According to research conducted by PreciseSecurity.com, Cross-site scripting attacks aka XSS cyber attacks topped the list of most popular attack vectors in 2019. The survey confirms that XSS attack targets were mainly large companies operating in Europe and North America.
PreciseSecurity.com research further clarifies that SQL Injection attacks came second followed by Fuzzing(Fuzz attack)- where threat actors use software to find vulnerability codes in company-operated software, operating systems or networks.
Simon Roe, the product manager at Outpost24 said that the hackers will continue targeting websites in 2020 by targeting APIs.
Roe’s words might turn true as developers continue to hand over applications to organizations in a jiffy to meet the ever-changing market demands which automatically makes them sideline Cybersecurity guidelines during secure coding due to time and budget constraints.
Adding to this agony will be the evolving ransomware attacks that will continue to increase like an epidemic in 2020 says Scott Caveza, a senior engineer at Tenable.
“As the New Year 2020 fast approaches, business email compromise and phishing attacks will see a rise in both volume and sophistication. Although many businesses are adopting HTTPS and 2FA on a faster note, end-users are estimated to fall prey to phishing attacks in 2020 says Holger Schulze, CEO, and Founder of Cybersecurity Insiders.
Note- Cross-site Scripting or XSS is a kind of cyber attack where a hacker first injects malicious scripts into the content of most trusted websites leading to a cross-site scripting attack where an untrusted source is allowed to inject code into a web application which then is delivered to a victim browser.