Nine Out of Ten Websites Have Serious Vulnerabilities

Via net-security.org -

The third WhiteHat Website Security Statistics Report highlights the top 10 vulnerabilities currently affecting organizations. Attacks on websites are on the rise, placing intellectual property, customer data, and brand integrity at risk.

Based on more than a year of data, this is the industry's only report focused solely on previously unknown vulnerabilities on publicly facing websites.

The report shows that nine out of ten websites have serious vulnerabilities that make them targets for malicious online attacks. Cross-site Scripting (XSS) remains the top vulnerability class, appearing in approximately three quarters of websites, while Information Leakage is the top vulnerability class of the overall population. New attack techniques such as XSS-phishing, Intranet hacking and Web worms may force enterprises to re-evaluate the criticality of XSS on a case-by-case basis.

The report statistics were gathered through an outsourced service providing website vulnerability assessments on an ongoing basis. With more than six hundred sites under management, including many of the Fortune 500, WhiteHat has access to an unparalleled amount of security data, which allows them to accurately identify which issues are the most prevalent.