Veracode expand its coverage for detecting Backdoors and Malicious Code Detection
March 2009 by Marc Jacob
Veracode, the provider of on-demand application security testing solutions, announced that it has expanded its coverage for detecting backdoors and malicious code embedded in legitimate software as part of Veracode’s SecurityReview® solution for developers and purchasers of software. This announcement builds upon Veracode’s industry-leading technology and research which introduced the industry’s first comprehensive taxonomy of backdoors in 2007.
Veracode has added the ability to detect growing threats commonly known as Time Bombs, Hardcoded Cryptographic Constants and Credentials, Deliberate Information and Data Leakage, Rootkits and Anti-Debugging techniques in applications. These targeted threats are hidden in software and mask their presence to evade detection by traditional security technologies. Coupled with Veracode’s existing detection capabilities, this forms the most complete support of backdoor and malicious code available in the market.
Availability:
The new scanning technology to identify additional backdoors and malicious code will be available in Q2 2009. Veracode’s SecurityReview is provided as an on-demand Software-as-a-Service (SaaS) solution, which means there is no on-premises hardware or software to upgrade or additional maintenance fees required for customers to take advantage of this enhanced functionality.