• On TV.com: TOP 10 Shows CANCELED Too Soon
December 2, 2009 7:21 AM PST

McAfee uncovers riskiest domains

by Lance Whitney
  • Font size
  • Print
  • 40 comments
McAfee Mal Web map

Red means danger. And orange offers plenty of risk, too. (Click for a larger view of the map.)

(Credit: McAfee)

You may want to think twice if you hit a site with a .cm extension. That belongs to Cameroon, pegged by McAfee as the world's riskiest domain.

McAfee's third annual "Mapping the Mal Web" report, released Wednesday, looks at riskiest and safest domains across the globe. The small nation on the west coast of Africa reached the top spot this year with 36.7 percent of its sites posing a security risk. Because .cm is often a typo for .com, McAfee said, cybercrooks like to use that domain to set up typo-squatted sites to hit you with malware.

The generic and widely used .com domain itself isn't much safer, according to McAfee, jumping from ninth last year to second this year in riskiness, with 32.2 percent of its sites potentially hazardous to your PC's health.

(Credit: McAfee)

Romania (.ro) is tagged as the riskiest domain for malicious downloads, with 21 percent of its sites delivering payloads of viruses, spyware, and adware. The information (.info) domain is seen by McAfee as the most "spammy," with 17.2 percent of its sites generating junk mail.

On the positive side, the government (.gov) is the safest generic domain with essentially 0 percent risk, while Japan (.jp) proved the safest country domain with a rating of only 0.1 percent. Last year's riskiest domain, Hong Kong (.hk) dropped to 34th place with a risk rating of only 1.1 percent, which McAfee attributed to the country's aggressive steps to stop scam-related domain registrations.

(Credit: McAfee)

"This report underscores how quickly cybercriminals change tactics to lure in the most victims and avoid being caught. Last year, Hong Kong was the riskiest domain and this year it is dramatically safer," Mike Gallagher, chief technology officer for McAfee Labs, said in a statement. "Cybercriminals target regions where registering sites is cheap and convenient, and pose the least risk of being caught."

Overall, looking at 27 million Web sites and 104 top-level domains, McAfee found that 1.5 million sites, or 5.8 percent, were risky. That's up from 4.1 percent from the past two years, although the comparison is not direct since McAfee said it changed its rating methodology since then.

McAfee noted that cybercriminals who create domains to scam people prefer registrars with cheap prices, volume discounts, and hefty refund policies. Crooks also like registrars with a "no questions asked" policy and that act slowly or not at all when informed of malicious domains.

Lance Whitney wears a few different technology hats--journalist, Web developer, and software trainer. He's a contributing editor for Microsoft TechNet Magazine and writes for other computer publications and Web sites. You can follow Lance on Twitter at @lancewhit. Lance is a member of the CNET Blog Network, and he is not an employee of CNET.
Topics:

News,

Privacy and data protection,

Vulnerabilities and attacks

Tags:

McAfee,

domains,

domain registration,

viruses,

adware,

spam,

malware

Share:
Digg
Del.icio.us
Reddit
advertisement
Click Here
Recent posts from Security
Defense Dept. pulls software over privacy issues
Microsoft to plug critical IE hole targeted by exploit code
Google wants to unclog Net's DNS plumbing
Avast update falsely flags good apps as malware
Character limitations in passwords considered harmful
McAfee uncovers riskiest domains
EFF sues feds for info on social-network surveillance
Microsoft: November security updates are fine
Related
CNET News Daily Podcast: Cybercrooks use typos to spread malware
A child porn-planting virus: Threat or bad defense?
McAfee warns about '12 Scams of Christmas'
For the Record Podcast: '12 scams of Christmas'
Essential Firefox security add-ons
FAQ: Recognizing phishing e-mails
Crave giveaway of the week: official rules
Crave giveaway of the day: official rules (2)
Add a Comment (Log in or register) (40 Comments)
  • prev
  • 1
  • next
by shuyin84 December 2, 2009 7:54 AM PST
but all this really only matters if your using a pc
Reply to this comment
by Sausagebiscuit December 2, 2009 8:08 AM PST
as opposed to what? A toaster? A printer? A cell phone?

I know this is probably an Apple troll, but you realize it is still a PC right?

:)
by Someone-else December 2, 2009 8:11 AM PST
Do you really need to start it again?

And that rank is not only for viruses, I doubt that your shiny Mac will protect you from fake store sites, for example.
by aMUSICsite December 2, 2009 8:49 AM PST
It only matters if you are not running NoScript you mean ;)
by sharmajunior December 2, 2009 9:18 AM PST
LOL...shuyin84 doesn't know the difference between using 2 different pc's and going on the web.

