Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

8/27/2010
03:51 PM
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Where In The World Is Safest To Go Online?

Turkey and Russia have highest odds of web attacks, Japan is safest

Your chance of getting attacked while online is one in 73, no matter where you are in the world: But some regions are riskier than others, such as North America and Europe, while Turkey and Russia are the most dangerous countries, according to new data.

AVG tracked data from the last week in July 2010 on more than 100 million PCs in 144 different countries and found that on average one in ten users get infected online in Turkey, followed by Russia, one in 15; Armenia, one in 23; Azerbaijan, one in 24; and Armenia, one in 39. Bangladesh followed with one in 41, and Vietnam, and Laos each had the odds of one in 41. The U.S. tied Pakistan, with a one in 48 chance of getting attacked.

The UK (one in 63), Australia (one in 75), and Germany (one in 83) all fared a bit better.

And these were Web attacks that were detected and stopped by AVG. "Even the global average of facing a 1 in 73 attack on any given day does not present great odds if averaged out across a year," blogged Roger Thompson, chief research officer for AVG.

So where is it relatively safe to go online? Where broadband is scarce: Sierra Leone had the least number of attacks, with one in 696 users infected, followed by Nigeria, with one in 442.

But AVG says Japan with its widespread broadband access and Internet is technically the safest place in the world to go online, with one in 403 users getting attacked. Other safer harbors for surfing include Taiwan, with a one in 248 average; Argentina, one in 241; and France, one in 224.

"While we know that the web is without borders, I think it's reasonable to expect that non-English speakers would tend to be drawn to websites in their own language. Either some nationalities of people indulge in more risky behaviors than others, or it indicates that there is localized gang activity targeting their own nationals," Thompson told Dark Reading. "If we watch it over a period of time, I would actually expect the rankings for the English-speaking countries to stay about the same, but I think we'll see variance in non-English countries, as the local gangs' activities ebb and flow."

But AVG notes that the data represents only a snapshot of the threat and different malware is targeted at different users. "Web threats, malware and viruses are designed to target different users across the world and this results in its own geographic footprint depending on concentrations of users across the globe," AVG's Thompson said in a blog post, but it does provide fair warning for travelers.

"If you are travelling without your computer and use a public machine or borrow a friend or colleague's, ensure that when accessing web based services like email, that you log out and close the browser when you have finished your session and that you don't agree to store any passwords or log-in information on that machine," he said.

A full copy of AVG's report is available for download here.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Kelly Jackson Higgins is the Executive Editor of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Cloud Security Startup Lightspin Emerges From Stealth
Kelly Sheridan, Staff Editor, Dark Reading,  11/24/2020
Look Beyond the 'Big 5' in Cyberattacks
Robert Lemos, Contributing Writer,  11/25/2020
Why Vulnerable Code Is Shipped Knowingly
Chris Eng, Chief Research Officer, Veracode,  11/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: We are really excited about our new two tone authentication system!
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-4126
PUBLISHED: 2020-12-01
HCL iNotes is susceptible to a sensitive cookie exposure vulnerability. This can allow an unauthenticated remote attacker to capture the cookie by intercepting its transmission within an http session. Fixes are available in HCL Domino and iNotes versions 10.0.1 FP6 and 11.0.1 FP2 and later.
CVE-2020-4129
PUBLISHED: 2020-12-01
HCL Domino is susceptible to a lockout policy bypass vulnerability in the LDAP service. An unauthenticated attacker could use this vulnerability to mount a brute force attack against the LDAP service. Fixes are available in HCL Domino versions 9.0.1 FP10 IF6, 10.0.1 FP6 and 11.0.1 FP1 and later.
CVE-2020-9115
PUBLISHED: 2020-12-01
ManageOne versions 6.5.1.1.B010, 6.5.1.1.B020, 6.5.1.1.B030, 6.5.1.1.B040, ,6.5.1.1.B050, 8.0.0 and 8.0.1 have a command injection vulnerability. An attacker with high privileges may exploit this vulnerability through some operations on the plug-in component. Due to insufficient input validation of ...
CVE-2020-9116
PUBLISHED: 2020-12-01
Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege.
CVE-2020-14193
PUBLISHED: 2020-11-30
Affected versions of Automation for Jira - Server allowed remote attackers to read and render files as mustache templates in files inside the WEB-INF/classes & <jira-installation>/jira/bin directories via a template injection vulnerability in Jira smart values using mustache partials. The ...