NowSecure benchmark mobile application security testing reveals a staggering 95% of mobile apps fail at least one OWASP MASVS category, putting organizations at significant risk of data breaches and leaks.
The OWASP Mobile Application Security Verification Standard (MASVS) sets a minimum security and privacy bar for mobile security professionals and developers to follow when building and testing mobile apps. OWASP MASVS outlines seven critical areas of the mobile attack surface — MASVS-STORAGE, MASVS-CRYPTO, MASVS-AUTH, MASVS-NETWORK, MASVS-PLATFORM, MASVS-CODE and MASVS-RESILIENCE.
Our NowSecure benchmark report shows OWASP-NETWORK, OWASP-PLATFORM and OWASP-CODE account for the highest failure rates overall. Because risk posture varies by industry, we analyzed the leading Android and iOS mobile apps in finance, healthcare, high tech, retail and the public sector to see how they stack up against the global OWASP MASVS standard. The results may surprise you.
Each sector faces unique threats and challenges in safeguarding data. The infographic below reveals OWASP MASVS categories where some mobile apps stumble and others shine. Dive deeper into the industry-specific breakdown to learn where key industries have an opportunity to strengthen mobile app security and privacy.
NowSecureMASVSIndustryBenchmark
