For better or for worse, mainstream media is increasingly covering particularly dangerous, widespread or otherwise notable security vulnerabilities.

The growing coverage has made more people aware of the risks and of the need to keep their various devices (software) up-to-date and, with the increased digitization of our everyday lives, I would say that’s a definitive plus.

But among those people are also partners and regulators, and executives and boards of directors who may demand their security teams do something about them immediately, even though they might be currently doing more important things than quickly patching a vulnerability that may or may not be critical to the company’s security.