Microsoft Releases Latest Microsoft Security Intelligence Report
Company finds use of malicious software increasingly motivated by financial gain.
LONDON - Microsoft Corp. today released the fourth volume of its Microsoft Security Intelligence Report (SIR) at Infosecurity Europe 2008. The report focuses on the second half of 2007 and uses data derived from a range of tools running on approximately 450 million computers worldwide to provide an in-depth, global view of software vulnerabilities, software exploits, malicious software and potentially unwanted software.
The latest SIR shows the fewest number of security vulnerability disclosures across the software industry since the second half of 2005, along with a rise in malicious and potentially unwanted software, which demonstrates a continued use of malware as a tool for targeting computer users for profit.
More specifically, the second half of 2007 showed a decline in new security vulnerability disclosures by 15 percent and a decrease in total vulnerability disclosures by 5 percent for all of 2007. Vulnerabilities are weaknesses in software that allow an attacker to compromise the integrity, availability or confidentiality of that software. The data also reveals a 300 percent increase in the number of trojan downloaders and droppers — malicious code used to install files on users’ systems — illustrating that the malware category continues to grow in popularity among attackers.
The report also shows a 66.7 percent increase in the number of potentially unwanted software detections — programs that may impact user privacy or security by performing actions the person may not want — between July 1 and Dec. 31, with a total of 129.5 million pieces of potentially unwanted software found on users’ systems.
“The SIR provides us with a chance to share with our customers and industry partners what we’re seeing in the threat landscape so we can all help ensure users are better protected and work toward a more trusted Internet,” said Vinny Gullotto, general manager of the Microsoft Malware Protection Center. “This latest volume supports our position that today’s threats continue to be motivated by monetary gain, and it also gives us a solid view of vulnerability and exploit trends.”
The purpose of the SIR is to keep customers informed of the major trends in the threat landscape and provide valuable insights and security guidance designed to help customers make better, more informed decisions with regard to products, technologies and resources. The latest report builds on previously gathered data, but also includes new sections focused on issues of security breach notifications, spam and phishing, Internet safety enforcement, and the storm worm — a highly visible, continually updating and adapting trojan dropper.
Based on these and other key findings from the report, Microsoft recommends all interested parties use the data, insights and guidance contained in the report to better assess and improve their own security practices. Active steps Microsoft recommends include the following:
- Check for and apply software updates on an ongoing basis, including updates provided for third-party applications.
- Enable a firewall.
- Install and maintain up-to-date anti-virus and anti-spyware programs that provide increased protection from malicious and potentially unwanted software.