Websites Continue to Present Data Security Challenges

Hackers continue to probe network and data security defenses to find new ways to launch malware attacks against unsuspecting users. Although website IT teams have worked tirelessly to address vulnerabilities and provide internet surfers with a safe digital environment, sites across cyberspace are rife with exploits.

Vulnerabilities found in most websites
According to a study on website vulnerabilities recently released by WhiteHat Security, 86 percent of all sites tested had at least one serious flaw that could expose visitors to attack. Of those participants reporting vulnerabilities, only 61 percent could confirm that IT teams successfully resolved those issues. The amount of time personnel required to address identified problems was alarming as well. Only 18 percent of affected websites managed to fix their flaws within a 30 day period. The average amount of time needed to by IT teams to resolve vulnerability concerns was 193 days following the initial notification.

These figures are an improvement from the previous year, which goes to show that network security has progressed slowly. The study found that organizations that depended on network defenses were more vulnerable to cyberattacks than those that employed a holistic approach to cybersecurity. Websites that reported having a Web Application Firewall in place suffered from 11 percent more vulnerabilities. In addition, they were found to resolve fewer issues and did so at a slower rate.

Preventing harmful data leakage
The most prevalent type of risk was data leakage, which was identified in 55 percent of the reviewed websites. The exposure of critical information can have significant adverse effects on an enterprise's operations. According to InformationWeek, one of the biggest factors for this vulnerability is the prevalence of data hoarding within an enterprise. Employees are increasingly storing  critical business data outside of the accepted network sphere, placing those files in danger of being stolen by cybercriminals. The news outlet suggested that businesses enact comprehensive data security protocols to ensure the preservation of their most valuable information. In addition, employees should be trained on proper data storage procedures and be made aware of the dangers inherent in storing company files on unsecured networks or devices.

Depending solely on network defenses or antivirus to combat cyberthreats is a recipe for disaster. When employing a holistic approach to cybersecurity, IT decision makers should remember to leverage data encryption software tools. In the event that a malware program evades network defenses, encrypted files can present an even greater security challenge for would-be data thieves.