December 9, 2011

Gov Web Apps Expose Themselves to Attacks

THE MOST commonly exploited security holes in Web applications are more common on government websites than on those in other sectors, according to the latest survey by application security provider Veracode.

Vulnerabilities to cross-site scripting (XSS) and SQL injection, which have played a part in high-profile attacks from hackers groups such as Anonymous, affected a higher percentage of government sites than the other industry sectors tested. XSS issues affected 75 percent of government - federal, state and local - applications, compared with 67 percent for the finance sector and 55 percent for the software sector.

>Read the report

No comments: