Security Blind Spots: They're Everywhere You Look on the Web
It seems like there’s a news story every other day about security breaches affecting e-commerce sites and other websites where consumers congregate.
Quantification of this challenge comes from organizations like Ghostery, a provider of apps that enable consumers to identify and block company tracking on website pages.
Recently, Ghostery examined instances of non-secure digital technologies active on the websites of 50 leading brands in key industry segments like news, financial services, airlines and retail. It was looking for security “blind spots,” which it defines as non-secure tags that are present without the permission of the host company.
What Ghostery found was that 48 of the 50 websites it studied had security blind spots.
It turns out that retail web pages host a high concentration of non-secure technologies. Financial services sites are also hit hard, as are airline websites.
Often, these security problems are present on the pages described as “secure” on these websites.
Some companies may have very little understanding of what’s happening on their websites. What many firms have now is marketing clouds, not websites, and they’ve gotten complicated and hard to manage.”
Avoiding addressing these security blind spots can be risky. Bot networks often use non-secure technologies to gain entry to websites.
Moreover, Google and other search engines are indexing company websites higher in search results based on the strength of their security ratings.
It makes it all the more important for companies to audit their websites and set up system alerts to identify the non-secure tags. Plus, it’s just the right thing to do for web users.