Microsoft Security Intelligence Report Volume 14 released today

ronjor · Apr 17, 2013

This morning, we released Volume 14 of the Microsoft Security Intelligence Report (SIRv14). This new report studies our findings on trends in the threat landscape based on data from more than 1 billion systems worldwide, focusing on data collected in the second half of 2012.

One interesting trend we saw surfacing in the enterprise was an increase in web-based threats. The enterprise has traditionally put a lot of effort into dealing with network worms, commonly mitigated with configuration and policy changes, and passwords, along with device and network share control. While still a threat to organizations, our latest threat intelligence report, SIRv14, shows these traditional network worms are being superseded by web-based threats.
Click to expand...

https://blogs.technet.com/b/mmpc/ar...volume-14-released-today.aspx?Redirected=true

Wild Hunter · Apr 17, 2013

Great. Going to read it asap.

This seems very interesting btw:

(...)SIRv14 also includes a feature analysis titled “Running Unprotected: Measuring the Benefits of Real-time Protection Software.” This story illustrates what the data shows about computers with and without real-time updated antivirus protection. We sliced and studied infection rates by operating system and country to try and calculate the risk users take when running unprotected. You will be able to read more about what we discovered in the SIR, and in the blog: Everyone benefits from antimalware software, released later today.(...)

wat0114 · Apr 17, 2013

Thanks ronjor!

Have only had a brief look so far. Interesting that Java is 3rd on the Exploit chart behind HTML/JavaScript and Documents, and both shellcode and heapspray, the former of which is especially touted by some here as the greatest evil lurking amongst the Internet landscape are, once again, way down at the bottom. Heck even Adobe Flash is in their company

siljaline · Apr 17, 2013

Everyone benefits from antimalware software

How important is it really to run antivirus software? That’s a question that has been asked by many people: your average user who might question the effort required to install it or keep their subscription up-to-date, the tech-savvy user who feels their knowledge and safe Internet skills are enough to keep them out of trouble, and the technology decision-maker who has to justify the cost to their business are just a few examples.

However, every single one of those people who question the importance of antivirus has to admit that it’s much easier to prevent infection than to clean up after it. So, how much difference does antivirus software actually make when faced with prevalent malware threats?
Click to expand...

• http://blogs.technet.com/b/mmpc/archive/2013/04/17/everyone-benefits-from-antimalware-software.aspx

ronjor · Apr 17, 2013

Malicious Websites Now the Top Threat to the Enterprise

Tim Rains - Microsoft

For the past three and a half years, Win32/Conficker has been the top threat found in enterprise environments. We have reported on Conficker in the Microsoft Security Intelligence Report since the second half of 2008. No new variants of Conficker have been released in years and the methods it uses to propagate are well known, but once it finds its way into an environment it can be difficult to eliminate it.

New data just published in volume 14 of the report, focused on the second half of 2012 (2H12), shows that Conficker has competition as the number one threat in enterprise environments. Figure 1 shows that JS/IframeRef was encountered by more computers than Conficker in the second (2Q12) and fourth (4Q12) quarters of 2012. IframeRef was detected almost 3.3 million times in 4Q12. JS/IframeRef is a malicious piece of JavaScript code that is presented on infected or malicious websites. The purpose of the script is to redirect your browser to other sites that attempt to download malware onto your computer, often by exploiting unpatched software vulnerabilities.
Click to expand...

https://blogs.technet.com/b/securit...threat-to-the-enterprise.aspx?Redirected=true

Log in or Sign up

Microsoft Security Intelligence Report Volume 14 released today

ronjor Global Moderator

Wild Hunter Former Poster

wat0114 Registered Member

siljaline Registered Member

ronjor Global Moderator

Log in or Sign up

Microsoft Security Intelligence Report Volume 14 released today

ronjor Global Moderator

Wild Hunter Former Poster

wat0114 Registered Member

siljaline Registered Member

ronjor Global Moderator

Useful Searches