Latest news with #Contrast
Business Wire
04-08-2025
- Business
- Business Wire
Contrast ADR Marks One Year with Surging Growth, Expands Reach with New Developer and SecOps-Focused Integrations
LAS VEGAS--(BUSINESS WIRE)--One year after launching Application Detection and Response (ADR) at Black Hat, Contrast Security is accelerating its mission to secure modern software from the inside out. While legacy AppSec tools struggle to keep pace with AI-accelerated pipelines and cloud-native environments, Contrast has delivered a new approach built on runtime context, AI-driven remediation, and shared visibility across Dev, AppSec, and SecOps. Contrast Security's ADR adoption reached 40% of its customer base, reflecting rapid market validation and strong demand for a runtime-native approach to securing applications and APIs in production. The Northstar release, announced earlier this year, marked a major evolution of the platform. It unified detection, remediation, and observability into a single experience, powered by the Contrast Graph, a real-time behavioral model of the application layer that maps attack surface, defenses, vulnerabilities and more, providing the rich context app/API security demands. Northstar also introduced SmartFix, Contrast's agentic AI for auto-generating validated code fixes, and Deployment Hub with Flex Agent, which makes it easy to scale ADR across complex enterprise environments. According to Contrast's Software Under Siege 2025 report, application-layer attacks now occur every 3 minutes, yet most security teams lack the runtime context to detect or respond in time. This week, Contrast is expanding the reach of Northstar with two new ecosystem integrations that make runtime security even more accessible and effective: GitHub Copilot Integration – Developers can now apply AI-generated fixes that are validated by live runtime evidence, bridging the gap between detection and developer action. Unlike traditional AI suggestions that lack runtime context, Contrast SmartFix works with GitHub Copilot to generate secure code fixes based on runtime vulnerability details, proven exploitability, attack details, defenses available, and context from the Context Graph. This streamlines remediation by delivering ready-to-review pull requests that are both context-aware and safe for production, helping developers fix real issues faster without disrupting their workflow and ship with confidence. Sumo Logic Integration – Contrast attack telemetry now flows directly into Sumo Logic, enabling SOC teams to triage, investigate, and respond with full application-layer context. Security teams gain real-time visibility into exploit attempts, vulnerable code paths, and application behavior, all enriched through the Contrast Graph. By integrating runtime intelligence into existing SIEM workflows, organizations can stop breaches faster, reduce mean time to detect (MTTD), cut investigation overhead, understand the blast radius and close the loop between AppSec and incident response. The updates to the Northstar release align with Contrast's vision of securing software across the full lifecycle, from production back to code, with a single, unified platform. Contrast ADR is the first runtime-native platform for defending applications in production, built to detect, block, and remediate real threats as they happen. By uniting developers, AppSec, and SecOps around the same runtime intelligence, Contrast ADR delivers the shared context teams need to act faster, fix smarter, and stop chasing noise. 'Legacy tools show you possible issues. Contrast ADR shows you what's actually happening, so teams can act fast and act right,' said Jeff Williams, CTO and Co-founder of Contrast. 'From the inside out, Contrast is securing what matters most: the code that's running right now.' The adoption of ADR has been especially strong in industries with the highest security and compliance demands, including financial services, healthcare, manufacturing, and technology. Organizations in these sectors are replacing legacy scanners and fragmented workflows with Contrast's unified runtime platform to reduce time-to-fix, eliminate false positives, and improve real-world outcomes. 'ADR has always been about helping teams focus on what matters most by seeing what's actually happening within their apps,' said Faya Peng, Head of Product and General Manager of ADR at Contrast Security. 'These new integrations with GitHub Copilot and Sumo Logic just make that easier. Developers and security teams can now work from the same real-time data and take action faster, all within the tools they're already using.' To see Contrast ADR in action, visit Booth #1861 at Black Hat USA 2025, or learn more at About Contrast Security Contrast Security is the global leader in Application Detection and Response (ADR), empowering organizations to see and stop attacks on applications and APIs in real time. Contrast embeds patented threat sensors directly into the software, delivering unmatched visibility and protection. With continuous, real-time defense, Contrast uncovers hidden application-layer risks that traditional solutions miss. Contrast's powerful Runtime Security technology equips developers, AppSec teams and SecOps with one platform that proactively protects and defends applications and APIs against evolving threats.
