Over half of software vulnerable

Flaws that allowed Google attack are widespread, says Veracode.

Application security vendor Veracode has claimed that 58% of software is vulnerable to the same sort of attacks that affected Google earlier this year. The company used the RSA Conference in San Francisco (which opened yesterday) to reveal its "State of Software Security" report. The study warned that 58% of the 1,600 applications analyzed at the request of clients had vulnerabilities "similar to those exploited in the recent cyber attacks on Google, the US Department of Defense and others".

Veracode analyses a range of application types, and assesses "billions of lines of code" to build a comprehensive security overview. The firm said that a wide range of enterprise applications are susceptible to "large scale attacks". The security of open-source systems is comparable to commercial and outsourced software, according to Veracode.

Source: V3.co.uk.