disclosed vulnerabilities of Apple products is 3.2% of total disclosed in first half of 2008. M$ was number 1 last year. It falls to #3, behind Apple and Joomla!. report (pdf) is here http://www-935.ibm.com/services/us/iss/xforce/midyearreport/xforce-midyear-report-2008.pdf Vendors affected by highest numbers of PUBLIC disclosures are M$ (#1), HP (#2) and Apple (#3). Web application vulnerabilities are 51% of all vulnerabilities. Top 5 Most prevalent web browser exploits (2006-2008) includes 4 ActiveX and 1 QuickTime vulnerabilities. Phishing is 0.2-0.8 % of total SPAM in first half of 08, Six US banks are most common target, followed by UK Banks. Good Luck people.