Malicious websites grew 233% in the last six months and 671% in the last year, stares Websense Security Labs. This was partly because of the spread Gumblar, Beladen and Nine Ball attacks which aimed to compromise trusted and known Web sites.
Web 2.0 sites are the worst effected target as 95% of blog comments, chat rooms and message boards are malicious.
“The last six months have shown that malicious hackers and fraudsters go where the people are on the Web” said Websense Chief Technology Officer Dan Hubbard “and have heightened their attacks on popular Web 2.0 sites.”
The top 100 most visited Web properties, which are “Social Networking” or “Search” sites states Websense.
77% of sites with malicious code are legitimate sites have been compromised by fraudsters exploiting the inherent trust in a business.
61 percent of the top 100 sites either hosted malicious content or contained a masked redirect to lure unsuspecting victims to malicious sites.
The term ”malicious” typically refers to links that have specific, hidden exploits that target a user’s computer.
The next million most visited sites are primarily current event and news sites and are more regionaland genre-focused.
37 percent of malicious Web attacks included data-stealing code, 57 percent of data-stealing attacks are conducted over the web in the first half of 2009.
85.6% of all unwanted emails contained links to spam and/or malicious Web sites and 57% of data-stealing attacks are conducted over the Web. In June virus infected emails rose 600% over May.
An analysis of Web, email and data security trends during the first half of 2009 are explored in the Websense Security Labs bi-annual “State of Internet Security” report.
Daily Websense® Security Labs™ Websense ThreatSeeker™ Network parses more than one billion pieces
of content and over 40 million websites hourly for malicious code and ten million emails. The Websense ThreatSeeker Network uses more than 50 million real-time data collecting systems.
YouTube and BlogSpot are 65 percent to 75 percent ineffective in protecting Web users from objectionable content and security risks. Hate or militant content on Facebook and other popular Web 2.0 sites like YouTube, Yahoo! Groups and Google Groups.
Cyber terrorism (militancy and extremists Web sites) increased 326 percent increase in increased 326% from January through May 2009 over the same period in 2008.
Websense tracks about15,000 hate and militancy sites, with 1,000 added in he first six months of this year.
78 percent of new Web pages discovered in the first half of 2009 with objectionable content (e.g. Sex, Adult Content, Gambling, Drugs) and 69 percent of all Web pages with any objectionable content link served malicious content.
Sex, advertisements, business and economy, IT, and travel made up the most commonly
compromised categories of Web content. 50 percent of Web pages with a link categorized as “Sex” also have at least one malicious link.
The three most popular topics for spam remained shopping (28 percent), cosmetics (18.4 percent) and
medical (11.9 percent.) However, over the last six months, education accounted 9.5 percent of spam.
and could be attributed to the recession.
“Spammers have been targeting the unemployed who are looking to re-train or gain qualifications to help their job prospects” states Websense.