A recent report by Checkmarx reveals that 75% of firms knowingly deploy vulnerable code due to pressure on CISOs to prioritize business deadlines over security concerns. The research highlights that 95% of CISOs feel pressured to delay reporting security issues, leading to a lack of adequate remediation—it was found that only 9% of organizations fix over 90% of vulnerabilities within 90 days. The reliance on AI-generated code, while efficient, contributes to security risks.
The report emphasizes the need for a new security model that combines human oversight with AI capabilities to effectively address vulnerabilities and enhance security measures.