What it is
When vendors disclose vulnerabilities, patches are released to fix them. Systems that remain unpatched stay exposed to publicly known exploits, often actively scanned for by attackers.
Why it matters
Unpatched software is one of the most common causes of breaches. Attackers frequently:
- Exploit known vulnerabilities at scale
- Target outdated services exposed to the internet
- Use unpatched systems as entry points for larger attacks
How to reduce risk
- Maintain a regular patching schedule
- Monitor externally exposed services and versions
- Remove unused or legacy software
- Track vulnerabilities affecting your environment