One of the statements Jen Easterly made during the mWISE conference I thoroughly enjoyed! I would strongly recommend watching the keynote below. “Instead of using worlds like software vulnerability - which really diffuses the responsibility - we should call them product defects to name the problem more directly and to emphasize just how important it is for technology vendors to design and develop and test and deploy products to dramatically drive down the number of exploitable defects. Instead of blaming victims for failing to patch their software, why don’t we ask: Why did that software require so many urgent patches? We need to demand more of technology vendors as the customers of technology…we still have a multi-trillion dollar software quality issue leading to a multi-trillion dollar cybercrime issue!” https://youtu.be/DDzsPI9d37M?si=w5YHqVuDGH9q7ywG