Azul Systems announced that its new Azul Vulnerability Detection software-as-a-service offering has launched, providing enterprise users with continuous detection of known security vulnerabilities in Java applications and adding another layer of protection against software supply chain attacks, SiliconANGLE reports.
The agentless cloud SaaS solution enables ongoing threat detection and continuous code assessment without impacting performance. It is built to interoperate with Spring, Micronaut, Quarkus, Tomcat and other enterprise Java application software frameworks, as well as infrastructure including Kafka, Hive, Spark, Cassandra, Hadoop and others.
Azul Vulnerability Detection makes security a byproduct of simply running your Java software. Our new product fills a critical gap in customers security strategies -- detecting vulnerabilities at the point of use in production, the endpoint of the software supply chain, explains Azul co-founder and CEO Scott Sellers.
The rollout comes after the release of the " Emerging Tech: Bill of Materials is Critical to Software Supply Chain Management report by Gartner, which predicted that software supply chain attacks will affect 45% of organizations globally by 2025, and the recent high-profile Log4Shell software supply chain attack that was described by the U.S. Department of Homeland Security as an endemic vulnerability.
Numerous zero-day flaws in Windows, Google Chrome, and Mozilla Firefox were noted by Google's Threat Analysis Group to have been leveraged by Spanish custom security solutions provider Variston IT as a means to distribute spyware, TechCrunch reports.