The U.S. Department of Energy was called out for poor patching practices this week. 15 different DoE locations were found running desktop systems, network systems, and network devices that hadn’t been patched for known vulnerabilities. Many organizations struggle to get a handle on the vulnerabilities in their environments, experts say. Recent research from Secunia suggests that enterprises could realize big-time security improvements if they prioritize their patches by the severity of the vulnerability instead of the prevalence of the application, an expert says.”]
Source: https://www.darkreading.com/analytics/six-deadly-security-blunders-businesses-make