Welcome!

News Feed Item

McAfee, Inc. Reveals the Riskiest Web Domains to Surf and Search

The world’s most heavily trafficked web domain, .COM, is now the riskiest, according to McAfee’s fourth annual Mapping the Mal Web report released today. Fifty-six percent of all risky sites end in .COM.

McAfee analyzed more than 27 million websites to uncover which domains are the most dangerous. While .COM is the riskiest top-level domain, the riskiest country domain is Vietnam (.VN). Japan’s .JP ranks as the safest country domain for the second year in a row. The report also found that 6.2 percent of the 27 million websites analyzed pose a security risk – up from 5.8 percent last year.

“This report underscores how quickly cybercriminals change tactics to lure in victims and avoid being caught,” said Paula Greve, director of web security research for McAfee Labs™. “Last year Vietnam’s .VN was a relatively safe domain, and this year it jumped to the third most dangerous domain. Cybercriminals target regions where registering sites is cheap and convenient and pose the least risk of being caught. A domain that’s safe one year can be dangerous the next.”

A top-level domain, also known as a “TLD,” is the letter code at the end of a website that indicates where the site is registered. Most people do not pay attention to the TLD suffix when they search, and many click on the first result that looks interesting. This leaves the surfer vulnerable to criminals who optimize sites for search engines and take advantages of typos such as .CM (Cameroon) instead of .COM.

Country Domain Comparisons

The report reveals drastic changes in country domain rankings with .VN (Vietnam) skyrocketing to third place, up from 39th in 2009. In fact, 58 percent of the country’s registered sites are ranked as risky. By contrast, .SG (Singapore) became safer this year, dropping to the 81st most risky domain from 10th in last year’s report. Singapore’s registration process now requires appropriate documentation when seeking to register any .SG site, which helped to improve its safety levels, according to the Singapore Network Information Center. Click here to see an interactive map of the most dangerous domains.

             

Top Five Riskiest Country Web Domains
(ranked in most risky order)

   

Overall Risk
2010

   

Overall Risk
2009

Vietnam (.VN)     29.4%     .9%
Cameroon (.CM)     22.2%     36.7%
Armenia (.AM)     12.1%     2.0%
Cocos (.CC)     10.5%     3.3%
Russia (.RU)     10.1%     4.6%
       
             

Top Five Safest Country Web Domains
(ranked in least risky order)

   

Overall Risk
2010

   

Overall Risk
2009

Japan (.JP)     .1%     .1%
Catalan (.CAT)     .1%     .1%
Guernsey (.GG)     .1%     .6%
Croatia (.HR)     .1%     .1%
Ireland (.IE)     .1%     .1%
 

Key Findings from the 2010 Mapping the Mal Web Report

  • Cybercriminals are opportunistic: Domain registrars set the guidelines for anyone who wants to register a site. As rules evolve each year, cybercriminals sniff out loopholes and create new ways to set up dangerous sites quickly.
  • A clean domain deters cybercriminals: Cybercriminals move away from domains that have tougher restrictions. This year, Singapore (.SG) showed significant improvement.
  • Safest domains: .TRAVEL and .EDU are the safest top-level domains with less than .05 percent of sites infected, which is one in 2,000 sites.

Tips for Consumers, Businesses and Domain Operators

“What online surfers may not know is that simply viewing a page can return much more than they bargained for,” said Greve. “Cybercriminals lay invisible traps all over the Internet that are intended to steal consumers’ passwords, bank information or even identities.”

Web surfers can stay protected from quickly evolving threats on the Web by using reputable, actively updated security software with advanced malware detection and prevention. Security suites like McAfee Total Protection™ keep users’ personal information and computers safe with several tools and technologies to protect against every facet of online risks.

Businesses can help users navigate Web risks by adding Web reputation functionality to their other defenses. Operators of risky TLDs can learn from the report as well. It is possible to turn around a risky reputation or maintain a good one. For more information or to download the full report, please visit http://us.mcafee.com/en-us/local/docs/Mapping_Mal_Web.pdf

About the Mapping the Mal Web Report

McAfee used the McAfee® Global Threat Intelligence database to analyze content, behavior and reputation to determine riskiness in the Mapping the Mal Web report. The database correlates multiple types of threat data from more than 150 million sensors located in more than 120 countries. These sensors—individual computers, gateway network devices, endpoint software, in-the-cloud hosted services—come from consumers, small- and mid-sized businesses, enterprise customers, educational institutions and governmental agencies.

About McAfee, Inc.

