Imperva s Application Defense Center (ADC) released their Web Application Attack Report after analyzing six months of web traffic and more than 10 million attacks from December 2010 to May 2011. 75 percent of the attacks were done via directory traversal, cross-site scripting, SQL injection or remote file inclusion (RFI) Over 61 percent of attacks emanated from bots in the United States while the second highest origin point, China, made up 10 percent. Lulzsec attacks, including hacks on Sony, the CIA and the U.S. Senate, are not part of the report.
Source: https://threatpost.com/report-web-applications-attacked-every-two-minutes-072511/75471/