Applications have become the infrastructure of the internet. They are in everything from phones to thermostats, cars to power grids. And for every digital transformation enabled by apps, the application itself is a primary target, along with the business logic it supports and all its underlying data.
For one thing, an app isn’t just an app anymore. To form an application environment, there are a significant number of components: a proxy, an app server, a web server, the ingress controller for the container environment. You might run within containers. You might have an SDK on the client side. The list goes on (and on).
And what’s more, the way applications are built keeps changing. In addition to the rapid cadence of iteration and releases brought about by the shift to Agile and DevOps, there are always new APIs, languages and devices entering the picture. Since released, ThinkPHP has proved to be very popular with web developers, but in part because of that popularity, today we’re seeing a significant portion of breaches associated to PHP.
Read the full article published August 14, 2019 here: https://www.securityweek.com/collision-course-keeping-digital-complexity-app-enabled-world by SecurityWeek.