Report: Bulk of Application Vulnerabilities Don't Require Immediate Attention - DevOps.com
Briefly

from DevOps.com1 week ago
An analysis from OX Security reveals that a vast majority of security alerts—between 95% and 98%—are informational, resulting in a manageable number of 202 critical issues from an average of 569,354 alerts faced by organizations. The report indicates that a significant portion of vulnerabilities have low exploit risks or are not exploitable at all, while many are linked to development dependencies that developers cannot directly fix. The increasing use of AI in coding worsens the situation, as it can generate code with vulnerabilities, leading to a culture of alert fatigue among developers who often ignore or disable security notifications.
An analysis of over 101 million application security alerts shows that only 2-5% require immediate action, indicating a need for better context-based prioritization to address alerts effectively.
DevOps.comhttps://devops.com/report-bulk-of-application-vulnerabilities-dont-require-immediate-attention/
Out of 569,354 security alerts faced by organizations, it can be reduced to 11,836 through prioritization, highlighting inefficiencies in how alerts are currently managed.
DevOps.comhttps://devops.com/report-bulk-of-application-vulnerabilities-dont-require-immediate-attention/
Only 1.71% of critical issues are classified as Known & Exploited Vulnerabilities, emphasizing the importance of distinguishing between urgent and informational alerts in application security.
DevOps.comhttps://devops.com/report-bulk-of-application-vulnerabilities-dont-require-immediate-attention/
As developers increasingly use AI tools for coding, the reliance on potentially vulnerable codes creates a challenge, leading to developers overlooking or disabling security alerts.
DevOps.comhttps://devops.com/report-bulk-of-application-vulnerabilities-dont-require-immediate-attention/
Read at DevOps.com
#application-security #security-alerts #vulnerabilities #devsecops #ai-in-development
[
|
]