In Part One
of our Enterprise Security Risks feature, CIO Insight presented the results of a remarkably detailed report on enterprise security from IBM. The stats aren't encouraging: There were nearly 4,400 new vulnerabilities disclosed in first-half 2010, a 36 percent increase over the same time period in 2009. More than half of these incidents had no vendor-supplied patch. Nearly 95 percent of the vulnerabilities can be exploited remotely, with no local system access required. Numbers, however, do not tell the entire story. The research document, titled the IBM X-Force 2010 Mid-Year Trend and Risk Report
, goes into significant depth with respect to the "why" behind the numbers - the emerging trends and future developments that could result in an even greater degree of risks for enterprises. For CIOs, the research can serve as a blueprint for the current and future nature of system violations. The report is the result of ongoing, in-depth research by IBM's 3,500-member skilled security services team.