92% of top websites provide attackers with access to customer data
Tala Security’s Global Data at Risk - 2020 State of the Web Report indicates that sensitive data like PII and credit card information has never been more at risk - and security effectiveness is declining, as the vast majority of global brands fail to implement controls to prevent data leakage and theft.
Tala Security has released its Global Data at Risk - 2020 State of the Web Report. The study, which analyzed the security posture of the Alexa top 1000 websites, reveals a troubling lack of security controls required to prevent data theft and loss through client-side attacks like Magecart, formjacking, cross-site scripting, and credit card skimming. These attacks exploit vulnerable JavaScript integrations running on 99 percent of the world’s top websites.
Benchmarked against a similar study in 2019, this year’s report indicates that security effectiveness against JavaScript vulnerabilities is declining, despite high-profile attacks and repeated industry warnings over the past 18 months, including the largest GDPR fine to date.1