How many of you have in-house designed web applications tied in to a backend database? Moreover, have these custom web applications been tested for vulnerabilities. The one thing that the myriad of web application exploits has taught us is that there is a large need for security testing. Anytime you introduce another dimension to your network it should be thoroughly tested. This is doubly so for anyone in the financial, automotive, and other such targeted sectors. I do say automotive because there have been several recent cases of "business intelligence" or more commonly known as corporate espionage involving automotive companies. It is far cheaper for a competitor to pay a professional hacker ten’s of thousands if they are going to get them corporate secrets worth millions or billions.