Abstract
This paper investigates the potential causes of the vulnerabilities of free content websites to address risks and maliciousness. Assembling more than 1,500 websites with free and premium content, we identify their content management system (CMS) and malicious attributes. We use frequency analysis at both the aggregate and per category of content (books, games, movies, music, and software), utilizing the unpatched vulnerabilities, total vulnerabilities, malicious count, and percentiles to uncover trends and affinities of usage and maliciousness of CMS’s and their contribution to those websites. Moreover, we find that, despite the significant number of custom code websites, the use of CMS’s is pervasive, with varying trends across types and categories. Finally, we find that even a small number of unpatched vulnerabilities in popular CMS’s could be a potential cause for significant maliciousness.
Original language | English |
---|---|
Title of host publication | Computational Data and Social Networks - 11th International Conference, CSoNet 2022, Proceedings |
Editors | Thang N. Dinh, Minming Li |
Publisher | Springer Science and Business Media Deutschland GmbH |
Pages | 141-154 |
Number of pages | 14 |
ISBN (Print) | 9783031263026 |
DOIs | |
State | Published - 2023 |
Event | 11th International Conference on Computational Data and Social Networks, CSoNet 2022 - Virtual, Online Duration: 5 Dec 2022 → 7 Dec 2022 |
Publication series
Name | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
---|---|
Volume | 13831 LNCS |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Conference
Conference | 11th International Conference on Computational Data and Social Networks, CSoNet 2022 |
---|---|
City | Virtual, Online |
Period | 5/12/22 → 7/12/22 |
Bibliographical note
Publisher Copyright:© 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.
Keywords
- CMS
- Free content websites
- Measurement
- Web security