Rapport van edgescan™ toont aan dat het web nog altijd zeer kwetsbaar is voor hackers…
DUBLIN–(BUSINESS WIRE)– edgescan™ heeft zijn Kwetsbaarheidstatistieken Rapport 2015 gepresenteerd. Afkomstig van het enige in de EU gevestigde Kwetsbaarheidsbeheersbedrijf dat door Gartner is opgenomen in zowel de Magic Quadrant for Managed Security Services en de Gartner Application Security Hypecycle geeft het rapport de ware staat van cyberveiligheid weer.
Dit is gebaseerd op kwetsbaarheidsgegevens die in 2015 zijn vergaard via de SaaS, edgescan.com.
“63% van alle ontdekte kwetsbaarheden hadden door middel van een combinatie van patches, configuratie en componentenbeheer kunnen worden verzacht.”
Mensen die systemen op het internet beheren en onderhouden doen dat nog altijd niet op een veilige manier. Dit is niet moeilijk, maar kan wel veel tijd kosten. Een belangrijke oorzaak hiervan is bewustzijn en een gebrek aan een adequaat beheersproces en -beleid voor patches.
edgescan™ Report Shows The Web Is Still Very Vulnerable to Hackers… |
|||||
|
DUBLIN–(BUSINESS WIRE)– edgescan™ have released their 2015 Vulnerability Statistics Report. As the only EU based Vulnerability Management Company listed by Gartner in both the Magic Quadrant for Managed Security Services and the Gartner Application Security Hypecycle the report reveals the true state of cyber security. This Smart News Release features multimedia. View the full release here: http://www.businesswire.com/news/home/20151110006514/en/ This is based on vulnerability data gathered in 2015 via the SaaS, edgescan.com. “63% of all vulnerabilities discovered could have been mitigated via patch, configuration and component management combined.” People that maintain and manage systems on the internet are still not doing so in a secure manner. This is not difficult to do but can be time consuming. A major cause of this is awareness and a lack of adequate patch management process and policy. “61.4% or 2 of every 3 servers had a cryptographic vulnerability” This in effect may result in data privacy and eavesdropping attacks against users data. This is a cause of concern as our economy relies heavily on privacy and protection of sensitive information for many reasons. Such weaknesses are regularly exploited by both cyber criminals and nation state agents in order to get a competitive edge in business or aid in identity & financial theft. “15.1% of Assets have high or critical risk vulnerabilities” High or critical vulnerabilities are defined as: • Easily exploitable • Remotely exploitable • In some cases such issues can affect both application and network layers combined. Remediation: Even though patch management is not as exciting as other aspects of security, it’s still a vital aspect of maintaining a secure and robust posture. Security patches are a result of security bugs being discovered in application, framework & operating systems provided by system vendors. Client-Side Security is still a significant issue. Weakness such as Cross-Site-Scripting (The ability for an attacker to inject code into a user’s browser and possibly steal user credentials or install malware) is common. Averages of 4.78 vulnerabilities are being discovered per web application assessed. Such weak protections also assist an attacker with Phishing attacks and malware distribution. Download it here: https://edgescan.com/assets/docs/reports/2015-edgescan-Stats-Report-(2015)-v5.pdf View source version on businesswire.com: http://www.businesswire.com/news/home/20151110006514/en/ Contacts edgescan™ |
|||||
Check out our twitter: @NewsNovumpr