PRTODAY / NewswireToday press release distribution service network
Written by / Agency / Source: Frost & Sullivan
Check Ads Availability|e-mail Article

Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!

Web Application Security is an On-going Commitment due to Highly Dynamic Hacking Risks Says Frost & Sullivan - Four out of five sites are vulnerable; web security weakness can compromise an entire organisation
Web Application Security is an On-going Commitment due to Highly Dynamic Hacking Risks Says Frost & Sullivan


NewswireToday - /newswire/ - London, United Kingdom, 2012/09/05 - Four out of five sites are vulnerable; web security weakness can compromise an entire organisation.

Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security / Anti-Spam / Cybersecurity Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


Web applications remain the third most common attack vector overall, with hacking still on the increase, from organised criminal groups, amateurs and political activists. Complex technology, growing adoption of web 2.0 functionality and powerful features of HTML5 have enhanced the opportunity for hackers to exploit vulnerabilities. The consequences of a compromised web application can go way beyond the web server: a number of high-profile attacks with prestigious companies caused millions USD in losses. All organisations are potential victims. To protect themselves they should form long-term partnerships with reputable security companies providing individual solutions that will optimise web application security.

Frost & Sullivan's recent White Paper (WP) discusses the growing threat to web applications putting it into its right business context. Describing the mysterious world of web applications hacking, the paper gives also an overview of the likely victims and outlines what are the solutions for organisations to protect themselves. The paper benefits from the insight and experience of leading security companies and organizations, like MITRE, High-Tech Bridge, and Online Trust Alliance (OTA), who have provided excellent support to Frost & Sullivan during the WP review.

"According to High-Tech Bridge, as many as three out of four successful network intrusions start and/or involve an unsecured web application," says Frost & Sullivan analyst, Chris Rodriguez. "By ‘network intrusion' we mean attacks where the goal is to achieve an ongoing access." The attack becomes categorised as an advanced persistent threat (APT), which purpose is always to steal data, rather than to cause damage. APTs target organisations in sectors with high-value information, such as defence, manufacturing and finance.

The complexity of an attack and the victim's internal architecture will determine how much damage a hacker can do. The database structure behind a website is much more important than the structure of the website itself. In almost every case, a compromised web application gives unlimited access to all the resources that the web application uses, including databases.

"Hackers frequently attack the trusted partners of their real victims," adds Rodriguez. "Web developers usually consider partners to be trusted parties and take insufficient security measures. However, organisations must be vigilant that their partners ensure the protection of their accounts against breaches and misuse."

An organisation can never be certain to have zero vulnerabilities on their website even if the utmost care is taken during development; there is no way that we can future-proof out code. Developers can only take into account vulnerabilities that are known at the time of development. "A web application can be safe today and then vulnerable tomorrow," notes Rodriguez. "That is why security is an on-going commitment."

No modern application can be made 100 per cent secure and still be 100 per cent functional and user-friendly. Layered security is a sensible approach to optimising security, by deploying intrusion detection and intrusion prevention systems (IDS/IPS) at different points of the network, even inside the corporate firewall (to mitigate the threat from insiders). A less complicated and expensive solution to monitor and filter malicious traffic to web applications is a Web Application Firewall (WAF).

"Organisations, however, should understand that it is a very precarious practice and approach for information security to rely solely on application security from any third-parties solutions, like IPS or WAF," advices Rodriguez. "The best and the most efficient approach is to assure that the application code itself is safe and does not contain any known vulnerabilities or weaknesses. This is why regular penetration testing of web applications remains vitally important, even in organisations that have deployed IPS/WAF solutions."

Hacking is highly dynamic, and new vulnerabilities are discovered as quickly as known vulnerabilities are patched. Website owners must strike the right balance between functionality, user friendliness and security. Consequently, organisations cannot achieve web application security, but they should certainly strive to optimise security.

"Developing a security-conscious culture is a step in the right direction," summarises Rodriquez. "To complete the journey, we recommend that organisations form real, long-term partnerships with stable, reputable security companies capable of providing the individual solutions that will optimise web application security."

If you would like to learn more about web application security and/or receive a complimentary White Paper on "The Growing Hacking Threat to websites: An On-going Commitment to Web Application Security", please send an email to Joanna Lewandowska, Corporate Communications, at Joanna.lewandowska[.] Please include your full contact details in the query.

About Frost & Sullivan
Frost & Sullivan (, the Growth Partnership Company, works in collaboration with clients to leverage visionary innovation that addresses the global challenges and related growth opportunities that will make or break today's market participants.

Our "Growth Partnership" supports clients by addressing these opportunities and incorporating two key elements driving visionary innovation: The Integrated Value Proposition and The Partnership Infrastructure.

