Cyber Defense Magazine Special Annual Edition for RSA Conference 2021
Cyber Defense Magazine Special Annual Edition for RSA Conference 2021 - the INFOSEC community's largest, most popular cybersecurity event in the world. Hosted every year in beautiful and sunny San Francisco, California, USA. This year, post COVID-19, virtually with #RESILIENCE! In addition, we're in our 9th year of the prestigious Global InfoSec Awards. This is a must read source for all things infosec.
Cyber Defense Magazine Special Annual Edition for RSA Conference 2021 - the INFOSEC community's largest, most popular cybersecurity event in the world. Hosted every year in beautiful and sunny San Francisco, California, USA. This year, post COVID-19, virtually with #RESILIENCE! In addition, we're in our 9th year of the prestigious Global InfoSec Awards. This is a must read source for all things infosec.
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Some of these third-party plugins have hundreds of thousands or even millions of active installations,<br />
which makes them an attractive target <strong>for</strong> malicious attacks.<br />
Patchstack, an Estonian cyber-security company has taken an innovative approach to connect bug<br />
bounties and community-driven security research with automated virtual patching to solve that problem.<br />
95% of security vulnerabilities in WordPress ecosystem originate from<br />
third-party plugins<br />
Patchstack is maintaining a free to use vulnerability database <strong>for</strong> different website components which<br />
covers all security issues of WordPress core, themes and plugins.<br />
When looking at all the vulnerabilities reported in 2020, 95% of the vulnerabilities originate from the thirdparty<br />
plugins and themes.<br />
In 2020, we surveyed 338 digital agencies who specialize in website development and asked which<br />
threats are they most worried about. The top 3 answers were:<br />
1) Lack of cyber security knowledge<br />
2) Plugin and third-party code vulnerabilities<br />
3) Blocking and preventing attacks<br />
Anyone can create a new plugin and add it to the WordPress repository. While this is very convenient, it<br />
raises many concerns, since the skills of the plugin developers vary.<br />
For the majority of the users, it’s hard to tell which of the plugins are written poorly and which ones are<br />
not.<br />
Businesses are becoming increasingly worried<br />
Coming back to the survey we did in 2020, we also asked if the developers and digital agencies have<br />
witnessed a change in the number of hacking incidents.<br />
We asked: “Have you seen a change in the number of attacks targeted against your websites?” - 157<br />
out of 338 stated that they have seen an increase in the number of attacks against their websites and<br />
just 12 said that the numbers are decreasing instead.<br />
86