The technology industry may be moving at breakneck speeds, but when it comes to cybersecurity – professionals have been trying to deal with the same issues for almost half a decade.
This is according to a new report from pentesting service providers Cobalt, which claims that the same five vulnerabilities have been taking the top spots as the biggest woes for four years in a row now.
These include being too slow to respond to threats, being unable to protect the entire portfolio, lacking a talented workforce, and struggling to align the security and development teams,
Polling 600 security experts, and pulling data from 1,600 pentests, the company says it takes a quarter of respondents at least 60 days to address low-to-medium-risk vulnerabilities. A handful can’t even be bothered to fix them, at all, yet most respondents (67 percent) believe this slow response is what creates further risk.
Protecting the entirety of their portfolio is also something businesses struggle with. The average firm can only pentest two-thirds (63 percent) of its entire application portfolio, mostly because it can’t find the budget to test everything.
For most firms (86 percent), finding the right people for pentesting is a pain, while a suboptimal alignment between the devs and the security teams is putting them at risk.
Less than a third confirmed their security and engineering teams as “intertwined”.