The Integrated Value Proposition provides support to our clients throughout all phases of their journey to visionary innovation including: research, analysis, strategy, vision, innovation and implementation.
The Partnership Infrastructure is entirely unique as it constructs the foundation upon which visionary innovation becomes possible. This includes our 360 degree research, comprehensive industry coverage, career best practices as well as our global footprint of more than 40 offices.

For more than 50 years, we have been developing growth strategies for the global 1000, emerging businesses, the public sector and the investment community. Is your organization prepared for the next profound wave of industry convergence, disruptive technologies, increasing competitive intensity, Mega Trends, breakthrough best practices, changing customer dynamics and emerging economies?

Contact Us: Start the discussion | Join Us: Join our community | Subscribe: Newsletter on "the next big thing" | Register: Gain access to visionary innovation.

Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security / Anti-Spam / Cybersecurity Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


Written by / Agency / Source: Frost & Sullivan


Availability: All Regions (Including Int'l)


Traffic Booster: [/] Quick NewswireToday Visibility Checker


Distribution / Indexing: [+]  / [Company listed above is a registered member of our network. Content made possible by PRZOOM / PRTODAY indexing services]

# # #

  Your Banner Ad showing on ALL
IT Security / Anti-Spam / Cybersecurity articles,
CATCH Visitors via Your Competitors Announcements!

Web Application Security is an On-going Commitment due to Highly Dynamic Hacking Risks Says Frost & Sullivan

Company website links NOT available to basic submissions
It is OK to republish and/or LINK any newswire for any legitimate media purpose as long as you name NewswireToday and LINK as the source.
Publisher Contact: Joanna Lewandowska 
+48 22 481 62 20 joanna.lewandowska[.]
Newswire Today - PRZOOM / PRTODAY disclaims any content contained in this article. If you need/wish to contact the company who published the current release, you will need to contact them - NOT us. Issuers of articles are solely responsible for the accuracy of their content. Our complete disclaimer appears here.
IMPORTANT INFORMATION: Issuance, publication or distribution of this press release in certain jurisdictions could be subject to restrictions. The recipient of this press release is responsible for using this press release and the information herein in accordance with the applicable rules and regulations in the particular jurisdiction. This press release does not constitute an offer or an offering to acquire or subscribe for any Frost & Sullivan securities in any jurisdiction including any other companies listed or named in this release.

IT Security / Anti-Spam / Cybersecurity via RSSAdd NewswireToday - PRZOOM Headline News to FeedBurner
Find who RetweetFollow @NewswireTODAY

Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!

Read Latest Articles From Frost & Sullivan / Company Profile

Read IT Security / Anti-Spam / Cybersecurity Most Recent Related Newswires:

Aruba & Leonardo Working in Partnership to Provide High Performance Cloud with Cyber Security Services Delivered via A Reliable Italian Supply Chain
Cybereason Announces Strategic Alliance with SYNNEX Corporation to Help End Cyber Attacks for SMBs and Enterprises
Motorola Solutions Expands Cybersecurity Services to Secure Mission-Critical Operations
Cybereason Chooses Oracle Cloud Infrastructure to Boost Customer Defenses Against Cybersecurity Threats
Alert Logic Launches MDR Industry’s First-Ever Automated Security Response Solution for AWS Environments
Telefónica Partners with Subex for Next-gen Fraud Prevention
Enel and Leonardo Form a Strategic Collaboration for Innovative Sustainable Solutions for the Benefit of their Customers
Subex Selected by stc for its Integrated Revenue Assurance and Fraud Management Solution
IDEMIA and Kudelski IoT first-to-market with GSMA IoT-SAFE solution
OnePIN Demonstrates Privacy-Forward Approach Through TrustArc GDPR Validation
Veriest and Kudelski IoT Collaborate to Accelerate the Integration of Highly Robust Silicon Security Features in IC Designs
GhangorCloud Acclaimed by Frost & Sullivan for its World-class, Integrated Information Security Enforcer Platform
Investments in Cyber Intelligence Platforms to Surge as Companies Require Advanced Threat Protection Finds Frost & Sullivan
Kudelski Security Expands Research and Advisory Services to Quantum Security
Bitdefender Unveils New Cloud-based Endpoint Detection and Response Solution for Enterprises and Managed Service Providers

Boost Your Social Network
& Crowdfunding Campaigns

NewswireToday Celebrates 10 Years in Business




  ©2021 NewswireToday — Limelon Advertising, Co.
Home | About | Advertise/Pricing | Contact | Investors | Privacy/TOS | Sitemap | FRANCAIS
newswire, PR press releases distribution service magazines engine news alert newsroom press room breaking news public relations articles company news alerts newswiredistribution ezine bizentrepreneur biznewstoday digital business report market search pr firms agencies reports distri-bution today investor relation successful internet entrepreneurs newswire distribution newswiredistribution asianewstoday bizwiretoday USA pr UK today - NOT affiliated with PRNewswire as we declined their partnership offer in 2013
PRTODAY & NewswireTODAY are NOT affiliated with USA TODAY (