Companies have repeatedly been warned that each new worm brings attackers closer to the point of exploit code being released the same day software vulnerabilities are announced; thus, businesses can no longer rely on the patch-as-you-go approach to network security. Executives who remain skeptical now have some numbers to chew on, with the release of a new analysis that shows the vulnerability-to-worm cycle tightening from 288 days in 1999 to just 10 days in 2004. “The No. 1 message for businesses is that it’s truly impossible to patch everything in time, and that they need to adopt an approach that blocks threats and buys their IT staff time to determine the best fixes for their systems,” said Stuart McClure, president and chief technology officer for Mission Viejo, Calif.-based security firm Foundstone Inc. and author of the analysis. “If past warnings haven’t convinced you, this should.” Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.