Many firms still failing to test and secure web applications, says Rapid7

Web application security is not getting the focus and attention it needs because of a lack of awareness of the risks by security professionals and developers alike, says Rapid7