Companies with haphazard patch management systems are more likely to be penetrated by cyber criminals, anti-malware giant Kaspersky Lab has warned.
According to Kaspersky Lab, many companies rarely use the client system management tools that download and automatically install updates, citing a study by market research specialist B2B International.
In the study, conducted late last year, B2B discovered only 35 per cent of companies automatically install updates, leaving 65 per cent of companies vulnerable with outdated software exposing the company’s ICT infrastructure.
Kaspersky warns that unless companies patch vulnerabilities, ‘exploits’ that have become a popular tool for cybercriminals may infect computers. Companies usually face challenges in installing updates where a large number of workstations exist.
“Here, the speed with which updates are installed is just as important as installing the update in the first place: the sooner the IT department updates vulnerable software on all corporate workstations, the less likely it is that cybercriminals can launch a successful attack exploiting a vulnerability,” reads a statement from Kaspersky Lab.
The company further warns the most widespread programs such as Java and Adobe Acrobat Reader will remain the most targeted, with 50 per cent of all attacks aimed at Java and 28 per cent at the latter.
To mitigate such risk, Kaspersky advises companies to invest in more staff to download and install updates on every machine or dedicating automation tools, with the latter the most practical.
“Kaspersky Lab fully understands the hazards associated with exploits, so the company’s key products incorporate tools to track vulnerabilities in the operating system and applications,” the company said.