|
Malware |
|
Malware is one of the most proflic types of online threat facing cyberspace users. It comes in many different classifications based on many different attributes. Most commonly, malware is given a specific name based on how it installs itself and propagates. The most common examples are –
Viruses – extremely common type of malware that installs itself within other legitimate files. Can be installed through email attachments, storage devices or through websites. Koobface viruses refer to viruses (or worms) that spread through social networking sites. Worms – worms tend to focus upon spreading from computer to computer and are typically a file within their own right as opposed to infecting otherwise legitimate files. Usually installs itself in the same way as viruses. Scareware - scareware installs itself by pretending to be antivirus software. It will warn the victim that their computer is infected with viruses and prompts the victim to install the scareware. Could be classified as a Trojan horse (see below) – for more information on scareware, click here Trojan Horses - Trojan horses pretend to be either legitimate programs or represent otherwise legitimate files to fool the victim into downloading/running/installing it. Exploits - exploits funnily enough exploit security holes in legitimate software, like your operating system (e.g. Windows) or your email client (e.g. Windows Mail) Another type of classification, and in our opinion the most effective classification, is ones that segregate based on what the malware actually does upon installation on a host computer. The most common examples being – Key Logger or Key Sniffer – this malware records all keystrokes including passwords and other personal information and transmits it back to the scammer. This is most commonly used with Identity theft and fraud scammers. Adware - adware displays unsolicited adverts on the victims computer. Typically the ads display less that reputable companies and may be even more dangerous scams. Spyware - spyware simply spies on the victims online activities, including what websites they visit. This can be used for various reasons including advertising. Spyware is often used in conjunction with other types of malware. Backdoor Malware - backdoor malware is installed by scammers to allow them full access to a victims computer. Upon installation, scammers will be able to bypass any firewall or security software the victim has installed and can steal files on the computer. Commonly used in Identity theft and fraud. Backdoor malware can also allow scammers to install other types of malware onto a victims computer. These are the popular variants. There are more. Of course, malware can take on one or more of the descriptions above. Malware can install itself in a variety of ways as well. Most popularly – Email attachments - running email attachments from unknown senders or suspicious emails is very dangerous indeed. If you receive an email from someone you don’t know, never open any attachments. If you receive a suspicious looking email from someone you do know, always check to see if the attachment is okay. Links and Websites - Always be careful what websites you visit. If a site looks suspicious, leave. It tends to be sites of a less that reputable subject that often contain threats, like porn sites, illegal download sites or sites that purport to sell illegal software. Additionally be wary of suspicious links as these can forward their victim to malicious sites. Storage devices - when the Internet was not so popular the most common way of transmitting dangerous files would be through infected storage devices like CDs, Floppy discs and USB devices. Not so popular these days though. Downloaded files - most commonly associated with Trojan horses, victims can download malware based on the assumption that the file is legitimate, like a video or music file. Only download from reputable sources. Content Injection - similar to websites, this is where the scammer will “inject” dangerous script into an otherwise legitimate website. This can often be done through a websites Web 2.0 feature like a forum or shoutbox. The script will then infect any other users who look at the forum, shoutbox or whatever. Pop-ups - pop-ups can appear in a variety of ways and try and induce the victim to click on them. They can then forward the victim to a malicious website or download malicious files. Often used with scareware malware. As you have seen above, malware can do a wide variety of malicious tasks once installed, of which the most dangerous is Identity theft, where the victims personal information is stolen which can lead to a plethora of other online crime, such as credit card fraud, Reshipping scams, Advanced Fee Fraud, or scams that involve social networking scams like the Facebook Friend in Need scam. |
|
Related Articles:Why do People SPAM?Surf the Web Safely? Online Identity Theft |
Recent Article Additions:Job Acceptance from Google? added on 07/27/10Scan from a Xerox WorkCentre Pro added on 07/19/10 ChangeLog Malware added on 06/09/10 Please Review My CV! added on 05/11/10 KNKNews.com, added on 04/12/10 |
|
||||||||||||||
