-
Products
- Alphabetical List
- Business & Industry Applications
- Cybersecurity
- Data and Analytics
- AI and Intelligent Operations
- Total Experience
- Sovereign Collaboration
- Specialized Software
- HCL Actian
- HCL Actian Data Platform
- HCL Actian Ingres
- HCL Aftermarket Cloud
- HCL AppScan
- HCL Automation Orchestrator
- HCL Automation Orchestrator Suite
- HCL BigFix
- HCL CAMWorks
- HCL Clara
- HCL Commerce Cloud
- HCL Connections
- HCL Customer Data Platform
- HCL DataConnect
- HCL DFMPro
- HCL Discover
- HCL Domino
- HCL DX
- HCL DevOps Code ClearCase
- HCL DevOps Code RealTime
- HCL DevOps Deploy
- HCL DevOps Plan
- HCL DevOps Model RealTime
- HCL DevOps Test
- HCL DevOps Test Embedded
- HCL DevOps Velocity
- HCL Glovius
- HCL Hero
- HCL HIVE
- HCL iAutomate
- HCL iControl
- HCL Informix
- HCL IntelliOps
- HCL IntelliOps Event Management
- HCL iObserve
- HCL Leap
- HCL Link
- HCL Mainframe Solutions
- HCL Marketing Cloud
- HCL Marketplace
- HCL MyCloud
- HCL MyXalytics
- HCL Nippon
- HCL Notes
- HCL Now
- HCL SafeLinx
- HCL Sametime
- HCL Secure DevOps
- HCL SX
- HCL TX Platform
- HCL Unica
- HCL Vector Analytics
- HCL Verse
- HCL Volt MX
- HCL Workload Automation
- HCL Z Asset Optimizer
- HCL Z Abend Investigator
- HCL Z and I Emulator
- HCL Zeenea Data Discover Platform
- HCL Zen Edge Data Management
- HCL Aftermarket Cloud Aftermarket-led growth platform
- HCL Commerce Cloud Enterprise e-commerce for B2C and B2B
- HCL CDP Flexible and customizable customer data platform
- HCL Discover Behavioral insights for customer journeys
- HCL Marketing Cloud Fueling precision marketing at scale with AI
- HCL Unica Enterprise marketing automation platform
- HCL AppScan Scans for application vulnerabilities
- HCL BigFix Secure endpoint management
- HCL BigFix Compliance Ensure security with continuous, real-time compliance monitoring
- HCL BigFix CyberFOCUS Supercharging IT operations to secure the enterprise
- HCL BigFix Remediate Automate, remediate & secure endpoints
- HCL Actian Empowers the data-driven enterprise
- HCL Actian Data Platform Data services suite; flexible deployment
- HCL Actian Ingres Legendary transactional RDBMS
- HCL DataConnect Low-code integration platform
- HCL Zeenea Data Discover Platform Cloud-native data governance solution
- HCL Zen Embeddable edge data management
- HCL Automation Orchestrator Suite Accelerate IT and business automation
- HCL BigFix Secure endpoint management
- HCL BigFix AEX AI-driven employee experience accelerating productivity and innovation
- HCL BigFix Enterprise+ An all-in-one IT infrastructure automation offering enabling you to stay ahead of cyber threats
- HCL BigFix Workspace+ Fueling GenAI within the Digital+ experience
- HCL iControl HCL iControl is a business flow and process observability solution
- HCL MyXalytics Cloud finOps visibility and insights
- HCL SX Service management for everything-as-a-service delivery
- HCL Workload Automation Simplify and automation business workflows
- HCL Connections Collaboration and task management in one workspace
- HCL Domino Rapid application development platform
- HCL Leap No code citizen app dev
- HCL Link Connectivity across your digital ecosystem
- HCL Notes Comprehensive email and collaboration hub
- HCL SafeLinx Secure and flexible remote access to enterprise applications
- HCL Sametime Secure meetings, video, and chat communications
- HCL Verse Smart and secure enterprise email for seamless workflow
- HCL Augmented Network Automation (SON)Intelligent RAN automation platform
- HCL Automation Orchestrator Suite Accelerate IT and business automation
- HCL DFMProCAD integrated Design-for-Manufacturing platform
- HCL CAMWorksCAM for machining productivity
- HCL GloviusModern lightweight CAD Viewer
- HCL Mainframe Optimization Optimize, modernize, and innovate your mainframe investments
- HCL Secure DevOps Automated testing and security scanning
- Industries
- Partners
-
Persona
- HCL Commerce Cloud Enterprise e-commerce for B2C and B2B
- HCL CDP Flexible and customizable customer data platform
- HCL DX The DXP for the moments that matter
- HCL Marketing Cloud Fueling Precision Marketing At Scale with AI
- HCL Unica Enterprise marketing automation platform
- HCL Volt MX Multi-experience low code app dev
- HCL Actian Ingres Legendary transactional RDBMS
- HCL Actian Data Platform Data services suite; flexible deployment
- HCL AppScan Scans for Application Vulnerabilities
- HCL BigFix Secure endpoint management
- HCL BigFix AEX AI-driven employee experience accelerating productivity and innovation
- HCL BigFix Enterprise+ An all-in-one IT infrastructure automation offering enabling you to stay ahead of cyber threats