Techday NZ
12-06-2025
- Business
- Techday NZ
Contrast Northstar brings real-time AI to application security
Contrast Security has announced the general availability of its new platform, Northstar, aimed at providing a unified application security experience for development, AppSec, and security operations teams. The Northstar release introduces features which allow teams to monitor application-layer attacks in real time, mitigate breaches, and remediate vulnerabilities using artificial intelligence within minutes, according to the company. The Contrast Graph Central to the platform is the Contrast Graph, which creates a digital twin of an organisation's application and API environment. The Graph maps live attack paths, monitors runtime behaviour, and visualises the connection between vulnerabilities, threats, and system assets to facilitate prioritisation and remediation. The company states that this live, dynamic context is intended to "eliminate the guesswork that plagues traditional tools" by focusing efforts on actual risk and allowing targeted, automated responses. Contrast's approach combines runtime data, contextual analysis, and AI-enabled auto-remediation in an effort to reduce noise and enable precise responses. Tyler Shields, Principal Analyst at Enterprise Strategy Group, said: "Connecting security operations processes with application security incident and vulnerability detection capabilities is a significant step towards breaking down the silos that exist between developers, application security, and security operations teams. This broad contextual analysis offering lends itself well to advanced AI-based prioritisation and automated remediation, which are the key security outcomes required by security organisations today." Runtime intelligence The Northstar release is designed to give Security Operations and AppSec teams a real-time understanding of application-layer threats as they occur. Active vulnerabilities can be auto-remediated with the new Contrast AI functionality, using live context and dynamic risk scoring to support decision making. The unified platform offers different views tailored to specific roles, so that developers can focus on prioritising remediation while SOC teams can identify and act on the most critical threats. Martha Gamez-Smith, Information Security Officer at Texas Computer Cooperative | Education Service Center, Region 20, commented: "We are excited to see the new features and feel that Contrast is set apart from other competitors, beyond reach. It makes our jobs better and easier. The real data will allow our team to take action more efficiently." Contrast Northstar pairs runtime intelligence with automation, and aims to streamline how organisations defend software against evolving risks by providing a shared perspective for development, security, and operational teams. Unified user experience The new release delivers a visual experience built around the Contrast Graph, providing real-time visibility into attacks, vulnerabilities, and business risks. These views can be tailored for each team and integrated with existing developer, CNAPP, and SIEM tools. The Contrast Graph functions as a live map, helping teams to better understand the relationships between vulnerabilities, threats, and assets to enable collaborative response. Key features Northstar features dynamic risk scoring that prioritises vulnerabilities based on their context in production, including architecture, threats, and business risk. The platform unifies Application Detection and Response (ADR) with Application Security Testing (AST), providing shared context for incident and vulnerability correlation. This aims to break down silos between teams and improve the speed and accuracy of threat resolution. The Contrast AI SmartFix capability utilises Graph data to generate specific remediation plans, write code, create test scripts, and draft pull requests. The Contrast MCP Server makes runtime insights available across environments, supporting future AI-driven use cases. The Deployment Hub is designed to simplify onboarding and the roll-out of updates across complex environments, helping organisations to deploy protection faster. The Flex Agent streamlines the process of agent deployment and updates, requiring no manual configuration and lessening installation times. Northstar integrates with established security products such as Splunk, Wiz, and Sumo Logic, and the company says that additional integrations and strategic partnerships will be announced in the coming weeks. Discussing the release, Jeff Williams, OWASP Founder, and Contrast Security Founder and CTO, said, "Northstar is the culmination of everything we've learned about defending modern software. We didn't just bolt together another set of tools—we reimagined AppSec from first principles. By combining runtime observability, real-time graph context, and AI-powered automation, we built a platform that doesn't just find problems—it understands them, prioritises them, and helps teams fix them fast. This is the platform I've wanted since OWASP's earliest days—one that doesn't just generate alerts, but actually defends the software that powers our world." The Northstar release is now available to partners and enterprises looking to update their application security programmes via a unified, real-time security operations and remediation toolset. Additional partnerships and integrations are set to follow in the coming weeks.
