A new major study conducted by Hewlett Packard Enterprise has some really good information. Get your copy here:
My favorite finding from ReversingLabs is that the most exploited bug in 2015 was the same as in 2014 — it was discovered in 2011 and patched in 2012 and again in 2015. CVE-2010-2568 is an old Windows shell bug with .pif files. Patch this now!
Not sure exactly what it says about ReversingLabs’ clients that they have all this data and yet can’t deploy this patch.