PRTODAY / NewswireToday press release distribution service network
Written by / Agency / Source: Frost & Sullivan
Check Ads Availability|e-mail Article

Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!

Web Application Security is an On-going Commitment due to Highly Dynamic Hacking Risks Says Frost & Sullivan - Four out of five sites are vulnerable; web security weakness can compromise an entire organisation
Web Application Security is an On-going Commitment due to Highly Dynamic Hacking Risks Says Frost & Sullivan


NewswireToday - /newswire/ - London, United Kingdom, 2012/09/05 - Four out of five sites are vulnerable; web security weakness can compromise an entire organisation.

Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security / Anti-Spam Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


Web applications remain the third most common attack vector overall, with hacking still on the increase, from organised criminal groups, amateurs and political activists. Complex technology, growing adoption of web 2.0 functionality and powerful features of HTML5 have enhanced the opportunity for hackers to exploit vulnerabilities. The consequences of a compromised web application can go way beyond the web server: a number of high-profile attacks with prestigious companies caused millions USD in losses. All organisations are potential victims. To protect themselves they should form long-term partnerships with reputable security companies providing individual solutions that will optimise web application security.

Frost & Sullivan's recent White Paper (WP) discusses the growing threat to web applications putting it into its right business context. Describing the mysterious world of web applications hacking, the paper gives also an overview of the likely victims and outlines what are the solutions for organisations to protect themselves. The paper benefits from the insight and experience of leading security companies and organizations, like MITRE, High-Tech Bridge, and Online Trust Alliance (OTA), who have provided excellent support to Frost & Sullivan during the WP review.

"According to High-Tech Bridge, as many as three out of four successful network intrusions start and/or involve an unsecured web application," says Frost & Sullivan analyst, Chris Rodriguez. "By ‘network intrusion' we mean attacks where the goal is to achieve an ongoing access." The attack becomes categorised as an advanced persistent threat (APT), which purpose is always to steal data, rather than to cause damage. APTs target organisations in sectors with high-value information, such as defence, manufacturing and finance.

The complexity of an attack and the victim's internal architecture will determine how much damage a hacker can do. The database structure behind a website is much more important than the structure of the website itself. In almost every case, a compromised web application gives unlimited access to all the resources that the web application uses, including databases.

"Hackers frequently attack the trusted partners of their real victims," adds Rodriguez. "Web developers usually consider partners to be trusted parties and take insufficient security measures. However, organisations must be vigilant that their partners ensure the protection of their accounts against breaches and misuse."

An organisation can never be certain to have zero vulnerabilities on their website even if the utmost care is taken during development; there is no way that we can future-proof out code. Developers can only take into account vulnerabilities that are known at the time of development. "A web application can be safe today and then vulnerable tomorrow," notes Rodriguez. "That is why security is an on-going commitment."

No modern application can be made 100 per cent secure and still be 100 per cent functional and user-friendly. Layered security is a sensible approach to optimising security, by deploying intrusion detection and intrusion prevention systems (IDS/IPS) at different points of the network, even inside the corporate firewall (to mitigate the threat from insiders). A less complicated and expensive solution to monitor and filter malicious traffic to web applications is a Web Application Firewall (WAF).

"Organisations, however, should understand that it is a very precarious practice and approach for information security to rely solely on application security from any third-parties solutions, like IPS or WAF," advices Rodriguez. "The best and the most efficient approach is to assure that the application code itself is safe and does not contain any known vulnerabilities or weaknesses. This is why regular penetration testing of web applications remains vitally important, even in organisations that have deployed IPS/WAF solutions."

Hacking is highly dynamic, and new vulnerabilities are discovered as quickly as known vulnerabilities are patched. Website owners must strike the right balance between functionality, user friendliness and security. Consequently, organisations cannot achieve web application security, but they should certainly strive to optimise security.

"Developing a security-conscious culture is a step in the right direction," summarises Rodriquez. "To complete the journey, we recommend that organisations form real, long-term partnerships with stable, reputable security companies capable of providing the individual solutions that will optimise web application security."

If you would like to learn more about web application security and/or receive a complimentary White Paper on "The Growing Hacking Threat to websites: An On-going Commitment to Web Application Security", please send an email to Joanna Lewandowska, Corporate Communications, at Joanna.lewandowska[.] Please include your full contact details in the query.

About Frost & Sullivan
Frost & Sullivan (, the Growth Partnership Company, works in collaboration with clients to leverage visionary innovation that addresses the global challenges and related growth opportunities that will make or break today's market participants.

Our "Growth Partnership" supports clients by addressing these opportunities and incorporating two key elements driving visionary innovation: The Integrated Value Proposition and The Partnership Infrastructure.

