Friday, July 3, 2015
INDIA, 1st July 2015:
“The most sobering insight that the report provides is the gap between discovery and mitigation in Indian enterprises – 54 days for critical and 120 days for high-rated vulnerabilities. Close to 91% of all websites Indusface tested were vulnerable to SQL injections, and 97% to cross-site scripting [XSS],” Tandon Says.
Moreover, the rapid pace at which the Indian Internet economy is developing has meant that many organizations quickly falling behind the curve as soon as they enter the digital fray, when it comes to security, he says. The report titled “Eye-Opening Website Security Stats from India” — the first tailor-made report by an Indian vendor — says that India has 185 million active mobile internet users with 243% growth, making it a highly vulnerable mobile platform, and has 10 million online shoppers, growing yearly at 30%, making cybercrime increasingly lucrative.
Development challenges, third-party dependencies, speed to market and a constant update/change cycle ensures that security and secure development becomes a mere checkbox if not worse. Application testing and vulnerability patching is ad-hoc and not being done on priority, Tandon says. The result is that even in cases where a certain vulnerability has been mitigated, we find that it creeps back in with the next update to the application, he says.
In this exclusive interview with Information Security Media Group, Tandon highlights some of the challenges facing Indian enterprises in the rapid digitization that is taking place in the Indian economy. Tandon acknowledges the pressure enterprises are under to roll out their digital business strategies, but warns that the rampant disregard for secure development and testing will soon bear bitter fruit.
He touches upon:
Read more: Click here
"Indusface has proved to be a valuable security partner with its Total Application Security solution. Their 'detect-protect-monitor' package handles security worries so we can focus on improving services for our customers. Vulnerability detection, attack blocking and near real-time reports are some of the key differentiators that we enjoy with them. The web application scanning and web protection combination ..."
"As one of the leading banks in India, securing application infrastructure is critical for us. Indusface’s Total Application Security package allows us to scan vulnerabilities continuously and prevent attacks. Indusface also provides the unique benefits of expert handling and tuning on custom rules with round-the-clock traffic monitoring and protection through on-premise appliances ..."
"Our complete ecommerce infrastructure is hosted on the cloud and we are glad to have Indusface as partner for web security. Due to their association with cloud service providers and prompt deployment options, Indusface was the preferred security choice. The on-demand and scheduled scanning helps us keep track of vulnerabilities that may otherwise damage our website or put customers at risk ..."