Navigation Links
Penetration Testing Identifies Serious Flaws in 95.83% of Companies Tested in 2012. High Bit Security's Year-End Report Shows Majority of Companies Vulnerable to Hackers

Rochester MI (PRWEB) January 30, 2013

“In 2012 High Bit Security performed testing across multiple sectors,” said High Bit COO Adam Goslin. “It did not seem to matter what business the clients were in. Medical, Banking, Mortgage, E-Commerce, Software, Industrial Design, Staffing, Business Intelligence, Insurance, Accounting, Legal, Hospitality, and even Internet Payment processors – almost all failed their tests. This past year, 95.83% of the businesses we tested had vulnerabilities that would allow their systems to be compromised. Even those who were running regular vulnerability scans, or had penetration testing performed with other companies the previous year.”

The most common – 58.5% of the vulnerabilities - were found in the application layer (web applications, web services, and API’s) while doing external testing. Performed from the outside, external testing simulates a hacking attack originating anywhere from across the parking lot to across the globe. “We were contacted by a customer after they discovered one of their web pages was being re-routed to a site selling fake merchandise,” said Goslin. “That was just the tip of the iceberg. Sensitive client data was being extracted from their systems without their knowledge. Ultimately, when we gave the findings report to their web developer, it was an easy fix. We showed them the code changes needed and the issues were easily resolved.”

The next largest segment of vulnerabilities – 41.5% - were found in the network layer – the firewall, server, and infrastructure configurations. “I feel bad for IT service providers who assure customers they are secure,” said High Bit Security Chief Business Development Office Barbara Goushaw. “IT security is a specialty, and expecting your IT provider to know all of the ways a company can be compromised is like expecting your family doctor to do open heart surgery.”

Internal penetration testing engagements (testing performed from within the network of the target environment, similar to an attacker breaching a system via malware or Trojan) consistently show how network layer and host vulnerabilities are potentially the most devastating. “Often, organizational focus is limited to the boundary defenses, with the erroneous belief that running external testing is sufficient.” said Goslin. “All it takes is one employee clicking on the wrong site, downloading the wrong file, or a zero-day vulnerability, and the attacker is on the internal environment. If you identify and close the vulnerabilities on internal networks and applications, you make the attacker’s job significantly more difficult. If they can’t get to the valuable data, they will move on to an easier target. Our goal is to make sure our clients are not an easy target.”

High Bit Security’s full 2012 Security Testing Review report is located on their website by clicking here (no need to supply credentials), and provides details about the most prolific security vulnerabilities their customers experienced during the 2012 Security Testing cycle.

About High Bit Security: High Bit Security is a national security services provider, providing penetration testing solutions to clients who need to protect sensitive data in industries such as Healthcare, Credit Card, Financial, or companies that otherwise store Intellectual Property or Personally Identifiable Information. High Bit Security also provides security consulting services to our clients to assist them with their compliance objectives across PCI-DSS, PA-DSS, HIPAA, SSAE-16 or simply wish to perform a security best practices audit of their organization. Contact High Bit Security today for a free consultation to take steps toward protecting your sensitive information. 800-757-3144

Read the full story at

Source: PRWeb
Copyright©2012 Vocus, Inc.
All rights reserved

Related medicine news :

1. DefenderPad™ Reaches a New Milestone: Global Sales Penetration
2. Mistrust of government often deters older adults from HIV testing
3. High Complexity Laboratory Testing Supports New Targeted Therapies for Leukemias and Lymphomas
4. Fast, low-cost device uses the cloud to speed up diagnostic testing for HIV and more
5. US Drug Watchdog Now Offers To Help All DePuy Pinnacle Metal on Metal Hip Implant Recipients get to the Best Attorneys Or Law Firms And They Urge Blood Testing For Cobalt
6. US Drug Watchdog will Expand Their Initiative Focused on Helping Recipients of a Failed DePuy Pinnacle All Metal Hip Implant with a New Emphasis on Blood Testing in 2013
7. Beta Testing Opportunity for URAC Clinically Integrated Network Accreditation Program
8. Knoji Launches In-Depth Consumer Report Covering Leading DNA Testing Services.
9. Audiology Associates Extends Comprehensive Tinnitus Testing and Treatment Program for Mill Valley Residents
10. Uncovering a flaw in drug testing for chronic anxiety disorder
11. Green scientists propose safety testing system for development of new chemicals
Post Your Comments:
(Date:6/25/2016)... ... June 25, 2016 , ... As a lifelong Southern Californian, Dr. Omkar ... M.D from the David Geffen School of Medicine at UCLA. He trained in Internal ... complete his fellowship in hematology/oncology at the UCLA-Olive View-Cedars Sinai program where he had ...
(Date:6/25/2016)... ... June 25, 2016 , ... On Friday, June 10, Van Mitchell, Secretary of ... award to iHire in recognition of their exemplary accomplishments in worksite health promotion. , ... Workplace Health & Wellness Symposium at the BWI Marriott in Linthicum Heights. iHire was ...
(Date:6/24/2016)... ... June 24, 2016 , ... A recent article ... are unfamiliar with. The article goes on to state that individuals are now more ... these less common operations such as calf and cheek reduction. The Los Angeles area ...
(Date:6/24/2016)... ... June 24, 2016 , ... June 19, 2016 is World ... with chronic pain and the benefits of holistic treatments, Serenity Recovery Center ... with Sickle Cell Disease. , Sickle Cell Disease (SCD) is a disorder of the ...
(Date:6/24/2016)... (PRWEB) , ... June 24, 2016 , ... ... Conference and Scientific Sessions in Dallas that it will receive two significant new ... the grants came as PHA marked its 25th anniversary by recognizing patients, medical ...
Breaking Medicine News(10 mins):
(Date:6/24/2016)... and SAN CLEMENTE, Calif. , June ... -based mobile pulmonary function testing company, is now able to ... devices developed by ndd Medical Technologies , Inc. ... done in hospital-based labs.  Thanks to ndd,s EasyOne PRO ® , ... , can get any needed testing done in the comfort of ...
(Date:6/24/2016)... NAMUR , Belgium , ...  (NYSE MKT: VNRX), today announced the appointment of ... Board of Directors as a Non-Executive Director, effective ... the Company,s Audit, Compensation and Nominations and Governance ... Board, Dr. Futcher will provide independent expertise and ...
(Date:6/23/2016)... 23, 2016 Any dentist who has made an ... current process. Many of them do not even offer this ... and high laboratory costs involved. And those who ARE able ... such a high cost that the majority of today,s patients ... Parsa Zadeh , founder of Dental Evolutions Inc. and ...
Breaking Medicine Technology: