By

Research predicts websites likely to be infected with malware

Research into website malwareResearch conducted by Kyle Soska and Nicolas Christin of Carnegie Mellon University proves that with some degree of accuracy, they can predict which websites will be successfully infected with malware.

“Our approach relies on an online classification algorithm that can automatically detect whether a server is likely to become malicious,” the researchers stated.

Their research uses an algorithm that analyzed websites before they were infected and after they were infected.

“we use machine-learning tools to attempt to detect websites that have not been compromised yet, but
that are likely to become malicious in the future, over a reasonably long horizon (approximately one year)” they stated in their research paper.

Whether or not their predictions come true, it could be used to alert website owners before their website becomes infected with malware.

Many website owners are more reactive – they often don’t consider website security until after they’ve been infected. However, with this research, they could be warned ahead of time and take corrective action before their website and their business becomes victimized by website malware.

“Our goal is to build a classifier which can predict with high certainty if a given website will become malicious in the future.”

“At a high level, the classifier determines if a given website shares a set of features with websites known to have been malicious. A key aspect of our approach is that the feature list used to make this determination is automatically extracted from a training set of malicious and benign webpages, and is updated over time, as threats evolve.”

Could this actually help?

Only time will tell, but it does present some interesting ideas.

By

Large website used to attack other websites

As a player in the website security space, we frequently find research of other organizations and we like to bring it to your attention so you learn more about the cybercriminals who want to infect your website with malware for their nefarious purposes.

In research announced by Incapsula: http://www.incapsula.com/blog/world-largest-site-xss-ddos-zombies.html, a website in the Alexa’s Top 50 was used to launch DDoS (Distributed Denial of Service) attacks on other websites.

As usual, you might ask, “Tom, why is this website security news important to me?”

It’s important that you learn why hackers want your website. You need to know why website malware is so prevalent. Yes, even if it’s a small blog that only covers events in your local community. Hackers can use your website for any of their money making schemes.

which flooded our client with over 20 million GET requests originating from the browsers of over 22,000 Internet users

In this report, which gets a little technical, they also mention that the new code is tracking the attack for what appears to be for billing purposes. Yet another income stream for cybercriminals.

The hackers could be offering this as a service, for which they charge a fee.

If you have questions about this, please ask in the comment section.

Thank you.