Ponemon survey shows majority of companies use real, sensitive customer data to develop and test applications, not realizing the information is vulnerable to breaches. Sixty-two percent of companies surveyed by the Ponemon Institute report that during the application development and testing process, they use real customer data—including employee, vendor and customer records, and credit card and Social Security numbers—instead of disguised data to test applications. MORE ON SOFTWARE QUALITY An Introduction to the Murky Science of Web Application Security The Importance of Automated Software Testing 11 Ways to Improve Software Testing Quality Doesn’t Just Happen That data often isn’t protected in a non-production environment, according to the report. Thus iit could be vulnerable to unauthorized sources including in-house testing staff, consultants, partners and offshore personnel. The latter is particularly notable, since 52 percent of the companies outsourced application testing, and 49 percent of those respondents shared live data with the outsourced organization.“For many organizations, large customer data files represent an easy, cheap source of data to use when testing applications, but this process introduces a huge element of risk to the challenge of maintaining the integrity of sensitive information, particularly when third parties and offshore resources are involved,” said Dr. Larry Ponemon, chairman of the Ponemon Institute, in a statement.According to the study: Half, 50 percent, had no way of knowing if the data used in testing had been compromised. Forty-one percent of respondents do not protect live data used in software development. More than a third (38 percent) of respondents were unsure if live data their organization used for testing or development had been lost or stolen.The survey, commissioned by Compuware, was conducted between July 2007 and August 2007, based on the responses of 897 IT professionals with an average of ten years experience. Related content feature 10 most popular IT certifications for 2023 Certifications are a great way to show employers you have the right IT skills and specializations for the job. These 10 certs are the ones IT pros are most likely to pursue, according to data from Dice. By Sarah K. White May 26, 2023 8 mins Certifications Careers interview Stepping up to the challenge of a global conglomerate CIO role Dr. Amrut Urkude became CIO of Reliance Polyester after his company was acquired by Reliance Industries. He discusses challenges IT leaders face while transitioning from a small company to a large multinational enterprise, and how to overcome them. By Yashvendra Singh May 26, 2023 7 mins Digital Transformation Careers brandpost With the new financial year looming, now is a good time to review your Microsoft 365 licenses By Veronica Lew May 25, 2023 5 mins Lenovo news Alteryx works in generative AI for speedy analytics results OpenAI integration and AI wizardry for report generation are aimed at making Alteryx’s analytics products more accessible. By Jon Gold May 25, 2023 3 mins Analytics Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe