Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

Only 10% of Web Applications Are Secured Against Common Hacking Techniques

Feb 2, 2004 2:24AM PST

WebCohort's Application Defense Center Reports Results of Vulnerability Testing on Web Applications

FOSTER CITY, Calif., Feb. 2 /PRNewswire/ -- WebCohort, Inc., the leader in web application security, today announced the results of four years of penetration testing on more than 250 web applications including e-commerce, online banking, enterprise collaboration, and supply chain management sites.
The vulnerability assessments conducted by WebCohort's Application Defense Center (ADC) concluded that at least 92% of web applications are vulnerable to
some form of hacker attacks. The most common vulnerabilities were cross-site scripting (80%), SQL injection (62%) and parameter tampering (60%). While
these types of hacking attacks are common, most enterprises have not adequately secured web sites, applications and servers against them. Despite common use of defenses such as firewalls and intrusion detection or prevention systems, hackers can access valuable proprietary and customer data, shut-down
websites and servers, defraud businesses, and introduce serious legal liability without being stopped or, in many cases, even detected.

More at http://www.prnewswire.com/cgi-bin/stories.pl?ACCT=104&STORY=/www/story/02-02-2004/0002101093&EDATE=

Discussion is locked