Sensitive data like PII and credit card information has never been more at risk - and security effectiveness is declining. The vast majority of global brands are failing to implement controls to prevent data leakage and theft by preventing client-side attacks:
Despite increasing numbers of high-profile breaches, forms, found on 92% of websites expose data to an average of 17 domains. This is PII, credentials, card transactions, and medical records. Tala’s analysis shows that this data is exposed to nearly 10X more domains than intended.
This is an 11% decline from 2019. While deployment volume went up, effectiveness declined more steeply. Attackers have the upper hand mainly because we are not playing effective defense.