Associated Press
09-06-2025
- Business
- Associated Press
Contrast Introduces the First Unified Platform to See Application-Layer Attacks, Stop Breaches, and Remediate Vulnerabilities with AI
PLEASANTON, Calif.--(BUSINESS WIRE)--Jun 9, 2025-- Contrast Security, the global leader in Application Detection and Response (ADR), today announced the general availability of Northstar, a major release for the company that redefines how businesses see cyberattacks, stop breaches, and protect their applications and APIs. This is the industry's first platform to unite developers, security, and operations teams through an integrated user experience. Contrast pairs runtime data and contextual analysis with AI-powered auto-remediation to cut response times and eliminate noise, marking a breakthrough in application-layer security. The Contrast Graph: Live Runtime Insight That Drives Precision At the core of the platform is the Contrast Graph, which powers its most advanced capabilities, including optional agentic AI workflows that help teams respond faster and fix smarter. The Contrast Graph builds a real-time digital twin of an organization's application and API environment, mapping live attack paths, correlating runtime behavior, and exposing how vulnerabilities, threats, and assets are connected. This deep, dynamic context eliminates the guesswork that plagues traditional tools, enabling accurate, automated prioritization and remediation - so teams can focus on real risk and act with confidence. Tyler Shields, Principal Analyst at Enterprise Strategy Group, says, 'Connecting security operations processes with application security incident and vulnerability detection capabilities is a significant step towards breaking down the silos that exist between developers, application security, and security operations teams. This broad contextual analysis offering lends itself well to advanced AI-based prioritization and automated remediation, which are the key security outcomes required by security organizations today.' Runtime Intelligence That Sees, Stops, and Solves With the Northstar release, Security Operations and AppSec teams can, for the first time, see application-layer attacks as they happen, stop them instantly, and auto-remediate active vulnerabilities with the new Contrast AI. These capabilities leverage Contrast's powerful real-time context - paired with dynamic risk scoring that reflects exploitability, impact, and live attack activity, so teams always know where to focus. The unified platform provides views that are tailored to each role, enabling developers to prioritize remediation while SOC teams zero in on the most critical threats to limit damage. 'We are excited to see the new features and feel that Contrast is set apart from other competitors, beyond reach. It makes our jobs better and easier. The real data will allow our team to take action more efficiently,' said Martha Gamez-Smith CISSP, PMP, SSCP, Information Security Officer - Texas Computer Cooperative | Education Service Center, Region 20. Jeff Williams, an OWASP Founder, Contrast Security Founder and CTO, said, 'Northstar is the culmination of everything we've learned about defending modern software. We didn't just bolt together another set of tools—we reimagined AppSec from first principles. By combining runtime observability, real-time graph context, and AI-powered automation, we built a platform that doesn't just find problems—it understands them, prioritizes them, and helps teams fix them fast. This is the platform I've wanted since OWASP's earliest days—one that doesn't just generate alerts, but actually defends the software that powers our world.' ContrastNorthstarRelease Highlights: A Unified Perspective, Tailored for Every Team Contrast delivers a new visual user experience built around the Contrast Graph, giving Dev, Sec, and Ops teams real-time visibility into attacks, vulnerabilities, and business risk - all in views tailored to their roles and integrated into the developer, CNAPP, and SIEM solutions they use every day. The Contrast Graph acts as a live map of the application and API environment, showing how vulnerabilities, threats, and assets are connected so teams can act faster, together. Focus on What Matters Most Dynamic Risk Scoring: Continuously prioritizes vulnerabilities with architectural, threat, and business context based on real-world observations in production - so defenders can fix what's actually at risk. Unified ADR + AST: Bring together Application Detection and Response and Application Security