I. Introduction

Websense® Security Labs™ uses the Websense ThreatSeeker® Network to discover, classify, and monitor global Internet threats and trends. Featuring the world's first Internet HoneyGrid™, the system uses hundreds of technologies including honeyclients, honeypots, reputation systems, machine learning, and advanced grid computing systems to parse through more than 1 billion pieces of content daily, searching for security threats.

Every hour the ThreatSeeker Network scans more than 40 million websites for malicious code and nearly 10 million emails for unwanted content and malicious code. Using more than 50 million real-time data collecting systems, it monitors and classifies Web, email, and data content. Together with the Websense Advanced Classification Engine (ACE) - an advanced composite content classification engine embedded in Websense solutions — the ThreatSeeker Network provides Websense with unparalleled visibility into the state of content on the Internet and in email.

This report summarizes the significant findings of Websense researchers using the ThreatSeeker Network during 2010.