K2’s Security Platform identifies 50 per cent more vulnerabilities than with standard DAST testing tools alone
K2 Cyber Security, provider of the next generation in application workload protection, announced that it has won top honours in five categories of the 2021 Cybersecurity Excellence Awards. In addition to winning Gold for RASP, K2 won Gold for Vulnerability Management and Silver for Best Cybersecurity Company, Zero-Day Exploit Detection, and Web Application Security. K2 was named a winner in every category for which the company was nominated. The Cybersecurity Excellence Awards recognise ground-breaking companies, leaders and products that demonstrate innovation and leadership in the information security community.
‘K2 is honoured to be recognised for our pioneering approach to runtime application security’, said Pravin Madhani, Co-Founder and CEO, K2 Cyber Security. ‘The prioritisation of speed over security has led to an increase in the number of vulnerabilities found in released code, resulting in costly attacks on web applications. K2’s next-generation RASP solution detects attacks on applications in real-time and helps to expose critical vulnerabilities during pre-production testing with the least false positives.’
The K2 Security Platform uses a patent-pending, deterministic approach to validate the proper execution of the code during run time. Traditional security approaches are limited to detecting attacks based on prior attack knowledge or require weeks or months to learn behaviour. By analysing the behaviour of the application in runtime, K2 protects web applications from zero-day, OWASP Top 10, and memory-based attacks, while providing virtual patching and protection for existing vulnerabilities in the application.
The Importance of RASP
Unlike perimeter solutions such as WAFs, a Runtime Application Self-Protection (RASP) solution sits on the same server as the application and provides continuous security for the application during runtime. By residing on the server, a RASP solution has complete visibility into the application, can analyse the application’s execution for better validation, and understands the context of the application’s interactions. RASP solutions detect vulnerabilities by being close to the application in a way that network perimeter security solutions can’t.
The latest revision of NIST SP800-53 includes important new requirements around application security, including RASP (Runtime Application Self-Protection) and IAST (Interactive Application Security Testing). These new additions to the NIST security framework acknowledge the need for better application security in the light of increasing data breaches and cyber-attacks.
Application Vulnerabilities on the Rise
K2’s Security Platform can be used to improve vulnerability detection and minimise false positives. K2 provides a line of code visibility to each vulnerability, specifying the exact filename and line of code where the discovered vulnerabilities are located, along with the full payload to reproduce the exploit. With specific vulnerability telemetry, K2 dramatically reduces remediation effort and improves security response time. In recent customer testing, K2 identified 50 per cent more vulnerabilities than with standard testing tools alone.
‘We congratulate K2 Cyber Security for its recognition as a multiple Gold award winner in the 2021 Cybersecurity Excellence Awards’, said Holger Schulze, CEO of Cybersecurity Insiders and founder of the 500,000-member Information Security Community on LinkedIn, which organised the 6th annual Cybersecurity Excellence Awards. ‘With over 600 entries in more than 100 award categories, the 2021 Cybersecurity Excellence Awards program was highly competitive and all winners reflect the very best in innovation and excellence in tackling today’s urgent cybersecurity challenges.’