Websites Continue to Collect PII Data Insecurely

Websites Continue to Collect PII Data Insecurely

Websites are still collecting personally identifiable information (PII) without decent web security, including using the HTTP protocol, collecting in clear text and on websites with expired or misconfigured certificates.



According to the research by RiskIQ across 48,949 active financial services organization websites, of 4512 sites capturing PII through data entry points accessible by site visitors, 11.5% of these sites (522 sites) are capturing PII insecurely.



While this is down from the 27% of sites identified a year ago, this equates to an ..