For many years, DTmag has been reporting open source security issues, and two studies within the past couple weeks demonstrate there is a problem: Last week, this site reported on a study conducted by German researchers that linked open source software vulnerabilities to developers copying source code from flawed online tutorials and pasting it into open source applications.
The financial industry contained an average of 52 open source vulnerabilities per application, while 60 percent of the applications contained high-risk vulnerabilities, the company said. It added: “The retail and e-commerce industry had the highest proportion of applications with high-risk open source vulnerabilities, with 83 percent of audited applications containing high-risk vulnerabilities.”
Our view?: as open-source is a very valuable approach, and vulnerabilities will keep existing; better have a new strategy for protecting your information/data. It’s time to have a real visibility of “intents” of attackers, this is the key.
This is why we’re embracing technologies such as http://www.empownetworks.com