The most popular and comprehensive Open Source ECM platform
Let us know more
Security: IT Blindsided by Application Defects — the Cause of Most Security Incidents
Despite sophisticated security defenses that many IT departments build, data breaches at companies are much more likely to originate at the application level.
Frank Zinghini, CEO of Applied Visions, reported in the CodeDx Cybersecurity Market Report that “the security industry is overly-focused on testing and scanning for known vulnerabilities in software after it’s been released, and is under-focused on poor software development practices that lead to vulnerability applications that hackers can exploit.”
Tim Clark, Head of Brand Journalism at SAP, wrote in a Forbes article that “it’s time for a reality check. Even if you figured out how to plug holes in your networks, the hackers may be gaining access through applications and solutions. Sure, many organizations have significant network security in place but it’s not enough as 84% of all cyber-attacks are happening on the application layer.” A similar estimate comes from the Department of Homeland Security which estimated that 90 percent of security incidents originate from software application defects.
Jason Schmitt, vice president of HP Enterprise Security Products, said that “hackers are really smart. They understand where the most lucrative and easiest access to data and sensitive information is and that’s by targeting the soft underbelly, which is the software that we push out and give to everyone without really thinking about how we’re securing it from the inside.”
