Internet attacks that
use a malicious, hacked, or infected Web server
to exploit unpatched client-side vulnerabilities
of visiting browsers are on the rise. Manual
analyses of exploit sites have recently emerged.
Although they often
provide very useful and detailed information
about which vulnerabilities are exploited and
which malware programs are installed, such
analysis efforts are not scalable and do not
provide a comprehensive picture of the problem.
We present a
preliminary analysis of the data and suggest
what can be done based on the data to improve
Internet safety.
|