High number of security flaws found in EMEA-developed apps

2023-09-27 04:45

Applications developed by organizations in Europe, Middle East and Africa tend to contain more security flaws than those created by their US counterparts, according to Veracode.

Researchers found that just over 80% of applications developed by EMEA organizations had at least one security flaw detected in their most recent scan over the last 12 months, compared to just under 73% of US organizations.

The percentage of applications containing 'high severity' flaws was the highest of all regions, at almost 20%. "Our data shows that organizations globally are continuing to deploy a worrying number of applications with a high number of flaws in the CWE Top 25," said Chris Eng, Chief Research Officer at Veracode.

The research identified notable regional differences in preferred language usage, with Java revealed to be the preferred language for developers in EMEA. Teams using Java were found to remediate flaws at a slower rate than those using.

This highlights the importance of software composition analysis, which picks up flaws in open-source code, and the research found a higher proportion of flaws reported by SCA in EMEA than in other regions.

The research also showed new flaws continue to be introduced into EMEA applications at a far higher rate across the entire application lifecycle than in other regions.

News URL

https://www.helpnetsecurity.com/2023/09/27/applications-security-flaws/

#emea #security