McAfee, Inc., headquartered in Santa Clara, California, is the world's largest dedicated security technology company. McAfee delivers proactive and proven solutions and services that help secure systems, networks, and mobile devices around the world, allowing users to safely connect to the Internet, browse and shop the Web more securely. Backed by unrivaled Global Threat Intelligence, McAfee creates innovative products that empower home users, businesses, the public sector and service providers by enabling them to prove compliance with regulations, protect data, prevent disruptions, identify vulnerabilities, and continuously monitor and improve their security. McAfee secures your digital world. http://www.mcafee.com

Note: McAfee, the McAfee logo, Global Threat Intelligence, McAfee Labs and McAfee Total Protection are registered trademarks or trademarks of McAfee, Inc., or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others. ©2010 McAfee, Inc. All rights reserved. The product plans, specifications and descriptions herein are provided for information only, subject to change without notice, and without warranty of any kind, express or implied.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
In this strange new world where more and more power is drawn from business technology, companies are effectively straddling two paths on the road to innovation and transformation into digital enterprises. The first path is the heritage trail – with “legacy” technology forming the background. Here, extant technologies are transformed by core IT teams to provide more API-driven approaches. Legacy systems can restrict companies that are transitioning into digital enterprises. To truly become a lead...
Companies are harnessing data in ways we once associated with science fiction. Analysts have access to a plethora of visualization and reporting tools, but considering the vast amount of data businesses collect and limitations of CPUs, end users are forced to design their structures and systems with limitations. Until now. As the cloud toolkit to analyze data has evolved, GPUs have stepped in to massively parallel SQL, visualization and machine learning.
DevOps at Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to w...
SYS-CON Events announced today that Daiya Industry will exhibit at the Japanese Pavilion at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Ruby Development Inc. builds new services in short period of time and provides a continuous support of those services based on Ruby on Rails. For more information, please visit https://github.com/RubyDevInc.
When it comes to cloud computing, the ability to turn massive amounts of compute cores on and off on demand sounds attractive to IT staff, who need to manage peaks and valleys in user activity. With cloud bursting, the majority of the data can stay on premises while tapping into compute from public cloud providers, reducing risk and minimizing need to move large files. In his session at 18th Cloud Expo, Scott Jeschonek, Director of Product Management at Avere Systems, discussed the IT and busine...
As businesses evolve, they need technology that is simple to help them succeed today and flexible enough to help them build for tomorrow. Chrome is fit for the workplace of the future — providing a secure, consistent user experience across a range of devices that can be used anywhere. In her session at 21st Cloud Expo, Vidya Nagarajan, a Senior Product Manager at Google, will take a look at various options as to how ChromeOS can be leveraged to interact with people on the devices, and formats th...
First generation hyperconverged solutions have taken the data center by storm, rapidly proliferating in pockets everywhere to provide further consolidation of floor space and workloads. These first generation solutions are not without challenges, however. In his session at 21st Cloud Expo, Wes Talbert, a Principal Architect and results-driven enterprise sales leader at NetApp, will discuss how the HCI solution of tomorrow will integrate with the public cloud to deliver a quality hybrid cloud e...
Is advanced scheduling in Kubernetes achievable? Yes, however, how do you properly accommodate every real-life scenario that a Kubernetes user might encounter? How do you leverage advanced scheduling techniques to shape and describe each scenario in easy-to-use rules and configurations? In his session at @DevOpsSummit at 21st Cloud Expo, Oleg Chunikhin, CTO at Kublr, will answer these questions and demonstrate techniques for implementing advanced scheduling. For example, using spot instances ...
SYS-CON Events announced today that Yuasa System will exhibit at the Japan External Trade Organization (JETRO) Pavilion at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Yuasa System is introducing a multi-purpose endurance testing system for flexible displays, OLED devices, flexible substrates, flat cables, and films in smartphones, wearables, automobiles, and healthcare.
SYS-CON Events announced today that Taica will exhibit at the Japan External Trade Organization (JETRO) Pavilion at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Taica manufacturers Alpha-GEL brand silicone components and materials, which maintain outstanding performance over a wide temperature range -40C to +200C. For more information, visit http://www.taica.co.jp/english/.
When it comes to cloud computing, the ability to turn massive amounts of compute cores on and off on demand sounds attractive to IT staff, who need to manage peaks and valleys in user activity. With cloud bursting, the majority of the data can stay on premises while tapping into compute from public cloud providers, reducing risk and minimizing need to move large files. In his session at 18th Cloud Expo, Scott Jeschonek, Director of Product Management at Avere Systems, discussed the IT and busine...
As hybrid cloud becomes the de-facto standard mode of operation for most enterprises, new challenges arise on how to efficiently and economically share data across environments. In his session at 21st Cloud Expo, Dr. Allon Cohen, VP of Product at Elastifile, will explore new techniques and best practices that help enterprise IT benefit from the advantages of hybrid cloud environments by enabling data availability for both legacy enterprise and cloud-native mission critical applications. By rev...
Organizations do not need a Big Data strategy; they need a business strategy that incorporates Big Data. Most organizations lack a road map for using Big Data to optimize key business processes, deliver a differentiated customer experience, or uncover new business opportunities. They do not understand what’s possible with respect to integrating Big Data into the business model.
Recently, REAN Cloud built a digital concierge for a North Carolina hospital that had observed that most patient call button questions were repetitive. In addition, the paper-based process used to measure patient health metrics was laborious, not in real-time and sometimes error-prone. In their session at 21st Cloud Expo, Sean Finnerty, Executive Director, Practice Lead, Health Care & Life Science at REAN Cloud, and Dr. S.P.T. Krishnan, Principal Architect at REAN Cloud, will discuss how they b...
Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities – ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups. As a result, many firms employ new business models that place enormous impor...