ICANN/GNSO GNSO Email List Archives

[ga]

<<< Chronological Index >>>    <<< Thread Index >>>

[ga] Where is ICANN on security?: 2M New Websites a Year Compromised To Serve Malware

  • To: Ga <ga@xxxxxxxxxxxxxx>, Peter Dengate Thrush <barrister@xxxxxxxxxxxxxxx>
  • Subject: [ga] Where is ICANN on security?: 2M New Websites a Year Compromised To Serve Malware
  • From: "Jeffrey A. Williams" <jwkckid1@xxxxxxxxxxxxx>
  • Date: Fri, 25 Jan 2008 23:29:57 -0800
All,

  Well, where is ICANN on security and policing it's
registrars/registries?
Seems to be asleep as the switch or indifferent/ineffective.

"Sophos claims that they are
http://www.theregister.co.uk/2008/01/23/booby_trapped_web_botnet_menace/
detecting 6,000 new sites daily that have been compromised to serve
malware to unsuspecting site visitors, with 80% of site owners not aware
that they have been compromised  though this figure is probably on the 
low side. With increasingly vocal 
http://jeremiahgrossman.blogspot.com/2008/01/scanalert-xss-is-not-our-problem.html
arguments being put forward by security experts criticizing the
http://www.beskerming.com/commentary/2008/01/25/329/What's_Your_Website_Hiding
performance and capability of site validation tools (though many of
these experts offer their own tools and services for similar
capabilities), and rising levels of
http://www.beskerming.com/commentary/2008/01/21/325/Problems_with_Universal_Plug_and_Play_(UPnP)_Demonstrate_Blended_Threat_risk
blended attacks, perhaps it is time you reviewed the security of your
site and what might be hiding in infrequently used directories."

Regards,

Spokesman for INEGroup LLA. - (Over 277k members/stakeholders strong!)
"Obedience of the law is the greatest freedom" -
   Abraham Lincoln

"Credit should go with the performance of duty and not with what is
very often the accident of glory" - Theodore Roosevelt

"If the probability be called P; the injury, L; and the burden, B;
liability depends upon whether B is less than L multiplied by
P: i.e., whether B is less than PL."
United States v. Carroll Towing  (159 F.2d 169 [2d Cir. 1947]
===============================================================
Updated 1/26/04
CSO/DIR. Internet Network Eng. SR. Eng. Network data security IDNS.
div. of Information Network Eng.  INEG. INC.
ABA member in good standing member ID 01257402 E-Mail
jwkckid1@xxxxxxxxxxxxx
My Phone: 214-244-4827
<<< Chronological Index >>>    <<< Thread Index >>>