microsoft security intelligence report v15 with vietnam data_vn short
DESCRIPTION
MI Vietnam Telecommunications Report Q2 2014TRANSCRIPT
Microsoft Security Intelligence Report, Volume 15
Bo co iu tra an ninh mng ca MicrosoftTp 15 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/20131Creating and delivering secure, private and reliable computing experiences.2SecurityPrivacyReliability
Trustworthy Computing[Introduction]Thank you for taking the time to speak with me today.
I work in Trustworthy Computing, an initiative created in 2002 by Bill Gates to deliver more secure, private and reliable computing experiences based on sound business practices.
Although we regularly work with our colleagues around the company, we arent linked to any single product or service. This gives us a degree of long-term autonomy to work on improving the experiences people have with technology. 2V SIRv15nh gi nguy c trong khu vc100+ quc gia/vng minnh gi nguy c trn ton th giiXu hng l hng an ninh mngXu hng khai thc nh cp thng tinHH, trnh duyt v cc ng dngPhn mm c hiCc phn mm khng mong munnguy c qua emailCc trang web c hi"T l gp phi: mt thc o mi cho vic phn tch t l phn mm c hi"
3Cc bo co tit l l hng an ninh ton ngnh gim xung 1,3% t na cui ca nm 2012, v 10,1 % t na u ca nm 2012. Cc bo co tit l l hng an ninh ton ngnhCc bo co tit l l hng an ninh ton ngnhCc bo co tit l l hng an ninh ton ngnh gim xung 1,3% t na cui nm 2012, v 10,1 % t na u ca nm 2012. S gia tng cc bo co tit l l hng ca HH trong na u nm 2013 b li mt phn ln cho mc gim cc bo co tit l l hng an ninh trong cc ng dng vo cng thi im, dn n s thay i ton th ni chung l khng ng k. 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/20134Cc bo co tit l l hng an ninh ton ngnhTheo mc phc tpCc bo co tit l l hng an ninh ton ngnhTheo mc nghim trngHH, trnh duyt, v cc l hng ng dng5HH, trnh duyt, v cc l hng ng dng ton ngnhCc bo co tit l l hng an ninh trong ng dng gim 12,9 % vo na u nm 2013. Cc bo co tit l l hng an ninh trong HH tng 39,3 % vo na u nm 2013.Cc bo co tit l l hng an ninh ton ngnh39,3%Cc bo co tit l l hng an ninh trong ng dng gim 12,9% vo na u nm 2013, v chim n 63,5% tng cc bo co vo cng k.Sau mt vi k gim, cc bo co tit l l hng an ninh trong HH tng 39,3% vo na u nm 2013, vt kh xa s lng cc l hng an ninh trong trnh duyt. Nhn chung, cc l hng an ninh HH chim n 22,2% ton b cc bo co trong cng k.Cc bo co tit l l hng an ninh trong trnh duyt gim 18,3% vo na u nm 2013, v chim n 14,3% tng cc bo co vo cng k. 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/20136Cc bo co tit l l hng an ninh ton ngnhSau mt vi k gim, cc bo co tit l l hng an ninh trong cc sn phm ca Microsoft tng ln 7,4% trong tng s cc bo co ton ngnh, tng ln t 3,1% vo na cui nm 2012.Cc bo co tit l l hng an ninh ton ngnhSau mt vi k gim, cc bo co tit l l hng an ninh trong cc sn phm ca Microsoft tng ln 7,4% trong tng s cc bo co ton ngnh, tng ln t 3,1% vo na cui nm 2012. 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/20137
T l CCM theo quc gia v vng min
Qu 2 nm 2013Qu 1 nm 2013 nm 2013T l CCM trung bnh trn th gii vo qu 3 nm 2012 = 5,3T l CCM trung bnh trn th gii vo qu 4 nm 2012 = 6,0
2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/20138
T l ER theo quc gia v vng min
Qu 2 nm 2013Qu 1 nm 2013 nm 2013T l CCM trung bnh trn th gii vo qu 3 nm 2012 = 5.3T l CCM trung bnh trn th gii vo qu 4 nm 2012 = 6,0
