How long will it take you to patch the Log4j vulnerability?

Threat Intelligence & Incident ResponseThreat & Vulnerability Management

1-2 years30%

3-4 years34%

5-6 years12%

> 6 years10%

We have already patched it.11%

Other (please share below)1%

168 PARTICIPANTS
1.2k views

Content you might like

Are you seeing changes in the quality or speed of threat intelligence from sources you relied on in previous years? Can you share how you are being impacted so far by the uncertainty around public-private partnerships for cyber information sharing?

Read More Comments

What are the best practices for securing the MFA registration phase when moving from SMS to phishing-resistant methods like passkeys (FIDO2) or TOTP-based authenticator apps? Specifically, how can we mitigate risks in device enrollment and key provisioning without phone numbers? What innovations are your organizations implementing or have implemented to bolster this process? - I don't see this as a competitive advantage but all of us good guys against the bad.

How often do you run simulated ransomware attacks at your organization?

Once a month9%

Once a quarter42%

Once every 6 months16%

Once a year18%

We do not run ransomware simulations currently.13%

Other (comment below)

View Results

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

Read More Comments

What’s the top cybersecurity challenge concerning your organization right now?

AI-driven threats (deepfakes, automated attacks) 24%

Software supply chain risks 18%

Insider risk (both malicious & accidental) 11%

Regulatory compliance 9%

Cloud misconfigurations 11%

Shadow IT (or shadow AI) 9%

Ransomware 5%

Talent shortage in cybersecurity9%

Something else (comment to explain)4%

View Results