There are 1.86 billion websites on the internet. Around 1% of these, about 18,500,000, are infected with malware.
In Q4 2017 it was conducted research that included over 12 million sites.
The research revealed an increase of around 20% in the number of infected websites over Q3 2017. One big cybersecurity problem is that many website owners remain unaware that website security is their responsibility and rely too heavily on popular search engines, but this method doesn’t work because the search engines blacklist less than 1 in 5 infected websites. Even more concerning is the fact that 46% of WordPress sites infected with malware were up to date with the latest core updates. Sites that are using plug-ins can be compromised twice as fast.
To be safe and secured against all type of cyberattacks, depending on which version of OS your device runs, install an antivirus for Windows or antivirus for Mac.
If you are a company make sure that you hire a professional cybersecurity firm that will run various cybersecurity tests on your company’s network to implement only the best possible cybersecurity solution. Remember tests like penetration test and ethical hacking tests should be mandatory for every company.
During Q4 2017, it was cleaned an average of 672,655 malicious files every week, and detect an average of 309 infected files per site.
These malicious files are often stored on websites in zip files, meaning that even if active infected files are removed, the site can be compromised again.
The most significant cybersecurity problem is that the average website is straightforward to compromise. Just in Q4, it was found an average of 414 pages per site containing cross-site scripting (XSS) vulnerabilities; 959 pages per site containing SQL injection (SQLi) vulnerabilities; and 414 pages per site containing cross-site request forgery (CSRF) vulnerabilities.
Understanding the cybercriminals motives is key to understanding the threat to small business websites. One of the primary motivations, for example, is to improve the search engine rankings of the own cybercriminal customers, by inserting backlinks to the customer website.
Phishing credentials represent another primary motivation; it is evident that the longer that a phishing site stays up, the higher the number of credentials it can potentially steal.
Always remember to install an antivirus for Windows or antivirus Mac depending on which OS your device has.
Companies should run extra tests like penetration test and ethical hacking test on their network to be safe and secured.