Threat Level: green Handler on Duty: Daniel Wesemann

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Microsoft Security Intelligence Report volume 10

Published: 2011-05-13
Last Updated: 2011-05-14 18:42:49 UTC
by Jason Lam (Version: 1)
2 comment(s)

Microsoft released the latest version of their Security Intelligence Report - volume 10 which covers the online threat in year 2010. It is a good research report and summarizes the threat landscape with concrete data to support the findings.

Some of the interesting findings,

  • Exploitation thru Java platform is on significant rise since Q2 2010. The number of exploitation on Java platform far exceed Adobe software and OS platforms.
  • Malicious IFrames accounts for a large number of the attacks over HTTP, this likely indicate the effect of hijacked and compromised websites
  • Conficker is the most active malware family in Enterprise environment and only 9th in the general Internet environment
  • JS/Pornpop is the most active malware family on the general Internet (non-domain joined computer) environment
  • On phishing front, the phishing sites targeting social networking are increasing and they are effective in getting themselves presented to victims.
  • Overall OS level vulnerability counts is steady and browser vulnerability count is increasing slower, however, it is surprising that application vulnerability count is decreasing since 2008. Maybe the software vendors are actually getting much more secure?

 

 

Keywords: Microsoft
2 comment(s)
Diary Archives