Barracuda launches State of Application Security 2021 report

Organisations are struggling with bad bots, broken APIs, and supply chain attacks according to Barracuda Network's latest study.

Barracuda, provider of cloud-enabled security solutions, today released key findings from a report titled The state of application security in 2021. The research surveyed 750 application security decision makers in the US, EMEA and APAC responsible for their organisation's application development and security, to get their perspectives on data breaches, top application security vulnerabilities and the most important product capabilities needed to defend against multi-vector application attacks. 

Overall, the findings indicate that more needs to be done to protect against application security threats, particularly newer threats like bot attacks, API attacks, and supply chain attacks. Highlights from the report include: 

  • On average, respondent organisations were successfully breached twice in the past 12 months as a direct result of an application vulnerability. 
    • 72% of respondents say their organisation suffered at least one breach from an application vulnerability.
    • 32% say their organisation suffered two breaches due to an applications vulnerability.
    • 14% were breached three times due to application vulnerabilities.
  • The range of application security-related challenges facing organisations extends beyond difficulties securing multiple attack vectors.
    • Respondents identified their top application security challenges as bad bots (43%), software supply chain attacks (39%), vulnerability detection (38%), and securing APIs (37%).
  • Bot-based attacks are the most likely contributor to successful security breaches resulting from application vulnerabilities in the past 12 months. 
    • 44% of respondents say bot attacks contributed to a successful security breach that exploited a vulnerability in the organisation's applications in the last 12 months.

Tim Jefferson, SVP, Engineering for Data, Networks and Application Security at Barracuda says: "Applications have been steadily rising as one of the top attack vectors in recent years and the rapid shift to remote work in 2020 only intensified this. Organisations are struggling to keep up with the pace of these attacks, particularly newer threats like bot attacks, API attacks, and supply chain attacks, and they need help filling these gaps effectively."

 

Share

Featured Articles

Cooperation Key Theme at Microsoft Endpoint Security Summit

The Microsoft Endpoint Security Summit brought together leaders in the cybersecurity industry to discuss strategies for securing endpoints on Windows

Why the UK is Listing Data Centres as Critical Cyber Assets

Being Western Europe's leader in number of Data Centres, the UK has decided to take steps to ensure they receive adequate protection from cyber threats

Trustwave Reveals the Financial Sector's Cyber Threats

Although it's not new to think that financial services organisations are prime targets for cybercriminals, the threat landscape they find themselves in is

TCS and Google Cloud Join for Solution to Secure the Cloud

Technology & AI

Cybersecurity Conglomerate Reveals Threats Facing Consumers

Cyber Security

Decoding the US' Most Misunderstood Data Security Terms

Cyber Security