Nearly six out of 10 small and medium-sized enterprises are failing to keep up with software security patches, new research has revealed.
The survey of 449 IT managers in SMEs, conducted by market researcher Vanson Bourne, showed that 59% were not deploying patches as soon as they were released by software suppliers, leaving their systems open to security risks.
SMEs were deterred by the amount of time required to test patches and then install them throughout their businesses, the research commissioned by secure Internet and e-mail service provider intY found.
The research also found that despite the security risks and the amount of staff time required to manage applications, nearly half the SMEs surveyed – 46% – said they were reluctant to adopt an application service provider (ASP) model.
They feared that access to critical business applications could be compromised because under the traditional ASP model, the application server is located with the internet service provider, causing problems if the internet connection goes down.
More than three-quarters of respondents said they would consider the ASP model if they could retain control of the applications.