Username: Save?
Password:
Home Forum Links Search Login Register*
    News: Keep The TechnoWorldInc.com Community Clean: Read Guidelines Here.
Recent Updates
Will iPhones cost more be...
by Saniya Abraham
[April 12, 2025, 01:54:20 PM]
OpenAI sues Elon Musk cla...
by Saniya Abraham
[April 12, 2025, 01:54:20 PM]
Microsoft rolls out AI sc...
by Saniya Abraham
[April 12, 2025, 01:54:20 PM]
Everyone's jumping on the...
by Saniya Abraham
[April 12, 2025, 01:54:20 PM]
From chatbots to intellig...
by Saniya Abraham
[March 12, 2025, 03:05:30 PM]
'Garbage' to blame Ukrain...
by Saniya Abraham
[March 12, 2025, 03:05:30 PM]
Google Chromecast users' ...
by Saniya Abraham
[March 12, 2025, 03:05:30 PM]
Global smartwatch sales f...
by Saniya Abraham
[March 12, 2025, 03:05:30 PM]
Court strikes down US net...
by Saniya Abraham
[January 03, 2025, 03:29:12 PM]
Tesla sales stall as Chin...
by Saniya Abraham
[January 03, 2025, 03:29:12 PM]
Nick Clegg leaves Meta ah...
by Saniya Abraham
[January 03, 2025, 03:29:12 PM]
Why Apple is offering rar...
by Saniya Abraham
[January 03, 2025, 03:29:12 PM]
Vodafone-Three merger cou...
by Saniya Abraham
[November 08, 2024, 04:31:03 PM]
Subscriptions
Get Latest Tech Updates For Free!
Resources
   Travelikers
   Funistan
   PrettyGalz
   Techlap
   FreeThemes
   Videsta
   Glamistan
   BachatMela
   GlamGalz
   Techzug
   Vidsage
   Funzug
   WorldHostInc
   Funfani
   FilmyMama
   Uploaded.Tech
   Netens
   Funotic
   FreeJobsInc
   FilesPark
Participate in the fastest growing Technical Encyclopedia! This website is 100% Free. Please register or login using the login box above if you have already registered. You will need to be logged in to reply, make new topics and to access all the areas. Registration is free! Click Here To Register.
+ Techno World Inc - The Best Technical Encyclopedia Online! » Forum » THE TECHNO CLUB [ TECHNOWORLDINC.COM ] » Techno News
 Independent Survey reveals 62% of companies experienced security breaches in cri
Pages: [1]   Go Down
  Print  
Author Topic: Independent Survey reveals 62% of companies experienced security breaches in cri  (Read 564 times)
RealWire
TWI Hero
**********



Karma: 0
Offline Offline

Posts: 18530


View Profile Email

Independent Survey reveals 62% of companies experienced security breaches in critical applications within the last 12 months

Study clearly shows organizations are At-Risk from Insecure Software

Infosecurity Europe, London, 29 April 2009 – Veracode, provider of the world’s leading Application Risk Management Platform, announced today the findings of an independent commissioned study conducted by Forrester Consulting on behalf of Veracode titled, “Application Risk Management in Business Survey.”  The survey revealed that enterprises are struggling to protect their organisations from the costly and growing threat of application security breaches.  The study interviewed development, security and risk professionals across the UK and US, and confirmed that risk associated with insecure software is a very real concern and a top priority for management and developers alike. 

The survey of over 200 respondents from 180 different businesses across various industry sectors, found that more than 62% of organisations have experienced a security breach in the past 12 months due to exploitation of vulnerabilities in their critical software applications.  The study also found that while companies feel they know the make-up and business criticality of their mixed application portfolios, there is little confidence in the security quality of their applications. 

“Companies are not doing enough to ensure the security of open source code, outsourced code and commercial applications,” according to the study by Forrester Consulting.

Other key findings:

• Exploitation of vulnerabilities in software is a major cause of data breaches.  62% of companies responded that they have experienced security breaches which exploited vulnerabilities in software in the last 12 months

• Security as part of the software development process is not widely practised. 
Only 34% of companies have a comprehensive SDLC (software development life cycle) process which integrates application security. 

• More than half of companies (57%) use outsourcing regularly for business critical.  Yet only one third of companies require rigorous security testing before accepting and implementing code from outsourcers

• Only 13% of companies know the security quality of business critical applications.  Very few respondents know the security quality of all their business applications which they deem critical to the enterprise. 

• Considering that 50% of companies are using COTS (custom-off-the-shelf software) or Outsourced code to handle sensitive data (financial information, PII, health info etc). this indicates why the risk and resultant fallout from breaches is so great.

• Enterprises are increasing scrutiny on ISVs (independent software vendors) and outsourcers for delivering secure code.
60% of respondents stated they are actively incorporating (or have already adopted) third party security assessments as part of software procurement processes for COTS or outsourced code.

• Most enterprises lack formal secure development training programmes. 
57% of organisations don’t have systematic training programmes addressing application security training for their developers.

• Security spending is not immune to economic conditions. 
64% of respondents stated that while application security is important to them, they are struggling to meet the challenge on existing budgets.

The results of the survey were consistent between UK and US organisations.   The UK uses less open source and outsourced applications extensively for business critical functions and has a lower of ratio of security personnel to developers, but the results in terms of breaches were in essence the same. More detailed specifics on this are available on request.

“The same economic forces driving enterprises to use third party applications are also increasing the risk of insecure software” says Matt Moynahan, CEO of Veracode. “Given the prolific use of third-parties to build business critical applications, global enterprises need a single flexible and cost-effective solution to seamlessly test the security across their entire application portfolio regardless of whether it was built internally or externally.”

Veracode will be sharing the complete findings of the survey in a webinar event on Thursday, May 7th at 1pm ET/6pm GMT, featuring Forrester analyst, Chenxi Wang, and Veracode CTO, Chris Wysopal.  Register for the webinar event at:

http://www.veracode.com/resources/survey-webcast-signup.html
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Copyright © 2006-2023 TechnoWorldInc.com. All Rights Reserved. Privacy Policy | Disclaimer
Powered by SMF 1.1.4 | SMF © 2006-2007, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks
Page created in 0.182 seconds with 23 queries.