2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/20139S dng phn mm bo mtT l phn trm cc my tnh chy MSRTBa phn t s my tnh trn ton th gii chy phn mm bo mt thi gian thi gian thc trong mi t trin khai MSRT hng thng trong bn qu va qua.Mt my tnh thng thng chy MSRT ba t mi qu, mi ln vo mi phin bn pht hnh hng thng ca b cng c ny. Trong hnh 33, "Lun lun bo v" biu th cc my tnh c phn mm bo mt thi gian thc hot ng trong tt c ba ln chy MSRT trong mt qu; "bo v lin tc" biu th cc my tnh c phn mm bo mt hot ng trong mt hoc hai t trin khai MSRT, nhng khng phi tt c ba; v "Khng c bo v" biu th cc my tnh khng c phn mm bo mt hot ng trong bt k t trin khai MSRT trong mt qu.Nhn chung, gn ba phn t s my tnh trn ton th gii chy phn mm bo mt thi gian thi gian thc trong mi t trin khai MSRT hng thng trong bn qu va qua. Xu hng ny tng nh trong vng bn qu va qua, t 73,1% vo qu 3 nm 2012 n 74,7% vo qu 2 nm 2013. 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/201310T l CCM ca cc my tnh c bo v v khng c bo vS my tnh trn 1.000 my c lm sch thnh cng sau khi qut (CCM)Bnh qun, MSRT bo co rng cc my tnh khng bao gi chy cc phn mm bo mt thi gian thc trong mt qu s c kh nng b nhim cc phn mm c hi cao gp 7,1 ln so vi cc my tnh lun c bo v. 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/201311T l ly nhim v pht hin: HH, 2Q13T l ly nhim i vi Window XP cao hn nhiu so vi t l ly nhim i vi c hai phin bn mi ca Windows. S chnh lch t l pht hin gia cc HH th nh hn nhiu. T l phn trm s my tnh bo nhim (t l pht hin)S my tnh trn 1.000 my c lm sch thnh cng sau khi qut (CCM)T L LY NHIMT L pht hinBiu t l ly nhim bn tri cho thy c mt s khc bit r rng gia cac phin bn HH c v mi. T l ly nhim i vi Windows XP (vi CCM l 9,1) cao hn rt nhiu so vi t l ly nhim i vi c Windows Vista v Windows 7 (tng ng 5,5 v 4,9), v cng cao hn rt nhiu so vi t l ly nhim ca Windows 8 (1,6). Cc phin bn h iu hnh mi khng d b tn cng bi cc m c c s dng rng ri trong cc phin bn trc , v bao gm mt s tnh nng bo mt v gim thiu nguy c m cc phin bn c ca Windows thiu ht.Ngc li, chnh lch v t l pht hin gia cc HH th nh hn nhiu, tng cng khong 12-19% i vi tt c cc my tnh trn th gii HH no ang c s dng. Cc sn phm bo mt thi gian thc ca Microsoft c thit k phong ta tt c cc nguy c khi pht hin, thm ch c vi cc nguy c c th lm hi my tnh. V d nh, nhm worm Win32/Conficker khai thc mt l hng an ninh cha bao gi xut hin trn Windows 8, do vy Windows khng th b ly nhim bi nguy c . Tuy nhin, nu ngi s dng Windows 8 tip nhn mt tp tin c hi c gng khai thc l hng , Windows Defender s pht hin v phong ta, v v pht hin s c tnh l mt v pht hin. (trong thc t, mt vi nhm phn mm c hi c pht hin nhiu nht trn th gii trong na u nm 2013bao gm c Conficker, INF/Autorun, Win32/CplLnk v cc phn mm c hi khckhng c tc dng i vi cc phin bn pht hnh gn y ca Windows vi cu hnh mc nh.)S khc bit gia hai php o cho thy tm quan trng ca vic ri b cc HH c chuyn sang cc HH mi hn v an ton hn. Cc my tnh chy Windows XP trong na u nm 2013 pht hin s phn mm c hi cao hn 31% so vi cc my tnh chy Windows 8 trn ton th gii nhng t l ly nhim th cao hn gp 5 ln.Mc d d liu v t l pht hin t hiu qu hn d liu v t l ly nhim kha cnh gip ch ra cc phin bn HH c mc an ton khc nhau nh th no, t l pht hin c ngha cung cp ci nhn su hn v phng thc m cc k tn cng nhm vo cc cng ng s dng my tnh khc nhau. Mt s nhm phn mm c hi v trang web c hi c thit k qut HH ca my tnh v phn tn cc nguy c c th n cc phin bn HH khc nhau, hoc thm ch tn cng mt vi phin bn cng lc. Vic Windows 7 l phin bn Windows c ci t rng ri nht, v cng c t l pht hin cao nht cho thy nhng k tn cng ang la chn mc tiu l cc cng ng s dng my tnh ln nht.
