Skip to main content
Vendorsmondoo

mondoo

Cybersecurity reports and statistics published by mondoo

1 categories1 reports

Research Reports

Reports and publications from mondoo

Recent Statistics & Reports

60% of IT and security operators do not have any remediation SLAs in 2025, and among those that track SLAs, 65% have to analyze data manually.

10/21/2025
Vulnerability Remediation

33% of respondents stated that more remediation guidance and code snippets would help them remediate significantly faster in 2025.

10/21/2025
Vulnerability Remediation

27% of respondents reported using the Atlassian Suite/JIRA for tracking vulnerability remediation.

10/21/2025
Vulnerability Remediation

14% reported using Azure DevOps for tracking vulnerability remediation.

10/21/2025
Vulnerability Remediation

39% of respondents reported not using a vulnerability remediation tracking tool in 2025, relying instead on manual tracking using spreadsheets.

10/21/2025
Vulnerability Remediation

Seventy-eight percent of organizations reported finding fewer than five vulnerabilities per machine per month, according to a survey of IT and security teams.

10/21/2025
Vulnerability Remediation

Ten percent of organizations report finding between six and ten vulnerabilities per machine per month.

10/21/2025
Vulnerability Remediation

37% of respondents expressed concern about lack of traceability or rollback options as a pain point for automation.

10/21/2025
Vulnerability Remediation

Only 11% of organizations reported finding more than ten vulnerabilities per machine per month in 2025.

10/21/2025
Vulnerability Remediation

Ten percent of organizations reported that the DevOps/Product engineering team is primarily responsible for remediating vulnerabilities and misconfigurations reported by security.

10/21/2025
Vulnerability Remediation

Fourteen percent of organizations indicated that the security team is primarily responsible for remediating vulnerabilities and misconfigurations reported by security.

10/21/2025
Vulnerability Remediation

At 46% of companies, vulnerability remediation is a shared responsibility between security and IT operations teams.

10/21/2025
Vulnerability Remediation

40% of respondents reported 'too many siloed tools' as a significant pain point in vulnerability remediation.

10/21/2025
Vulnerability Remediation

40% of respondents indicated 'not enough visibility' as a significant pain point in vulnerability remediation.

10/21/2025
Vulnerability Remediation

52% of organizations surveyed reported their remediation efforts either quarterly, rarely, or never.

10/21/2025
Vulnerability Remediation

9% of respondents indicated that their organizations experienced a security incident due to a delay in vulnerability remediation.

10/21/2025
Vulnerability Remediation

11% of respondents reported that the recurrence of vulnerabilities and misconfigurations was between 11% and 30% within a month of remediation in 2025.

10/21/2025
Vulnerability Remediation

44% of respondents reported that the manual effort needed to find the owner of an artifact and fix it is one of the biggest pain points for remediating vulnerabilities and misconfigurations.

10/21/2025
Vulnerability Remediation

42% of respondents indicated that tickets don’t include enough remediation information.

10/21/2025
Vulnerability Remediation

44% of respondents indicated that vulnerabilities are reintroduced during the redeployment of software.

10/21/2025
Vulnerability Remediation

Showing 21-40 of 66 results