I really don't like that document. It stinks with biased panic about security writing. This is a security firm that is making these statements, and it offers no where near the clarification of it's business practices to remove what I am seeing as self interest.
Now closer examination suggest this was a server analysis. It seems to be more about company security, about records access. So should I be able to ignore this as a desktop security analyis? Like was said before, what are the breakdowns of the analysis in more comparable terms? It's all too ambiguous for me to take too seriously.
However if it is server based then M$ loose big time, over 50% of attacks, and what an estimated 25 to 30% of the market (this is a figure that was quoted in this forum as coming from netcraft - anyone who can correct this please do)
And this seems to not involve attacks that were just plain Virii.