Feeds

McAfee maps malware risk domains

Neighbourhood watch

Top 5 reasons to deploy VMware with Tegile

A global road map of the riskiest and safest places to surf online found Russian and Romanian sites among the top-level domains most commonly hosting malicious downloads, browser exploits, and scams.

A survey of 265 top-level domains by McAfee, dubbed Mapping the Mal Web, revealed large differences in safety from one domain to another. The worst haven for malware belonged to the the tiny Pacific island of Tokelau (.tk), where 10.1 per cent of websites contained dodgy content. The most risky large country domains were Romania (.ro, 5.6 per cent risky sites) and Russia (.ru, 4.5 per cent risky sites). These East European country domains were the most likely to host exploit or "drive-by-download" sites run by hackers.

By contrast, three of the safest top level domains were associated with Nordic countries, namely Finland (.fi, 0.10 per cent), Norway (.no, 0.16 per cent) and Sweden (.se, 0.21 per cent). Iceland (.is, 0.19 per cent) and Ireland (.ie, 0.11 per cent) rounded out McAfee's list of safe surfing habitats.

Even though the Netherlands (.nl), Germany (.de) and the United Kingdom (.uk) are all relatively safe country domains, each of their country domains account for more than 2 million clicks to high or medium-risk sites every month.

The data from McAfee's survey comes from SiteAdvisor, a free "safe searching" tool that catalogues and warns users about unsafe sites. The technology automatically tests websites for a broad range of potential security problems such as exploits, downloads containing spyware, adware, and or other unwanted programs and pop-ups. This data is used to warn surfers if they stray onto a potentially dangerous website.

The survey - which aims to provide a guide book of the net's most dangerous top level domains - also looked at generic top level domains. It found that .info is the riskiest generic domain, with 7.5 per cent of its sites rated as risky followed by .com, with a 5.5 per cent population of dodgy sites.

Some web activities, like registering at a site or downloading a file, are significantly more risky when done at certain domains. For example, giving an email address to a random .info domain results in a 73.2 per cent chance of receiving spam, McAfee reports.

By contrast, .gov was the tested domain for which SiteAdvisor has found no risky sites, though since the domains is only available to US government agencies that's just as it ought to be.

Data from the study suggests that low or no cost domain registration, coupled with minimal domain oversight, lead to the higher levels of risk found at some top-level domains. For example, one reason the .biz domain may be preferred by spammers is because .biz domains are available for immediate use, rather than after a typical 24 hour waiting period - a distinct advantage in attempts to outwit anti-spam services and blacklists.

The complete study, along with an interactive map, can be found here. ®

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
UK smart meters arrive in 2020. Hackers have ALREADY found a flaw
Energy summit bods warned of free energy bonanza
DRUPAL-OPCALYPSE! Devs say best assume your CMS is owned
SQLi hole was hit hard, fast, and before most admins knew it needed patching
Knock Knock tool makes a joke of Mac AV
Yes, we know Macs 'don't get viruses', but when they do this code'll spot 'em
Feds seek potential 'second Snowden' gov doc leaker – report
Hang on, Ed wasn't here when we compiled THIS document
Mozilla releases geolocating WiFi sniffer for Android
As if the civilians who never change access point passwords will ever opt out of this one
Why weasel words might not work for Whisper
CEO suspends editor but privacy questions remain
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Top 5 reasons to deploy VMware with Tegile
Data demand and the rise of virtualization is challenging IT teams to deliver storage performance, scalability and capacity that can keep up, while maximizing efficiency.
Mitigating web security risk with SSL certificates
Web-based systems are essential tools for running business processes and delivering services to customers.