Top infected network blocks for mid-August
Posted by Maxim Weinstein
In June we released a report with numbers from late May, showing the network blocks containing the largest numbers of badware sites reported by Google. In July, we released an udpate. Here is another update from mid-August:
| # of badware sites | AS block name |
|---|---|
| 28520 | CHINANET-BACKBONE No.31,Jin-rong Street |
| 8743 | BIZLAND-SD – Endurance International Group, Inc. |
| 8043 | CHINA169-BACKBONE CNCGROUP China169 Backbone |
| 5452 | CHINANET-SH-AP China Telecom (Group) |
| 3961 | CNCNET-CN China Netcom Corp. |
| 3464 | THEPLANET-AS – ThePlanet.com Internet Services, Inc. |
| 3182 | GOOGLE – Google Inc. |
| 2219 | NETDIRECT AS NETDIRECT Frankfurt, DE |
| 1896 | CRNET_BJ_IDC-CNNIC-AP China Tietong Telecommunication Corporation |
| 1685 | SOFTLAYER – SoftLayer Technologies Inc. |
Note: A network block owner is not always the owner or operator of the infected servers on that block, and our publication of these data is intended to inform and educate, not to assign blame.
Not too many changes from last month. AOL is no longer on the list, apparently following through on their commitment to address the issue that landed them on last month’s list. Google reappears with a few thousand infected sites from their Blogger network, which, as previously mentioned, may be more indicative of aggressive scanning and badware removal than it is of threat to the public. Endurance is still high up on the list, though with several thousand fewer infected sites than our last update.
See also our updated list of top infected IP addresses.