One of hackers’ favorite approaches is to compromise legitimate websites and use them to spread malware or steal data. Could your company’s site be vulnerable to that kind of attack?
Security vendor Symantec recently launched a service for identifying and fixing website vulnerabilities.
In the past few weeks, the company reports, Symantec has scanned nearly 2,000 websites for customers — and more than half of them contained critical vulnerabilities that could have allowed hackers to insert malware or steal confidential data from site visitors.
The big problem that caused most of the vulnerabilities: outdated software.
IT departments should scan their companies’ websites and make sure all software is patched. Otherwise, those sites could be hijacked and used to spread malware to current and potential customers.