Testing to break down silos across development, AppSec, and SecOps with shared context that connects incidents to vulnerabilities, aligning teams around real threats and faster resolution. Agentic AI That's Context-Aware Contrast AI SmartFix: Uses Contrast Graph data to generate fix plans, write code, create test scripts, and draft pull requests, dramatically reducing remediation time. Contrast MCP Server: Opens up access to Contrast's runtime insights - starting with vulnerability data and designed to support future agentic AI use cases. Faster Rollouts. Easier Management. Deployment Hub: Simplifies onboarding and managing updates across complex, distributed environments, speeding time to protection. Flex Agent: Streamlines agent deployment and updates at scale with no manual configuration required, simplifying installation and reducing setup time. Availability and Ecosystem Momentum The Contrast Northstar release is available today, delivering immediate value to both partner ecosystems and enterprise organizations looking to modernize their application security programs. Contrast integrates seamlessly with industry-leading tools like Splunk, Wiz, and Sumo Logic to ensure that security insights flow into the platforms teams already rely on. Additional integrations and strategic partnerships will be announced in the coming weeks, as Contrast continues to expand its global partners and redefine application-layer defense. To experience Contrast Northstar's release, go to: About Contrast Security Contrast Security is the global leader in Application Detection and Response (ADR), empowering organizations to see and stop attacks on applications and APIs in real time. Contrast embeds patented threat sensors directly into the software, delivering unmatched visibility and protection. With continuous, real-time defense, Contrast uncovers hidden application-layer risks that traditional solutions miss. Contrast's powerful Runtime Security technology equips developers, AppSec teams and SecOps with one platform that proactively protects and defends applications and APIs against evolving threats. View source version on CONTACT: Media Contact: Jake Milstein 206 718 9602 [email protected] KEYWORD: UNITED STATES NORTH AMERICA CALIFORNIA INDUSTRY KEYWORD: DATA MANAGEMENT SECURITY APPS/APPLICATIONS TECHNOLOGY SOFTWARE ARTIFICIAL INTELLIGENCE SOURCE: Contrast Security Copyright Business Wire 2025. PUB: 06/09/2025 06:00 AM/DISC: 06/09/2025 05:58 AM
Business Wire
09-06-2025
- Business
- Business Wire
Contrast Introduces the First Unified Platform to See Application-Layer Attacks, Stop Breaches, and Remediate Vulnerabilities with AI
PLEASANTON, Calif.--(BUSINESS WIRE)-- Contrast Security, the global leader in Application Detection and Response (ADR), today announced the general availability of Northstar, a major release for the company that redefines how businesses see cyberattacks, stop breaches, and protect their applications and APIs. This is the industry's first platform to unite developers, security, and operations teams through an integrated user experience. Contrast pairs runtime data and contextual analysis with AI-powered auto-remediation to cut response times and eliminate noise, marking a breakthrough in application-layer security. The Contrast Graph: Live Runtime Insight That Drives Precision At the core of the platform is the Contrast Graph, which powers its most advanced capabilities, including optional agentic AI workflows that help teams respond faster and fix smarter. The Contrast Graph builds a real-time digital twin of an organization's application and API environment, mapping live attack paths, correlating runtime behavior, and exposing how vulnerabilities, threats, and assets are connected. This deep, dynamic context eliminates the guesswork that plagues traditional tools, enabling accurate, automated prioritization and remediation - so teams can focus on real risk and act with confidence. Tyler Shields, Principal Analyst at Enterprise Strategy Group, says, 'Connecting security operations processes with application security incident and vulnerability detection capabilities is a significant step towards breaking down the silos that exist between developers, application security, and security operations teams. This broad contextual analysis offering lends itself well to advanced AI-based prioritization and automated remediation, which are the key security outcomes required by security organizations today.' Runtime Intelligence That Sees, Stops, and Solves With the Northstar release, Security