WebApp Sec mailing list archives
Q1 2007 Application Security Trends Report
From: "Tom Stracener" <strace () gmail com>
Date: Tue, 22 May 2007 12:23:10 -0700
Cenzic's CIA Labs has recently finished up its Q1 2007 Application Security Trends Report. The full report is available at the URL below: http://www.cenzic.com/pdfs/CZ_AppSecTrnds_Rev4.pdf You can read my blog post about the Trend Report below: http://secureweb.typepad.com/secure_web/2007/05/q1_2007_applica.html We examined vulnerability data for the period, attack and probe data from SANS ISC and DShield, and highlighted important application security events that occured during the Q1 2007 time-frame. Additionally we drew upon data from Cenzic's ClickToSecure service to point to the types of vulnerabilities we found to be most common in the wild. I hope our readers enjoy this report as much as we enjoyed putting it together. Best Regards, Tom Stracener Sr. Security Analyst Cenzic Inc. ------------------------------------------------------------------------- Sponsored by: Watchfire The Twelve Most Common Application-level Hack AttacksHackers continue to add billions to the cost of doing business online despite security executives' efforts to prevent malicious attacks. This whitepaper identifies the most common methods of attacks that we have seen, and outlines a guideline for developing secure web applications. Download today!
https://www.watchfire.com/securearea/whitepapers.aspx?id=701500000008rSe --------------------------------------------------------------------------
Current thread:
- Q1 2007 Application Security Trends Report Tom Stracener (May 22)