2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/201312ER phc v cng vic so vi phc v tiu dngCc my tnh phc v gii tr c xu hng pht hin cc phn mm c hi vi t l cao hn cc my tnh phc v cng vic. T l pht hin ca cc my tnh phc v gii tr cao gp 1,5 ln so vi t l pht hin ca cc my tnh phc v cng vic vo qu 1 nm 2013, vi s chnh lch tng i tng ln n 1,8 vo qu 2 nm 2013.T l phn trm cc my tnh b nhim phn mm c hi1.5x 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/201313Xu hng tng gim t l pht hin PUS theo v tr a lQuc gia/Vng minQu 3 nm 2012Qu 4 nm 2012Qu 1 nm 2013Qu 2 nm 2013Chg. 2H1H1Hoa K7,42%4,29%4,99%3,79%-25,04%2Brazil15,73%23,58%23,04%16,31%0,09%3Nga17,52%14,43%15,41%11,58%-15,53%4Th Nh K32,90%16,44%16,11%12,23%-42,55%5n 16,73%12,34%11,59%9,28%-28,21%6M hi c13,11%12,82%13,21%10,07%-10,24%7c7,68%5,44%6,74%3,55%-21,56%8Php 10,34%10,03%12,37%6,38%-7,92%9Trung Quc 6,37%4,56%4,03%3,47%-31,39%10Vng quc Lin hip Anh8,24%6,07%7,40%4,97%-13,53% 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/2013145 v tr c t l PUS ER caoT l phn trm s my tnh bo nhim (t l pht hin)Pakistan v Georgia l cc v tr duy nht xp hng trong top 5 c v t l pht hin v t l ly nhim. T l pht hin cc v tr ny cao gp t 2 n 3 ln t l pht hin trn ton th gii vo qu 2 ca nm.Ngoi Gamarue, cc v pht hin nhm m c INF/Autorun v Win32/Obfuscator, nhm worm Win32/Ramnit, v nhm vi rt Win32/Sality ng vai tr ln trong t l pht hin ti mi quc gia. Cc v pht hin Gamarue tng cao l nguyn nhn chnh dn n t l pht hin tng cao vo qu 2 nm 2013 ti Th Nh K v Georgia, v ti cc v tr khc vi mc t hn.T l pht hin ti Th Nh K gia tng u trong sut na u nm 2013, t mc 47,4 % vo qu 2 nm 2013. T l pht hin ca Th Nh K c th chu nh hng bi t l trung bnh s my tnh khng c bo v nh trn. Cc v pht hin Gamarue, Obfuscator, v Autorun c bit nhiu Th Nh K.T l pht hin ti Vit Nam tng t 35,1 % vo qu 1 nm 2013 n 36,6% vo Qu 2 nm 2013, nhng vo cui qu 2 gim nh so vi cui nm 2012. Ramnit (pht hin trn 9,6 % my tnh Vit Nam vo qu 2 nm 2012) l nguy c c pht hin nhiu nht, theo sau l Gamarue (9,1%) v nhm m c Win32/CplLnk (%).T l pht hin ti Ai Cp tng nh trong c bn qu trc , vi t l 41,2% s my tnh Ai Cp pht hin cc phn mm c hi vo qu 2 nm 2013. Autorun (pht hin trn 10,4% s my tnh ti Ai Cp vo qu 2 nm 2012), Sality (8,9%), v Obfuscator(6,3%) l cc nguy c c pht hin nhiu nht. 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, v nhng sn phm khc l hoc c th l thng hiu ng k v/hoc thng hiu M v/hoc cc nc khc.Cc thng tin trong ti liu ny ch nhm mc ch cung cp thng tin v th hin tm nhn hin ti ca tp on Microsoft k t ngy lp bi thuyt trnh ny. