All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Survey: 80% of organizations hit by application security incidents tied to known, unpatched vulnerabilities

By

Anamarija Pogorelec

10d ago· 5 min readenNews
Bagel score 92 of 100
92/100
Golden Brown
Bagelometer

Crackling crust, pillowy middle. The kind of bagel that earns a second cup of coffee.

Score92TypenewsSentimentnegative

Summary

A Cloud Security Alliance survey of 902 IT and security professionals reveals that 80% of organizations experienced an application security incident in the past year linked to a vulnerability their team had already identified. The findings highlight a systemic industry problem where the gap between discovering a flaw and patching it in production remains open long enough for attackers to exploit it.

Key quotes

· 2 pulled
Eight in ten organizations took an application security hit during the past year tied to a vulnerability their team had already cataloged.
The pattern points to a structural condition across the industry, where the window between identifying a flaw and closing it in production stays open long enough for attackers to act.
Snippet from the RSS feed
Application security incidents hit 80% of organizations last year, driven by known vulnerabilities that lingered too long in production.

You might also wanna read

Critical Misconfiguration in Microsoft's Internal Applications Exposes Sensitive Data

The article details a security researcher's discovery of a critical misconfiguration in Microsoft's internal applications, which allowed una

research.eye.security·10mo ago

Security Researcher Finds 16 Vulnerabilities in Lovable-Hosted App Exposing 18,000 Users' Data

A security researcher discovered 16 vulnerabilities, including 6 critical ones, in a Lovable-hosted application that exposed data of over 18

theregister.com·3mo ago

Satirical Security Report Details Fictional Multi-Ecosystem Supply Chain Attack

A satirical incident report about a fictional security vulnerability (CVE-2024-YIKES) that describes a cascading supply chain attack spannin

Andrew Nesbitt·1mo ago

Vercel Discloses Security Breach Affecting Internal Systems and Limited Customer Subset

Vercel, a popular cloud platform for app development and deployment, has disclosed a security breach affecting its internal systems. The com

decipher.sc·1mo ago

Cloudflare Outage Highlights Internet Infrastructure Vulnerabilities

The article discusses a major Cloudflare outage that disrupted many popular web services for several hours. While acknowledging the disrupti

gist.github.com·6mo ago

Security Researcher Discovers Vulnerabilities in VSCode Extensions and Core Software

A security researcher details their discovery and disclosure of three vulnerabilities in VSCode extensions and one in VSCode itself (CVE-202

blog.trailofbits.com·3mo ago