Skip to main content


IBM X-Force Threat Reports

The IBM X-Force Trend and Risk Report
The IBM X-Force Trend and Risk Report is produced twice per year: once at mid-year and once at year-end. This report provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. They are intended to help customers, fellow researchers, and the public at large understand the changing nature of the threat landscape and what might be done to mitigate it. Questions or comments regarding this report should be addressed to xforce@iss.net.

The IBM X-Force Threat Insight Report
The IBM X-Force Threat Insight Report is designed to highlight some of the most significant threats and challenges facing security professionals today. This report is produced by the IBM Internet Security Systems (ISS) Managed Security Services (MSS) team, and is compiled by the IBM X-Force. Each issue focuses on a specific challenge and provides a recap of the most significant recent online threats. Questions or comments regarding this report should be addressed to xftas@us.ibm.com.

About IBM X-Force
The IBM X-Force research and development teams study and monitor the latest threat trends including vulnerabilities, exploits and active attacks, viruses and other malware, spam, phishing, and malicious web content. In addition to advising customers and the general public on how to respond to emerging and critical threats, the X-Force also delivers security content to protect IBM ISS customers from these threats.

Latest Trend and Risk Report

In addition to standard vulnerability, malware, spam, phishing, and web threat statistics, the IBM X-Force 2009 Mid-year Trend and Risk Report features the following special topics:

Latest Threat Insight Report

This edition of the X-Force Threat Insight Report provides an exhaustive list of security alerts, breaches and the most commonly seen threats in Q3 2009. It also delivers two new and insightful articles by IBM ISS researchers. The first article addresses why "port security" is an important tool to securing an organization's network and outlines some common commands for configuring port security. Strong port security can enforce security policies - helping to mitigate unauthorized users from accessing the network. The second article takes the reader on a journey of investigating a malware sample, focusing on the behavioral aspects of malware analysis. If given the task, can you answer the question: "What does this file do?"

Report archive

IBM Internet Security Systems

Learn more about the security solutions powered by IBM X-Force.