Get the latest market trends in your inbox

Stay on top of the latest market trends and economic insights with the Axios Markets newsletter. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Minneapolis-St. Paul

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa-St. Petersburg news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa-St. Petersburg

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Photo: Wulf Voss / EyeEm via Getty Images

According to a new report by CA Veracode, a company that automatically scans for security flaws, 50% of the vulnerabilities they discover remain un-patched after 121 days.

Why it matters: Think of it as the computer security equivalent of the inspirational poster, "It's not how hard you fall, it's how fast you get back up.” Flaws in computer code are inevitable, but companies need to have processes in place to fix them.

By the numbers: By Veracode’s stats, around 75% of known security vulnerabilities persist after 21 days. 25% persist after 472 days.

  • It gets a little better for higher severity bugs, which are fixed within roughly 95 days. That’s still 3 months.

Interestingly, the most “mission critical” apps appear to take longer to fix than many less critical ones.

  • It takes 108 days for half of “medium critical" applications to be fixed, 9 days longer for half of “highly critical" apps to be fixed, and 24 days longer for the most critical apps to be fixed.
  • That could be in part because it’s hazardous to tamper with the most critical software without the risk of disrupting business.

Go deeper

Trump set to appear at Pennsylvania GOP hearing on voter fraud claims

President Trumpat the White House on Tuesday. Photo: Chip Somodevilla/Getty Images

President Trump is due to join his personal lawyer Rudy Giuliani in Gettysburg, Pennsylvania, Wednesday at a Republican-led state Senate Majority Policy Committee hearing to discuss alleged election irregularities.

Why it matters: This would be his first trip outside of the DMV since Election Day and comes shortly after GSA ascertained the results, formally signing off on a transition to President-elect Biden.

Scoop: Trump tells confidants he plans to pardon Michael Flynn

Photo: Alex Wroblewski/Getty Images

President Trump has told confidants he plans to pardon his former national security adviser Michael Flynn, who pleaded guilty in December 2017 to lying to the FBI about his Russian contacts, two sources with direct knowledge of the discussions tell Axios.

Behind the scenes: Sources with direct knowledge of the discussions said Flynn will be part of a series of pardons that Trump issues between now and when he leaves office.

Erica Pandey, author of @Work
10 hours ago - World

Remote work shakes up geopolitics

Illustration: Eniola Odetunde/Axios

The global adoption of remote work may leave the rising powers in the East behind.

The big picture: Despite India's and China's economic might, these countries have far fewer remote jobs than the U.S. or Europe. That's affecting the emerging economies' resilience amid the pandemic.

Get Axios AM in your inbox

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!