Survey exposes 81% of companies know they are vulnerable to hacking
Eight one percent of IT professionals admit their applications are vulnerable and are very concerned about hackers attacking business-critical applications. According to a survey released by Fortify Software, more than 300 IT security professionals, drawn mainly from 1000+ sized companies at the recent Infosecurity Europe 2008 event, cited application security as a key concern, with nearly a third admitting that they are “very worried” about the security of their applications. Moreover, a quarter of companies surveyed, outsource application development BUT do not specify any security processes or technologies be applied to ensure the security of outsourced applications.
Hacking Attacks Commonplace
The survey also reminds us all that attempted hacks are commonplace. A third of companies cited that hacking is a daily occurrence. Worse, respondents cited that 17% of hacks were successful.
Outsourcing Makes you Vulnerable to Hackers
More than 60% of IT professionals believe that outsourcing code increases the likelihood of hacking. In fact, 55% respondents believe that it is far safer to write code internally.
Security warms up to compliance
The research also found that the recent introduction of rules and regulations to enforce higher standards of security within business, are seen as a positive influence by over a third of security professionals, dubbing compliance such as PCI, Sarbannes Oxley, Basel 2 and the Data Protection Act as “brilliant” and “a great driver” contributing to a greater awareness of security within their organisations and also helping to get funds allocated to improving security.
Rob Rachwald, Director of Product Marketing at Fortify Software said “Compliance has become a major driver in fostering awareness for application security inside government and commercial organizations. This survey highlights the fact that compliance greatly increases the security team’s ability to procure funds to improve security. ”
Firewalls still most popular form of defence
Firewalls are still the most popular form of security in the line of defence when it comes to companies protecting their application software from being exploited with 98% choosing this as the default option. Additionally, the survey found that 67% use pen test and 41% use static analysis software.
The Fortify Application Security Survey was carried out at Infosecurity Europe 2008 amongst 300 IT security professionals, who were drawn from mainly 1000+ employee sized companies.
About Fortify Software, Inc.
Fortify® Software products protect companies from the threats posed by security flaws in business-critical software applications. Its software security suite —Fortify 360—drives down costs and security risks by implementing threat intelligence, automating key processes of developing and deploying secure applications. Fortify Software's customers include government agencies and FORTUNE 500 companies in a wide variety of industries, such as financial services, healthcare, e-commerce, telecommunications, publishing, insurance, systems integration and information management. The company is backed by world-class teams of software security experts and partners. More information is available at www.fortify.com
Read more at www.fortify.com