Is your remediation timeline 22 minutes? As it turns out, it may need to be. In a recent report from Cloudflare they highlight how attackers are attempting to exploit vulnerabilities in some cases within 22 minutes of Proof-of-Concept (PoC) code being made available. Cloudflare brings a unique perspective, given they process an average of 57 million HTTP requests per second. They demonstrate in their State of AppSec in 2024" report how quickly attackers are moving. We know from Cyentia Institute and others that this far outpaces both organizations remediation capacity and timelines, and we have vulnerability backlogs in the hundreds of thousands to millions. Organizations are sitting on massive piles of vulnerabilities ripe for exploitation, and they can't keep up. Unsurprisingly, Cloudflare's report mentions that organizations need to try and leverage AI and emerging tech to keep pace with this level of exploitation. #ciso #cyber #ai
