Report: 88% of Web Apps Use Vulnerable 3rd Party Libraries
Application security firm tCell has released a new report that highlights the security problems of Web applications. In its analysis of 33 applications currently in production, the company found that 90 percent had unused code that didn't serve any purpose but could potentially be exploited, and 88 percent used vulnerable third-party libraries. On average, the Web applications used 180 different packages, including more than a hundred that were outdated.
“It’s not just what are the theoretical problems, but what are the real-world issues that come up with these environments,” Michael Feiertag, CEO and co-founder of tCell, said. “This is important, because once you have a really good handle on the risk profile of the application, then you can start implementing policies to secure the application.”