"Quarter of Healthcare Apps Contain High Severity Bugs"

Researchers at Veracode have discovered that about 75% of healthcare applications contain some kind of vulnerability.  A quarter of healthcare apps contain high severity flaws.  The researchers also found that the healthcare sector fixes 70% of the vulnerabilities found within applications, putting it behind several other industries in terms of total volume addressed. However, the vulnerabilities that are fixed are usually fixed faster than any other sector on average except for retail.  Veracode claimed that this is because healthcare apps are often smaller in size, relatively new, and have a lower density of bugs than software in verticals like tech, financial services, manufacturing, and government.  Researchers also found that healthcare organizations do a better job than most at handling CRLF injection and cryptography-related bugs.  However, the sector is still not scanning apps for issues regularly enough and is the least likely of any vertical to scan for flaws in open source components. The researchers argued that a failure to scan frequently for flaws means many are going unfixed and could be exploited in future attacks.  Data breaches in healthcare cost more than any other sector and are estimated at over $7.1 million per incident.

Infosecurity reports: "Quarter of Healthcare Apps Contain High Severity Bugs"