http://neoerudition.net/the-problem-of-hacking-the-internet-of-things
Over the past decade, millions of businesses have embraced web applications as an inexpensive way to build relationships and transactions with prospects and customers. But while they provide the opportunity for greater customer insight and efficiency, web applications also have vulnerabilities that can be exploited by cybercriminals. One of the most common and devastating of these is a web attack.
A web attack is a type of a cyberattack, where the attacker impersonates another person to gain access to sensitive information or carry out criminal activities, such as taking credit card numbers or other personal data. Web attacks are usually characterized by SQLi (Structured Query Language Injection), XSS (cross-site scripting) and file upload attacks.
In SQLi attack, hackers input custom Structured Query Language (SQL) commands into a field on a website or in a web app to steal private data stored on the database server that is backend. In an XSS, hackers inject malicious code into a website or website, which is then executed by the victim’s web browser without validation or encoding. The attack may steal session information, display illegal text or images, or redirect the victim to a fake website.
The best way to guard against a cyber attack is to conduct regular vulnerability scans and apply patches to your website as well as its web servers as well as any databases it relies on. It is also recommended to establish an incident response plan to ensure that if an attack occurs it can be quickly discovered and addressed. You should also be able detect web attacks by noting warning signs, such as slowing of networks and intermittent website shutdowns.