A third of large companies experience a CMS hack every week

A third of large companies experience a CMS hack every week

These security issues are a disaster and come at a high cost to businesses.

storyblock According to his new research Nearly a third (32%) of the world’s largest commercial websites experience a security and/or privacy incident each week due to a Content Management System (CMS). The research surveyed more than 500 professionals who personally use CMS in the US, UK, Germany, Sweden and the Netherlands, according to Security magazine.

(Storyblok research is not considered independent as it is involved in the development of the CMS. It’s called decapitation – Works on content management systems where the background engine and database are completely separate from the displayed content, so that the content can be displayed on any interface from a smartwatch to a desktop screen.)

The survey revealed the following:

  • In the UK, 69 per cent of professionals are concerned about the security of CMS, compared to the global average of 64.3 per cent.
  • Eighty percent of respondents said that security is very important or very important when choosing a content management system.
  • 32 percent say their CMS has new security issues at least once a week, and 7 percent report them on a daily basis.
  • The CMS Security Case said 46.4 percent of respondents had an impact on the content.
  • 21.7 percent perform security updates 5 to 9 times a month.

CMS security issues are a disaster and come at a high cost to businesses. According to Forrester, “Data loss in a SaaS application due to inadequate data protection is a nightmare for every CISO and compliance officer.” Compensation cost can exceed $3-3.5 million per incident, which is a conservative estimate.

See also  Putin: There will be "restrictions" on the Russian economy

Because CMSs are software packages that allow website administrators to easily manage the design, functionality, and operation of websites with minimal technical expertise, CMSs are increasingly being used by criminals to conduct cyberattacks, such as distributed denial-of-service attacks Cyber ​​and Infrastructure (CISA).

Website administrators and security teams generally should strive to follow security practices that are often provided by community efforts such as the Open Web Application Security Project (OWASP).

Hardware, software, tests, curiosities and colorful news from the world of IT by clicking here!

Leave a Reply

Your email address will not be published.