This is an article I'm quoted extensively on because I conducted the early research a few years ago on security shelfware when I was working at 451 Research. 

From some of the comments provided by others, it appears as if not much has changed in that regard over the years. But would be interesting to revisit some of the participants from the original survey to see how things may have actually changed.