Our regional security specialist pointed out that the Microsoft Malware Protection Center published volume five of the Microsoft Security Intelligence Report. If you have not taken a look at this report before, go download it from http://www.microsoft.com/sir. It provides a thorough view of the current threat landscape and is filled with a number of great data points.
In his first scanning of the document, the following items immediately jumped out at him:
- Microsoft vulnerabilities accounted for 42% of the total vulnerabilities on Windows XP for browser based attacks; however, on Windows
Vista-based machines the proportion of vulnerabilities attacked in Microsoft software dropped to just 6% of the total. This highlights our not only our continued security investments in the browser but also that attackers are focusing more and more on the applications that run in the browser.
- The infection rate for Windows Vista is significantly lower than Windows XP, regardless of service pack levels. In addition, 64-bit versions of XP and Vista have lower infection rates than their 32-bit counterparts.
- The higher the level of service pack a machine runs, the lower the rate of infection. This is consistent across client and server platforms, across all versions. Clearly, keeping up to date with the latest service pack levels and security patches is beneficial from a security perspective. While we have always thought this to be true, having a data point to prove it is great.
For a video overview of the report, check out one of these two podcasts – particularly if security is your business:
The Bret and Vinny Show – SIR Volume 5
(Featuring old security hat Bret Arsenault – a guy I’ve known for over a decade)- IT Manager Webcast – Microsoft Security Intelligence Report volume 5 Key Findings
- IT Professional Webcast – Microsoft Security Intelligence Report volume 5
kurtsh
Kurt Shintaku's Blog 