Analysis of the Global Public Vulnerability Research Market, 2015

Analysis of the Global Public Vulnerability Research Market, 2015

Growth of Public Vulnerability Disclosures, the Important Intermediary Between Commercial Threat Analysis and Cyber Grid Threat Reporting

RELEASE DATE
24-Oct-2016
REGION
Global
Research Code: K116-01-00-00-00
SKU: IT03154-GL-MR_19126
AvailableYesPDF Download

$4,950.00

Special Price $3,712.50 save 25 %

In stock
SKU
IT03154-GL-MR_19126

$4,950.00

$3,712.50save 25 %

DownloadLink
ENQUIRE NOW

Description

The Frost & Sullivan report analyzes the global public vulnerability research market. The growth of cyber threats such as malware, viruses, ransomware, botnets and more are of great concern to companies and consumers. Uncovering and disclosing vulnerabilities is important for analyzing and countering potential threats.
The vulnerability material that is collected, queried, and segmented provides rich qualitative commentary on the vulnerability research industry and community of contributors, and recognizes the most prolific disclosers of new vulnerabilities.
Research Scope
•     Total number of public vulnerabilities
•     Market trends of severity levels
•     Market trends of applications and classes of applications
•     Market trends of different vulnerability flaws
In 2015, public vulnerability disclosures increased 43.8% over the previous year. Researchers are covering a wider breadth of applications, such as media players, operating systems, office products, web browsers and many more.
There have also been notable changes among the key players. Trend Micro acquired HP TippingPoint and Google Project Zero launched in mid-2014.
The different types of threats which can exploit vulnerabilities are discussed in this report. Frost & Sullivan also conducted competitive analysis of the research institutions involved in disclosing vulnerabilities.
Key questions this study answers:
•     Which institutions have disclosed the most vulnerabilities and what types?
•     Which applications have had the most public vulnerabilities?
•     Have severity levels changed?
•     What are the most likely impacts threats will have on exploitable vulnerabilities?

Table of Contents

Key Findings

Bug Bounty Programs and Contests

Pwn2Own

Pwn2Own Competition

Mobile Pwn2Own Competition

The Role of MITRE and CVSS Scoring

Research Methodology

Malware

Mobile Malware

Ransomware

Bots and Botnets

Advanced Persistent Threats (APT)

Web and Phishing Attacks

Vulnerabilities Reported by Year

Quarterly Reported Vulnerabilities

Market Trends

Vulnerability Disclosure

Vulnerability Disclosure by Institution Type

Analysis of Vulnerabilities by Severity

Targeted Applications

Analysis of Targeted Applications

Top Targeted Class of Applications

Disclosing Institutions: Media Player Vulnerabilities

Disclosing Institutions: Web Browser Vulnerabilities

Disclosing Institutions: Operating System Vulnerabilities

Disclosing Institutions: IT Support Tools Vulnerabilities

Analysis of Targeted Applications by Class

Targeted Web Browser Type

Analysis of Targeted Web Browser Type

Definitions

Vulnerabilities Reported by Flaw Type (2014 and 2015)

Disclosing Institutions: Buffer Errors

Disclosing Institutions: Use After Free Errors

Disclosing Institutions: Permissions, Privileges, and Access Control Errors

Top Impact Type (2014 and 2015)

Disclosing Institution: Disruption-of-Service/Unauthorized Modification/Disclosure of Information Impacts

Analysis of Impact Types

Competitive Analysis Vulnerabilities

Core Security

FortiGuard Labs (Fortinet)

Google Project Zero (Google)

High-Tech Bridge

IBM X-Force (IBM)

Secunia (now Flexera)

Secunia Research About Often-Targeted Applications (Adobe, Flash, and Microsoft)

TippingPoint Zero Day Initiative (Trend Micro)

US-CERT

Verisign (Verisign Labs)

Vulnerability Database Sources (for 2015)

