Feeds

Phishing up, malware down, says Google

Big scary security numbers revealed, fresh from Chocolate Factory

Protecting against web application threats using SSL

Google has revealed a new analysis of five years’ worth of data gathered by its Safe Browsing service.

The analysis, as any discussion of online security seems obliged to, includes lots of Scary Big NumbersTM, such as the 9500 malware-infected sites the Chocolate Factory says it finds every day or the 12-14 million warnings it offers users to avoid sources of various threats.

There’s also some good news, as the study also shows that the prevalence of infected sites peaked in 2009.

Google malware data

That welcome data point is tempered, however, by a resurgence in dedicated attack sites, which Google believes are on the comeback after a 2011 dip in numbers. Such sites use all sorts of nefarious tricks to mask their true intent, which is to drop a steaming load of malware into any endpoint they can compromise. Google feels many now use social engineering as their preferred weapon, as technical exploits are becoming harder to perpetrate.

Google attack sites data

Phishing is also becoming more prevalent, as this graph of phishing site findings shows.

Google phishing data

Google modestly attributes some of the better results recorded above to its own efforts, and says the data above “has become the de facto base of comparison for academic research in this space.”

Yet with criminals clearly adapting to even the Chocolate Factory’s efforts, there’s a certain “war on drugs” feel of futility about the research, as plainly even the best efforts of one of the Web’s mightiest companies is not reducing the incentive to have a crack at criminal activity online. ®

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
Critical Adobe Reader and Acrobat patches FINALLY make it out
Eight vulns healed, including XSS and DoS paths
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.