Proper risk evaluation can minimize the impact an attack can have on your apps.
Using the DREAD threat modeling framework you can get a better view of the risk of your application.
The STRIDE method of threat modeling gives you a simple way to evaluate the possible weak points in your application.