Operations and AppSec teams can, for the first time, see application-layer attacks as they happen, stop them instantly, and auto-remediate active vulnerabilities with the new Contrast AI. These capabilities leverage Contrast's powerful real-time context - paired with dynamic risk scoring that reflects exploitability, impact, and live attack activity, so teams always know where to focus. The unified platform provides views that are tailored to each role, enabling developers to prioritize remediation while SOC teams zero in on the most critical threats to limit damage. "We are excited to see the new features and feel that Contrast is set apart from other competitors, beyond reach. It makes our jobs better and easier. The real data will allow our team to take action more efficiently," said Martha Gamez-Smith CISSP, PMP, SSCP, Information Security Officer - Texas Computer Cooperative | Education Service Center, Region 20. Jeff Williams, an OWASP Founder, Contrast Security Founder and CTO, said, 'Northstar is the culmination of everything we've learned about defending modern software. We didn't just bolt together another set of tools—we reimagined AppSec from first principles. By combining runtime observability, real-time graph context, and AI-powered automation, we built a platform that doesn't just find problems—it understands them, prioritizes them, and helps teams fix them fast. This is the platform I've wanted since OWASP's earliest days—one that doesn't just generate alerts, but actually defends the software that powers our world.' Contrast Northstar Release Highlights: A Unified Perspective, Tailored for Every Team Contrast delivers a new visual user experience built around the Contrast Graph, giving Dev, Sec, and Ops teams real-time visibility into attacks, vulnerabilities, and business risk - all in views tailored to their roles and integrated into the developer, CNAPP, and SIEM solutions they use every day. The Contrast Graph acts as a live map of the application and API environment, showing how vulnerabilities, threats, and assets are connected so teams can act faster, together. Focus on What Matters Most Dynamic Risk Scoring: Continuously prioritizes vulnerabilities with architectural, threat, and business context based on real-world observations in production - so defenders can fix what's actually at risk. Unified ADR + AST: Bring together Application Detection and Response and Application Security Testing to break down silos across development, AppSec, and SecOps with shared context that connects incidents to vulnerabilities, aligning teams around real threats and faster resolution. Agentic AI That's Context-Aware Contrast AI SmartFix: Uses Contrast Graph data to generate fix plans, write code, create test scripts, and draft pull requests, dramatically reducing remediation time. Contrast MCP Server: Opens up access to Contrast's runtime insights - starting with vulnerability data and designed to support future agentic AI use cases. Faster Rollouts. Easier Management. Deployment Hub: Simplifies onboarding and managing updates across complex, distributed environments, speeding time to protection. Flex Agent: Streamlines agent deployment and updates at scale with no manual configuration required, simplifying installation and reducing setup time. Availability and Ecosystem Momentum The Contrast Northstar release is available today, delivering immediate value to both partner ecosystems and enterprise organizations looking to modernize their application security programs. Contrast integrates seamlessly with industry-leading tools like Splunk, Wiz, and Sumo Logic to ensure that security insights flow into the platforms teams already rely on. Additional integrations and strategic partnerships will be announced in the coming weeks, as Contrast continues to expand its global partners and redefine application-layer defense. To experience Contrast Northstar's release, go to: About Contrast Security Contrast Security is the global leader in Application Detection and Response (ADR), empowering organizations to see and stop attacks on applications and APIs in real time. Contrast embeds patented threat sensors directly into the software, delivering unmatched visibility and protection. With continuous, real-time defense, Contrast uncovers hidden application-layer risks that traditional solutions miss. Contrast's powerful Runtime Security technology equips developers, AppSec teams and SecOps with one platform that proactively protects and defends applications and APIs against evolving threats.
