Sign In

Communications of the ACM

ACM TechNews

EU Pharmaceutical Giants Run Vulnerable Apps, Fail to Use Encryption in Login Forms

View as: Print Mobile App Share:

Over 200 EU pharmaceutical application forms noted in the Outpost24 report are operating without encryption, which puts users at risk of both the interception and theft of their information online.

Credit: Outpost24

New research by vulnerability management platform Outpost24 warns 80% of the European Union (EU)'s top pharmaceutical companies are "critically exposed" to cyberattack due to poor security postures.

Outpost24 designated 3.3% of Web applications run by the businesses as "suspicious," including open test environments that should have been closed.

Moreover, 18% of organizations use outdated, unpatched Web elements with known flaws, while over 200 EU pharmaceutical application forms operate without encryption, elevating the risk of interception and theft of users' information.

Common security and compliance problems cited by Outpost24 include basic Secure Sockets Layer failures, privacy policy misconfigurations, and cookie settings.

From ZDNet
View Full Article


Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA


No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account