Key findings:
• Firms admit they frequently release software to customers despite the presence of security flaws in the code.
• Thorough audits of software during and after development are a rarity, with fewer than 4 in 10 companies capable of detecting tampering with developed code.
• Fewer than 10% of companies are reviewing software at each stage of the production lifecycle for evidence of tampering or compromises.