Hi All
Well it appears that the FTC have had enough, and threaten those to patch critical vulnerabilities or legal action will occur:
https://nakedsecurity.sophos.com/2022/01/05/ftc-threatens-legal-action-over-unpatched-log4j-and-othe...
Regards
Caute_Cautim