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.11/21/201315Cc th rc b phong ta theo loiCc qung co cho cc sn phm dc phm khng lin quan n tnh dc chim n 42,7 % tng s th b phong tabi b lc ni dung ca Exchange Online Protection content filters v na u nm 2013, cho thy mc gim nh t 43,8 % vo na sau nm 2012.Ch c hnh nh 17.6%419 scam 15.5%Phn mm c hi 5.5%Qung co cc sn phm khng phi l dc phm 5.0%Tn cng gi mo 3.8%Ti chnh 3.4%Hn h/cc ti liu lin quan n tnh dc 2.2%Chng khon 1.5%C bc 1.2%Khc1.5%Dckhng lin quan n tnh dc 42.7%V tr m th rc c gi i t botnet nhiu nht Quc gia/Vng minCc a ch IP gi th rc1Hoa K29.2162Trung Quc16.0943Vng quc Lin hip Anh7.7284n 5.7795Nga5.5536c5.0447Canada4.8598Brazil3.8939Australia3.63510Php3.548
T l ER theo quc gia v vng min
T l m c theo quc gia v vng min
Xu hng phn mm c hi ti Vit Nam20Xu hng ly nhim tiVit NamPhp oQu 3 nm 2012Qu 4 nm 2012Qu 1 nm 2013Qu 2 nm 2013CCM, Vit Nam16,916,917,018,9T l CCM trung bnh trn th gii5,36,06,35,8T l pht hin ti Vit Nam38,7%36,7%35,1%36,6%T l pht hin trung bnh trn th gii18,0%17,5%17,8%17,0%Cc v pht hin v ly nhim cc phn mm c hi ti Vit NamVit NamTon th giiCc danh mc nguy c ti Vit NamDanh mc ph bin nht Vit Nam vo qu 2 nm 2013 l Trojan Hn hp, c t l pht hin l 21,2% tng s my tnh, gim t 21,4 % trong qu 1 nm 2013Danh mc ph bin th hai Vit Nam vo qu 2 nm 2013 l Worm, c t l pht hin l 19,7% tng s my tnh, gim t 15,3 % trong qu 1 nm 2013Danh mc ph bin th ba Vit Nam vo qu 2 nm 2013 l Vi rt, c t l pht hin l 12,8% tng s my tnh, gim t 12,9 % trong qu 1 nm 2013Cc danh mc nguy c ti Vit NamNhm nguy c trong qu 2 nm 2013 ti Vit NamNhmDanh mc quan trng nhtT l pht hin1Win32/RamnitCc Trojan hn hp9,6%2Win32/GamarueWorm9.1%3Win32/CplLnkM c9.1%4INF/AutorunCc Trojan hn hp7.3%5Win32/SalityVi rt5.6%6Win32/ConfickerWorm3.4%7Win32/VBWorm3.2%8Win32/ObfuscatorCc Trojan hn hp2.6%9Win32/DorkbotWorm2.5%10HTML/IframeRefCc Trojan hn hp2.0%Cc trang web c hi ti Vit NamPhp oQu 3 nm 2012Qu 4 nm 2012Qu 1 nm 2013Qu 2 nm 2013Cc trang web phishing trn tng s 1000 my ch(Ton th gii)11.42(5.41)7.76(5.10)7.07(4.56)7.53(4.24)Cc trang web cha phn mm c hi trn tng s 1000 my ch(Ton th gii)20.32(9.46)25.11(10.85)23.77(11.66)28.44(17.67)S lt ti v cc chng trnh hay ng dng khng r ngun gc trn 1000 URL(Ton th gii)1,29(0.56)0,520,33.0,36(0.50)1,89(1.12)Lun cp nht tt c cc phn mm trn h thng ca bnCc phn mm hng th ba cng nh ca MicrosoftS dng Microsoft Update, ch khng phi l Windows UpdateCp nht tt c cc phn mm ca MicrosoftChy cc phn mm dit vi rt t cc t l ng tinLun cp nhtCn thn khi nhp chut vo cc ng link n cc trang webCn thn vi cc tp tin nh km v c gi nTrnh ti v cc phn mm bt hp phpBo v bn khi cc cuc tn cng s dng k thut la oBo v mi trng lm vic ca bnNewer is Better28
Windows XP users are 6x more likely to be infected
[Newer Is Better]In the latest version of SIRv15, we included BRAND NEW telemetry to help illustrate the frequency in which people are encountering malware today: encounters.
