Microsoft’s report tried not to dismiss zero-day attacks but pointed out that a majority of attacks were use social engineering techniques or exploits of known vulnerabilities –
Less than one percent of exploits discovered in the first half of 2011 took advantage of zero-day vulnerabilities, according to a report from Microsoft’s Trustworthy Computing group.
Social engineering, brute force attacks and auto-run threats continue to make up the bulk of attacks enterprise…