The Integrated Value Proposition provides support to our clients throughout all phases of their journey to visionary innovation including: research, analysis, strategy, vision, innovation and implementation.
The Partnership Infrastructure is entirely unique as it constructs the foundation upon which visionary innovation becomes possible. This includes our 360 degree research, comprehensive industry coverage, career best practices as well as our global footprint of more than 40 offices.

For more than 50 years, we have been developing growth strategies for the global 1000, emerging businesses, the public sector and the investment community. Is your organization prepared for the next profound wave of industry convergence, disruptive technologies, increasing competitive intensity, Mega Trends, breakthrough best practices, changing customer dynamics and emerging economies?

Contact Us: Start the discussion | Join Us: Join our community | Subscribe: Newsletter on "the next big thing" | Register: Gain access to visionary innovation.

Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security / Anti-Spam Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


Written by / Agency / Source: Frost & Sullivan


Availability: All Regions (Including Int'l)


Traffic Booster: [/] Quick NewswireToday Visibility Checker


Distribution / Indexing: [+]  / [Company listed above is a registered member of our network. Content made possible by PRZOOM / PRTODAY indexing services]

# # #

  Your Banner Ad showing on ALL
IT Security / Anti-Spam articles,
CATCH Visitors via Your Competitors Announcements!

Web Application Security is an On-going Commitment due to Highly Dynamic Hacking Risks Says Frost & Sullivan

Company website links NOT available to basic submissions
It is OK to republish and/or LINK any newswire for any legitimate media purpose as long as you name NewswireToday and LINK as the source.
Publisher Contact: Joanna Lewandowska 
+48 22 481 62 20 joanna.lewandowska[.]
Newswire Today - PRZOOM / PRTODAY disclaims any content contained in this article. If you need/wish to contact the company who published the current release, you will need to contact them - NOT us. Issuers of articles are solely responsible for the accuracy of their content. Our complete disclaimer appears here.
IMPORTANT INFORMATION: Issuance, publication or distribution of this press release in certain jurisdictions could be subject to restrictions. The recipient of this press release is responsible for using this press release and the information herein in accordance with the applicable rules and regulations in the particular jurisdiction. This press release does not constitute an offer or an offering to acquire or subscribe for any Frost & Sullivan securities in any jurisdiction including any other companies listed or named in this release.

IT Security / Anti-Spam via RSSAdd NewswireToday - PRZOOM Headline News to FeedBurner
Find who RetweetFollow @NewswireTODAY

Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!

Read Latest Articles From Frost & Sullivan / Company Profile

Read IT Security / Anti-Spam Most Recent Related Newswires:

Cybereason Continues its Global Expansion by Launching Regional Middle East Operations
Alert Logic Defines Required Capabilities for Managed Detection and Response
ImmuniWeb Releases Major Update for ImmuniWeb® Discovery
BDO to Partner with ImmuniWeb to Reduce Complexity and Costs of Cybersecurity
Cybereason Receives Strong Rating in NSS Labs Endpoint Protection Test
Radware’s Advanced 5G Security Solution Portfolio Offering End-to-End Visibility Commended by Frost & Sullivan
Thales, Telstra, Microsoft and Arduino Deliver Scalable Trust for Easy-to-deploy IoT Applications
Kudelski Launches IoT Security for Automotive and Industrial Based on STMicroelectronics Connectivity and MCU Technologies
Forescout Announces Strategic Partnership with Medigate to Reduce Risk of Medical IoT Devices
Infinera and Corning Achieve 800G Across 800 Kilometers with ICE6
Kudelski Group becomes Leading Implementer of GSMA’s New IoT SAFE Capability for SIM-based IoT Security
Milton Security Group Partners with SynED to Strengthen the Cyber Workforce in California
Kudelski Security Named 2019 LogRhythm European Partner of the Year
U.S. Department of Veterans Affairs Deploys Forescout Across 1.3 Million Devices
Thales Brings Passwordless Authentication to the Enterprise

Boost Your Social Network
& Crowdfunding Campaigns

NewswireToday Celebrates 10 Years in Business



Visit  RightITnow, Inc.

  ©2020 NewswireToday — Limelon Advertising, Co.
Home | About | Advertise/Pricing | Contact | Investors | Privacy/TOS | Sitemap | FRANCAIS
newswire, PR press releases distribution service magazines engine news alert newsroom press room breaking news public relations articles company news alerts newswiredistribution ezine bizentrepreneur biznewstoday digital business report market search pr firms agencies reports distri-bution today investor relation successful internet entrepreneurs newswire distribution newswiredistribution asianewstoday bizwiretoday USA pr UK today - NOT affiliated with PRNewswire as we declined their partnership offer in 2013
PRTODAY & NewswireTODAY are NOT affiliated with USA TODAY (