Palo Alto, Calif. – Aug. 12, 2015 – Contrast Security, the application security software that hackers hate, today announced it has been positioned in the “Visionaries” quadrant of the Gartner 2015 Application Security Testing Magic Quadrant. “Visionaries in this Magic Quadrant,” Gartner noted, “are vendors that are advancing the emerging areas of IAST, mobile AST and RASP. The goal of IAST is fast and accurate security testing that is suitable for use in development, where minimal security expertise is present and accurate results are needed quickly (for example, to support agile development and DevOps development models). Mobile testing is a set of existing and new technologies and methods for ensuring the security of mobile applications. RASP is an emerging capability for the real-time protection of production applications that complements IAST.”*
According to the Gartner report, “attackers have increased the sophistication and frequency of their attacks, motivated financially by the theft of monetary assets, intellectual property and sensitive information. In most cases, users and systems interact with an enterprise’s sensitive data using applications — and it is within this application code that attackers are finding and exploiting vulnerabilities to get at the underlying data.”*
“With recent breaches like that of the U.S. Office of Personnel Management, AshleyMadison.com, and Sony, clearly billions of dollars that go toward endpoint and network security solutions are not effective,” said Bruce Fram, CEO of Contrast Security. “Industry research shows that application security flaws are the leading source of successful data breaches, yet more than 90% of applications are not secure. Real application security comes from accurately identifying and eliminating vulnerabilities across the software development lifecycle and delivering accurate protection for all production applications. This recognition from Gartner serves as further proof that we are delivering the interactive application security testing (IAST) and RASP solutions enterprises need today.”
Contrast actively monitors and diagnoses attacks, delivering full protection of the enterprise application attack surface. Only Contrast delivers a patented, fully integrated, instrumentation-based approach across the software development lifecycle (SDLC) for fast and accurate application security. This greatly accelerates the ability of businesses to deliver applications into production and gives security teams the enterprise-wide visibility and control needed to protect the valuable data hackers seek. Contrast Security recently introduced RASP capabilities in Contrast Enterprise, enabling organizations to use a single product for vulnerability remediation, attack protection, and application security visibility. This is the third consecutive year Contrast Security has been recognized as a Visionary in the industry by Gartner.
For a copy of the Gartner Magic Quadrant for Application Security Testing report, please click here.
About Contrast Security
Contrast Security is the application security software that hackers hate. It stops hackers from stealing data via web applications – the most successful attack vector. Industry research shows that application security flaws are the leading source of successful data breaches yet more than 90% of applications are not secure. Unlike endpoint and network security products that do not defend applications, Contrast uses deep instrumentation to strengthen applications before they’re deployed, protect them in production and provide visibility throughout the application lifecycle. As a result, organizations can act faster against threats and immediately reduce their attack surface. More information on Contrast Security can be found at http://www.contrastsecurity.com/.
About the Magic Quadrant
Gartner does not endorse any vendor; product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
* Source: Gartner Inc., “Magic Quadrant for Application Security Testing” by Neil MacDonald and Joseph Feiman, August 6, 2015.