Seventy three percent of IT professionals admit their software applications are still vulnerable to hackers, only an eight percent reduction on last years startling discovery.
In a repeat of its survey conducted amongst IT security professionals, Fortify Software the application security specialists, has learned that, this year, forty six percent think that hacking at the application level is the easiest way into a company - an increase on a third compared with last years Fortify survey. Worryingly five percent report that between 76% and 100% of hacks are targeted at applications.
External vs Internal
A third of respondents believe that buying external applications pose a greater security threat than writing them in house. That said, thirty five percent dont consider checking externally procured applications for flaws and vulnerabilities. When examining how concerned respondents were about application security, fifty five percent of respondents disclosed they were worried because it hadnt been made a priority for the developers. A further twenty one percent were rightly disturbed because it is at the bottom of everyones mind.
Barmak Meftah, Senior Vice President Products & Technologies, from Fortify Software said Although pleased by a reduction in respondents who admit their software applications are vulnerable to attack, eight percent simply isnt good enough. Today, such an informed audience shouldnt be citing security concerns as bottom of anyones mind or worse not considered a priority. Businesses really should be looking to alleviate the security risks in their applications and achieve software security assurance so that they dont have to face the expense and embarrassment of being hacked.
The survey also confirms that the economic downturn is having an impact on organisations security with twenty three percent reporting an increase in hacking attempts since the economy went into freefall.
Twenty six percent have been victim to at least one instance of hacking in the last twelve months.