The Tech Herald

Barracuda: Good sites gone bad – malware in Alexa top 25,000

by Steve Ragan - Apr 3 2012, 20:40

Barracuda: Good sites gone bad – malware in Alexa top 25,000. (IMG: Barracuda)

Barracuda Labs has examined the Web’s top 25,000 domains according to Alexa and discovered that quite a few of them are malicious. Moreover, based on their analysis, at least one of the top sites will serve malicious content each day.

Armed with an automated system that forces a browser inside a VM to visit a given domain and log what happens to the browser itself, its plugins, and underlying OS, Barracuda tracked the top 25,000 domains on the Web today.

“A few months ago we began using [this] system to examine the Alexa 25,000 most popular domains. As these sites are popular and long-lived, many people assume that it is safe to visit them. However, automated examination of the Alexa top 25,000 each day for the month of February 2012-which found 58 sites serving drive-by download exploits-shows that this assumption does not always hold,” wrote Paul Royal, a Research Consultant with Barracuda Labs.

To be fair, none of the malicious domains reported in their finding are the mainstream. So there is no Google, no Wikipedia, no Reddit, no Facebook, and so on. The sites that showed the most malicious activity include free-tv-video-online.me, bigresource.com, myplaycity.com, gaytube.com, filmaffinity.com, and webconfs.com, which account for the top five malicious domains.

Other points of note from Barracuda’s research include:

Alexa top-ranked domains served malicious content 23 (or 79%) of the days in February. That means this problem is not isolated and occurs on a continuous, regular basis.

Alexa top-ranked domains that served malicious content spanned across 18 different countries. That means this problem has no geographic barrier.

Over 97% of sites that served visitors malicious content were at least one year old; over half were on sites more than five years old. That means attackers use well-established, long-lived websites for their drive-by download campaigns.

More information, including info graphic and the availability of PCAP data, is here.

Around the Web

Comment on this Story

comments powered by Disqus
Security
Index
News
 
Features
Reviews

From Autosaur.com

Fastest Car in The World: The ultimate guide

EVERYONE wants to know what the fastest car in the world is and here is a list of the cream of the crop. It gives you a thorough guide as to the main contenders, talks you through the rest of the world’s fastest automobiles, and reveals the two main future potential holders of the most [...]

The post Fastest Car in The World: The ultimate guide appeared first on Autosaur.

World’s first flat-pack truck the OX could help Africa

A flat-pack truck which can be put together by anyone in just half a day has been invented to help people living in remote places in Africa and other parts of the developing world. The OX is shipped in pieces but can be assembled with just three people in 11.5hours — and they need no [...]

The post World’s first flat-pack truck the OX could help Africa appeared first on Autosaur.

Nissan 370Z Nismo to rock the Gumball 3000 rally

The Nissan 370Z Nismo will be one of the cars in the 2013 Gumball 3000 rally where  â€” as the guys from TV show Jackass put it — “filthy stinking rich” people drive super-expensive cars 3,000 miles through 13 countries across Europe. The car, above, will be driven by a team from publishing and production [...]

The post Nissan 370Z Nismo to rock the Gumball 3000 rally appeared first on Autosaur.