English

A Study of Third-party Resources Loading on Web

Cryptography and Security 2022-03-08 v1

Abstract

This paper performs a large-scale study of dependency chains in the web, to find that around 50% of first-party websites render content that they did not directly load. Although the majority (84.91%) of websites have short dependency chains (below 3 levels), we find websites with dependency chains exceeding 30. Using VirusTotal, we show that 1.2% of these third-parties are classified as suspicious -- although seemingly small, this limited set of suspicious third-parties have remarkable reach into the wider ecosystem. We find that 73% of websites under-study load resources from suspicious third-parties, and 24.8% of first-party webpages contain at least three third-parties classified as suspicious in their dependency chain. By running sandboxed experiments, we observe a range of activities with the majority of suspicious JavaScript codes downloading malware.

Keywords

Cite

@article{arxiv.2203.03077,
  title  = {A Study of Third-party Resources Loading on Web},
  author = {Muhammad Ikram and Rahat Masood and Gareth Tyson and Mohamed Ali Kaafar and Roya Ensafi},
  journal= {arXiv preprint arXiv:2203.03077},
  year   = {2022}
}

Comments

3 pages. arXiv admin note: substantial text overlap with arXiv:1901.07699

R2 v1 2026-06-24T10:03:53.103Z