The software supply chain security provider, Dustico, has been acquired by Checkmarx, the global leader in developer-centric application security testing (AST) solutions. Through this acquisition, Checkmarx will combine its AST capabilities with Dustico’s behavioral analysis technology to give customers a unified view into the risk, reputation, and behavior of open source packages, resulting in a more comprehensive approach to preventing supply chain attacks.
“We’re thrilled to welcome Dustico and its team to Checkmarx as the Israeli tech ecosystem continues to push the boundaries of cybersecurity innovation and talent,” said Emmanuel Benzaquen, CEO, Checkmarx. “Blending Dustico’s differentiated approach to open source analysis with Checkmarx’s best-of-breed security testing capabilities will bring disruptive value to our customers as they manage the challenges with securing software supply chains.”
The financial terms of the acquisition were not made public. But with Dustico, Checkmarx will be building on its mission to secure open source by enabling customers to perform vulnerability, behavioral, and reputational analysis from a single solution.
“This is a very exciting time for Dustico and our community,” said Tzachi Zornstain, Co-Founder and CEO, Dustico. “We founded Dustico to help organizations cope with the explosion in supply chain and dependency attacks and fortify their trust in open source software, and we’re thrilled to join Checkmarx to further execute on this vision and bring our capabilities to a global set of customers."