List of Publications Cited in this Report

Legal Disclaimer

List of Figures
  • 1. Public Vulnerability Research Market: Yearly Reported Vulnerabilities, Global, 2010–2015
  • 2. Public Vulnerability Research Market: Quarterly Reported Vulnerabilities, Global, 2011–2015
  • 3. Public Vulnerability Research Market: Percentage of Reported Vulnerabilities by Disclosure Type Global, 2015
  • 4. Public Vulnerability Research Market: Percentage of Vulnerabilities by Institution Type, Global 2015
  • 5. Public Vulnerability Research Market: Reported Vulnerabilities by Organization Type Global, 2015
  • 6. Public Vulnerability Research Market: Percentage of Reported Vulnerabilities by Severity, Global 2015
  • 7. Public Vulnerability Research Market: Critical-severity Vulnerabilities by Disclosing Institution Global, 2015
  • 8. Public Vulnerability Research Market: Reported Vulnerabilities by Severity, Global, 2015
  • 9. Public Vulnerability Research Market: Critical & High-severity Vulnerabilities by Reporting Source, Global, 2015
  • 10. Public Vulnerability Research Market: Reported Vulnerabilities by Severity, Global, 2014 and 2015
  • 11. Public Vulnerability Research Market: Reported Vulnerabilities by Quarter and Severity, Global, 2015
  • 12. Public Vulnerability Research Market: Applications with the Highest Number of Unique Confirmed Vulnerabilities, Global, 2015
  • 13. Public Vulnerability Research Market: Class of Applications with the Highest Number of Unique Confirmed Vulnerabilities, Global, 2015
  • 14. Public Vulnerability Research Market: Media Player Vulnerabilities by Disclosing Institutions, Global, 2015
  • 15. Public Vulnerability Research Market: Web Browser Vulnerabilities by Disclosing Institutions, Global, 2015
  • 16. Public Vulnerability Research Market: Operating System Vulnerabilities by Disclosing Institutions, Global, 2015
  • 17. Public Vulnerability Research Market: IT Support Tools Vulnerabilities by Disclosing Institutions, Global, 2015
  • 18. Public Vulnerability Research Market: Percent of Reported Vulnerabilities by Web Browser Type, Global, 2015
  • 19. Public Vulnerability Research Market: Reported Web Browser Vulnerabilities, Global, 2015
  • 20. Public Vulnerability Research Market: Reported Vulnerabilities by Top Flaw Type, Global, 2014
  • 21. Public Vulnerability Research Market: Reported Vulnerabilities by Top Flaw Type, Global, 2015
  • 22. Public Vulnerability Research Market: Reported Buffer Errors by Disclosing Institutions Global, 2015
  • 23. Public Vulnerability Research Market: Use After Free Errors by Disclosing Institutions Global, 2015
  • 24. Public Vulnerability Research Market: Permissions, Privileges, and Access Control Errors by Disclosing Institution Global, 2015
  • 25. Public Vulnerability Research Market: Percentage of Vulnerability Reports by Associated Impacts, Global, 2014
  • 26. Public Vulnerability Research Market: Percentage of Vulnerability Reports by Associated Impacts, Global, 2015
  • 27. Public Vulnerability Research Market: Disruption-of-Service/Unauthorized Modification/Disclosure of information Impacts by Reporting Source, Global, 2015
  • 28. Public Vulnerability Research Market: Vulnerabilities by Disclosing Institutions, Global, 2014
  • 29. Public Vulnerability Research Market: Total Vulnerabilities by Disclosing Institutions, Global, 2014 and 2015
List of Charts
    Related Research
    The Frost & Sullivan report analyzes the global public vulnerability research market. The growth of cyber threats such as malware, viruses, ransomware, botnets and more are of great concern to companies and consumers. Uncovering and disclosing vulnerabilities is important for analyzing and countering potential threats. The vulnerability material that is collected, queried, and segmented provides rich qualitative commentary on the vulnerability research industry and community of contributors, and recognizes the most prolific disclosers of new vulnerabilities. Research Scope • Total number of public vulnerabilities • Market trends of severity levels • Market trends of applications and classes of applications • Market trends of different vulnerability flaws In 2015, public vulnerability disclosures increased 43.8% over the previous year. Researchers are covering a wider breadth of applications, such as media players, operating systems, office products, web browsers and many more. There have also been notable changes among the key players. Trend Micro acquired HP TippingPoint and Google Project Zero launched in mid-2014. The different types of threats which can exploit vulnerabilities are discussed in this report. Frost & Sullivan also conducted competitive analysis of the research institutions involved in disclosing vulnerabilities. Key questions this study answers: • Which institutions have disclosed the most vulnerabilities and what types? • Which applications have had the most public vulnerabilities? • Have severity levels changed? • What are the most likely impacts threats will have on exploitable vulnerabilities?
    More Information
    No Index No
    Podcast No
