It only happens in infosec world where people move
from
sensible people always delay updates to 3rd party modules and do the due diligence test before installing them. its users fault for auto updating.
to
sensible people should autoupdate the packages its a critical security fix, people getting owned coz they didn’t update are at fault for not auto updating.
in a span of 2 weeks timeframe.