Network security Report for the second week of July:. Info into the most active malicious top-level domain

Source: Internet
Author: User
Keywords Network virus chain territory domain name

Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest cloud host technology Hall

Recently, according to the Cncert sampling monitoring results and national information security vulnerability Sharing Platform (CNVD) published data, from July 4 to July 10, China's Internet network Security index overall evaluation as good.

Which, the number of hosts infected with the network virus in the territory of about 2.92 million, compared to the chain increased by 4% last week, the number of government sites tampered with 33, compared to the last week 45 a sharp decline in 27%, the new information security vulnerabilities 100, compared to the 76 chain last week 32%, which high-risk vulnerabilities 41, 4 more than last week's 37.

Below, IDC comments the network with everybody concerns in the period from July 4 to July 10, our country Internet network security condition:

I. Network virus activity

The number of hosts infected with the network virus in the territory is about 2.92 million, a 4% increase from the chain last week. Among them, the territory by Trojans or zombies program control of about 58,000, the chain down 6%, the domestic infection of the Conficker worm host about 2.86 million, the chain increased by 4%.

(1) According to the China Anti-Network Virus Alliance (ANVA) organized the release of active network virus, the use of web pages to hang horses, bundled download to spread the proportion of the network virus, the virus is still more to exploit system vulnerabilities to attack the system. In this way, we come to understand the malicious virus TOP5 active on the network:

  

(Figure 1) July 4-July 10 malicious viruses active on the network TOP5

(2) in the network virus capture, cncert through a variety of channels to obtain a large number of new network virus files, including new network virus name number of 101, the chain down 6%; no new network virus family number. Below, we look at Cncert detected the top five active horse site domain name, active put horse site IP.

  

(Figure 2) Active horse-TOP5 site domain name

  

(Figure 3) Active horse-TOP5 site IP

(3) In the network virus in the process of transmission, often need to use hackers register a large number of domain names. In this virus detection, ANVA focus on a number of malicious domain names for network virus transmission, and statistics of active malicious domain name of the top-level domain name and the main registered domain name agencies.

  

(Figure 4) Active malicious domain name of the top-level domain name and geographical distribution

  

(Figure 5) Active malicious domain names distributed by registered institutions

II. website Security

According to Cncert monitoring data, during the statistical period, the number of sites tampered with was 472, down 25% from the previous week. The number of tampered sites in the territory by type distribution as shown in the following figure, the largest number is still. com and. com.cn Domain name Web site. The gov.cn Domain name class website has 33 (occupies the territory 7%), the chain drops 27%.

  

(Fig. 6) The distribution of the number types of sites tampered with in inland China

Summary: In the period from July 4 to July 10, China's Internet network Security index overall evaluation as good, no harm more serious network security incidents. However, users still need to pay special attention to the need to strengthen the system in time to repair the loopholes and reinforce the installation of security protection software. During the internet, do not easily open the network of unknown sources of pictures, music, video and other documents, do not download and install some unknown software, especially some so-called plug-in programs to prevent network virus infection.

Article by China IDC Review Net original edit, original address:

Http://www.idcps.com/News/20110719/28284.html (if you want to reprint, please specify the source)

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.