acm-header
Sign In

Communications of the ACM

ACM TechNews

EU Pharmaceutical Giants Run Vulnerable Apps, Fail to Use Encryption in Login Forms


View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook

Over 200 EU pharmaceutical application forms noted in the Outpost24 report are operating without encryption, which puts users at risk of both the interception and theft of their information online.

Credit: Outpost24

New research by vulnerability management platform Outpost24 warns 80% of the European Union (EU)'s top pharmaceutical companies are "critically exposed" to cyberattack due to poor security postures.

Outpost24 designated 3.3% of Web applications run by the businesses as "suspicious," including open test environments that should have been closed.

Moreover, 18% of organizations use outdated, unpatched Web elements with known flaws, while over 200 EU pharmaceutical application forms operate without encryption, elevating the risk of interception and theft of users' information.

Common security and compliance problems cited by Outpost24 include basic Secure Sockets Layer failures, privacy policy misconfigurations, and cookie settings.

From ZDNet
View Full Article

 

Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA


 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account