Sign In

Communications of the ACM

ACM TechNews

Average Time to Fix Critical Cybersecurity Vulnerabilities is 205 Days: Report


View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook
Tools.

A new report from WhiteHat Security found the average time taken to fix critical cybersecurity vulnerabilities grew from 197 days in April to 205 days in May.

Credit: Shutterstock

Software security adviser WhiteHat Security has estimated that the average time to correct critical cybersecurity vulnerabilities increased from 197 days to 205 days between April and May 2021.

WhiteHat researchers found that 66% of all apps used by the utility sector had at least one exploitable bug exposed throughout the year.

The top five vulnerability classes WhiteHat researchers observed over the last three months were information leakage, insufficient session expiration, cross-site scripting, insufficient transport layer protection, and content spoofing; many such bugs also can be found and leveraged with little skill or effort.

WhiteHat's Setu Kulkarni said the situation highlights a dearth of cybersecurity talent available to most organizations, and an overall scarcity of resources for many sectors wrestling with updates and patches for numerous apps.

From ZDNet
View Full Article

 

Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA


 

No entries found