An encounter is when Microsoft antimalware products detect malware or malicious activity on a computer malware encounters could include 1) infection attempts that are blocked, as well as 2) actual infections that are dealt with. Encounters do not equate to infections; some computers do get infected and cleaned, but more often, malware encounters represent blocks. [Leverage ringing a doorbell analogy encounters are the rings. Infections are when someone actually comes in.]In the latest version of the report, we broke out encounter rate by operating system.
DATA: In the second quarter of 2013, roughly 17% of computers running Microsoft real-time security products worldwide came into contact with or encountered malware. Whats interesting to note is that Windows XP encounters (NOTE: not infections) a similar amount of malware as the other operating systems. So heres where things get interesting. When you compare the malware encounter rates of operating systems to the actual computers that were infected and then cleaned by our Malicious Software Removal Tool, you get a good sense of the effectiveness of security technologies and mitigations.
DATA: While Windows 8 may encounter a similar amount of threats as Windows XP, people who use Windows XP are 6x more likely to be infected. Newer operating systems are not vulnerable to many of the exploits that are widely used against older versions and include a number of security features and mitigations that older versions were simply not designed for at the time. 2829Newer is Better
Newer software is:
Harder, complex, expensive to exploit
Offers better protection against threats
Provides extensive security improvementsComparison of the mitigation features supported by Internet Explorer 8 on Windows XP Service Pack 3 with the features supported by Internet Explorer 10 on Windows 8.This data helps to illustrate the impact that security innovations in newer operating systems are having in helping to protect our customers. More modern operating systems, like Windows 8, include advanced security technologies that are specifically designed to make it harder, more complex, more expensive, and, therefore less appealing to cybercriminals to exploit vulnerabilities and therefore will help to better protect against the modern day criminals. Soundbite: Newer software offers advanced security technologies that are better designed to fight the modern day criminals.For example: Internet Explorer 10 on Windows 8 benefits from an extensive number of platform security improvements that are necessary in todays threat environment which are simply not available to Internet Explorer 8 on Windows XP. If you think about it.Windows XP was built back in the 2003-2004 timeframe. With every new OS we have been layering on more and more protections. Protections that are designed to get ahead of the cybercriminals.
29Risk After Support30
End of XP Support: April 8, 2014No more security updates = Potential zero day vulnerabilitiesIn the last year, 30 security bulletins affected Windows 7 & Windows 8 BUT also Windows XP[After Support Risk]These threats bring me to another key point.On April 8 2014, support will end for Windows XP. From a security perceptive, this means that the tables will be turned and attackers will have an advantage over defenders. Let me give you an example: Security Updates.
After support ends, when Microsoft releases its monthly security updates for supported versions of Windows, attackers can reverse engineer them to identify any that exist in Windows XP. If one does, attackers will try and develop exploit code to take advantage of it. Since a security update will never again become available for Windows XP to address new vulnerabilities, Windows XP will essentially have a zero day vulnerability that cannot be fixed.Let me illustrate this point using real data. DATA: In the last year, there were 30 security bulletins that affected Windows 7 and Windows 8 BUT also affected Windows XP. This means that there would have been 30 zero day vulnerabilities on Windows XP if it were out of support during that one year time period. 30Risk After Support 31Running antivirus on an out of support system is not an adequate solution to protect against threatsRunning antivirus on out of support systems is not an adequate solution to help protect against threats. As past Microsoft Security Intelligence Reports have shown, running a well-protected solution means 1) running up to date antivirus, 2) regularly applying security updates for all software installed, and 3) using a more modern software that has increased security technologies and mitigations. Once security updates stop coming into the operating system, antivirus software that relies on the security of the OS will become less and less effective over time as well. This is because the system is still vulnerable, even with antivirus software. Let me give you an analogy. A submarine is surrounded by risk, but receives proper maintenance to withstand the risk, and over time the technology behind it gets better and better. If it stops receiving maintenance though, it will sink. Its the same with Windows XP. If youre using Windows XP youre relying on what is, today, outdated security to protect your personal and financial information. Background Context (Reactive Only)Both AV software AND applications that are still in support on XP (Specifically Google Chrome Browser which recently announced support until 2015) will only be able to stop known exploits. This is a game of whack a mole. Once an exploit changes, its cant be detected by existing signatures until that exploit has been identified, so its a constant cycle of trying to identify an exploit before it wreaks havoc. The best defense is a good offense.31Running Windows XP...32increases your risk of infection when it goes out of supportUnsupported Windows XP SP2 malware infection rate was 66% higher than the supported version of Windows XP SP3
Infection rate (CCM) trends for Windows XP SP2 and Windows XP SP3, 1Q10-4Q12Heres another new bit of data to illustrate how the risk associated with running Windows XP increases when it goes out support:
DATA: During the first two years after Windows XP SP2 went out of support, its malware infection rate was 66% higher than the supported version of Windows XP SP3
The importance of updating from Windows XP cannot be overstated. We truly want customers to understand the risks of running Windows XP after support ends and recognize the importance of upgrading to a more modern operating system that 1) includes the latest in security innovations, 2) provides ongoing support, and 3) can in turn help to better protect them.
