65% of third-party vendors are not maintaining current patch levels, which exposes financial institutions to inherited risk from known vulnerabilities (CVEs) and potentially unpatched zero-day vulnerabilities in legacy technologies.

37% of respondents cited software vulnerabilities and zero-days as a top concerning threat.

37% of respondents cited software vulnerabilities and zero-days as a top concerning threat.