Is Unpatched Software a Security Risk?

JANUARY 17TH, 2019

It doesn't matter how much work you put into cybersecurity awareness within your company if you have any vulnerabilities in your system, software, or strategy. You’re leaving holes hackers can easily access. That’s where unpatched software can damage your business.

What is Unpatched Software?


Every software has the potential to have bugs and holes. After a program’s initial release, software companies work towards fixes or patches for these holes and should be continuously offering updates that include these changes. Unpatched software means there are vulnerabilities in a program or code that a company is aware of and will not or cannot fix. Users can also be responsible for their unpatched software if they refuse to check for and perform regular updates.

Some Numbers

According to a ServiceNow survey performed by the Ponemon Institute, an alarming 57% of respondents who faced a security breach said the hacks were due to vulnerabilities in unpatched software. Thirty-four percent of these cybercrime victims were aware of the holes in their software but didn’t patch them in time. It was also discovered that 37% of breach victims don’t perform regular scans to find vulnerabilities in their own systems.

Patching Gaps


One of the main reasons for unpatched software is what the industry refers to as patching gaps. Some IT teams are unaware of the updates that are available for their software that patch these security holes. Some know these updates are available, but simply don’t have the resources or strategies to keep up with their release. This is due in large part to staffing concerns as well as a gap in the skill sets of team members. But, according to the Ponemon survey, 64% of businesses in the U.S. are actively seeking to add IT employees that are dedicated to patching. This will hopefully help fill a large percentage of patching gaps in SMBs.

Keeping Your Data Safe

The reality is that antivirus programs are not enough to keep you completely protected anymore. Regular scanning for patches and pen tests for your own data security strategies are only a couple of the methods you should use to protect your company’s information. Plus, you should have data backups and replications that you can recover easily in case a breach does happen. That’s where StorageCraft can help. We’re the online data recovery expert and offer a variety of products and solutions to suit the specific needs of your business. Contact us today to learn more about how we can help you with your cybersecurity strategy, or request a free demo of OneXafe.

You May Also Like