In the last decade, millions of people have accessed the Web to communicate and conduct business with their customers. This includes the use of web applications that collect and store data such as customer information that is submitted through content management systems, shopping carts inquiry or submit forms and login fields.

These applications are typically accessed via the Internet and are able to be hacked to exploit vulnerabilities within the application or its supporting infrastructure. SQL injection attacks which exploit weaknesses in databases, can compromise databases that store sensitive data. Attackers also can leverage the security of the security of a Web application to identify and gain access to other, more vulnerable systems on your network.

Other commonly used Web attacks include Cross Site Scripting attacks (XSS), which exploit vulnerabilities in the web server to inject malicious code into web pages, and which then executes as an infected script in the victim’s browser. This allows attackers to access confidential information or redirect users to phishing sites. Web forums, message boards and blogs are particularly susceptible to XSS attacks.

Distributed attacks on service (DDoS) are when hackers band together to bombard a website with more requests than it can handle. This can cause a web page to slow or completely shut down in a way that hinders its ability to process requests and make it unusable for everyone. DDoS attacks can be devastating for small businesses, such as local restaurants or bakeries that rely on their websites for operations. Dive deeper