Upload File

shut the door on application vulnerabilities: hp cyber risk report

  • Home
  • Software
  • Shut the door on application vulnerabilities: HP Cyber Risk Report
13
© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Shut the door on application vulnerabilities: HP Cyber Risk Report

Upload: hp-software-solutions

Post on 20-Aug-2015

687 views

Category:

Software


1 download

Report

Tags:

TRANSCRIPT

Page 1: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

Shut the door on application vulnerabilities: HP Cyber Risk Report

Page 2: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

About the Cyber Risk Report

HP has published its Cyber Risk Report annually since 2009. HP Security

Research leverages a number of internal and external sources to develop

the report, including the HP Zero Day Initiative, HP Fortify on Demand

security assessments, HP Fortify Software Security Research,

ReversingLabs and the National Vulnerability Database.

The full methodology is detailed in the report.

Additional information about HP Enterprise Security Products

is available at http://www.hpenterprisesecurity.com

http://hpsw.co/q5QAe4b
http://hpsw.co/q5QAe4b
http://hpsw.co/b2CYw6a
Page 3: Shut the door on application vulnerabilities: HP Cyber Risk Report

Key findings

Page 4: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

56% of the applications tested exhibited weaknesses to revealing information about the application, its implementation or its users.

Page 5: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

74% of apps exhibit unnecessary permissions.

Page 6: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

80% of applications are vulnerable to misconfiguration vulnerabilities.

Page 7: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

Hybrid development frameworks for mobile apps don’t address many well-known security issues.

Page 8: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

Nearly 80% of applications

reviewed contained vulnerabilities rooted outside their source code.

Page 9: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

Even expertly coded software can be dangerously vulnerable if misconfigured.

Page 10: Shut the door on application vulnerabilities: HP Cyber Risk Report

So should you focus on client-side operations or service-side applications?

Page 11: Shut the door on application vulnerabilities: HP Cyber Risk Report

So should you focus on client-side operations or service-side applications? Yes.

Page 12: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

To learn more, invest just 4 minutes in watching the Cyber Risk Report preview video, or download the full report for free.

Watch the video

Download the report

http://hpsw.co/k7H4Xzf
http://hpsw.co/k7H4Xzf
http://hpsw.co/k7H4Xzf
http://hpsw.co/q5QAe4b
http://hpsw.co/k7H4Xzf
http://hpsw.co/q5QAe4b
http://hpsw.co/k7H4Xzf
http://hpsw.co/q5QAe4b
Page 13: Shut the door on application vulnerabilities: HP Cyber Risk Report

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.

Thank you


SEPTEMBER 2016 UNDERSTANDING CYBER …pellcenter.org/.../2016/09/Understanding-Cyber-Threats-Lessons-for...UNDERSTANDING CYBER THREATS ... vulnerabilities and opened the door to a

Vulnerabilities of Cyber-Physical Systems: From Football to Oil …archive.dimacs.rutgers.edu/People/Staff/froberts/Cyber... · 2015. 5. 15. · – VDR (Voyage Data Recorder –”Black

Millet_Airline Vulnerabilities to a Cyber-Attack_2015

Common Cyber Security Vulnerabilities Observed in Control System

National Cyber Security Research and Development Challenges€¦ · vulnerabilities in cyber space as an urgent national security challenge 1. ... solutions to the pressing cyber

Common Cybersecurity Vulnerabilities in Industrial Control ... · In 2009,a report titled “Common Cyber Security Vulnerabilities Observed in DHS Industrial Control Systems Assessments”

Visible Light Communication Cyber Security Vulnerabilities

An MNP Cyber Security Seminar€¦ · Page 4 Threats, Vulnerabilities, and Risks 4 Individuals and Organizations implicitly or explicitly assess RISK when thinking of Cyber Security

Case Study of GDPR Cyber Security Vulnerabilities …...Case Study Hospitality Vulnerabilities As an industry that favours stability and dependability over innovation, hospitality

The trends of cyber incidents leading to large scale cyber ... › events › 2nd-enisa... · To watch out - Vulnerabilities & Mobile Malware •Today there is no significant link

