Belgium tops the list, followed by Tajikistan and Samoa.
The company compiled what it calls a "heat map" of the Internet, looking for servers that had exposed ports that could be compromised.
Rapid7 used its Project Sonar tool to carry out a scan of every public-facing IP address and examine the services being offered to the wider Internet.
But there are a number of services which are unencrypted and open to compromise. For example, on port 110 one can find POP3 servers being offered. And port 21 is used for FTP, an insecure method of transferring files over the Internet.
"Today's Internet touches virtually everyone’s lives and is a critical component of economic security," the study noted. "Counter-intuitively, the adoption of fully encrypted protocols for core Internet services has not scaled with our personal, national, and global dependence on the Internet."
While the countries with greater GDP, like China and the US, had a much greater number of Internet users and hence many more net-connected devices, they were not the most exposed. In the case of Belgium, though it had many less Internet servers, a greater percentage were offering services that were insecure.
While Australia was the fourth most vulnerable overall, it also had the same rank among countries that had ports for database protocols exposed.
"We counted 7.8 million MySQL databases and 3.4 million Microsoft SQL Server systems. Six countries, the United States, China, Hong Kong, Belgium, Australia and Poland expose 75% of discovered Microsoft SQL nodes. Those same countries expose 67% of MySQL nodes," the study noted.
Among the findings of the study were:
- Millions of systems offer services that should not be exposed to the public network. The survey found 15 million nodes appearing to offer telnet, 11.2 million appearing to offer direct access to relational databases, and 4.5 million apparent printer services. (The scans counted 7.8 million MySQL databases and 3.4 million Microsoft SQL Server systems. The study did not include ports for other popular database systems, notably, PostgreSQL and OracleDB.)
- A total of 4.7 million systems expose one of the most commonly attacked ports used by Microsoft systems, 445/TCP.
- SSH (secure shell) adoption over telnet (clear-text shell) is gaining ground, with over 50% of regions offering more ssh servers than telnet servers.
- Non-web-based access to email (via clear text POP or IMAP protocols) is still the norm versus the exception in virtually every country.
- There is a correlation between the GDP of a nation, overall Internet “presence” in terms of services offered, and the exposure of insecure, clear-text services.
- The most exposed nations include countries with the largest GDPs, such as the United States, China, France, and Russia.