The Microsoft Security Intelligence Report (SIR) provides an in-depth perspective on the changing threat landscape including software vulnerability disclosures and exploits, malicious software (malware), and potentially unwanted software.
http://www.microsoft.com/security/portal/sir.aspx
Updating 3rd Party applications is something most customers forget about, we in Security Support often hear customers say “We always deploy all the Microsoft Updates every month, how were we breached? We thought we were secure.”
![500x220[1]](http://www.halbheer.info/security/Media/WindowsLiveWriter/WhyitpaystobesecureChapter2Vulnerabiliti_F1D9/500x220[1]_1.png "500x220[1]")
Microsoft products are still perceived to be not too secure, but the data below from the SIR might very well surprise you, the perception in this case is not the reality.
![original[1]](http://www.halbheer.info/security/Media/WindowsLiveWriter/WhyitpaystobesecureChapter2Vulnerabiliti_F1D9/original[1]_1.png "original[1]")
![original[1]](http://www.halbheer.info/security/Media/WindowsLiveWriter/WhyitpaystobesecureChapter2Vulnerabiliti_F1D9/original[1].png "original[1]")
So, if you are planning your patch management, make sure that you cover everything - the Microsoft vlunerabilities and the other 96% of your software as well.
Roger