SANS released the "Top Cyber Security Risks" report which covers March-August 2009. The report features attack data from TippingPoint intrusion prevention systems protecting 6,000 organizations, vulnerability data from 9,000,000 systems compiled by Qualys, and additional analysis and tutorial by the Internet Storm Center and key SANS faculty members.

http://www.net-security.org/secworld.php?id=8091

Urs