Chicago Tribune
21-04-2025
- Entertainment
- Chicago Tribune
EXPO Chicago 2025: Highlights for this year's art fair, on and off Navy Pier
'Contrast,' a new curated section focusing on culture and identity, will debut at EXPO Chicago, the annual international art fair featuring contemporary works from more than 170 galleries. The event will run April 24-27 at Navy Pier's Festival Hall. This marks the second year EXPO will be held since it was acquired by Frieze, a London-based company that began as a magazine and now owns several art fairs, including The Armory Show in New York. While last year's show occurred about six months after the acquisition, this year's show more fully reflects the benefits the fair has realized from being part of a global firm, said EXPO Chicago president and director Tony Karman. One example is the special collaboration this year with the Galleries Association of Korea, a result of the relationships built around Frieze's partnerships in Seoul. 'It was a logical extension for us to work together in Chicago, given the large number of Korean galleries that always did the Chicago art fair,' Karman said. 'There's a foundation that's been established over many, many, many years, and now that we're part of the Frieze family, it's a perfect addition.' Visitors can also expect to see a refinement of EXPO's floor plan and programming. 'Contrast,' curated by Lauren Haynes, is one such example. Haynes, who is head curator of Governors Island Arts and vice president for Arts and Culture at the Trust for Governors Island, said she designed the section to highlight diverse viewpoints through visual storytelling. The lineup includes archival photographs by Roy Lewis, Bob Crawford and K. Kofi Moyo, members of Chicago's Black Arts Movement who documented the 1977 Second World Black and African Festival of Arts and Culture, held in Lagos, Nigeria. Works by South African artist Esther Mahlangu, the late American artist Thornton Dial, the late Brazilian Indigenous artist Chico da Silva, Chicago-based Kenyan artist Wangari Mathenge and many others will be featured in 'Contrast.' 'It's interesting — the work I've done for my whole curatorial career has been about different perspectives,' Haynes said, noting that she spent a decade earlier in her career at the Studio Museum of Harlem. EXPO will continue to spotlight the work of galleries 10 years old and younger in its 'Exposure' section. Rosario Güiraldes, curator of visual arts at the Walker Art Center in Minneapolis, heads up the section for the second year in a row — a departure for EXPO, which usually invites a new section curator each year. 'Exposure' will focus on galleries from Latin America as well as Chicago, featuring many artists, including Brazilian sculptor Denise Milan. Across the fair, dozens of solo, group and thematic presentations will feature numerous artists, including photographer Rashid Johnson, the first Chicago exhibition of the work of portrait artist Kandy G Lopez, the late photographer Gordon Parks, the late abstract expressionist Helen Frankenthaler, the late painter Juanita Guccione and many more. We put together some programming highlights — both on and off the Pier. Creative Voices: Fashion, Art and Cultural Impact: Artists Derrick Adams and Hebru Brantley — both of whom have works featured in The Collection at Fashion Outlets of Chicago — will discuss how art and fashion transform trends and public spaces. Michael Darling, former chief curator of Chicago's Museum of Contemporary Art, will moderate. 6:30-7:30 p.m. April 24 at EXPO Chicago; requires Opening Night ticket, available at South Side Night: EXPO Art Week kicks off with a number of programs scattered across Hyde Park and Bronzeville. 'Toast to the South Side,' from 6-7 p.m. at First Presbyterian Church of Chicago, will feature a performance by Margaret Crowley and Eli Greene in the church's basketball court. 5-9 p.m. April 22 in various locations; details at Tour of the Conservation Center: Get an inside glimpse of conservation laboratories (designed by Studio Gang Architects) and hear from experts who care for private and corporate art collections. 11 a.m.-noon April 23 at The Conservation Center, 400 N. Wolcott Ave., Suite 3E; registration required at Exhibition Tour with Alice Gray Stites: Attend a guided tour of 'Truth or Dare: A Reality Show' presented by 21c Chicago chief curator and museum director Alice Gray Stites. The show explores the space between fact and fiction by stressing the importance of questioning. 4-5 p.m. April 25 at 21c Museum Hotel Chicago, 55 E. Ontario St.; free, Gustavo Nazareno Talk: Afro-Brazilian artist Gustavo Nazareno talks with Danny Dunson, director of curatorial services and community partnerships for the DuSable Black History Museum and Education Center. The topic will be 'Flashing Blackness: Afro-Brazilian Art Through Expressions of the Divine.' 2 p.m. April 26 at the DuSable Black History Museum and Education Center, 740 E. 56th Place; free RSVP at Im/Migration and Self-Taught Art in Chicago: Artists Carlos Barberena, Alfonso 'Piloto' Nieves Ruiz and Pooja Pittie — all featured in an Intuit Art Museum exhibit open through Jan. 11, 2026 — will reflect on how migration and self-taught art have enriched Chicago's culture. The panel discussion will be moderated by Alison Amick, chief curator of the Intuit Art Museum, and independent curator Dana Boutin. 1-2 p.m. April 27 at EXPO Chicago; details at
