Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Wednesday, August 27, 2008

WhiteHat Report Finds Web Site Security Vulnerabilities Persist

WhiteHat Security’s latest report on Web site security shows cross-site scripting remains the most common Web site vulnerability.  WhiteHat Security’s latest report on Web site vulnerabilities has found the Internet in slightly better shape—-emphasis on slightly.  In the fifth installment of the “WhiteHat Website Security Statistics Report,” the company has found that 82 percent of the 687 Web sites assessed by the company have had at least one security issue since WhiteHat began assessing them, a drop-off from the previous report released in March.

While the company reported that overall vulnerability counts have started to decline, the most common vulnerabilities listed in the report will seem familiar to those who follow Web security.

A new entry to the top 10 was cross-site request forgery, which allows an attacker to force a victim’s browser to make an authorized Web request.

WhiteHat CTO Jeremiah Grossman also recommended that developers practice input validation and output filtering properly.

Posted on 08/27