HP’s 2013 Cyber Risk report finds that developers are making mistakes that result in security vulnerabilities. According to the company, 80 percent of all applications are misconfigured, which makes them insecure. “Even if developers build their code perfectly, and even if the initial configuration that comes out of development is secure, then there is still the opportunity for an operations person to alter the configuration and introduce insecurity that wasn’t present during the development and testing period,” said Jacob West, CTO of Enterprise Security Products at HP.
The report also claims that 46 percent of mobile apps don’t use encryption properly. “That’s a really shocking number because there is such attention being paid today on keeping mobile data safe,” commented West.