Some Sobering Security Stats

Found this article from Security Fix about software vulnerabilities in the first six months of the year.

Symantec today released its latest report on Internet security, cataloging 2,249 software vulnerabilities discovered or reported from January through June 2006 — the most the company has ever recorded in a six-month period.

Nearly 80 percent of the vulnerabilities were considered easily exploitable and involved applications like Web browsers or software such as blogging and shopping cart programs.

Other stats of interest in the report: Microsoft’s Internet Explorer was the most frequently targeted Web browser, with 47 percent of all attacks. Mozilla’s Firefox and other browsers had the most number of flaws — 47 — (IE had 38), but IE continued to have the largest window of exposure to known security flaws. Source: Security Fix via

Big numbers, surprised me that Mozilla had the most flaws, even though IE was the most targeted. Get the PDF here.