The modern web application is a complex piece of software that can contain millions of lines of code (LOC). The dynamic nature of these applications means that they can be exploited and manipulated if the code integrity is not up to par. Hacks and high-profile breaches have been piling up in recent years due to the lack of investment in application security. Poorly coded applications can have a wide range of vulnerabilities such as SQL injection, Cross-Site Scripting (XSS) and hundreds of other application layer vulnerabilities.
But more and more organizations today are starting to align application security testing with quality testing procedures of software to ensure risks are reduced across their application portfolio. This also helps achieve significant cost savings across the board.