The good news is that three quarters of nearly 300 financial institutions haven't experienced an urgent security issue related to their Web sites in more than two years; the flip side is that close to 75 FIs have, according to a new report from Web-site security watchdog WhiteHat Security.

The Santa Clara, CA-based consultant monitored 700 Web sites across various industries from Jan. 1, 2006 to July 31, 2008 to judge the risk factors of these sites based on the Payment Card Industry Data Security Standard (PCI-DSS) severity system: urgent, critical, high, medium and low. White Hat then rated vulnerabilities "by the potential business impact if the issue were to be exploited."

Subscribe Now

Access to authoritative analysis and perspective and our data-driven report series.

14-Day Free Trial

No credit card required. Complete access to articles, breaking news and industry data.