Survey finds pressure to delay security reporting and widespread deployment of vulnerable code across 14 countries
Trend
Summary
Hide ▲
Show ▼
A Checkmarx survey found that pressure to delay security reporting is pushing vulnerable code into production across 14 countries, increasing the chance that known flaws reach live systems. 95% of CISOs said they faced pressure to deprioritize or delay reporting of security issues, and 75% said their organizations knowingly deployed vulnerable code. Remediation is also lagging, with only 9% fixing over 90% of vulnerabilities within 90 days. The pattern shows that business deadlines and AI-generated code are widening the gap between discovery and fix.
Timeline
-
09.06.2026 18:30 2 articles · 1h ago
Checkmarx survey finds pressure to delay security reporting and vulnerable code reaching production
Initial DisclosureCheckmarx's Jun 8 survey of 2,350 CISOs, AppSec managers and developers across 14 countries found that 95% of CISOs faced pressure to deprioritize or delay reporting of security issues, 75% of surveyed organizations knowingly deployed vulnerable code to production, and only 9% said they fix over 90% of vulnerabilities within 90 days.
Show sources
- 75% of Firms Deploy Vulnerable Code Amid Pressure on CISOs, Report Finds — www.infosecurity-magazine.com — 09.06.2026 18:30
- 75% of Firms Deploy Vulnerable Code Amid Pressure on CISOs, Report Finds — www.infosecurity-magazine.com — 09.06.2026 18:30