Le Lézard
Classified in: Science and technology
Subjects: PDT, SVY

New Analysis: More Than Half of Healthcare Applications Currently Open to Attack


SAN JOSE, Calif., Oct. 26, 2021 /PRNewswire/ -- The Application Security Division of NTT Ltd., a world leader in application security, today released AppSec Stats Flash Volume 10, the latest installment of the company's monthly report and podcast reflecting on the current state of application security and the wider cyber threat landscape. NTT Application Security's monthly analysis includes data from more than 400 million lines of code in applications spanning all industry sectors to provide comprehensive insight into the digital risks facing organizations today.

In AppSec Stats Flash Volume 10, NTT Application Security researchers take a closer look at the improving cybersecurity posture of applications in the healthcare industry, more than half of which currently contain a critical vulnerability.  

Key findings of the analysis include:

"Healthcare is one of the most regulated industries in the U.S., and data breaches can quickly lead to lawsuits, revenue loss, and brand damage," said Zach Jones, senior director of detection research. "To rise to the challenge posed by the critical need for accelerated digital transformation, healthcare organizations have had to reconfigure traditional procedures and protocols that have been in place for decades. We are glad to see an industry that is responsible for our most critical personal data is improving their application best practices."

The most serious vulnerability healthcare organizations encountered in recent months was abuse of functionality, which refers to an attack technique that uses a website's own features against it after gaining access to an organization's network through password-recovery flows. However, far more common vulnerability in healthcare organizations' applications is information leakage ? a weakness where an attacker uses sensitive data to exploit their target, its hosting network or users.

According to NTT's 2021 Global Threat Intelligence Report, 67 percent of global attacks in 2020 can be attributed to application-specific or web-application attacks. This is a dramatic increase from 2018, in which application vulnerabilities accounted for 32 percent of the share. Jones adds, "the healthcare industry should focus on improving the remediation rate for critical vulnerabilities found in web applications in order to reduce its overall breach exposure. The longer these threats go unresolved, the more likely they are going to be exploited by nefarious actors."

Those interested in learning more about the findings and analysis in AppSec Stats Flash Volume 10 can now download the report and stream the latest podcast episode on NTT's Application Security website and popular platforms including Apple PodcastsSpotifyStitcherAmazon, and more.

For more information about NTT's Application Security Division, please visit whitehatsec.com.

About NTT
NTT Ltd. is a leading global technology services company. Working with organizations around the world, we achieve business outcomes through intelligent technology solutions. For us, intelligent means data driven, connected, digital and secure. Our global assets and integrated ICT stack capabilities provide unique offerings in cloud-enabling networking, hybrid cloud, data centers, digital transformation, client experience, workplace and cybersecurity. As a global ICT provider, we employ more than 40,000 people in a diverse and dynamic workplace that spans 57 countries, trading in 73 countries and delivering services in over 200 countries and regions. Together we enable the connected future. Visit us at hello.global.ntt

Media Contact
Chris Marsh?Senior Manager, Analyst Relations & Communications
NTT Application Security
chris.marsh@global.ntt

Allison Arvanitis
Lumina Communications for NTT Application Security
NTTAppSec@luminapr.com

SOURCE NTT Ltd.


These press releases may also interest you

at 18:05
Coursera, Inc. announces that management will participate in the following investor conferences in December: Raymond James Virtual 2021 Technology Investors Conference Date: Monday, December 6, 2021 Virtual fireside chat time: 10:20 a.m. PT / 1:20...

at 18:00
WM Technology, Inc. ("WM Technology" or the "Company") , a leading technology and software infrastructure provider to the cannabis industry, filed a Form S-1 with the Securities and Exchange Commission (the "SEC") on December 2, 2021 to register for...

at 18:00
Comprehensive Healthcare Systems Inc. (the "Company" or "CHS") announces that subject to the approval of the TSX Venture Exchange (the "TSX-V"), it has engaged the services of Independent Trading Group (ITG), Inc., ("ITG") to provide services as a...

at 18:00
City Transformer Ltd., designer of the ultra-light folding electric vehicle for urban applications, today announced a critical partnership with advanced wireless charging technology innovator, Powermat Technologies to integrate the company's wireless...

at 17:58
In the news release, FOX on Fire: ShapeShift DAO Partners with Fireblocks, issued 02-Dec-2021 by ShapeShift DAO over PR Newswire, we are advised by the company that the source of the news should be listed as ShapeShift DAO rather than ShapeShift as...

at 17:55
CrowdStrike, Inc. , a leader in cloud-delivered endpoint protection and workload protection, today announced that it landed the number one spot in the 2021 Fortune Future 50 list. The list recognizes leading, publicly traded companies best positioned...



News published on 26 october 2021 at 08:00 and distributed by: