[Owasp-ireland] IBM X-Force 2012 Trend and Risks Report

Fabio Cerullo fcerullo at owasp.org
Fri May 31 13:19:43 UTC 2013


Hi there,

Please find attached detailed report from IBM on various attack trends
during 2012.

Some highlights are:

- SQL Injection and XSS remain as top web application vulnerabilities. Web
application vulnerabilities surged 14% from 2,921 vulnerabilities in 2011
to 3,551 vulnerabilities in 2012. Cross-site scripting vulnerabilities
accounted for over half of the total web application vulnerabilities
disclosed in 2012.

- Denial of Service attacks will remain strong in 2013. There is a
particular focus on banks and politically motivated attacks.

- Integration of mobile devices into the enterprise continues to be a
challenge. Implementing BYOD (“Bring your own device”) programs without
strict formulations of policy and governance to support the use of these
devices represent a significant risk to organizations.

- Java exploits have become key targets in 2012 and will remain in the
foreseeable future.

Have a great long weekend everyone,

Thanks,
Fabio
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-ireland/attachments/20130531/f280ed27/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: WGL03027USEN.PDF
Type: application/pdf
Size: 10548540 bytes
Desc: not available
URL: <http://lists.owasp.org/pipermail/owasp-ireland/attachments/20130531/f280ed27/attachment-0001.pdf>


More information about the Owasp-ireland mailing list