Security News > 2021 > October > Is the government’s response to cybersecurity threats enough for your organization?
Here's why: the OMB directs government organizations to focus on standalone systems that are connected to critical infrastructure or sensitive information but neglects a key area - the web applications that the private sector has depended on to conduct business for years.
Web applications are often deeply integrated and widely accessed within companies, defying the neatly defined security borders of the standalone systems targeted by the OMB. Neglecting web application security therefore neglects a significant area of cyber risk for companies.
Mid- to large-sized enterprises may have hundreds of web applications and web assets in production.
Crawling the web space to discover publicly exposed web assets associated with the company's domains; and.
Scanning web applications, web services and web APIs including proprietary, open source and third-party code.
To augment shift left strategies, companies must also scan their web applications and web assets where the rubber meets the road: in production.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/Wy_Y8e6LgWs/
Related news
- THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 11 - Nov 17) (source)
- THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 18 - Nov 24) (source)
- THN Recap: Top Cybersecurity Threats, Tools and Tips (Nov 25 - Dec 1) (source)
- ⚡ THN Recap: Top Cybersecurity Threats, Tools and Tips (Dec 2 - 8) (source)
- Australian IT Pros Urged to Guard Against Chinese Cybersecurity Threats (source)
- ⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips (source)
- ⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips (source)
- The sixth sense of cybersecurity: How AI spots threats before they strike (source)
- ⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [30 Dec] (source)
- ⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan] (source)