Security News > 2020 > August > Large Orgs Plagued with Bugs, Face Giant Patch Backlogs

Large companies find an average of 779,935 individual security bugs when running routine vulnerability scans; and over the course of six months, an average of 28 percent of those vulnerabilities will remain unmitigated.

The survey found that the average backlog of bugs for these companies totals a whopping 57,555 identified vulnerabilities.

According to the research, it can take almost a month to patch once a critical or high-risk vulnerability is detected on-premises, and 19 days if it is detected in the cloud.

Out of the 53 percent of respondents who said their organizations have had a data breach in the past two years, 42 percent of them said they occurred because a patch wasn't applied for a known vulnerability.

Then there's the issue of staffing and the ongoing cybersecurity skills gap: Only about half of respondents said their organizations have enough personnel to patch in a timely manner, while just 41 percent said the IT security team has the necessary patching skills and training to fix vulnerabilities.

News URL

https://threatpost.com/large-orgs-plagued-bugs-patch-backlogs/158433/