Veracode Announces First Solution to Secure Mobile Applications and "Verified by Veracode" Program for Mobile ISVs

  BURLINGTON, MA, Jun 30 (MARKET WIRE) -- 
Veracode Inc., provider of the world's leading Application Risk
Management Platform, today announced the expansion of its
SecurityReview(R) cloud-based subscription service to support mobile
applications. With more than 100,000 mobile applications already in the
market and millions of mobile users accessing critical business data, the
security risk posed by these applications is staggering. Veracode
announced immediate availability for Windows Mobile with near term support
for other platforms such as RIM BlackBerry, Google Android and Apple
iPhone. Veracode's SecurityReview is the first solution to enable
enterprises and software vendors to assess the security risk of mobile
applications before they are shipped or deployed to combat the growing
number of data breaches and compliance failures.

    Enterprises are increasingly transacting critical data with customers and
remote workers through mobile applications, yet the security of these
applications goes largely untested. Source code for mobile applications is
rarely available, as most software is written by third parties and is
insufficient in finding vulnerabilities such as backdoors, malicious code
or flaws introduced by third party libraries and components. Veracode
provides the only solution to assess binary code -- the way attackers see
it -- enabling organizations to apply a common, holistic approach to
secure both their mobile and server applications regardless of whether
they are internally developed, purchased from a commercial vendor,
outsourced or open source.

    "Mobile applications are one of the fastest growing segments of the
software market," said Diana Kelley, principal analyst, Security-Curve.
"Insecure software which processes sensitive data poses a risk to
enterprises, regardless of the platform it is run on. Enterprises need to
apply the same risk assessment and security analysis to mobile
applications as they do to those housed in data centers."

    "Today, there isn't a major financial institution, software vendor or
healthcare provider that doesn't leverage mobile devices as part of their
extended enterprise," said Matt Moynahan, CEO of Veracode. "These
applications transact financial data, personally identifiable information
(PII) and personal health information (PHI) and are subject to the same
types of attacks that traditional software has been plagued with.
Veracode's support of mobile applications enables enterprises to protect
their employee, customer and partner data through a single turnkey
solution, while demonstrating our equal commitment to the open source and
commercial ISV community to provide an easy and cost-effective way to
achieve independent verification that they have taken proper care to meet
mobile device security requirements of their corporate customers."

    The Verified by Veracode Software Ratings Program is a quality indicator
for the security level of applications and software components. By
expanding this program to cover mobile software, providers of mobile
applications can now protect their brand and platform with a consistent
and automated security verification program for mobile applications
developed internally or by third parties. Organizations who have achieved
"Verified by Veracode" status have made reasonable efforts to demonstrate
that they have taken due care to ensure the security of their
applications and their software has been assessed against industry
standards for software assurance.

    Veracode will be hosting a webinar event on The Challenges of Developing
Secure Mobile Applications on Tuesday, July 14th at 1pm ET, featuring
Veracode's Chief Scientist, Christien Rioux. Register for the webinar
event at:

    http://www.veracode.com/resources/webinar-mobile-applications-sign-up.html

    About Veracode

    Veracode provides the world's leading Application Risk Management
Platform. Veracode SecurityReview's patented and proven cloud-based
capabilities allow customers to govern and mitigate software security
risk across a single application or an enterprise portfolio with
unmatched simplicity. Customers include the world's largest and most
security aware organizations in every industry. Recognized as a Gartner
"Cool Vendor" and with The Wall Street Journal's "Technology Innovation
Award," The Banker's "Information Security Project of the Year" with
Barclays, SC Magazine's "Best Vulnerability Assessment Solution,"
Information Security "Readers' Choice Award," and AlwaysOn Northeast's
"Top 100 Private Company," Veracode is Software Security Simplified(TM).
For more information, visit www.veracode.com.

    

Contact:
Beth Cossette
Lois Paul & Partners
781-782-5715
Beth_Cossette@lpp.com

Copyright 2009, Market Wire, All rights reserved.

-0-