Can the Cisco fiasco teach us the importance of the periodical release and update of patches?

Looking at the controversy created by a ISS employee who were going to disclose Internet security vulnerabilities in Cisco's Internetwork Operating System (IOS) at the 2005 Black Hat security conference in Las Vegas. Michael Mullins thinks that this should be a lesson to organizations who do not have a standardized policy for the patch management processes. To read more, click here.