Navigation Links
Penetration Testing Identifies Serious Flaws in 95.83% of Companies Tested in 2012. High Bit Security's Year-End Report Shows Majority of Companies Vulnerable to Hackers
Date:1/30/2013

Rochester MI (PRWEB) January 30, 2013

“In 2012 High Bit Security performed testing across multiple sectors,” said High Bit COO Adam Goslin. “It did not seem to matter what business the clients were in. Medical, Banking, Mortgage, E-Commerce, Software, Industrial Design, Staffing, Business Intelligence, Insurance, Accounting, Legal, Hospitality, and even Internet Payment processors – almost all failed their tests. This past year, 95.83% of the businesses we tested had vulnerabilities that would allow their systems to be compromised. Even those who were running regular vulnerability scans, or had penetration testing performed with other companies the previous year.”

The most common – 58.5% of the vulnerabilities - were found in the application layer (web applications, web services, and API’s) while doing external testing. Performed from the outside, external testing simulates a hacking attack originating anywhere from across the parking lot to across the globe. “We were contacted by a customer after they discovered one of their web pages was being re-routed to a site selling fake merchandise,” said Goslin. “That was just the tip of the iceberg. Sensitive client data was being extracted from their systems without their knowledge. Ultimately, when we gave the findings report to their web developer, it was an easy fix. We showed them the code changes needed and the issues were easily resolved.”

The next largest segment of vulnerabilities – 41.5% - were found in the network layer – the firewall, server, and infrastructure configurations. “I feel bad for IT service providers who assure customers they are secure,” said High Bit Security Chief Business Development Office Barbara Goushaw. “IT security is a specialty, and expecting your IT provider to know all of the ways a company can be compromised is like expecting your family doctor to do open heart surgery.”

Internal penetration testing engagements (testing performed from within the network of the target environment, similar to an attacker breaching a system via malware or Trojan) consistently show how network layer and host vulnerabilities are potentially the most devastating. “Often, organizational focus is limited to the boundary defenses, with the erroneous belief that running external testing is sufficient.” said Goslin. “All it takes is one employee clicking on the wrong site, downloading the wrong file, or a zero-day vulnerability, and the attacker is on the internal environment. If you identify and close the vulnerabilities on internal networks and applications, you make the attacker’s job significantly more difficult. If they can’t get to the valuable data, they will move on to an easier target. Our goal is to make sure our clients are not an easy target.”

High Bit Security’s full 2012 Security Testing Review report is located on their website by clicking here (no need to supply credentials), and provides details about the most prolific security vulnerabilities their customers experienced during the 2012 Security Testing cycle.

About High Bit Security: High Bit Security is a national security services provider, providing penetration testing solutions to clients who need to protect sensitive data in industries such as Healthcare, Credit Card, Financial, or companies that otherwise store Intellectual Property or Personally Identifiable Information. High Bit Security also provides security consulting services to our clients to assist them with their compliance objectives across PCI-DSS, PA-DSS, HIPAA, SSAE-16 or simply wish to perform a security best practices audit of their organization. Contact High Bit Security today for a free consultation to take steps toward protecting your sensitive information. http://www.HighBitSecurity.com 800-757-3144

Read the full story at http://www.prweb.com/releases/2013/1/prweb10366543.htm.


'/>"/>
Source: PRWeb
Copyright©2012 Vocus, Inc.
All rights reserved

Related medicine news :

1. DefenderPad™ Reaches a New Milestone: Global Sales Penetration
2. Mistrust of government often deters older adults from HIV testing
3. High Complexity Laboratory Testing Supports New Targeted Therapies for Leukemias and Lymphomas
4. Fast, low-cost device uses the cloud to speed up diagnostic testing for HIV and more
5. US Drug Watchdog Now Offers To Help All DePuy Pinnacle Metal on Metal Hip Implant Recipients get to the Best Attorneys Or Law Firms And They Urge Blood Testing For Cobalt
6. US Drug Watchdog will Expand Their Initiative Focused on Helping Recipients of a Failed DePuy Pinnacle All Metal Hip Implant with a New Emphasis on Blood Testing in 2013
7. Beta Testing Opportunity for URAC Clinically Integrated Network Accreditation Program
8. Knoji Launches In-Depth Consumer Report Covering Leading DNA Testing Services.
9. Audiology Associates Extends Comprehensive Tinnitus Testing and Treatment Program for Mill Valley Residents
10. Uncovering a flaw in drug testing for chronic anxiety disorder
11. Green scientists propose safety testing system for development of new chemicals
Post Your Comments:
*Name:
*Comment:
*Email:
(Date:10/12/2017)... ... October 12, 2017 , ... ... treating sleep apnea using cutting-edge Oventus O2Vent technology. As many as ... disorder characterized by frequent cessation in breathing. Oral appliances can offer significant relief ...
(Date:10/12/2017)... ... October 12, 2017 , ... IsoComforter, Inc. ( ... today the introduction of an innovative new design of the shoulder pad. The ... get maximum comfort while controlling your pain while using cold therapy. By utilizing ice ...
(Date:10/12/2017)... ... October 12, 2017 , ... Information about the technology: ... develop to enable prevention of a major side effect of chemotherapy in children. ... pediatric patients. For cisplatin, hearing loss is FDA listed on-label as a dose ...
(Date:10/12/2017)... ... October 12, 2017 , ... Leading pediatric oncology experts at ... D.C., for the 49th Congress of the International Society of Paediatric Oncology ... the Center for Cancer and Blood Disorders at Children’s National, and Stephen ...
(Date:10/12/2017)... ... 12, 2017 , ... Health Literacy Innovations (HLI), creator of ... and the Cancer Patient Education Network (CPEN), an independent professional organization that shares ... strategic alliance. , As CPEN’s strategic partner, HLI will help support CPEN ...
Breaking Medicine News(10 mins):
(Date:10/11/2017)... FRISCO, Texas , Oct. 11, 2017 /PRNewswire/ ... healthcare services, has amplified its effort during National ... patients about hereditary cancer risks. ... Journal of Clinical Oncology calculated that more than ... to have inherited mutations in BRCA1 or BRCA2 and ...
(Date:10/10/2017)... Oct. 10, 2017   West Pharmaceutical Services, Inc. ... for injectable drug administration, today shared the results of ... for improving the intradermal administration of polio vaccines. The ... Summit in May 2017 by Dr. Ondrej Mach ... World Health Organization (WHO), and recently published in the ...
(Date:10/4/2017)... South Korea , Oct. 4, 2017  South ... its next-generation CPR training aide "cprCUBE" on Kickstarter. The ... chest compression during cardiac arrests with better efficiency compared ... It also offers real-time feedback on efficacy of the ... The crowdfunding campaign has a goal to raise $5,000. ...
Breaking Medicine Technology: