Many websites of foreign embassies and ministries have been compromised to infect visitors. Paul Farrington, Manager, EMEA Solution Architects at Veracode commented below.

Paul Farrington, Manager, EMEA Solution Architects at Veracode:

Paul Farrington“There is no question that cybercriminals are targeting government and public services that people trust to disseminate malware and APTs. Indeed, our recent State of Software Security report found governments to be the weakest sector in terms of their application security – with 75% of apps failing OWASP compliance pass rates.

“With this in mind, it has never been clearer of the importance of the work of the newly launched National Cyber Security Centre in blocking IP addresses sending “gov.uk” emails from non-government computers, but that is only the tip of the iceberg. Governments must take the lead by closing the holes being targeted by attackers in their own systems to fend off such attacks.”

Information Security Buzz