1000 infected websites revealed in Estonia, Latvia and Lithuania by WebTotem

Estonia-based service for protecting and monitoring websites — WebTotem, who aim at making the online world a safer place, investigated the Baltics’ region internet space, to determine cyber risk and suggest ways of fixing this. Countries included Estonia, Latvia and Lithuania.




1. More than 200.000 websites were monitored in total, where majority were from Lithuania, 95.316 existing websites as of 21st of August 2019.

2. The Webtotem scanning tool revealed 458 infected websites in Lithuania, a bit less in Latvia — 297, with 21 defaces* in each country. In Estonia our system found 191 infected websites and 15 defaces. A site is considered infected if it falls into one of the lists of reputation databases (Virustotal, Spamhaus, PhishTank, etc.)

3. Two thirds of websites in the region are self-written. WordPress stays the leading CMS for building websites. It holds more than 80% of the market which shows Joomla is rapidly losing popularity.

4. Apache is the most popular web server with an 83% market share in Lithuania, 56% in Latvia and 84% in Estonia.

5. Only 34% of available websites in Baltics have a Valid SSL certificate. Majority of websites function with Invalid or Expired SSL certificates.

6. 94% of web resources in the Estonian domain zone use the PHP programming language

This report and analysis were made by WebTotem, Wtotem.com — an independent free-service for protecting and monitoring websites. Anyone can check their website for vulnerability in just 3 clicks. Go to wtotem.com or download our app and see the report by simply adding website domain.

If your website has been affected by any of the above incidents, get in touch with WebTotem to help you secure and safeguard your online space

Domain list data taken from the Domains-Index service

Android app: https://play.google.com/store/apps/details?id=com.indepo.webtotem

iOS app: https://apps.apple.com/us/app/webtotem/id1289069562

We have a comprehensive solution for CERTs (Computer Emergence Response Team) and we will carry out a pilot for your country. Get in touch with us by email (os@wtotem.com)  =)

Last month, we also published a report about one of our clients, Kazakhstan (http://wtotem.com/blog/report-on-kaznet-august-2019/). Thanks to the Webtotem service, the country reduced the incident response time from 30 days to 1 day.


Website defacement is an attack on a website that changes the visual appearance of a website or a web page. These are typically the work of defacers, who break into a web server and replace the hosted website with one of their own. Usually, website defacement is used to mask a bigger crime being committed behind the scenes.

We authorize the publication and use of current analytics, indicating the source

Wtotem.com – free service for website security and monitoring.
Backed by Startup Wise Guys

You May Also Like