Websites hosted in Cameroon in Africa are the internet's riskiest, says McAfee.
The security firm's third annual Mapping the Mal Web report revealed that 36.7 percent of URLs ending in .cm are dangerous, knocking .hk websites off the top spot.
McAfee said that because the domain .cm is a common typo for .com, many cybercriminals set up fake typo-squatting sites that lead to malicious downloads, spyware, adware and other potentially unwanted programs.
Aggressive measures from .hk's domain managers to clamp down on scam-related registrations means that now just 1.1 percent of .hk domain names pose a security threat to web users compared to nearly 20 percent last year.
McAfee also revealed that URLs ending in .jp (those hosted in Japan) were rated as the safest on the internet.
"This report underscores how quickly cybercriminals change tactics to lure in the most victims and avoid being caught. Last year, Hong Kong was the riskiest domain and this year it is dramatically safer," said Mike Gallagher, chief technology officer for McAfee Labs.
"Cybercriminals target regions where registering sites is cheap and convenient, and pose the least risk of being caught."
See also: McAfee maps world's riskiest web domains