    Table of Contents | Executive Summary~ || Key Findings~ | Market Overview~ || Bug Bounty Programs and Contests~ || Pwn2Own~ || Pwn2Own Competition~ || Mobile Pwn2Own Competition~ || The Role of MITRE and CVSS Scoring~ || Research Methodology~ | Types of Threats~ || Malware~ || Mobile Malware~ || Ransomware~ || Bots and Botnets~ || Advanced Persistent Threats (APT)~ || Web and Phishing Attacks~ | Market Trends in Public Vulnerabilities~ || Vulnerabilities Reported by Year~ || Quarterly Reported Vulnerabilities~ || Market Trends~ || Vulnerability Disclosure~ || Vulnerability Disclosure by Institution Type~ | Analysis of Vulnerabilities by Severity~ || Analysis of Vulnerabilities by Severity~ | Comparison of Targeted Applications~ || Targeted Applications~ || Analysis of Targeted Applications~ || Top Targeted Class of Applications~ || Disclosing Institutions: Media Player Vulnerabilities~ || Disclosing Institutions: Web Browser Vulnerabilities~ || Disclosing Institutions: Operating System Vulnerabilities~ || Disclosing Institutions: IT Support Tools Vulnerabilities~ || Analysis of Targeted Applications by Class~ || Targeted Web Browser Type~ || Analysis of Targeted Web Browser Type~ | Vulnerability Analysis~ || Definitions~ || Vulnerabilities Reported by Flaw Type (2014 and 2015)~ || Disclosing Institutions: Buffer Errors~ || Disclosing Institutions: Use After Free Errors~ || Disclosing Institutions: Permissions, Privileges, and Access Control Errors~ || Top Impact Type (2014 and 2015)~ || Disclosing Institution: Disruption-of-Service/Unauthorized Modification/Disclosure of Information Impacts~ || Analysis of Impact Types~ | Competitive Analysis~ || Competitive Analysis Vulnerabilities~ | The Status Of Public Vulnerability Reporting~ || Then, Now, and in the Future~ | Profiles of Security Platform Providers Offering Public Vulnerability Disclosure~ || Core Security~ || FortiGuard Labs (Fortinet)~ || Google Project Zero (Google)~ || High-Tech Bridge~ || IBM X-Force (IBM)~ || Secunia (now Flexera)~ || Secunia Research About Often-Targeted Applications (Adobe, Flash, and Microsoft)~ || TippingPoint Zero Day Initiative (Trend Micro)~ || US-CERT~ || Verisign (Verisign Labs)~ | Conclusions~ | Appendix~ || Vulnerability Database Sources (for 2015)~ || List of Publications Cited in this Report~ || Legal Disclaimer~ | The Frost & Sullivan Story ~
    List of Charts and Figures 1. Public Vulnerability Research Market: Yearly Reported Vulnerabilities, Global, 2010–2015~ 2. Public Vulnerability Research Market: Quarterly Reported Vulnerabilities, Global, 2011–2015~ 3. Public Vulnerability Research Market: Percentage of Reported Vulnerabilities by Disclosure Type Global, 2015~ 4. Public Vulnerability Research Market: Percentage of Vulnerabilities by Institution Type, Global 2015~ 5. Public Vulnerability Research Market: Reported Vulnerabilities by Organization Type Global, 2015~ 6. Public Vulnerability Research Market: Percentage of Reported Vulnerabilities by Severity, Global 2015 ~ 7. Public Vulnerability Research Market: Critical-severity Vulnerabilities by Disclosing Institution Global, 2015~ 8. Public Vulnerability Research Market: Reported Vulnerabilities by Severity, Global, 2015~ 9. Public Vulnerability Research Market: Critical & High-severity Vulnerabilities by Reporting Source, Global, 2015~ 10. Public Vulnerability Research Market: Reported Vulnerabilities by Severity, Global, 2014 and 2015~ 11. Public Vulnerability Research Market: Reported Vulnerabilities by Quarter and Severity, Global, 2015~ 12. Public Vulnerability Research Market: Applications with the Highest Number of Unique Confirmed Vulnerabilities, Global, 2015~ 13. Public Vulnerability Research Market: Class of Applications with the Highest Number of Unique Confirmed Vulnerabilities, Global, 2015~ 14. Public Vulnerability Research Market: Media Player Vulnerabilities by Disclosing Institutions, Global, 2015~ 15. Public Vulnerability Research Market: Web Browser Vulnerabilities by Disclosing Institutions, Global, 2015~ 16. Public Vulnerability Research Market: Operating System Vulnerabilities by Disclosing Institutions, Global, 2015~ 17. Public Vulnerability Research Market: IT Support Tools Vulnerabilities by Disclosing Institutions, Global, 2015~ 18. Public Vulnerability Research Market: Percent of Reported Vulnerabilities by Web Browser Type, Global, 2015~ 19. Public Vulnerability Research Market: Reported Web Browser Vulnerabilities, Global, 2015~ 20. Public Vulnerability Research Market: Reported Vulnerabilities by Top Flaw Type, Global, 2014~ 21. Public Vulnerability Research Market: Reported Vulnerabilities by Top Flaw Type, Global, 2015~ 22. Public Vulnerability Research Market: Reported Buffer Errors by Disclosing Institutions Global, 2015~ 23. Public Vulnerability Research Market: Use After Free Errors by Disclosing Institutions Global, 2015~ 24. Public Vulnerability Research Market: Permissions, Privileges, and Access Control Errors by Disclosing Institution Global, 2015~ 25. Public Vulnerability Research Market: Percentage of Vulnerability Reports by Associated Impacts, Global, 2014~ 26. Public Vulnerability Research Market: Percentage of Vulnerability Reports by Associated Impacts, Global, 2015~ 27. Public Vulnerability Research Market: Disruption-of-Service/Unauthorized Modification/Disclosure of information Impacts by Reporting Source, Global, 2015~ 28. Public Vulnerability Research Market: Vulnerabilities by Disclosing Institutions, Global, 2014~ 29. Public Vulnerability Research Market: Total Vulnerabilities by Disclosing Institutions, Global, 2014 and 2015~|
    Author Tony Massimini
    Industries Information Technology
    WIP Number K116-01-00-00-00
    Is Prebook No