A comprehensive analysis of security alerts in 2013 reveals that a quarter of all attacks in the UK were application specific attacks or targeted at web applications. This is according to a country-by-country breakdown of threat data from NTT Com Security.
The local data shows that most web application attacks occurred through cross-site scripting (XSS) and SQL injection attacks, although sensitive data exposure is also highlighted as a cause for concern in the UK market. Other notable forms of security attack in the UK include reconnaissance attacks – where an attacker gathers information about weaknesses and vulnerabilities in a network or system – representing nearly a third (31%) of all attacks.
Help Net Security/ full read here/ http://www.net-security.org/secworld.php?id=17036
