Web Application Threat Trend (WATT) Report Released From 2016 by Penta Security Systems

Hacking attempts targeting web applications varied greatly by industry

By analyzing the data collected from our patented detection engine, we are able to offer valuable knowledge that can hopefully, reconstruct any organization’s security risk profile.

Penta Security Systems Inc. has released its annual Web Application Threat Trend (WATT) Report from detection data gathered and analyzed in 2016. The report was compiled after thorough analysis of detection data from Penta Security’s Web Application Firewall (WAF), WAPPLES. The report analyzes web attack trends with the purpose of identifying the newest trends in web application threats, predicting future web attack patterns, and planning a holistic infosecurity strategy.

Covering attack trends that emerged under various data segmentations including industry type, continent of origin of attacks, and time of day, the report focuses on the analyses of five rules considered most important to the WAPPLES’ detection engine, with key elements from the OWASP (Open Web Application Security Project) Top 10: Cross-Site Scripting (XSS), SQL Injection, File Upload, Directory Traversal and Stealth Commanding. Penta Security’s security analysts found that not only did attack trends vary when data was segmented by continent of origin and time of day, but distinct web attack trends also existed across industries. Therefore contextual analysis is critical to effective optimization of security policies.

Different attack types were prominent for specific industries – for example, XSS showed to be prevalent in the Science & Technology industries as well as Social & Community industries as administration of websites belonging to this field tend to be relatively lax. Therefore, many…

Read the full article from the Source…

Back to Top