Malware Statistics Update

Tuesday, August 25, 2009 2:51 PM



Every now and then people ask us for an update on the malware statistics we published in the All Your iFrames Point To Us blog post. We're glad to share this sort of data because we believe that collaboration and information sharing are crucial in driving anti-malware efforts forward. Here is a small update containing some interesting trends we've observed over the last 12 months.

Number of Entries on the Google Safe Browsing Malware List

As we mentioned in our Top-10 Malware Sites blog post, we have seen a large increase in the number of compromised sites since April. The number of entries on our malware list has more than doubled in one year, and we have seen periods in which 40,000 web sites were compromised per week. However, compared to infections associated with Gumblar and Martuz — two relatively large and well-known pieces of malicious code, many compromised web sites now point to hundreds of different domains. As these malware trends evolve, we're constantly improving our systems to better detect compromised web sites. The increase in compromised sites we observed may have also been influenced by our improved detection capabilities.

Search Results Containing a URL Labeled as Harmful

The above graph shows the percentage of daily queries that contain at least one search result that we labeled as harmful. In January 2008, more than 1.2% of all Google search queries contained at least one such result (you can review a graph of this data in the aforementioned All Your iFrames Point To Us post). Since then, there has been a downward trend to well below 1%. We noticed an increase around May 2009, and that growth may be due to the appearance of a larger number of compromised web sites. That said, it's encouraging that compared to last year, fewer search queries contain results to potentially harmful sites.

Users of Google search, Google Chrome, Mozilla Firefox and Apple Safari receive warnings when visiting sites we identify as potentially harmful. These warnings are produced by our Safe Browsing API, a technology that is freely available for webmasters to implement.
The comments you read here belong only to the person who posted them. We do, however, reserve the right to remove off-topic comments.

6 comments:

sunil said...

Now a days malware become nightmare. My friends around 14 sites affected with malware. Here I wrote a small blog about the same. http://www.myhtmlworld.com/personal/iframe-attack-on-websites.html

Declare.James said...

Thank you for the update. I always enjoy viewing recent trends and their impacts.

Steps to prevent Gumblar/Martuz
http://blog.igothacked.com/2009/06/steps-to-prevent-gumblar-martuz-nine.html

jehochman said...

The growth of malware on the web seems to take off in late April 2009. This coincides with a new malware attack that targets web developers to steal password lists from FTP programs. See http://www.internetevolution.com/author.asp?section_id=732&doc_id=180663. Do you think that's causation or coincidence?

MWP said...

I found a new phishing site!


PHISHING:
hxxp://googlemapsbrasil.com/

REAL:
http://maps.google.com.br/


Sugestion: this blog needs a contact e-mail that we can send warnings!!!

It is not safe send phishing urls in comments!

Bye!

Zyley said...

Malware is a real problem for webmasters and site visitors all over the world. This is really helpful that you work constantly to improve the methods of tracking malicious code. And also it's quite interesting and useful for us to track the stats. Thanks for sharing this data.

Tanika from Iflexion

Vinfotech said...

Malware is a serious problem. My website stopped working because of malware and all the ranks were gone. It took almost 3 months to get the ranks bank.

Many thanks for this resource.