Security News > 2022 > December > 24% of technology applications contain high-risk security flaws

Veracode has revealed that 24 percent of applications in the technology sector contain security flaws that are considered high risk-meaning they would cause a critical issue for the application if exploited.

"Giving developers real, hands-on experience of what it takes to spot and exploit a flaw in code-and its potential impact on the application-provides the context and understanding to build their intuition about software security. Our research found that organizations whose developers had completed just one lesson in our hands-on Security Labs training program fixed 50 percent of flaws two months faster than those without such training," said Chris Eng, Chief Research Officer at Veracode.

The technology industry was revealed to have the second-highest proportion of applications that contain security flaws, at 79 percent, making it marginally better than the public sector at 82 percent.

Tech firms are comparatively quick to fix software security flaws.

The sector boasts fix times for flaws discovered by static analysis security testing and software composition analysis.

He continued, "To improve performance in the year ahead, technology businesses should not only consider strategies that help developers reduce the rate of flaws introduced into code, but also put greater emphasis on automating security testing in the Continuous Integration/Continuous Delivery pipeline to increase efficiencies."

News URL

https://www.helpnetsecurity.com/2022/12/13/technology-applications-high-risk-security-flaws/