Paper Key : IRJ************320
Author: Mike Data,Dani E. Banda
Date Published: 02 May 2023
Web application security is becoming increasingly critical as cybercriminals devise new techniques to infiltrate and exploit web-based systems. This research aimed to investigate the various types of malware that commonly attack web applications, the strengths and weaknesses of current malware detection techniques, and technical measures that can be implemented to strengthen web application security and prevent malware attacks. A comprehensive literature review identified several types of malware that pose a significant threat to web applications, including cross-site scripting (XSS) and SQL injection attacks. These attacks can lead to significant financial losses, reputational damage, and even legal liabilities for affected organisations. However, several technical measures can be implemented to strengthen web application security and prevent malware attacks to mitigate the risk of these attacks. These include vulnerability scanning and penetration testing, implementing access control mechanisms, employing encryption technologies, and enforcing secure coding practices. However, the effectiveness of these measures depends on the thoroughness of their implementation and maintenance. We found that the key to effective web application security is a comprehensive and ongoing approach to risk management, which involves identifying and prioritising potential threats, implementing appropriate technical measures, and training employees and individuals to be vigilant and proactive in detecting and reporting potential security incidents.