91% 的组织在过去 12 个月内经历过软件供应链事件;常见问题包括零日漏洞、云服务配置错误和开源漏洞。 91% of orgs experienced software supply chain incidents in past 12 months; common issues included zero-day exploits, misconfigured cloud services, and open-source vulnerabilities.
Enterprise Strategy Group (ESG) 与 Data Theorem 合作发布的一份新报告发现,91% 的组织在过去 12 个月内经历过软件供应链事件。 A new report from Enterprise Strategy Group (ESG) in partnership with Data Theorem has found that 91% of organizations have experienced a software supply chain incident in the past 12 months. 该研究调查了北美 350 多个私营和公共部门组织。 The study surveyed over 350 private and public sector organizations in North America. 最常见的安全事件是针对第三方代码中的漏洞的零日利用、错误配置的云服务利用以及开源软件和容器映像中的漏洞利用。 The most common security incidents reported were zero-day exploits on vulnerabilities within third-party code, misconfigured cloud service exploits, and vulnerability exploits in open-source software and container images.