Just inserting invalid data/command can make huge impact only by executing. So sanitizing the data/command always need to prevent.
What is it? - Human mistake of misconfigurating the system.
What is the impact? - Depends on the misconfiguration. Worst misconfiguration could result in loss of the system.
How to prevent?
Force change of default credentials
Least privilege: turn everything off by default
Static tools that scan code for default settings
Keep patching, updating and testing the system
Regularly audit system deployment in production
What is it? - Sensitive data is exposed, e.g. social security numbers, passwords, health records.
What is the impact? - Data that are lost, exposed or corrupted can have severe impact on business continuity.
How to prevent?
What is it? - Applications that are attacked but do not recognize it as an attack, letting the attacker attack again and again
What is the impact? - Leak of data, decrease application availability
How to prevent?
Detect and log normal and abnormal use of application
Respond by automatically blocking abnormal users or range of IP addresses
Patch abnormal use quickly
What is it? An attack that forces a victim to execute unwanted actions on a web application in which they're currently authenticated.
What is the impact? - Victim unknowingly executes transactions.
How to prevent?