Positive Technologies has published the results of a study that examined the security situation of modern web resources.
Web application hacking is reported to be one of the most commonly used cyber attack methods against both organizations and individuals.
At the same time, one of the main targets of cybercriminals is the websites of companies and structures involved in financial transactions. These are, in particular, banks, various payment services, etc.
The list of the most widespread attacks practically does not change over time. Thus, the following methods are most often used by network attackers: SQL Injection (SQL Injection), Path Traversal and Cross-Site Scripting (XSS).
According to experts, all sites from any industry are subjected to cyberattacks on a daily basis. If the attack is targeted, then its individual steps can be compared and added into a single chain.
Positive Technologies experts found out that last year the majority of cyberattacks were carried out with the aim of illegally obtaining certain data.
βThe websites of IT companies have been subjected mainly to attacks aimed at obtaining information and control over the application. Financial institutions, meanwhile, were the first to suffer from attacks on their customers, the most common of which was XSS (29% of all attacks on websites in the industry). The services and education sectors are subject to similar attacks, βthe report says. .
Source: 3dnews.ru