Each year, the ICSA Labs (an independent division of TruSecure) surveys around 300 large organisations to understand the malicious code situation and perceptions about it. Unsurprisingly, this year's results show the problem is getting worse, despite increased spending.
Dr. Peter Tippett, chief technologist at TruSecure Corporation commented, "These organizations are too often surprised by new malcode vectors and methods and then spend even more money and resources recovering from virus and worm disasters" and he advocates intelligent risk management. More information at TruSecure's site.
Updated: 09th January 2008
Trusecure no longer has the original press release available, but the information, and the report itself, is available on other sites, linked below.