If you are reading this blog post via a 3rd party source it is very likely that many parts of it will not render correctly (usually, the interactive g

Bad Software Keeps Cyber Security Companies in Business | DOGESEC

submited by
Style Pass
2024-10-30 07:00:06

If you are reading this blog post via a 3rd party source it is very likely that many parts of it will not render correctly (usually, the interactive graphs). Please view the post on dogesec.com for the full interactive viewing experience.

Many of those on the vendor side of cyber-security will often joke that insecure software keeps the majority of the industry in business.

There is some truth in that statement. We couldn’t expect perfect software and there needs to be checks in place by the industry (including responsible disclosure).

In a previous post I looked at some interesting data points about CVEs over the course of the last 25 years. This time around I wanted to take a look at some of the common weakness categories for published vulnerabilities over the last year (October 2023 through September 2024).

If you’d like to follow along with the searches used in this post, follow the instructions described in that previous post to import the data.

Leave a Comment