- HCL BigFix Workspace+ Fueling GenAI within the Digital+ experience
- HCL DataConnect Low-code integration platform
- HCL Foundry Secure Backend Services
- HCL iControl HCL iControl is a business flow and process observability solution
- HCL MyXalytics Cloud FinOps visibility and insights
- HCL SX Service management for everything-as-a-service delivery
- HCL Universal Orchestrator Orchestrate and optimize business automation
- HCL Vector Analytics A high-performance, secure vectorized columnar analytics database
- HCL Workload Automation Simplify and automation business workflows
- HCL Zen Embeddable edge data management
- Learn & Support
HCLSoftware News
HCL AppScan and Ponemon Institute report reveals how organizations manage threats to their insecure applications.
Businesses incurred losses that averaged $12 million as a result of attacks on their vulnerable applications.
PUBLISHED DATE: October 20, 2020
HCLSoftware and Ponemon Institute today released findings of a new report on application security in the DevOps environment. The full report can be downloaded here.
Report Overview
The consequences of attacks against unsecured applications are significant and increase the likelihood of data breaches that place customer and employee information at risk. The purpose of the Application Security in the DevOps Environment study, sponsored by the HCL AppScan team, is to better understand organizations’ ability to quickly detect, prioritize and repair vulnerabilities in their applications.ey capabilities include.
Current Landscape
According to the report, 84 percent of participants rated the threat from insecure applications as significant.
Despite survey participants rating the threat from insecure applications as significant, a full 20 percent of organizations stated that they took no steps to test for vulnerabilities in their applications. Additionally, respondents stated that on average only 33 percent of their business-critical applications were continuously tested for vulnerabilities.
“The lack of testing for critical applications is mind-boggling, especially since none of the respondents believed that their organizations could prevent more than half of the attacks against vulnerable apps when they get into production,” said Eitan Worcel, Head of HCL AppScan Product Management.
Financial Impact
As organizations struggle to address these threats, they estimated that the total economic loss they have incurred in the past 12 months as a result of attacks against their vulnerable applications averaged nearly $12 million. That’s an average of approximately $1 million per month.
Breaking the financial impact down even further, 56 percent of respondents said they experienced total economic losses that exceeded $1 million as a result of attacks against their vulnerable applications, with 3 percent reporting total economic losses that exceeded $100 million.
“Large-scale breaches aren’t surprising, considering that 40 percent of respondents estimate that it takes them more than eight months on average to identify an attack against their vulnerable applications,” said Worcel. “This also emphasizes the importance of a proactive approach such as application security testing.”
About the Report
Ponemon Institute surveyed 626 individuals that work in IT security, quality assurance or development. All respondents work in organizations that use a DevOps approach which includes application security testing. That approach encompasses multiple measures taken to improve the security of an application by finding, fixing and preventing security vulnerabilities in order to reduce overall risk.
Additional resources:
Join our Webinar on October 29th at 11 a.m. Eastern/ 8 a.m. Pacific, as Larry Ponemon and Eitan Worcel comprehensively review the report’s results
Larry Ponemon is also scheduled to appear as a guest on an upcoming “Application Paranoia” podcast episode. Visit our podcast home page for all of the latest episodes.
Click here for additional information about HCL AppScan. And, visit hcltechsw.com/DevOps for additional information about HCLSoftware’s comprehensive DevOps portfolio.
About HCLSoftware
HCLSoftware, a division of HCL Technologies (HCL) that operates its primary software business. It develops, markets, sells, and supports over 20 product families in the areas of DevSecOps, Automation, Digital Solutions, Data Management, Marketing and Commerce, and Mainframes. HCLSoftware has offices and labs around the world to serve thousands of customers. Its mission is to drive ultimate customer success with their IT investments through relentless innovation of its products.
Media Contact:
Jeremy McNeive
HCLSoftware
913-488-9186