What is the feed?

On a daily basis, AusCERT encounters numerous phishing, malware, malware logging or mule recruitment web sites, including those directed at Australian Internet users.

The feed can be added to your firewall blacklist to prevent inadvertent compromise to client computers on your network; or you can check your web log files to see if any client computers on your network may have already connected to these web sites as a way to detect potential compromises to client computers on your network.

You can use this feed however you see fit but for internal purposes only.

The feed is updated at regular intervals and is available in two types:

• Previous 24 hour feed
• Previous 7 days feed

• Phishing hosting
• Malware hosting
• Logging sites used to captured information from computers compromised with malware or phishing sites
• Mule recruitment
• All of the above

To download copies of the malicious URL feed, click here.