- April 6, 2018
- Posted by: admin
- Category: Blog
The folks at Flexera’s Secunia Research division have released their Annual Global Trends Vulnerability Review Report for 2018. To give some intro about Secunia’s Research division, they monitor more than 55,000 applications, appliances and operating systems, and tests and verify the vulnerabilities reported in them.
This research report analyzes the evolution of software security from a vulnerability perspective. It also presents a picture of the key figures and facts on vulnerabilities and the availability of patches, to map the security threats to IT infrastructures.
I would like to point out some of the interesting facts from this year’s Vulnerability Research Report before you go ahead and download this report for free.
Secunia found that many organizations still don’t have processes and procedures in place to reduce the number of system vulnerabilities. It also exposed the fact that a gap remains between identifying vulnerable applications and fixing them. This gap gives attackers plenty of time to navigate systems, grow privileges, spy and steal.
The total number of vulnerabilities discovered from 1865 products was 19,954, from a total of 259 vendors. This number shows a 38% increase (14501) in the five-year trend and a 14% increase from 2016 to 2017.
Since 2016, the number of vendors behind the vulnerable products has increased by 3% and the number of vulnerable products has decreased by 13%.
Reported Vulnerabilities for all products across all the vendors have more than doubled since 2012 from 9895 to 19954.
16.6% of the vulnerabilities in 2017 were rated as Highly Critical, and 0.3% as Extremely Critical.
The number of zero-day vulnerabilities discovered in 2017 decreased compared to 2016, with 14 zero-day vulnerabilities in all products in 2017, compared to 23 in 2016.
P.S: A zero-day vulnerability is a nothing but a vulnerability that‘s actively exploited by hackers before it‘s widely known to the public.
We at Lyra can help you out with safeguarding against security vulnerabilities too. Contact us to know more.