Quick Bytes: Insecure Web

Published on Security Management (http://www.securitymanagement.com)

By John Wagley

Print Edition Only:

Weight:

-97

Beyond Print?:

Teaser:

Most Web sites have at least one significant vulnerability, according to a study by WhiteHat Security, which examined its own enterprise customers.

Most Web sites have at least one significant vulnerability, according to a study by WhiteHat Security, which examined its own enterprise customers. The study found that 63 percent of Web sites have at least one high, critical, or urgent vulnerability issue, and that the average Web site has seven unfixed vulnerabilities.

The most common vulnerability is cross-site scripting, affecting 65 percent of sites. Information leakage followed, affecting 47 percent. Thirty percent of sites had spoofing bugs, and 18 percent had insufficient authorization. Social networking companies had the most flaws, with 82 percent of sites infected. They were followed by IT firms, with 75 percent; financial companies, with 65 percent; insurance firms, with 64 percent; and retail companies, with 61 percent. Healthcare had the fewest flaws with 47 percent of sites infected.

@ Get there via the “Beyond Print [1]"

Author:

John Wagley

Comments

Security Management is the award-winning publication of ASIS International, the preeminent international
organization for security professionals, with more than 38,000 members worldwide.

ASIS International, Inc. Worldwide Headquarters, 1625 Prince Street, Alexandria, Virginia 22314-2818 U.S.A.
703.519.6200 | fax 703.519.6299 | www.asisonline.org

© 2013 Security Management
This site is protected by copyright and trade mark laws under U.S. and International law.
No part of this work may be reproduced without the written permission of Security Management.

Source URL: http://www.securitymanagement.com/article/quick-bytes-insecure-web-005954

Links:
[1] http://www.securitymanagement.com/article/hidden-vulnerabilities-005988