Sort of, I mean I think they generally do fix what they’re supposed to fix, just they average at least as many new flaws. Since it takes a while for exploits to trickle down through the hierarchy of attackers from “motivated but focused on specific targets” to “lazy but blanketing the internet” there’s an advantage to always only having NEW flaws.
Assessing the security of devices by measuring how many difficult things the programmers tried to do
1 Like
