CLaueR's Blog

New Feeds on the Blog

Study: Only 10% of Web Applications are Secured Against Common Hacking Techniques

According to a study by WebCohort, only 10% of the web applications are secured. Pretty scary. (Well, remember that Webcohort is a security company that sells security consulting. This conclusion serves their interests :))

These conclusions are also true for all platforms, all development languages and technologies. The interesting thing in this is that the vulnerabilities that they have discovered are not in the HTTP server "X" nor in the operating system "Y" but in the developer's code! These applications include e-commerce, online banking, enterprise collaboration, and supply chain management sites - not really your sister's homepage...

Most Common Application Layer Vulnerabilities (Source: Webcohort)

Attack Percent vulnerable
Cross-site scripting 80%
SQL injection 62%
Parameter tampering 60%
Cookie poisoning 37%
Database server 33%
Web Server 23%
Buffer overflow 19%

Funny... I think that some people should be educated to this. They should care more about how trained are their developers on security rather than complaining about the supposed weaknesses of Microsoft's products.

</RANT>

Posted: Feb 04 2004, 09:54 PM by DotNET-fr | with 11 comment(s)
Filed under: ,

Comments

TrackBack said:

# February 4, 2004 10:58 AM

TrackBack said:

# February 4, 2004 10:58 AM

Scott said:

http://www.lazycoder.com/article.php?story=20040205095610794
# February 5, 2004 10:02 AM

stefan demetz said:

Protect from parameter tampering
http://dotnetjunkies.com/weblog/stefandemetz/posts/6748.aspx
# February 6, 2004 6:55 PM

Patrice said:

:) ça va me faire du monde sur mon prochain site ça :)
# February 16, 2004 7:45 PM

stefan demetz said:

Lobby MS to eliminate SQL injection
http://dotnetjunkies.com/WebLog/stefandemetz/archive/2004/07/10/18763.aspx
# July 10, 2004 10:09 AM

| studyonly.info said:

Pingback from  | studyonly.info

# October 1, 2007 5:36 AM

| studyonly.info said:

Pingback from  | studyonly.info

# October 1, 2007 6:36 AM

Effexor xr 75mg side effects. said:

Difference between effexor and effexor xr.

# August 3, 2008 11:29 PM

ASP.NET Français Blogs said:

Au début du l’essor du Web, il y a dix ans, il était courant que les problèmes de sécurité les plus graves

# November 29, 2009 10:08 AM

Tune Up Your PC » Post Topic » S??curit?? des sites et applications Web : le probl??me est entre la chaise et le clavier, et ??a ne s???am??liore pas said:

Pingback from  Tune Up Your PC  &raquo; Post Topic   &raquo; S??curit?? des sites et applications Web : le probl??me est entre la chaise et le clavier, et ??a ne s???am??liore pas

# November 29, 2009 11:52 AM
Leave a Comment

(required) 

(required) 

(optional)

(required)