New Research: App Scanning increases 50% from 2019 to 2022
1.7 million scans, over 1,700 companies analyzed. One AppSec Indicator Report. For the spring 2023 Invicti’s AppSec Indicator, we uncovered two key trends which indicate that companies are improving their security posture. Firstly, companies are scanning more web applications and APIs, and scanning them more often. Secondly, scans are uncovering fewer critical and high severity vulnerabilities, indicating that increased security testing improves security posture in the long run.
Highlights from the Spring 2023 edition of Invicti’s AppSec Indicator:
Scanning activity is on a steady annual increase, up 50% from 2019 to 2022, as customers are scanning their web applications and APIs more often.
After steady increases in prior years, the percentage of scans with severe vulnerabilities declined 19% from 2021 to 2022.
Remote code execution (RCE) vulnerabilities show a notable increase, with the average percentage of apps with RCE flaws up 40% since last year.
The percentage of scans with severe cross-site scripting (XSS) vulnerabilities continues to decline, dropping 12% from 2021 to 2022.
Join Invicti’s Director of Product Patrick Vandenberg on May 18th as he explains the major web vulnerability trends and important highlights revealed in the latest AppSec Indicator, and learn how to set yourself up for success in 2023 - register here.
Alvaro Warden and Monicka Mann
Global Channel Directors, Sales & Marketing
This post originally appears on Invicti Newsletter and Whitepaper 28 April 2023.
All credits go to the rightful owners.