Misconfiguration ranks as the most common type of vulnerability discovered in real-world penetration tests, according to a new as-yet unpublished study. In client engagements last year, pen testing-as-a-service provider Cobalt found mostly misconfiguration, followed by cross-site scripting (XSS), authentication and session, exposure of sensitive data, and access control-type vulnerabilities in applications.

Read full news article on Dark Reading: Cloud