Sign in with
Sign up | Sign in

Flash Exploits Jump 40 Times in Q2 2011

By - Source: Microsoft | B 11 comments

Microsoft has just released vulnerability data collected from its Malicious Software Removal Tool (MSRT), Bing, Windows Live Hotmail, Forefront and Defender during the first half of this year.

There are few surprises, but there is a wealth of data that delivers the current state of computer security and vulnerabilities over 168 pages.

According to the report, java remains the most dangerous platform for security exploits as Microsoft detected more than 6 million cases during the first month of the year. Operating system exploits made a huge jump to more than 5 million due to a Windows shortcut flaw that was discovered in July of last year and heavily exploited by attackers. HTML and JavaScript exploits are next in line, followed by document reader exploits and Flash vulnerabilities. Microso said that Flash vulnerabilities are still uncommon, but increased substantially (more than 40x) from the first to the second quarter of the year.

Windows XP SP3 remains the most vulnerable OS among the currently still-supported Microsoft operating systems. The data released show that 10.9 of every 1000 Windows XP SP3 (32-bit) were infected during the first half of the year. In comparison, the number dropped to 8.8 for Vista SP1 32-bit (6.7 for 64-bit), to 5.7 for Vista SP2 (4.4 for 64-bit) to 4.0 for Windows 7 RTM (2.7 for 64-bit) and to 1.8 for Windows 7 SP1 (1.1 for 64-bit).

Malware is most commonly distributed via adware with a share near 24 percent, followed by "unwanted" software (20 percent) and trojans (18 percent), worms (12 percent) and trojan downloaders (10 percent). Spyware has become insignificant as a malware transportation vehicle.

Microsoft detected most of the malware infections in the U.S. (10.5 million in Q2). Brazil was second with 3.7 million and France third with 2.7 million compromised Windows systems.

Microsoft's Security Intelligence Report v11 can be downloaded from Microsoft's website.

Display 11 Comments.
This thread is closed for comments
  • 0 Hide
    vigilante212 , October 12, 2011 3:46 PM
    This is why I use NoScript.
  • -3 Hide
    upgrade_1977 , October 12, 2011 3:49 PM
    Not surprising.
  • 1 Hide
    back_by_demand , October 12, 2011 3:52 PM
    FLASH!
    ...
    AH AH!!!!!!!!!!
  • -6 Hide
    captjack5169 , October 12, 2011 3:59 PM
    I think I have found the message here. Its "Dont install Flash"?????????
  • 6 Hide
    Anonymous , October 12, 2011 4:01 PM
    "Microsoft said that Flash vulnerabilities are still uncommon"

    Then why put it as the article tittle?
  • 1 Hide
    psyndrome , October 12, 2011 4:11 PM
    This is just a ploy to move everyone from the soon to be unsupported Win XP and onto Win 7.
  • 2 Hide
    killerclick , October 12, 2011 5:03 PM
    So, another way of saying this is Flash is still an insignificant security risk? I've never had problems with Flash. Flash gets a bad rap because of stupid Facebook games but proper Flash websites work flawlessly.
  • -3 Hide
    namye , October 12, 2011 5:17 PM
    Savior of the Universe!
  • 0 Hide
    schmich , October 12, 2011 7:41 PM
    Flash is awesome. Especially version 11 combined with AIR. You can have games with great graphics due to hardware acceleration: http://www.youtube.com/watch?v=tgwi0lWgX8w&hd=1#t=13s
  • 0 Hide
    proxy711 , October 12, 2011 8:21 PM
    Abobe programing at its finest.

    I hear in 2312 they have plans for a patch to fix these holes. Soon after more features that should have been added 5 years ago.
  • 2 Hide
    eddieroolz , October 13, 2011 4:45 AM
    Windows XP, the worldwide leader in infected OS continues to live on with diehards refusing to move onto something newer than a stone wheel.