In a significant move to bolster its application security platform, Veracode, a leading cloud-based security provider, has acquired essential technology assets from Phylum. This acquisition includes Phylum’s advanced malicious package analysis, detection, and mitigation capabilities. The integration aims to enhance Veracode’s proficiency in identifying and blocking harmful code within open-source libraries, thereby fortifying its software supply chain risk management strategies. This strategic acquisition will grant Veracode customers a more comprehensive understanding of the risks associated with open-source code, thus improving their defenses against emerging cybersecurity threats.
Enhancing Application Security and Risk Management
Integration of Malicious Package Analysis Technology
The addition of Phylum’s technology assets will significantly benefit Veracode’s security research team by providing robust tools to safeguard customers against evolving threats. Ravi Iyer, Veracode’s Chief Product Officer, stated that their partners would play a crucial role in introducing these impactful solutions to the market. By 2025, Veracode’s partners will have access to Phylum’s malicious package database, which will be seamlessly integrated into Veracode’s software composition analysis (SCA) product. This integration will enable customers to effectively identify and rank the risks posed by open-source code flagged as containing malicious content.
Moreover, Veracode plans to introduce a package detection firewall, which will act as a vital control point within the software development lifecycle (SDLC). This move aims to offer an additional layer of protection to organizations that increasingly rely on open-source software. With the rise in software supply chain attacks, the synergy between Veracode’s and Phylum’s technologies will allow customers to better detect and block malicious packages. The ultimate goal is to provide enhanced protection and peace of mind to organizations grappling with the complexities of modern-day cybersecurity threats.
Strengthening the Security Research Team
The integration also aims to fortify Veracode’s security research team by equipping them with advanced technology to combat emerging threats. The synergy with Phylum’s technology will offer an unprecedented depth of analysis and mitigation capabilities. This will enable Veracode’s team to stay ahead of potential threats and deliver superior protection to their clients. As the threat landscape continues to evolve, having access to cutting-edge technology will be a game-changer for Veracode’s research team.
Aaron Bray, CEO and co-founder of Phylum, expressed his excitement about merging with Veracode. He highlighted the potential value this partnership could bring to customers worldwide through their combined advanced research capabilities. Together, Veracode and Phylum can deliver more comprehensive and effective solutions against software supply chain threats. This merger signifies a mutual commitment to excellence in security and innovation.
Strategic Investments for Future Protection
Expanding Fight Against Software Supply Chain Threats
The acquisition of Phylum’s technology is a strategic investment by Veracode to enhance their security measures and combat software supply chain threats more effectively. With the amalgamation of Phylum’s malicious package analysis technology, Veracode can provide its clients with advanced tools for threat mitigation. Channel partners will become more effective in helping their customers mitigate these threats, thanks to the integration of Phylum’s technology within Veracode’s platform.
This strategic move underscores Veracode’s commitment to investing in cutting-edge technology to ensure robust defenses against increasingly sophisticated cyber threats. The acquisition not only enhances Veracode’s product offerings but also extends its capabilities to protect customers across the globe. It represents a forward-thinking approach to cybersecurity, recognizing the importance of staying ahead in an ever-evolving threat landscape.
Enhancing Partner Ecosystems
In a noteworthy development to enhance its application security platform, Veracode, a prominent cloud-based security firm, has acquired crucial technology assets from Phylum. This acquisition centers on Phylum’s sophisticated malicious package analysis, detection, and mitigation capabilities, which are set to be integrated into Veracode’s existing framework. The goal is to strengthen Veracode’s ability to discover and prevent harmful code within open-source libraries, solidifying its software supply chain risk management strategies. With this strategic acquisition, Veracode customers will gain a more thorough understanding of the risks tied to using open-source code. This enhancement is poised to significantly bolster their defenses against the evolving landscape of cybersecurity threats. By incorporating Phylum’s technology, Veracode aims to offer more robust protection and insight into emerging vulnerabilities, thereby providing a superior security solution for their users and addressing critical challenges in today’s digital environment.
