Massive shadow code risk for world’s largest businesses

2022-06-02 04:00

The top line report findings discovered an average of 15 externally generated scripts on each site, with an average of 12 scripts specifically on sensitive pages.

If a script has been compromised, the shadow code comes with it and goes straight to the browser without organizational defenses able to detect it.

On average, one in four of all scripts represented fourth-party code, as did every one in five scripts on individual pages.

Per page, analysis found an average of five scripts, with at least one a fourth-party script.

The two most exposed verticals were financial services and healthcare, with an average of 16 and 13 third-party scripts, and 6 and 5 fourth-party scripts, respectively.

On sensitive pages, analysis found an average of 19 scripts in financial services and 14 scripts in healthcare.

News URL

https://www.helpnetsecurity.com/2022/06/02/digital-supply-chains-risks/