Security management is an important subject for everyone. Every six-months the Microsoft Security Intelligence Report (SIR) is released. It provides an in-depth perspective on the changing threat landscape including software vulnerability disclosures and exploits, malicious software (malware), and potentially unwanted software.
The report uses data derived from hundreds of millions of Windows users, and some of the busiest online services on the Internet, this report also provides a detailed analysis of the threat landscape and the changing face of threats and countermeasures and includes updated data on privacy and breach notifications. The fifth volume of the report is now available:
Volume 5 Highlights
The total number of unique vulnerability disclosures across the industry again decreased during the first half of 2008, down 4% from the second half of 2007 and down 19% from the first half of 2007.
In contrast to the decrease in total disclosures, vulnerabilities rated as High severity increased 13% with respect to the second half of 2007, with roughly 48% of all vulnerabilities receiving a rating of High severity. This is still a 28% decline from the first half of 2007.
Patterns of malware detected and removed by Microsoft security products varied across countries and regions, however trojan downloaders and droppers remained the most prevalent malware threat globally at over 30% of the worldwide total.
As a general rule, infection rates tend to be higher in developing countries/regions than in developed countries/regions, as reported by the Malicious Software Removal Tool (MSRT). The following map illustrates the infection rates of locations around the world, expressed in a metric called CCM that represents the number of computers cleaned per thousand executions of the Malicious Software Removal Tool.
Visit the Microsoft Software Intelligence Report Website or download the full report: SIR Volume 5 (January through June 2008) and Key Findings Summary.
Further information and security resources: