The Numerator | Secure vulnerabilities

Vulnerabilities in Web applications
are now more numerous than in
operating systems or desktop-bound
applications. Each week in
its Security Alert e-mail letter (, Quickfind
1064), the SANS Institute summarizes the vulnerabilities
reported that week, breaking them up by type. For
the week ending May 1, more than 61 percent of all vulnerabilities
reported involved Web applications. The
categories indicating Web applications are shaded.


Novell 1%

Linux 2%

Third-party Windows applications 16%

Cross-site scripting 16%

Cross-platform vulnerabilities 20%

SQL injection 20%

Other Web applications 25%


  • business meeting (Monkey Business Images/

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected