Insecure applications threaten move to the cloud


Insecure applications threaten move to the cloud

Simon Quicke

Companies are continuing to leave themselves exposed to security vulnerabilities lurking in applications that they fail to check or mistakenly believe are safe.

With applications often receiving some customisation in house the possibility of flaws creeping into the code exist and have been highlighted as a danger by Veracode.

According to research from the application risk management specialist Veracode 57% of apps were found to have unacceptable security quality and 80% of those programmes that had been developed in house failed to comply with international web standards.

Matt Peachey, vice president EMEA at Veracode, said that the security of applications was of pressing concern with the shift towards the cloud.

"Things that were never web enabled, like back office accounts, are becoming available anywhere," he added that most users assumed "someone has been doing due diligence."

The vendor is looking to work with more channel partners to increase awareness about the threat.

Steve Smith, managing director at Pentura, said that it came across a large amount of users that were unaware of the risks they were taking: "Every time we do an application test we find a vulnerability of some description".

"Some developer could be using the same library using modules of code into the next step of applications," he added.

Join the conversation Comment



    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.