78% of new website security scans have an average 78% failure rate (Failure
being 1 or more high website security issues). Good for us maybe? But the truth is it is not
How?
How? You ask, only a selection website genres even consider getting a
security scan or audit on their website therefore it is in fact more work for us.
The threat is high but the same organisations are getting scanned and the remaining 90+% are not.
The Process
WebSafe scans websites in modules, each with a specific task and a possible set of results.
If the majority of websites would take onboard security standards that Websafe and a number of
other security/auditing firms stand behind then these modules could be bound together in a
standardised test. This would result in a limited scope for hackers/bots or general faults.
Then software could be applied to this scope eliminating the vulnerabilities of most websites.
Then we would have the same number of customers and a much easier testing process. Instead
there are no standards abided by and therefore we must test for all possible external attacks
in an almost ad-hoc fashion yet modulated.
We would prefer a 78% pass rate trust us on that one. Business would be better in reduced cost and higher volume.
Author:
James Snipes,
Software Developer & Network Analyst
Contact James through our
Contact Us Page