Mission Possible: Mitigating Cyber Threats in Government€¦ · Safeguard Your Agency Against 10 of the Most Common Cybersecurity Vulnerabilities . 1 Cyber Threats Are ... ransomware—encrypts

Web Site Attack Vulnerabilities - University of Kansashossein/710/Lectures/...10/28/08 3 Top Website Vulnerabilities “Trends, Effects on Governmental Cyber Security, How to Fight

Internet Vulnerabilities & Criminal Activity Criminology Theories & Cyber Crime 11.1 4/19/10 Criminology Theories & Cyber Crime 11.1 4/19/10

Smart Grid Cyber Security Potential Threats ... · PDF fileSmart Grid Cyber Security Potential Threats, Vulnerabilities And Risks is the ... Smart Grid Cyber Security Potential Threats

FY2017 Cyber Security Grant Program: Request for ... · 2. To assess cyber security risks, identify vulnerabilities and determine capability gaps with the focus of allocating resources

CYBER SECURITY VULNERABILITIES DURING LONG TERM …

Industrial Cyber Vulnerabilities: Lessons from Stuxnet and ... · Industrial Cyber Vulnerabilities: Lessons from Stuxnet and the Internet of Things LAWRENCE J. TRAUTMAN * & PETER

GAO-08-113 Critical Infrastructure Protection: Sector ... · address key aspects of cyber security, including cyber assets, key vulnerabilities, vulnerability reduction efforts, and

What’s New in Acronis Cyber Cloud 9€¦ · Vulnerability Assessment and Patch Management 1. Scan for vulnerabilities 2. Prioritize vulnerabilities by severity (critical to low)

Common Cyber Security Vulnerabilities Observed in Control System

Computer Attack and Cyber Terrorism: Vulnerabilities and

Vulnerabilities in Embedded Harvard Architecture Processors Presented By: Michael J. Hohnka Cyber Vulnerabilities Lead Cyber Innovation Division Communications,

THREATS · Identify and Limit Vulnerabilities Cyber Hygiene Scanning Broadly assess Internet-accessible systems for known vulnerabilities and configuration errors on a persistent

Understanding Vulnerabilities: How to Conduct ... Vulnerabilities: How to Conduct Vulnerability ... and open the shop floor to cyber security ... • Compromising an individual BPCS

Cyber Vulnerabilities of Biometrics - OWASP 2015

UNIVERSITY GRANTS COMMISSION NET BUREAU€¦ · 9. Cyber Security : Vulnerabilities of Information technology and internet, Need and importance of cyber security, Different kinds

2016 Top 10 Critical Infrastructures and SCADA/ICS Cyber Security Vulnerabilities & Threats

Computer Attack and Cyber Terrorism: Vulnerabilities and ... Attack and Cyber Terrorism: Vulnerabilities and Policy Issues for Congress ... computers and information systems are increasingly

Cyber Threats to Pipeline Safety: Vulnerabilities and ... · • Oil • Gas • Other Hazardous Substances - Vulnerabilities: • A single pipeline has thousands of sensors, valves,

Cyber Security and the Internet ofThings: Vulnerabilities ... Cyber Security and the Internet ofThings: Vulnerabilities,Threats, Intruders ... and authorization mechanism and second

Protecting drones against cyber threats: the GAUSS project · Protecting drones against cyber threats: the GAUSS project ... - Intense R&D efforts on Mitigation of GNSS vulnerabilities

CYBER WARFARE IN THE WIRELESS WORLD€¦ · Cyber Warfare in the Wireless World Overview Overview of the Cyber Domain Overview of the Cyber Wireless Component Vulnerabilities and

Cyber security threats in maritime industry (June 2016) Code of Practice - Cyber Security for Ships (Sep 2017) Norwegian Maritime Authorities’ report “Digital vulnerabilities in

Air Force Cyber Vision 2025 - Idaho National Laboratory Force Cyber Vision 2025 ... increase our ability to find and disable any malware, ... vulnerabilities, and threats Cyberspace

AUTOMOTIVE CYBER INCIDENTS IN H1 2019 SURPASS ALL OF … Report... · automotive cyber and fraud incidents. Understanding potential vulnerabilities and how criminals take advantage