific applications, application developers, and businesses. Because of its cloud-based delivery method, Cenzic is the only company in the space that can provide complete remote black box testing for mobile applications without requiring source code or binaries.

"Research shows the threats associated with mobile app stores are concentrated around back end mobile web services," said John C. Mitchell, professor of computer science, Stanford University. "Vulnerabilities evolve even as deployed applications do not. Enterprises need to make sure all their web services for custom, cloud, and mobile applications are continuously scanned for vulnerabilities."

Professor Mitchell will be discussing recent research findings into security risks associated with Android mobile application marketplaces on Thursday, March 1, for more information visit:

Additional features of Cenzic's new mobile application security solution include:

  • Platform Independent Scanning - Cloud-based technology allows Cenzic to test the applications built on any platform, including iOS, Android, J2ME, and many more.
  • Device to Back End Server Communication Testing - Most companies only test the client source code to discover vulnerabilities in mobile applications. Cenzic tests the mobile application in action when it communicates sensitive user data to server, discovering sensitive data leakage, input validation, session and application logic related flaws.
  • Leveraging Common Architecture - Results delivery through secured dynamic web portal, providing users with report item drill down. Results can also be imported into the client's Cenzic Enterprise ARC Dashboard.

Cenzic's new mobile application security solution will be available in March 2012. Pricing starts at $7,000 per application per year. For more information, please visit:

Important Links
Cenzic Mobile Application Security Solution
Cenzic Website
Cenzic Twitter
Cenzic Facebook

Tweet this: @Cenzic secures mobile apps, web services, with new application security intelligence solution via the cloud

About Cenzic
Cenzic provides the leading application security intelligence™ platform to continuously assess Cloud, Mobile and Web applications to reduce online security risk. Cenzic's solutions scale from single applications to enterprise-level deployments with hybrid approaches that enable testing of applications at optimal levels. Cenzic helps brands of all sizes protect their reputation and manage security risk in the face of malicious attacks. Cenzic's solutions are used in all parts of the software development lifecycle, and most importantly in production, to protect against new threats even after the application has been deployed. Cenzic's application security intelligence platform is architected to handle web, cloud and mobile applications and is the first to provide risk reduction recommendations for business, application developers and specific applications. Today, Cenzic secures more than half a million online applications and trillions of dollars of commerce for Fortune 1000 companies, all major security companies, government agencies, universities and SMB companies.

Contact Information