Data Theorem Recognized in the 2025 Gartner® Magic Quadrant™ for Application Security Testing

With API, Mobile, and Cloud-Native Application Security, Data Theorem is Recognized Again for its Completeness of Vision and Ability to Execute

PALO ALTO, Calif., Oct. 15, 2025 /PRNewswire/ -- Data Theorem, Inc., a leading provider of modern application security testing and protection solutions for cloud-native, web, mobile, and API-based applications, today announced that it has been recognized in the 2025 Gartner Magic Quadrant for Application Security Testing (AST). Data Theorem was named a Challenger in this year's report, acknowledging the company's continued innovation and execution in securing applications across the full stack of code, APIs, mobile, web, and cloud infrastructure.

"We are proud to be recognized again by Gartner for our vision and execution in application security testing," said Doug Dooley, Chief Operating Officer of Data Theorem. "As organizations adopt modern architectures across web, mobile, and cloud-native applications, they face an expanding attack surface that demands a unified security approach. Our Code Secure, Mobile Secure, API Secure, Web Secure, and Cloud Secure products continue to protect the full lifecycle of applications—from development to production—helping customers find and fix real exploitable attack vectors and ensure sensitive data controls meet all compliance and regulatory concerns."

According to Gartner, "Artificial intelligence, modern application designs, and increased software supply chain risks are expanding the AST market scope. Cybersecurity leaders can identify and manage risk within applications by integrating and automating AST throughout software life cycles. Generative AI is rapidly transforming software development — the market expanded to support modern architectures, automated testing within development workflows, and features designed to improve the developer experience."¹

To download a copy of the Gartner Magic Quadrant for Application Security Testing, 2025 report, see https://www.datatheorem.com/resources/reports/gartner-ast-mq-2025.

Continued Innovation Across Cloud-Native and API Security

Data Theorem's platform delivers both application security testing (AST) and runtime protection capabilities designed for modern software architectures. API Secure inventories and tests backend APIs for risks such as insecure data exposure, delivers vulnerability detection and remediation, and active protection with real-time API attack prevention. The company's Mobile Protect is an award-winning SDK solution that provides real-time telemetry and active defense from hostile, malicious, and fraudulent activity. The no-code SDK will defend applications from fraud, cheats, and API and app-centric attacks.

Data Theorem's Code Secure (SAST+) solution combines static analysis with dynamic validation to confirm exploitability, using its Code Canary capability to verify reachability and runtime risk exposure. Meanwhile, Web Secure delivers agentless dynamic runtime analysis for single-page applications (SPAs) and serverless architectures, providing organizations with a realistic, hacker-style assessment of their most business-critical web assets.

Trusted by Enterprises Worldwide

Data Theorem serves a diverse global customer base that spans large enterprises and midsize organizations across financial services, healthcare, technology, and retail sectors. The company maintains a significant presence in North America and Europe with rapid growth in Asia-Pacific and Latin America, where organizations are increasingly adopting its unified platform to modernize their application security programs.

"Our customers continue to tell us they value Data Theorem's ability to validate real-world exploitability—beyond just static findings—while maintaining visibility across APIs, mobile apps, and cloud-native deployments," said Himanshu Dwivedi, CEO of Data Theorem. "This recognition reinforces our mission to make AppSec more intelligent, automated, and effective in an era defined by continuous delivery and AI-driven threats."

Gartner Disclaimer

Note 1 Gartner, Magic Quadrant for Application Security Testing,  Jason Gross, Mark Horvath, Giles Williams, Shailendra Upadhyay, Dionisio Zumerle, Aaron Lord, 6 October 2025.

Gartner is a registered trademark and service mark, and Magic Quadrant is a registered trademark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product, or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About Data Theorem

Data Theorem is a leading provider of modern application security, helping customers prevent AppSec data breaches. Its products focus on API security, cloud (serverless apps, CSPM, CWPP, CNAPP), mobile apps (iOS and Android), and web apps (single-page apps). Its core mission is to analyze and secure any modern application anytime, anywhere. The award-winning Data Theorem Analyzer Engine continuously analyzes APIs, Web, Mobile, and Cloud applications in search of security flaws and data privacy gaps. The company has detected more than 5 billion application incidents and currently secures more than 25,000 modern applications for its enterprise customers around the world.

CONTACT: Sophia Jacob, [email protected], 415-763-7331

SOURCE Data Theorem, Inc.