SOURCE: Cenzic


October 13, 2010 09:41 ET

Experts View Corporate Complacency and Web Developer Pressure as Emerging Threats for Web Security

New Web Security 'MythBusters' Interview Features Expert From Symantec

SANTA CLARA, CA--(Marketwire - October 13, 2010) -  Cenzic Inc., the leading provider of Web application security solutions, today announced new additions to its popular "MythBusters" podcast -- an online interview series showcasing industry luminaries, influential executives, newsmakers and opinion leaders in one-on-one interviews about the state of Web application security. Previous interviewees have included a former Whitehouse CIO, security experts from the Department of Homeland Security (DHS), Verizon, IBM, Deloitte & Touche, and many more.

"Danger is looming for countless organizations when it comes to Web application security because its biggest misconceptions have become so pervasive," said Mandeep Khera, host of Application Security MythBusters and CMO at Cenzic. "Those myths can give companies complacency resulting in a breach costing them millions of dollars. This series was created to educate the masses on Web application security by providing honest insight from the most talented minds in the security industry."

The newest addition to the series is an interview with Min Ju, security strategist at Symantec.

Notable interview excerpts

  • When asked about the reason behind the weakness of current Web applications, Min Ju responds: "Web development teams have a lot of pressure to get a Web application out. They need to commit to a deadline and spend more time writing the code then they do auditing and fixing it. They figure they can work on security afterwards."

  • When asked about hesitations toward adoption of Web application security in light of growing security concerns, Min Ju responds: "They think of it as fear mongering, but when you show them the exploits in their own code, attitudes change completely. Regular auditing and security testing is important, but it's like being 'behind the eight-ball.'"

For the complete interviews, please visit

Cenzic's Web Application Security "MythBusters" series explores issues around Web application security in various themes, with podcasts featuring industry experts and leaders. The audio and video podcasts focus on key Web security issues allowing individuals to learn about some of the greatest security myths that permeate the IT and security industries.

About Cenzic
Cenzic, a trusted provider of software and SaaS security products, helps organizations secure their websites against hacker attacks. Cenzic focuses on Web Application Security, automating the process of identifying security defects at the Web application level where more than 75 percent of hacker attacks occur. Our dynamic, black box Web application testing is built on a non-signature-based technology that finds more "real" vulnerabilities as well as provides vulnerability management, risk management, and compliance for regulations and industry standards such as PCI. Cenzic solutions help secure the websites of numerous Fortune 1000 companies, all major security companies, leading government agencies and universities, and hundreds of SMB companies -- overall helping to secure trillions of dollars of e-commerce transactions. The Cenzic solution suite fits the needs of companies across all industries, from a cloud solution (Cenzic ClickToSecure Cloud™), to testing remotely via our managed service (Cenzic ClickToSecure® Managed), to a full enterprise software product (Cenzic Hailstorm® Enterprise ARC™) for managing security risks across the entire company.

Contact Information