OAK PARK, IL – Sept. 20, 2016 – NowSecure today announced the availability of a first-of-its-kind automated mobile app security testing solution, Lab Automated, that helps enterprises reduce risk resulting from insecure apps by identifying and fixing security flaws prior to release and faster than ever before possible. Security teams, quality assurance groups, and development organizations can request a live Lab Automated demonstration or trial at the NowSecure website, https://www.nowsecure.com.
Enterprises are adopting and developing mobile apps at breakneck speeds. Market intelligence firm IDC forecasts a fourfold increase in the number of mobile apps developed by enterprises by 2018. Security teams struggle to build mobile app security testing processes that keep pace with and fit into modern agile development practices. Gartner Inc. advises enterprises to assume that testing will reveal exploitable security vulnerabilities in 50 percent of apps and predicts that 75 percent of mobile security breaches will result from insecure mobile apps by 2017.
“Automated security testing is the future for mobile security,” said Justin Somaini, Chief Security Officer at SAP. “Integrating automated security testing technology with the build-and-deploy cycle pushes security testing for mobile apps out to the development teams, which results in more secure apps while allowing the security teams to focus on complex penetration testing.”
Unlike current alternatives, Lab Automated automates static and dynamic app security testing (SAST and DAST) on demand by installing and running apps on physical Android and iOS devices in the cloud. Performing static and dynamic analysis on actual devices, as opposed to emulators, creates a realistic testing environment leading to more accurate results and fewer false positives.
“Automating mobile app security assessments is an essential part of an enterprise mobile app security program,” said NowSecure CEO Andrew Hoog. “Lab Automated automatically identifies security flaws during the app build-and-test cycles, and does in minutes what previously took days and weeks. Now for the first time an automated security testing tool that runs on actual devices integrates with a DevOps build-and-deploy cycle.”
Many enterprise mobile app security programs consist of time-intensive manual testing performed by distributed teams using unstable, unsupported open-source or incomplete commercial technologies. Setting-up, maintaining and cobbling together reports from these tools exhausts security practitioners’ already limited, not to mention expensive, time.
To free security teams up for more in-depth app analysis, an API integrates Lab Automated directly into the development technology stack so that every time a developer submits an app build, they receive immediate, detailed feedback about vulnerabilities in the app along with clear instructions about how to fix them.
For more details about how Lab Automated supports a consistent, scalable mobile app security program and to watch a video walk-through of the solution, visit the NowSecure website at https://www.nowsecure.com/blog/2016/09/19/announcing-nowsecure-lab-automated/.
As recognized experts in mobile security and privacy, NowSecure protects the global mobile app economy and safeguards the data of millions of mobile app users. Built on a foundation of standards, NowSecure empowers the world’s most demanding organizations with security automation to release and monetize 30% faster, reduce testing and delivery costs by 30% and reduce appsec risk by 40%. Only NowSecure offers a full solution suite of continuous security testing for DevSecOps, mobile app supply-chain monitoring, expert mobile pen testing as a Service (PTaaS), and training courseware. NowSecure actively contributes and supports the mobile security open-source community, standards and certification including OWASP MASVS, ADA MASA, and NIAP, and is recognized by IDC, Gartner, Deloitte Fast 500, and TAG Cyber.