Explain what  Primary CIS Control was violated and why the control is critical. A Software as a Service (SaaS) company hosts web portals to allow its auto parts customers to manage their inventories. Recently, they suffered a breach, which resulted in the compromise of all of their customers' data. The root cause of the breach was determined to be a combination of vulnerabilities within their web application, namely cross site scripting (XSS) and SQL injection. Did this violate control 18 penetration testin?

Principles of Information Systems (MindTap Course List)
13th Edition
ISBN:9781305971776
Author:Ralph Stair, George Reynolds
Publisher:Ralph Stair, George Reynolds
Chapter5: Database Systems And Big Data
Section: Chapter Questions
Problem 6SAT
icon
Related questions
Question

Explain what  Primary CIS Control was violated and why the control is critical.

A Software as a Service (SaaS) company hosts web portals to allow its auto parts customers to manage their inventories. Recently, they suffered a breach, which resulted in the compromise of all of their customers' data. The root cause of the breach was determined to be a combination of vulnerabilities within their web application, namely cross site scripting (XSS) and SQL injection.

Did this violate control 18 penetration testin?

Expert Solution
trending now

Trending now

This is a popular solution!

steps

Step by step

Solved in 3 steps

Blurred answer
Knowledge Booster
Types of Database Architectures
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.
Similar questions
  • SEE MORE QUESTIONS
Recommended textbooks for you
Principles of Information Systems (MindTap Course…
Principles of Information Systems (MindTap Course…
Computer Science
ISBN:
9781305971776
Author:
Ralph Stair, George Reynolds
Publisher:
Cengage Learning
Database Systems: Design, Implementation, & Manag…
Database Systems: Design, Implementation, & Manag…
Computer Science
ISBN:
9781305627482
Author:
Carlos Coronel, Steven Morris
Publisher:
Cengage Learning
Database Systems: Design, Implementation, & Manag…
Database Systems: Design, Implementation, & Manag…
Computer Science
ISBN:
9781285196145
Author:
Steven, Steven Morris, Carlos Coronel, Carlos, Coronel, Carlos; Morris, Carlos Coronel and Steven Morris, Carlos Coronel; Steven Morris, Steven Morris; Carlos Coronel
Publisher:
Cengage Learning
Oracle 12c: SQL
Oracle 12c: SQL
Computer Science
ISBN:
9781305251038
Author:
Joan Casteel
Publisher:
Cengage Learning