LEGACY WEB FORMS
Quiet revenue opportunity hiding in plain site Legacy web forms may not be exciting, but they do provide an attack surface for cybercriminals and managed service providers can help to keep them secure, as David Byrnes, VP of Global Channels at Kiteworks, explains.
Legacy web forms do not typically generate much excitement in security conversations. They are the digital equivalent of paperwork. Necessary, unglamorous and taken for granted. Yet, that is precisely why they have become one of the most dangerous attack surfaces in enterprise IT, and why managed service providers and security-focused partners
most sensitive data. They are no longer simple contact pages or feedback widgets. They are core infrastructure and failing spectacularly. The data is sobering: 88% of organisations experienced at least one form-related security incident over the past 24 months and 44% suffered a confirmed data breach specifically through form submissions. The traditional response of simply deploying a web application firewall is clearly not working. Forms created across different departments, embedded in legacy systems, built on various platforms, and deployed across mobile and web channels create a fragmented landscape that perimeter defences simply cannot address comprehensively. Spending heavily but achieving little While it can be difficult for partners to evangelise solutions to problems customers have not recognised yet, that is not the case here. The survey showed that 83% of organisations already allocate at least $100,000 (£75,150) annually to form security and a fifth exceed $500,000 (£376,000). More importantly, 71% plan to implement or upgrade their form security controls within the next six months. This makes it active budget, not theoretical interest. Currently, budget goes on fragmented projects, ad-hoc hardening, custom development work, emergency fixes for legacy portals after incidents occur. It is reactive, inefficient and unsustainable.
should be paying close attention. A recent survey of security, risk
David Byrnes
management, compliance and IT leaders reveals something that should reshape how channel partners think about their service portfolios. Organisations are spending six figures annually on form security, planning major upgrades in the next six months, and admitting they lack the expertise to execute properly. That gap between budget and capability is where partners can build sustainable, high-margin practices. Traditional response is not working Forms have quietly become the primary intake mechanism for an organisation’s
kiteworks.com
Forms have quietly become the primary intake mechanism for an organisation's most sensitive data... ... They are core infrastructure and failing spectacularly. “ ”
54
Powered by FlippingBook