Sorry, but to this I’ll contribute a “duh”.
Exactly!
I believe that the reason that there is so many patches and updates to an O/S and other software is due to co.’s leaving programming insecure at the behest of the NSA and other intelligence tentacles.