32Protect Yourself33
Windows XP makes up approximately 21% of the WW OS marketplace todayProtect Yourself. Upgrade to more modern software that can provide increased and ongoing protections
Windows XP users are more susceptible to cybercriminal activity [Conclusion / Call to Action]While we are proud of the operating systems accomplishments over the years, inevitably there is a tipping point where dated technologies can no longer be relied upon as an effective means to protect against cybercrime. In 1991 there were about 1,000 unique pieces of malware or threats known to exist. Today that number is in the millions. Yet according to web analytics firm StatCounter (http://gs.statcounter.com/#os-ww-monthly-201210-201309-bar), Windows XP, an operating system 12 years old, still makes up approximately 21% of WW operating systems in the marketplace today. Many of those 23% of users may feel that Windows XP allows them to do what they want to do with a computer. But the issue is not about Windows XP functionality for those people, its about their increased susceptibility to cybercriminal activity.The call to action here is a straightforward one: Take advantage of advanced security innovations. Upgrade to more modern software that can provide increased and ongoing protections.Soundbite: While both security technologies and cybercriminals are constantly evolving, the benefit of security innovations and ongoing support helps technology users stay ahead in the game.For Background Only - Region Specific Stats for XP marketplace use: Austria: 14%; Bulgaria: 41%; Czech Republic: 27.05%; Denmark: 8.16%; Finland: 12%; Germany: 17%; Greece: 27.27%; Hungary: 40.14%; Netherlands: 13.34%; Poland: 33%; Romania: 40%; Slovakia: 26%; Slovenia: 25.41%; South Africa: 18.39%; Turkey: 31%; UK: 13%; Ukraine: 34.23%
33
34Embedding Security into SoftwareSee http://blogs.technet.com/srd for details
Executive commitment SDL a mandatory policy at Microsoft since 2004ProcessEducationAccountability
Ongoing Process Improvements34Bo v mi trng lm vic ca bnLun cp nht tt c cc phn mm trn h thng ca bnCc phn mm hng th ba cng nh ca MicrosoftS dng Microsoft Update, ch khng phi l Windows UpdateCp nht tt c cc phn mm ca MicrosoftChy cc phn mm dit vi rt t cc t l ng tinLun cp nhtCn thn khi nhp chut vo cc ng link n cc trang webCn thn vi cc tp tin nh km v c gi nTrnh ti v cc phn mm bt hp phpBo v bn khi cc cuc tn cng s dng k thut la o
Cc t chcBo v mng lin kt ca t chc khi cc nguy c v bo mt.
Phn mmBo v cc ng dng v gim thiu cc nguy c phn mm c hi.
Mi ngiBo v ngi lao ng khi cc mi nguy c v bo mt v quyn ring t.Security Intelligence Report (SIR) gip khch hng bo v:Twitter@msftsecurityChng trnh in ton tin cy ca Microsoftwww.microsoft.com/twcBo co an ninh mng ca Microsoftwww.microsoft.com/sirBlog an ninh mng ca Microsoftblogs.technet.com/b/securityTi nguyn 2012 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.
11/21/201337 2010 Microsoft Corporation. Bo lu mi quyn. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Bi cc iu kin th trng lun bin i nn khng nn hiu y l cam kt t pha Microsoft, v Microsoft khng m bo tnh chnh xc ca cc thng tin c cung cp sau ngy lp bi thuyt trnh ny. MICROSOFT KHNG A RA BT K S BO M NO MANG TNH R RNG, NGM NH HAY HP PHP, V CC THNG TIN TRONG BI THUYT TRNH NY.