Wednesday, June 19, 2019

The Most Significant IT Vulnerabilities Right Now

When you’re in IT, it can seem like a challenge to keep up with changing security threats, to say the least. Despite being a somewhat changing landscape, there are also some consistent security vulnerabilities that remain the same, though most security and IT professionals aware well aware of them. From large runtime environments and bloat to issues with libraries, the following are some of the main software and IT security vulnerabilities to keep an eye on.

One-Size-Fits-All Runtime Environments

As was briefly touched on above, runtime environments can be a security vulnerability. When there is a large, non-customized runtime environment, it can lead to large surface attacks. A solution to this issue can be the use of a platform that allows for automatic creation of open source runtime environments. A custom runtime environment can include automatic updates if new vulnerabilities are identified or new packages are released.

If you choose a custom runtime environment platform, it can also allow you to eliminate the overhead costs associated with the creation, maintenance, and update of multiple runtimes, and you’ll reduce your attack surface.

IT Vulnerabilities

Injection Flaws

When input isn’t filtered before going to the SQL server and then to the browser or anywhere, it can lead to web security issues. When you have an application, and it’s receiving anything from a source that isn’t trusted, it needs to be filtered.

If you filter all of your input and know that you’re using trusted input only, it can prevent the injection vulnerability.

The recommended option here is to use the filtering function of whatever your framework is. This is almost always a better idea than not using them.

Using Outdated Content Management Systems or Components

Regardless of whether you’re an IT professional or not, it’s so important to know that software always needs to be updated when there’s an option. The more things you are using that aren’t updated, the bigger the risks. For example, content management systems that are outdated pose among some of the biggest risks and vulnerabilities, yet they are very often out-of-date.

There are a few logical reasons that software isn’t updated when it should be, including the fact that code may not work on new versions of software, or webmasters simply can’t keep up. However, ignoring update notifications is going to continuously increase your level of vulnerability.

Drupal CMS

While potential vulnerabilities related to outdated content management systems were already discussed above, Drupal is worth mentioning on its own. There was an announcement in 2018 about emergency patches for 1.1. million sites powered by Drupal. The reason for the vulnerability was because of a problem with PHP and URL parameters. A similar patch was released just a month later.

Cross Site Scripting

Cross Site Scripting is also referred to as XSS, and in this situation, there are vulnerabilities when scripts embed on a page and then execute on the client side instead of the server side. This often happens when an application uses untrusted data and sends it to the browser without validation.

A browser isn’t able to discern whether or not a script can be trusted, and then once this kind of attack occurs it can lead to session cookies being taken over, or the user could be taken to a malicious site.

Authentication and Session Management Problems

When someone goes to a website, the site creates a session cookie and an ID. The cookies have personal data, including passwords. When the session ends, the goal is for the cookies to be invalidated so that with each new session, there is a new cookie. If this doesn’t happen and cookies aren’t invalidated, the result can be personal data existing in the system. This can often happen when computers are in public places.

Also, if a browser is closed without someone logging off, an attack can take information from the profile of the user.

To avoid this problem, checks should be done assessing the strength of authentication and session management.

Finally, there is an issue called Insecure Cryptographic storage affecting an application database. This occurs when data isn’t security stored. This can include profile and credit card information. Data is stored on an application database, and if that data isn’t guarded by encryption or hashing, then vulnerabilities exist. To avoid this risk, only approved algorithms should be used for encryption, and offsite backups should also be encrypted but with separate keys that are managed separately.

Read Full Article Here - The Most Significant IT Vulnerabilities Right Now



from TechGYD.COM http://bit.ly/2FlkPS2

Labels:

0 Comments:

Post a Comment

Subscribe to Post Comments [Atom]

<< Home