Study: 340,000 New Malicious Websites Detected In Past 30 Days
Creation of new malware, spam, and phishing sites growing at unprecedented rates, report says
A total of 343,927 new malicious websites have been detected in the past 30 days, according to a study published Monday.
The study, conducted by security vendor Commtouch, indicates that the number of websites created specifically for malicious purposes is growing at an unprecedented rate.
"The average of nearly 11,500 new threats every day increases the digital foothold of cybercriminals as well as the likelihood that victims will stray into dangerous territory," the study says. "The malware endangers businesses and end users with a wide range of threats, including password and identity theft, use of hacked PCs as bots for spam, denial of service attacks, and a growing favorite of cybercriminals - encrypting and then ransoming critical data."
Some 173,314 of the newly detected sites are malware sites, according to Commtouch. Spam sites accounted for 56,503 of the total, and phishing sites accounted for 114,110.
"Malware sites typically rely on exploit kits that seek out known vulnerabilities in the browser, operating system, or PDF reader software, among others, and then use these vulnerabilities to gain control of the visiting computer or smartphone," the study states. "The majority of phishing sites targeted PayPal users, but an increasing number aimed for the Google credentials of users, since these credentials open up an increasing range of linked Google services."
Have a comment on this story? Please click "Add a Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.
About the Author
You May Also Like
Unleashing AI to Assess Cyber Security Risk
Nov 12, 2024Securing Tomorrow, Today: How to Navigate Zero Trust
Nov 13, 2024The State of Attack Surface Management (ASM), Featuring Forrester
Nov 15, 2024Applying the Principle of Least Privilege to the Cloud
Nov 18, 2024The Right Way to Use Artificial Intelligence and Machine Learning in Incident Response
Nov 20, 2024