RSS Alerts

Share

More services

Related Links

Related Stories

  • ICANN cans Estonian registrar's credentials
    For a while it looked like the not-for-profit Internet registrar of registrars might waver in its plans to revoke the credentials of EstDomains, a domain name registrar with a reported reputation for dealing with spam generators and similar internet companies.
  • Worldwide risk on the web is rising, says McAfee
    The overall risk on the web is rising, with 6.2% of the 27 million websites surveyed by McAfee posing a security risk in 2010, up from 5.8% of the websites surveyed last year, according to the security firm’s Mapping the Mal Web report.
  • Securing the 2012 Olympics
    Physical and IT security plans are well underway for the London Games in 2012, but could reputational damage be the real risk? Stephen Pritchard talks to David Blunkett to determine what the real cyberrisks are, and how to control them
  • VeriSign repeatedly hacked in 2010
    Reuters reports that VeriSign was repeatedly hacked during 2010. The information was discovered among 2000 different quarterly SEC filings being reviewed by Reuters.
  • White House opposes DNS blocking provision of anti-piracy legislation
    The White House is weighing in on the controversy surrounding anti-piracy legislation being considered by Congress, coming out strongly against a provision that would use the Domain Name System (DNS) to block access to infringing foreign websites.

Top 5 Stories

News

Cameroon is worst neighborhood on web for cybersecurity

04 December 2009

The Cameroon '.CM' domain tops the list of the riskiest top-level domains in terms of cybersecurity, according to a report from McAfee.

The malware protection company's Mapping the Mal Web report identifies the African country as the owner of the TLD most likely to represent a cybersecurity risk to the average web user, it said.

The TLD is very easy to mistype when users meant to surf to a .COM domain instead, and in many cases they may not even realize their typographical error if a scammer uses a website registered with a .CM domain to mimic the original destination and deliver malware.

That said, the generic .COM (commercial) TLD is also one of the destinations most likely to represent a risk from a cybersecurity perspective, ranking second in McAfee's weighted table, with a weighted risk ratio of 32.2%.

Overall, six TLDs stood out as the most cybersecurity risk-laden. After .COM, China's .CN, Somoa's .WS, the generic .INFO, and finally the Philippines' .APAC stood out as the riskiest, with the Philippines achieving a 13.1% weighted risk ratio. After that, risks fell off significantly, with the .NET domain scoring only a 5.8% weighted risk ratio.

McAfee acknowledged that it is difficult to compare this year's rankings with cybersecurity risk assessments from previous years, because its methodology has changed. In previous years, it arrived at a ratio by comparing the number of risky sites identified within the TLD to the overall number of sites registered using that TLD.

This year, half of the rating was arrived at that way, while the other half compared a TLD's risky sites with the overall number of risky sites found online. McAfee argued that the latest methodology offers the best real-world cybersecurity risk assessment for users.

Overall, scammers like TLDs with certain characteristics, the report said. Registrars that allow them to register websites in volume of very attractive to criminals, and of course, cheap registration fees are helpful for crooks registering hundreds of thousands of sites at a time. Registrars that don't respond very quickly to take down requests and don't regulate their customers very much also attract criminals.

This article is featured in:
Internet and Network Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012