No matter what computer you use, if you visit a site that is fake or full of malware, chances are great that you will catch some...no matter if you use a Mac or a Windows or a Linux based PC....they are all pc's.

I guess shuyin here uses his/her frying pan to go online....LOL
by shuyin84 December 2, 2009 10:18 AM PST
hahahaha, thnks for the laugh lol, bad day i really needed that.

1. By "PC" i mean an computer running on windows.
2. yes I am a troll.
3. yes i do really need to start it again, it keeps my school day "interesting."
4. There is a difference when your using different OS's. Now correct me if I'm wrong, and I might be, but I don't believe Windows offers phising and malware risk warning before you enter a site that the computer believes may be a security risk. Of course, this could also be offered through the browser you use rather than the operating system.
5. OMG FRYING PANS CAN GET ON THE INTERNET!!!?! TOASTERS TOO!!?!
by jtjt145 December 2, 2009 12:27 PM PST
Linux on a pc is very safe ... is very safe if you want ti to be safe.
Windoze on pc is an entirely different kettle of fish ... its kind of in another universe as far as security is concerned.
Plus you get other goodies like DRM ...
by viper396 December 2, 2009 1:29 PM PST
@shuyin84, acknowledging that you're just trolling only makes you opinions irrelevent and prove your blatant ignorance. You're unqualified to even be commenting on the matters of web security and you're certainly not gaining any legitimate sympathy from the Mac or Linux community. Idiot.

People who think using a Linux or Mac system gives them immunity from phishing or scamming websites are only proving their own ignorance on the subject. A web scam or phony banking website will work just as well on a Mac or Linux browser as it does on Windows.
by Paul_Christie December 2, 2009 3:24 PM PST
@shuyin84
Do you like getting flamed for trolling?
Yes, a mac IS a PC. Just to sum up all of the flaming you got, lol
by lazycat202 December 2, 2009 5:39 PM PST
@shuyin84
try again; mister!
my cellphone is a PC too ;)
by shuyin84 December 2, 2009 10:17 PM PST
if my comment is so "illegitamate" as you put it.....then why did u even waste the time to respond? see it's stuff like that that keeps my day interesting. thanks
by Sausagebiscuit December 2, 2009 8:09 AM PST
Ahh... and I bet McAfee has just the right thing to cure your fear of the big bad internet. Fear campaigning at it's best.
Reply to this comment
by guest18934367 December 2, 2009 9:19 AM PST
This is just a list of sites that are the most risk-prone. Says nothing about "fixing" it. Assuming things at its finest.
by Saltiva December 2, 2009 11:12 AM PST
I use a rubber, Trogan Magnum XTC to be exact, and my unit is still clean!
by Firehazel December 2, 2009 2:30 PM PST
yeah, THE INTERNET IS DANGEREUX! Buy our software, and not only will we protect your computer, we will pay your bills, and find you somebody to love.

Yeah. I get by just fine with AVG and MBAM.
by n3td3v December 2, 2009 8:11 AM PST
It's wrong and racist to name a country domain as the riskiest.
Reply to this comment
by cascademarmot December 2, 2009 8:20 AM PST
Hm ... so naming Japan as the safest is also a raciest, isn't it? Yeah, that's right, numbers and facts cannot be used to point out the geographic location with the densest statistical data. Absolutely.
by n3td3v December 2, 2009 8:44 AM PST
@cascademarmot

I just don't get the point of announcing rickiest domain by country other than to get people to hate a certain country.
by gwailo247 December 2, 2009 8:52 AM PST
I guess you must have a real problem when the State Department puts out advisories not to travel to certain countries.
by ATOBDavis December 2, 2009 9:49 AM PST
Oh please....first of all, Camaroon is a country, not a race.

Second, they explain that .cm is pretty darn close to .com, the other "worst" domain. If there was an .ocm extension, it would be on the list too.

Its not about race, its about money. Scammers can make more money by tricking you into going to .cm than they can going to .jp
by Mr_fleabite December 2, 2009 11:08 AM PST
I'm proud of n3td3v...

someone needs to take a stand for the camaroonian race.
by Dalkorian December 2, 2009 12:47 PM PST
I don't think the word "racist" means what you appear to think it means. As to the point, didn't the article say that Hong Kong fell from first to 34th in the last year? Was that "racist" too?
by inachu1 December 2, 2009 8:30 AM PST
We will get more infected because we hire people form those domains and then IT wonders why that paticular pc always gets hit so much.
Should put an entire block to those domains on a company network in the USA.
Reply to this comment
by aMUSICsite December 2, 2009 8:52 AM PST
It only takes one bad site to infect you so even if you block all the bad countries someone could still set up something bad in Ireland (one of the top clean countries) and bingo you will be at risk.

