10 Percent Of Web Pages Infect Windows With Malware

From: Derek Currie <derekcurrie@xxxxxxxxxxxxxxx>
Date: Tue, 15 May 2007 19:33:03 -0400

From today's SANS NewsBites Vol. 9 Num. 39:

--Google Research Finds 10 Percent of Web Pages Hold Malware
(May 11, 2007)

According to research from Google, 10 percent of web pages contain malicious
code. Google closely analyzed 4.5 million web pages over the course of a
year and found that approximately ten percent, or 450,000, had the capability
of installing malware without users' knowledge. An additional 700,000 pages
are believed to be infected with code that could harm users' computers. The
company says it has "started an effort to identify all web pages in the
Internet that could be malicious." Most entice users to visit the dangerous
pages through tempting offers, and exploit holes in Microsoft Internet
Explorer (IE) to install themselves on users' computers. Google also
examined the vectors used by attackers to infect these web pages; most
malicious code was located in elements beyond the control of website owners,
such as banner advertisements and widgets.

<http://news.bbc.co.uk/2/hi/technology/6645895.stm>

<http://www.usenix.org/events/hotbots07/tech/full_papers/provos/pr
ovos.pdf>

Conclusions:

1) Surf the web with a Mac or Linux.

2) Of if you are stuck on Windows:

A) NEVER use Internet Explorer, including version 7
B) Keep up with the updates to the other browsers as well.
Firefox for Windows has security problems fairly regularly.

For related information see my earlier post "The Botnet Gang War
For Windows PC Turf".

:-Derek

--
Fortune Magazine 11-29-05: What's your computer setup today?
Frederick Brooks: I happily use a Macintosh. It's not been
equalled for ease of use, and I want my computer to be a tool,
not a challenge.
<http://money.cnn.com/magazines/fortune/fortune_archive/2005/12/12/8363107/>
[Frederick Brooks is the author of 'The Mythical Man Month'.
He spearheaded the movement to modernize computer software
engineering in 1975.]
.

Follow-Ups:
- Re: 10 Percent Of Web Pages Infect Windows With Malware
  - From: PC Guy
- Re: 10 Percent Of Web Pages Infect Windows With Malware
  - From: MuahMan

Prev by Date: Re: JD Power.... Sonata much better than BMW
Next by Date: Re: 10 Percent Of Web Pages Infect Windows With Malware
Previous by thread: MS TV Software Dumped By Only Cable Company Using It In USA
Next by thread: Re: 10 Percent Of Web Pages Infect Windows With Malware
Index(es):
- Date
- Thread

Relevant Pages

Re: Do I have TOO MANY antivirus, antispyware, etc
... >computer is retarted again and I ran the Windows Live Safety Center Scan, ... Once malware infects the system, it generally runs as soon as the ... Connecting to the Internet without a firewall ... that you know what "opening" a file can do in terms of risk. ...
(microsoft.public.windowsxp.security_admin)
Re: My words
... MVP - Windows Shell/User ... > MALWARE REMOVAL INSTRUCTIONS ... > There are some malwares that can destroy the internet connection ... > download all the security updates - Critical updates with Express install. ...
(microsoft.public.windowsxp.newusers)
Re: Windows 98 sicher machen?
... > Firewall deaktivieren. ... Ganz besonders eine "Sicherheitsentwicklung in Sachen Windows" ... sogar richtig damit im Internet unterwegs sein, ... Minuten Malware einzufangen. ...
(microsoft.public.de.security.heimanwender)
Re: Anyone Have This Problem?
... I am running Windows XP on a DELL inspiron notebook. ... Internet Security/Anti-virus updates). ... > which contains the bridge-x malware installer. ... > then it is best to get some qualified help to make another clean install ...
(comp.security.firewalls)
Re: New worm for XP in the wild
... of people does), it installs itself to your computer, and retransmits ... There are over 100 new pieces of malware for Windows ... Frederick Brooks: ...
(comp.sys.mac.advocacy)