- Ninja mocked for not knowing how to make a sandwich Wednesday 9:30 PM
- Marvel comics writer discusses misogyny in the industry Wednesday 9:09 PM
- TikTok conspiracy theorists think Juice WRLD is still alive Wednesday 7:03 PM
- Conservatives are protesting YouTube’s new harassment rules Wednesday 5:36 PM
- YouTuber’s ‘creepy’ comment about Taylor Swift’s eggs gets ratioed Wednesday 5:31 PM
- Bloomberg razzed for accidentally making an Alexa Fleshlight Wednesday 5:29 PM
- Who is putting cowboy hats on pigeons? Wednesday 4:33 PM
- Scammer reportedly bribed Facebook employee to keep posts up Wednesday 3:36 PM
- The 1975’s singer criticized for ‘Islamophobic’ rant Wednesday 3:22 PM
- Ready to dish out $52K for Apple’s new Mac Pro? Wednesday 3:03 PM
- N.K. Jemisin and Jamal Campbell discuss their new Green Lantern comic, ‘Far Sector’ Wednesday 3:00 PM
- YouTube says it will be harsher on creators with ‘patterns of harassing behavior’ Wednesday 1:15 PM
- Why one senator stopped a vote on net neutrality Wednesday 12:49 PM
- Man reportedly denied refugee status after officials fail to forward email Wednesday 12:09 PM
- ‘Jojo Rabbit’ star to lead Disney+ ‘Home Alone’ reboot Wednesday 12:08 PM
Amazon hosts more malware than any other Internet service provider
Thieves use the company’s domains to shop for your private data.
Turns out legitimate businesses aren’t the only ones attracted by Amazon Web Service’s promises of reduced costs and flexible capacity. Cybercriminals are having a field day with Amazon’s cloud computing network.
Of the 10 biggest malware sites, the retail juggernaut hosts four, including download-instantly.com, the No. 1 hub for the distribution of such nefarious tools.
IT security firm Solutionary on Wednesday issued its Quarterly Threat Intelligence Report, which revealed, among other findings, that those four Amazon-supported sites (detailed above) account for 6 percent of the malware the firm uncovered worldwide. The U.S. is particularly riddled with malware, being home to Internet service providers that combined host a whopping 44 percent of it.
Instant access to virtual servers that can be put to illegal use is a large aspect of what makes Amazon’s hosting ideal for hackers and scammers. But beyond that, the company name and others like it also provide cover. Operating via Google or Amazon, Solutionary noted, “allows malware distributors to originate traffic from trusted address spaces that will not be blocked by geographic blacklists and would not likely draw suspicion based on IP address alone.”
Criminals needn’t even buy the services directly, as they can easily compromise legitimate domains. Especially insidious for Amazon, as the Washington Post points out, are botnets, which have been a significant problem since as early as 2009 and remain a critical concern. Just last week, LinkedIn elected to sue a group of hackers who used the Amazon cloud to scrape data from member profile pages.
Amazon, in its own defense, has touted a responsiveness to reports of abuse. The AWS security support page encourages users to get in touch via email and expect a non-automated reply within 24 hours, followed by progress updates every five working days. Overall, the e-commerce giant has taken an approach akin to that of a conciliating parent who lets their teen drink beer at home, where he can be closely monitored and his bad behavior quickly dealt with.
That, of course, would be a case of treating a symptom—not the cause.
H/T Washington Post | Photo by Joyyers/Flickr
Miles Klee is a novelist and web culture reporter. The former editor of the Daily Dot’s Unclick section, Klee’s essays, satire, and fiction have appeared in Lapham’s Quarterly, Vanity Fair, 3:AM, Salon, the Awl, the New York Observer, the Millions, and the Village Voice. He's the author of two odd books of fiction, 'Ivyland' and 'True False.'