Sign In

Communications of the ACM

ACM TechNews

Average Time to Fix Critical Cybersecurity Vulnerabilities is 205 Days: Report

View as: Print Mobile App Share:

A new report from WhiteHat Security found the average time taken to fix critical cybersecurity vulnerabilities grew from 197 days in April to 205 days in May.

Credit: Shutterstock

Software security adviser WhiteHat Security has estimated that the average time to correct critical cybersecurity vulnerabilities increased from 197 days to 205 days between April and May 2021.

WhiteHat researchers found that 66% of all apps used by the utility sector had at least one exploitable bug exposed throughout the year.

The top five vulnerability classes WhiteHat researchers observed over the last three months were information leakage, insufficient session expiration, cross-site scripting, insufficient transport layer protection, and content spoofing; many such bugs also can be found and leveraged with little skill or effort.

WhiteHat's Setu Kulkarni said the situation highlights a dearth of cybersecurity talent available to most organizations, and an overall scarcity of resources for many sectors wrestling with updates and patches for numerous apps.

From ZDNet
View Full Article


Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA


No entries found