Some Web Domains Are Safer Than Others

Report Finds Sites Ending In .hk, .cn, And .info Are Most Likely To Be Security Risks

(AP)  When surfing the Internet for safe Web sites, not all domains are equal.

Companies that assign addresses for Web sites appear to be cutting corners on security more when they assign names in certain domains than in others, according to a report to be released Wednesday by antivirus software vendor McAfee Inc.

McAfee found the most dangerous domains to navigate to are ".hk" (Hong Kong), ".cn" (China) and ".info" (information).

Of all ".hk" sites McAfee tested, it flagged 19.2 percent as dangerous or potentially dangerous to visitors; it flagged 11.8 percent of ".cn" sites and 11.7 percent of ".info" sites that way.

A little more than 5 percent of the sites under the ".com" domain - the world's most popular - were identified as dangerous.

More spammers, malicious code writers and other cybercriminals can establish an online presence when domain name registry businesses cut requirements for registering a site in order to boost their profit and profile. The report doesn't identify domain name registration companies McAfee believes are responsible for those lapses.

Hundreds, perhaps thousands, of companies are in the business of registering domain names; some are large and well known, while others are small and less reputable, offering their services on the cheap and with flimsy or no background checks to lure in more customers.

The fact that Internet scam artists gravitate to domain name services with lower fees and fewer requirements isn't new.

What McAfee's "Mapping the Mal Web" report, now in its second year, tries to do is identify the domains that are populated with the highest concentration of risky sites.

The servers for ".hk" and ".cn" Web sites don't have to be in China; Web site operators can register sites from anywhere to target different geographies.

Other risky domains include ".ro" (Romania), with 6.8 percent, and ".ru" (Russia), with 6 percent of sites flagged as dangerous.

Shane Keats, research analyst for McAfee and lead author of the report, said the increase in dangerous sites registered under the ".hk" and ".cn" domains over last year's report was caused in part by better data collection on McAfee's part on those domains and by apparent security lapses in some registrar companies' processes for registering addresses.

"My advice about surfing behavior is that if you're really desperate for cheap Prozac and the pharmacy ends in '.cn,' don't do it. Just don't do it," Keats said. "Find another place to get your Prozac."

---

Podcast: CBS News technology analyst Larry Magid talks with study author Sean Keats.

---

Many Internet frauds involve fake sites for pharmaceuticals.

The McAfee report is based on results from 9.9 million Web sites that were tested in 265 domains for serving malicious code, excessive pop-up ads or forms to fill out that actually are tools for harvesting e-mail addresses for sending spam.

Keats said domain name registrars that are strict about authenticating that Web site owners are operating a legitimate business see far fewer malicious Web sites using their services.

Where McAfee found some of the least-risky domain names:

• ".gov" (government use), with 0.05 percent flagged;
• ".jp" (Japan), with 0.1 percent flagged
• ".au" (Australia), with 0.3 percent flagged.

[sistatee-2009]

If you can''t trust a Russian, internet prostitution website, who can you trust?

[nothappyatall]

Hundreds, perhaps thousands, of companies are in the business of registering domain names; some are large and well known, while others are small and less reputable, offering their services on the cheap and with flimsy or no background checks to lure in more customers. "

I never heard of any domain registrar doing a check on ANY customer, I own dozens of domain names and have for years, the only requirement has always been- you complete the web form with the domain name you want, enter your name, address (doesnt even have to be real)
pay the annual fee and you have a domain name.

[rf35]

I tend to stay away from the foreign web sites, anyway. When I do find myself wanting to access one, I%u2019ll only go to sites registered to countries that are not hostile to America. Just common sense.

[Razzl]

And then the Bush administration wonders why the rest of the world doesn''t want the US to be the sole arbiter and organizer of internet domain names. In most parts of the world national governments would put serious rules in place as to who gets to attach the national suffix to their web site; but we allow the internet to become a cesspool with this free-market anything-goes policy. It won''t be long before the world takes back control by setting up an alternate domain name system and refuses to recognize the authority of ICANN to do that...

[rational_1]

Well at least the Chinese are being equal opportunity polluters. They target us and our kids with their toxic products and are at least being consistent in targeting our computers with toxic software and websites. Good luck hosting the Olympics in that smog-ridden warren; hope you import software to run things.