IBM Warns that Security Vulnerabilities Reach Record Levels

A newly published study from IBM has found that vulnerability disclosures are increasing dramatically, having reached record levels for the first half of 2010.


IBM's X-Force 2010 Mid-Year Trend and Risk Report found that Web application vulnerabilities continued to be the leading threat, accounting for more than half of all public disclosures. In addition, covert attacks increased in complexity hidden within JavaScript and Portable Document Formats (PDFs), while cloud computing and virtualization were noted as key future security topics for enterprise organizations.


IBM warns that the sophisticated attackers are employing covert means to break into networks without being detected by traditional security tools. IBM detected a 52 percent increase in obfuscated JavaScript attacks during the first half of 2010 versus the same period in 2009.


On the positive side, phishing activity declined by also 82% from its peak in 2009, but financial institutions remain the top target.


"Threat dynamics continue to multiply and evolve at a furious pace, making it more crucial than ever to look at unfolding trends so we can better prepare our clients for the future," said Steve Robinson, general manager, IBM Security Solutions. "This year's X-Force report reveals that although threats are on the rise, the industry as a whole is getting much more vigilant about reporting vulnerabilities. This underscores the increased focus among our clients to continue looking for security solutions that help them better manage risk and ensure their IT infrastructure is secure by design."http://www.ibm.com