. https://www.acunetix.com/blog/articles/web-based-attacks-eu-cybersecurity-agency/

home.aspx
   

article
SHARESHARESHARE
WEB-BASED ATTACKS STILL REIGN SUPREME ACCORDING TO THE EU CYBERSECURITY AGENCY
Web-based attacks and malware do not just hold the cybercrime crown, but they’re on the rise — that’s according to the latest Threat Landscape Report by the EU Agency for Network and Information Security (ENISA). In its sixth annual report, ENISA also reported that in 2017 attackers are increasing the complexity and sophistication of their attacks in an effort to constantly stay one-step-ahead in the cat and mouse game between them and defenders, and law enforcement. Perhaps unsurprisingly, SQL injection and phishing remain attackers’ go-to method for breaching an organization’s defences. Overall, as in previous years, the most prevalent web application attacks are SQL Injection (SQLi) attacks, Local File Inclusion (LFI), Cross-site Scripting (XSS), Remote File inclusion (RFI) and PHP object injection. READ MORE