Click here or Call 855.907.4673 to Help Families Affected by Hurricane Melissa

Binarly Transparency Platform 3.5 Introduces Java Ecosystem Support, Enterprise-Scale YARA Integration, Smarter Automation

News > Technology News

Carbonatix Pre-Player Loader

Audio By Carbonatix

3:07 PM on Wednesday, November 5

The Associated Press

SANTA MONICA, Calif.--(BUSINESS WIRE)--Nov 5, 2025--

Binarly, a leading provider of software supply chain security solutions, today released the Binarly Transparency Platform 3.5 with Java ecosystem support, full enterprise-grade YARA integration, and operational upgrades designed to meet the speed and scale of modern product security workflows.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251105396335/en/

With this update, Binarly’s cryptographic algorithm identification engine now supports Java archives (JARs) and JVM bytecode, scanning both standalone and embedded files inside Docker containers or firmware. This means organizations can finally see what cryptographic primitives their Java-based products depend on, without needing access to source code.

Built on Code Property Graph (CPG) analysis, the new engine tracks dataflow across functions to eliminate false positives and maps every finding to NIST IR 8457 categories to help measure post-quantum cryptography (PQC) readiness. Support currently covers Bouncy Castle, Apache Commons, Google Tink, and Guava, with Android package analysis arriving later this year.

The platform refresh also features deep integration of YARA, the industry’s signature-based detection standard, across large-scale software and firmware portfolios.

Traditionally, maintaining YARA rules across teams and suppliers has been plagued by syntax drift, rule sprawl, and inconsistent enforcement. Binarly eliminates that friction with an interactive YARA Playground for rule development (YARA and our own FwHunt), a governed Rules Manager with granular role-based access controls, and a real-time Rust-based YARA-X engine that validates rules before deployment.

The result is a single governed pipeline where PSIRTs (Product Security Incident Response Teams), TPRM (Third Party Risk Management) teams, and procurement functions can drive consistent detections and evidence-based decisions across the enterprise.

“Java support and enterprise-scale YARA integration solve two of the hardest blind spots in modern product security. Most teams struggle to understand what’s really inside their Java stacks and to operationalize YARA rules consistently across complex environments. We’re the first to build the tooling to connect data from existing threat-intelligence feeds and this release connects both worlds, providing deep cryptographic visibility and scalable threat-hunting capabilities," said Alex Matrosov, CEO and Head of Research at Binarly.

The Binarly Transparency Platform 3.5 also adds:

  • Custom Rule Management: Security teams can define and deploy their own detection logic using YARA and FwHunt rules, the same internal schema Binarly uses for vulnerability and threat detections with more advanced code-driven rules. This bridges research and product security, allowing bespoke checks for vendor risk, hard-coded keys, or policy enforcement.

  • Organization Quotas: Simplifies license management with centralized allocation and visibility across distributed groups; Triage Enhancements to enable the addition of assignable statuses, threaded comments (with Markdown support), and dynamic charts; and backend upgrades that deliver faster performance, broader Android handling, and deeper extraction of cryptographic artifacts, from JARs to UEFI Secure Boot keys.

From firmware to JVM bytecode, the Binarly Transparency Platform 3.5 is built by security research experts to give defenders a unified view of vulnerabilities, cryptographic posture, and reachability across complex software ecosystems.

For procurement and third-party vendor risk teams, Binarly delivers measurable improvements in vendor assessment workflows by enabling private threat-intelligence ingestion, scoped rule enforcement, and transparent, evidence-backed risk reporting. Security teams benefit from faster rule validation, consistent detections, and streamlined triage, all while lowering the hidden operational costs that typically burden large-scale YARA programs.

About Binarly:

Binarly is a U.S.‑based software and firmware supply‑chain security company founded in 2021. The Binarly Transparency Platform helps device manufacturers, OEMs and enterprise security teams detect vulnerabilities, misconfigurations, secrets and malicious code in firmware and software components.

View source version on businesswire.com:https://www.businesswire.com/news/home/20251105396335/en/

CONTACT: Media Contact:

[email protected]

www.binarly.io

KEYWORD: CALIFORNIA UNITED STATES NORTH AMERICA

INDUSTRY KEYWORD: SUPPLY CHAIN MANAGEMENT SECURITY RETAIL TECHNOLOGY SOFTWARE NETWORKS

SOURCE: Binarly

Copyright Business Wire 2025.

PUB: 11/05/2025 03:07 PM/DISC: 11/05/2025 03:07 PM

http://www.businesswire.com/news/home/20251105396335/en

This content is used here with permission. To view the original visit: https://www.businesswire.com/news/home/20251105396335/en/
 

You might also be interested in:

Salem News Channel Today

Sponsored Links

On Air & Up Next

  • Cats and Cosby
    5:00PM - 6:00PM
     
    John Catsimatidis, Successful businessman and former NYC Mayoral candidate and   >>
     
  • The Arthur Aidala Power Hour
    6:00PM - 7:00PM
     
    The Arthur Aidala Power Hour blends Arthur's courtroom experiences with his   >>
     
  • ‘Radio Night Live’ with Kevin McCullough
    7:00PM - 8:00PM
     
    Radio Night LIVE: a throwback to the origins of great talk radio. Important   >>
     
  • The Larry Elder Show
    8:00PM - 10:00PM
     
    Larry Elder personifies the phrase “We’ve Got a Country to Save” The “Sage from   >>
     
  • The Hugh Hewitt Show
    10:00PM - 11:00PM
     
    Hugh Hewitt is one of the nation’s leading bloggers and a genuine media   >>
     

See the Full Program Guide