"The NSS Labs report shows that IE8 is effective on its own 69 percent of the time when dealing with socially-engineered Malware. Firefox v3.07 earned a 30 percent effectiveness rate, while Safari (v.3) earned 24 percent, Google’s Chrome (v. 1.0.154) earned 16 percent, Opera (v. 9.64) earned 5 percent, and IE7 earned 4 percent.

However, the results are far from conclusive. There were only 492 sites tested in the first place, a rather small testing sample. In addition, the test relied on standard protections offered by the browser, depending on the browser used; no two will have the exact same set of default protections.

In addition, the report itself is suspect as it is funded by Microsoft. Funding aside, the timing of the report and the breakdown of testing is something that one needs to take a long hard look at.Perhaps it is unwise to use a test you paid for as proof of why your browser is better than those of your rivals. In an interview last week, Microsoft said it hopes we (the users) will look past the sponsorship issues. Yet, how can we? It is impossible not to question them, considering the testing methods and the hands-down victory that IE8 obtained as a result.

The test in itself would have been better if there had been more time spent testing malicious URLs, and the layered abilities of the browsers were taken into account with the results documented. Something else that would have added value is the ability to re-create the test outside of the environment used by NSS.

The published results, paid for and used by Microsoft, can be read here."

http://www.thetechherald.com/article.php/200912/3268/Can-you-trust-the-NSS-Labs-report-touting-the-benefits-of-IE8