The latest Hacker Bait list contains government and financial websites around the world that have been found to have vulnerabilities that hackers and cyber criminals could exploit. Keep in mind that this is not a complete list of all vulnerable sites on the Internet, but only represents websites where vulnerabilities were found within the past 90 days.

These are only the latest additions to an ever-growing club of sites found to be insecure according to various public sources and online tools used in the web security industry.

If you would like more information on our data and why these sites are listed here, please contact Boonbox

www.australia.gov.au

www.usa.com

www.cuba.cu

www.lvif.gov.lv

www.vteb.gov.lv

www.poland.gov.pl

www.ptac.gov.lv

www.dac.gov.za

www.dsdni.gov.uk

www.bbc.co.uk

www.minex.gob.gt

casi.erdc.usace.army.mil

physics.nist.gov

www.rss-latvija.gov.lv

www.socdev.ecprov.gov.za

www.nis.gov.bb

mincommerce.gov.dz

mrib.usgs.gov

www.impots.gouv.fr

www.bourse.fonction-publique.gouv.fr

munipaita.gob.pe

www.atrrs.army.mil

www.kac.mil.kr

www.tvperu.gob.pe

www.pakistan.gov.pk

blogs.nasa.gov

internetbank.swedbank.se

finances.aliceadsl.fr

finances.voila.fr

www.financialexpress.com

www.mashreqbank.com

econ.worldbank.org

www.worldbank.org.tr

www.entrepreneur.com

www.centralbank.go.ke

www.reservebank.gov.fj

www.centralbankmalta.org

www.firstbanknigeria.com

www.bank.gov.ua

www.central-bank.org.t

Mythbusters Tip #5

“I don't need web security. If my business site gets hacked, I'll just take it down and republish with the backup web files I've got saved in my database.”

This is wrong on so many levels. First off, it does take time to republish a website. Also, before you republish, you'll have to fix the vulnerability the hackers used in the first place, or it will probably happen again. And what if your database gets hacked next by the same bad guys?

If this happens a few times, your visitors will start to realize your site is the reason why their computer system isn't working properly. Then watch your traffic fall off a cliff.

For a fraction of the cost in lost business from your site going down, you can be proactive.

Spam-Alot

Spammers are linking to blogs, profiles and other pages on these trusted sites to give victims a false sense of security that the links can be followed safely. These sites may not have been hacked, but following the spam links to these sites and clicking on links shown there can result in harm to your computer.

If you would like more information on our data and why these sites are listed here, please contact Boonbox

www.collegehumor.com

speakeasy.craveonline.com

michaels-auto.com

tiavawebcams.com

problogger.net

kidshealth.org

- (Discovered by Boonbox Dec.4-Dec.9, 2008)

Boonbox is a division of Pacific Coast Information Systems Ltd., specializing in products for web security, network security, password management and data backup.

PCIS is a Vancouver-based company which provides strategic consulting, application development, technology solutions and managed services to companies and government organizations throughout North America.

HOW TO SUBSCRIBE/UNSUBSCRIBE

SUBSCRIBE: To subscribe to Web Threats Weekly, send a blank email message with subject line "SUBSCRIBE" to informer@pcis.com

UNSUBSCRIBE: If you do not wish to receive future issues of Web Threats Weekly, send a blank email with subject line "UNSUBSCRIBE" to:informer@pcis.com and we will promptly remove you from our distribution list.

WE WANT YOUR FEEDBACK

Our purpose for providing this free service is to keep our clients and business contacts informed of technology developments. This information can help them resolve common problems and achieve their full potential by strengthening their business processes and infrastructure. Your input is important to us and we welcome your ideas for new features and how we can continue to improve our service to you. Send your comments and suggestions to informer@pcis.com or contact us directly at 604.844.7558