SANTA CLARA, Calif., July 11, 2017 /PRNewswire/ -- WhiteHat Security, the only application security provider that combines the best of technology and human intelligence to secure digital business, today announced the release of its 12th annual Application Security Statistics Report.
The WhiteHat Statistics report is unique in the industry because it uses real application security data collected in the twelve months of 2016 from 15,000 web applications, billions of lines of code, and more than 65,600 mobile apps. The report comprises analysis of dynamic testing (DAST) results, and -- new to this year's report -- static testing (SAST) results and DAST/SAST applied in combination, along with mobile app security data provided by WhiteHat partner NowSecure.
The report also includes a case study titled "Making the Case for DevSecOps", profiling a Fortune 500 company that has seen dramatic improvements in the security of their applications as a result of applying a DevSecOps approach to building their digital products and experiences. By implementing an application security program that fosters positive collaboration, critical DAST vulnerabilities have been cut in half, and time-to-fix for SAST vulnerabilities is a fraction of industry average, significantly reducing their attack surface and operational-risk to the business.
Top findings in the 2017 report include:
In the mobile application security data provided by WhiteHat partner NowSecure, the top security issues and vulnerabilities by mobile application category were identified for the Android and iOS platforms. News, Games and Lifestyle applications were the top three most vulnerable categories of apps on the Android platform in 2016, while Music, News and Finance were the top most vulnerable categories on the iOS platform. The popularity of both Android and iOS is prompting most companies to create apps for both platforms, doubling the work – and the security challenge – facing developers.
"This year's report reinforces the potential of DevSecOps to transform the security of the applications that drive today's businesses," said Ryan O'Leary, Vice President, Threat Research Center and Technical Support, WhiteHat Security. "As the case study indicates, a robust application security program that facilitates collaboration across security and development teams can reap amazing results. Considering that applications are literally at the core of our digital lives, it's more important than ever to ensure that enterprises of all types can provide safe digital experiences."
Talk with WhiteHat Security's application security experts about this year's Application Security Report in booth #840 at Black Hat USA 2017, taking place on July 26 and 27 in Las Vegas.
For more information
About WhiteHat Security
WhiteHat Security has been in the business of securing applications for over 15 years. In that time, applications have evolved to become the driving force of the digital business, permeating every aspect of our lives. The WhiteHat Application Security Platform is a cloud service that allows organizations to bridge the gap between security and development to deliver secure applications at the speed of business. This innovative platform is one of the reasons why WhiteHat has won numerous awards and been recognized by Gartner as a Leader in application security testing four times in a row. The company is headquartered in Santa Clara, Calif., with regional offices across the U.S. and Europe. For more information on WhiteHat Security, please visit www.whitehatsec.com, and follow us on Twitter, LinkedIn and Facebook.
SOURCE WhiteHat Security