The number of security vulnerabilities in all types of IT software is at an all-time high. According to the German Hasso-Plattner-Institute (HPI), some 11,150 security risks were registered worldwide in 2017. The institute scours the web for bug reports by software makers and other freely available sources, such as portals dedicated to software risks. This database is configured to self-update. Besides the total number of security risks, the HPI also measures how severe the risks are according to the Common Vulnerability Scoring System (CVSS). Most risks in 2017 were at a medium level.