[CPWG] Malware report
Theo Geurts
atlarge at dcx.nl
Thu Nov 25 09:22:51 UTC 2021
Good report.
*Domain names are essential resources for spam and phishing attacks; however, the data we collected reveal that they are less commonly used for serving malware or for malware distribution. *
I find this finding rather significant given the fact that ransomware/malware has a high impact if not the highest at the moment. Current estimates are around 25 billion dollars in damages and losses per year. Given the fact that not every company reports that they are a victim of ransomware, the damages could be much higher.
The TLD top 20 is also interesting as number 10 is a ccTLD that has very rigorous registrant (ID)verification and validation requirements. Given the previous Interisle report on phishing with similar results, the question arises what validation and (ID)verification will solve? Not spam/phishing/malware/ransomware it seems.
Best,
Theo
On Wed, Nov 24, 2021, at 9:36 PM, Roberto Gaetano via CPWG wrote:
> Thanks Alan
>
> I have to say that I am not surprised by the findings, but it is always good to have confirmation by a study of things that we suspected but had no evidence of.
>
> Cheers,
> Roberto
>
>
> > On 24.11.2021, at 06:41, Alan Greenberg via CPWG <cpwg at icann.org> wrote:
> >
> > Last week I said I would forward a new Malware report:
> >
> > https://interisle.net/MalwareLandscape2021.html
> >
> > The message I received says that among other things, the report notes that:
> >
> > . Malware that exploits Internet of Things (IoT) devices is the fastest growing category of malware.
> > . Information stealers and ransomware account for 40% of malware that exploited user devices such as tablets, mobile phones, laptops, and PCs.
> > . Malware attackers extensively misused file sharing services, code repositories, and storage services.
> > . Domain registrars with high malware domain counts tend also to have high phishing domain counts.
> >
> > You can find the Executive Summary at https://interisle.net/MalwareLandscape2021-ExecutiveSummary.pdf and the full report at https://interisle.net/MalwareLandscape2021.pdf.
> >
> > Alan
> >
> > _______________________________________________
> > CPWG mailing list
> > CPWG at icann.org
> > https://mm.icann.org/mailman/listinfo/cpwg
> >
> > _______________________________________________
> > By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
>
> _______________________________________________
> CPWG mailing list
> CPWG at icann.org
> https://mm.icann.org/mailman/listinfo/cpwg
>
> _______________________________________________
> By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mm.icann.org/mailman/private/cpwg/attachments/20211125/806863e3/attachment.html>
More information about the CPWG
mailing list