Nine out of ten websites are at risk

By
Follow google news

As many as 90 percent of websites have serious vulnerabilities that make them a target for online attacks, according to research by WhiteHat Security.

Nine out of ten websites are at risk
The quarterly report shows that cross-site scripting (XSS) was the most prevalent problem, appearing in three quarters of sites, followed by information leakage that was found in 53 percent of websites.

Other technical flaws on the up include HTTP response splitting and SQL injection, the research suggests.

HTTP response splitting has been underestimated and has evaded most corporate scanning technology since its discovery several years ago, according to WhiteHat.

“These statistics continue to reveal recurring and emerging issues that are affecting websites,” Jeremiah Grossman, founder and chief technology officer at Whitehat Security, said in the report.

“The first step towards stemming the onslaught of attacks is thorough understanding of the nature of the problem,” he added.

WhiteHat Security is a website vulnerability management services company.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
areatnineofoutrisksecuritytenwebsites

Sponsored Whitepapers

Fintech compliance made fast and secure
Fintech compliance made fast and secure
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM
Sumo Logic named in the 2025 Gartner Critical Capabilities for Security Information and Event Management (SIEM)
Sumo Logic named in the 2025 Gartner Critical Capabilities for Security Information and Event Management (SIEM)
The cloud tipping point
The cloud tipping point

Events

Most Read Articles

Telstra used ConnectID impermissibly for months

Telstra used ConnectID impermissibly for months
Two US cyber experts plead guilty to cooperating with ALPHV Blackcat

Two US cyber experts plead guilty to cooperating with ALPHV Blackcat
Three spyware-linked executives removed from US sanctions list

Three spyware-linked executives removed from US sanctions list
Murray Irrigation landholder data accidentally leaked

Murray Irrigation landholder data accidentally leaked
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?