Security of your website is important as there is an increase in Website attacks
February 14, 2020
A study finds about 83% of website vulnerabilities lie in the source code which is the main code of a website. It also found that more than half of all sites have high-risk vulnerabilities, some signs that companies are beginning to prioritize security but still fail to do everything necessary when protecting websites and users.
9 times out of 10, hackers are able to easily attack website visitors and 83% of website vulnerabilities lie in the source code.
Many of the attacks highlighted include stealing credentials in phishing attacks, infecting computers, or redirecting users to hacker-controlled sites.
Companies were also failing to protect their websites with multi-factor authentication, still relying on password-only based authentication that could be easily bypassed.
The research found the average number of vulnerabilities per application has fallen by a third compared to 2018 and companies are taking the security process more seriously in not just public-facing websites and applications but in their own internals too.
Financial institutions had the highest web security ratings in the study while state institutions had the lowest score in security.
Almost 80% of web applications were vulnerable to sensitive data, with most of the data containing personal information or credentials/ passwords.
The most common high-risk vulnerability was broken authentication, which was found in 48% of websites.
According to the company's research, almost a third of such vulnerabilities consist of failure to properly restrict the number of authentication attempts and an attacker could exploit this to brute-force credentials or access the web application.
As suggestions, the study says companies should train the developers in different ways to secure development methods while giving them tools for automated source code analysis and website and web app firewalls as preventative measures.
Invest in the best website design company for your website design and development needs, they not only help you deliver great websites but also take care of your website by regularly updating it and looking after the security functions of your website.