NowSecure recently added API Security Testing to its portfolio of automated mobile application security testing solutions. Based on the OWASP API Security Top 10, the new capabilities enable app development and security teams to dynamically discover API risks and vulnerabilities and address them quickly before software release. NowSecure API Security Testing taps the NowSecure advanced dynamic test engine to discover and generate a list of all mobile-connected APIs; warn of any mobile-connected APIs that may violate OWASP API Top 10 and recommend further action; and help users identify unapproved “shadow APIs” that put their businesses at risk.
NowSecure announces the release of NowSecure Workstation 6.0. The turnkey hardware and software kit that empowers analysts to quickly conduct deep mobile application security assessments of Android and iOS apps and generate customized reports with actionable results users can trust. Traditional mobile app penetration testing can consume at least two weeks of manual effort and requires ample expertise and an abundance of open-source tools. NowSecure Workstation reduces testing time from weeks to mere hours, driving dramatic 10x productivity gains and scalability.
In keeping with our history of innovation and commitment to security, we are pleased to announce that NowSecure has achieved a significant milestone in completing a SOC 2 security audit. The report attests that NowSecure has controls which are suitably designed and effectively operated to meet our commitment to customer security. NowSecure is the first mobile app security vendor to achieve SOC 2 compliance.
Mobile apps are critical to enabling the U.S. federal agencies such as the U.S Department of Defense to meet their mission. Core to that mission is ensuring a high security testing bar for the mobile apps they build and use. Until now, completing that security compliance testing has been a complicated, time-consuming manual process that was built for web apps, not mobile apps. Today, NowSecure is announcing the world’s first automated NIAP Mobile App Vetting solution that supports NIAP v1.3 Mobile App Vetting Protection Profile for Application Software.
In accordance with our Pandemic Plan, NowSecure is taking proactive steps to help ensure the health and safety of our personnel, customers and partners while maintaining continuity of our business operations. We are very focused on serving and supporting our customers through these challenging times. As companies move to remote work, mobile app security and privacy is now more important than ever. The attackers will not stop due to COVID-19 and sadly will attempt to exploit the situation.
As a longtime innovator of automated mobile appsec testing software and services, NowSecure continues to embrace emerging technology by delivering the world’s first Interactive Application Security Testing (IAST) technology purpose-built for mobile. Sometimes called DAST 2.0 or the next generation of DAST by the security industry, this advancement provides security analysts and app developers with greater visibility into app vulnerabilities and privacy issues.