Security holes in software decrease in 2011
While hackers are still attacking and criminals are still looking for credit card information, initial estimates from a recent report show a drop in security holes in software during 2011, according to Dark Reading. Fewer vulnerabilities will likely benefit companies that receive online payments for goods or services, especially those that are already meeting PCI compliance regulations.
"The number of vulnerabilities disclosed publicly will fall in 2011, compared to the previous year, and far fewer flaws have been used to fuel attacks, according to early data from companies that collect vulnerability information," the website said, giving Symnatec's projected 30 percent drop in vulnerabilities disclosed to the public as an example.
Since 2006, Symantec annually documented between 4,600 and 5,600 flaws, but 2010 saw that range expand to more than 6,200.
While researchers say the vulnerabilities in software is down, eCommerce businesses that take credit and debit cards as payment still need to comply with PCI DSS guidelines to help customers stay safe online.