Security debt has accumulated over years of missed patches, derelict administrative level accounts and accepted risks that have never been resolved. The WannaCry attack highlighted a far more sinister aspect of enterprises which has lingered in the dark. The victims of this attack were not merely corporate systems that had spreadsheets and projections cryptographically locked. There were healthcare facilities that were compromised as well when their own defenses failed to provide them protection. Customers need to hold their suppliers feet to the fire so that problems like this do not persist in the future.”]
Source: https://www.csoonline.com/article/3273893/one-year-later-security-debt-makes-me-wannacry.html