SOURCE: Cenzic


August 11, 2011 07:00 ET

Cenzic Uncovers Facebook Security Issues and Launches LikeSec Program to Help Improve Security for Social Networking Sites

In Response to Facebook's Bug Bounty Program Cenzic Detects Security Issues Around Password and Log-Ins, Offers Free Security Scans for App Developers

CAMPBELL, CA--(Marketwire - Aug 11, 2011) - Cenzic Inc., the leading provider of Web application security assessment and risk management solutions, today announced that researchers in the company's CIA (Cenzic Intelligent Analysis) Lab have discovered vulnerabilities related to logins as well as weak security around passwords and secure connections. In a commitment to assisting Facebook, all social networking sites and third party application developers improve their Web application security posture, Cenzic has responsibly reported their findings to Facebook and is launching LikeSec, a new program aimed at helping social networking sites and developers of applications for those sites uncover security holes.

"Facebook estimates that users install 20 million applications every day and the number of these applications that are insecure is astounding. While Facebook's Bug Bounty program is commendable, it does not go far enough," said John Weinschenk, President and CEO for Cenzic. "Because the bounty program does not address third party applications, Cenzic is offering all social networking sites and their third party developers a quick and easy solution that they can use to test for vulnerabilities throughout the application lifecycle. We want to be sure that developers have the tools necessary to find these holes before hackers."

Social networking websites and applications not tested for even the simplest security vulnerabilities pose serious threats to users. Cenzic's new LikeSec program is offering all social networking sites and their developers a free "HealthCheck" which includes a vulnerability assessment using Cenzic's Cloud offering, ClickToSecure Cloud. In addition, for a limited time, the company will offer a 25 percent discount off the list price for any Cenzic solution to any social networking site and any third party application integrated with their sites.

For more information about Cenzic's LikeSec program, or to sign up, please visit

About Cenzic
Cenzic, a trusted provider of software and SaaS security products, helps organizations secure their websites against hacker attacks. Cenzic focuses on Web Application Security, automating the process of identifying security defects at the Web application level where more than 75 percent of hacker attacks occur. Our dynamic, black box Web application testing is built on a non-signature-based technology that finds more "real" vulnerabilities as well as provides vulnerability management, risk management, and compliance for regulations and industry standards such as PCI. Cenzic solutions help secure the websites of numerous Fortune 1000 companies, all major security companies, leading government agencies and universities, and hundreds of SMB companies -- overall helping to secure trillions of dollars of e-commerce transactions. The Cenzic solution suite fits the needs of companies across all industries, from a cloud solution (Cenzic ClickToSecure Cloud™), to testing remotely via our managed service (Cenzic ClickToSecure® Managed), to a full enterprise software product (Cenzic Hailstorm® Enterprise ARC™) for managing security risks across the entire company.

Contact Information