Protection should always be local not at a national level.
by Ebraheem December 2, 2009 8:51 AM PST
Hmm.. I'm surprised .tk isn't on the top 10. McAfee reported that it was the most dangerous back in 2007.
http://www.theage.com.au/news/security/pacific-atolls-host-worlds-most-dangerous-websites/2007/03/16/1173722722104.html

Anyone has ideas about why it became safer in just two years?
Well, unless McAfee is just making things up and they never do any real research. </conspiracytheory>
Reply to this comment
by Lerianis4 December 2, 2009 11:48 AM PST
They could just be pulling these numbers out of the butts, but I don't think so.
by Dalkorian December 2, 2009 12:49 PM PST
Last year it was Hong Kong, who "fell" to 34th this year. Maybe someone is paying attention and fixing the problems? Naw, it must be racism like another one claimed.
;-)
by sharmajunior December 2, 2009 9:20 AM PST
another thing is McAfee is the worst antivirus out there.

There are viruses and malware specifically written to disable and infect computers running McAfee...so I guess the number of attacks and other trojans coming in would be more for a McAfee based computer as compared to one's running Norton or trend or kaspersky or eset.
Reply to this comment
by Lerianis4 December 2, 2009 11:41 AM PST
Unfortunately, you are right. NO OTHER ANTIVIRUS is as darn terrible at preventing infections as McAfee, not even Windows Defender, which isn't even really an antivirus.

McAfee needs to disappear or to SERIOUSLY get on their designers cases, stop having so many 'false positives', etc.
by cloudmatt December 2, 2009 11:52 AM PST
+1 to the Nth power
by Lerianis4 December 2, 2009 11:35 AM PST
Huh... I thought that .ru would be the 'most dangerous' extension to web addresses.... guess I was wrong.

Really, most of the 'infections' could be mitigated by people getting off Windows XP... it is over 10 years old now, it's time to LET IT DIE it's well-deserved and overdue death.
Reply to this comment
by lazycat202 December 2, 2009 2:05 PM PST
Huh... I thought that .ru would be the 'most dangerous' extension to web addresses.... guess I was wrong.

same thought here
Reply to this comment
by walwebster December 2, 2009 2:47 PM PST
Well, that's it -- no more camaroons for me!!! (or was that "macaroons"?)
Reply to this comment
by FiOS-Dave December 3, 2009 10:30 AM PST
Stay away from the Macadamia domains... they're all nuts...
by AisanPower December 2, 2009 11:52 PM PST
This report is useless. The .CM registry doesn't have that many registered domains.
Reply to this comment
by webrp December 3, 2009 10:04 AM PST
I don't think they are necessarily referring to "registered" domains. Yes believe it or not, there are those who skirt ICANN's radar.
by IncredibleMouse December 3, 2009 4:11 AM PST
McAfee , isn't that the company that makes that absolute crap software that EVERYONE uninstalls immediately when shipped with a new pc? I assume the 12 people still running this software, unwittingly of course, provided these stats?
Reply to this comment
by JohnMegadeth December 3, 2009 5:25 AM PST
1. By "PC" i mean an computer running on windows.

It should be "a computer" not "an computer."

3. yes i do really need to start it again, it keeps my school day "interesting."

Make your school day more "interesting" by staying awake during your English class.
Reply to this comment
by azbeeno December 3, 2009 6:03 AM PST
Wow, I must admit, I am impressed. Well done dude!

RT
www.be-invisible.ua.tc
Reply to this comment
by FiOS-Dave December 3, 2009 10:36 AM PST
This generalized data is kinda worthless. What they should report are actual domain names!
Also, dig a little deeper and give us a list of the ones who've registered these domains!
It makes more sense to boycott the ones who've registered these domains then a particular country.
We can put pressure on these registrars and force them to implement tighter rules.
It's rather obvious that if some entity is registering 1000 names and then cancels them after 24 hours that they are spammers, or worse!
If I found that my registrar was that lax, I would let them know why I was switching to another...
Reply to this comment
(40 Comments)
  • prev
  • 1
  • next
advertisement

With eye to the future, try raw photos today

Raw photos are a hassle compared to JPEG. But if you like photography, the list of their image quality advantages is long and getting longer.

Inside the Apple, er, Microsoft Store

Although Redmond's foray into retail bears a big resemblance to Apple's approach, Microsoft has added some distinctive features to draw casual PC buyers and techies alike.

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Security topics

advertisement
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET