Skip to main content

Malware - The Nemesis in Disguise

 



The era of computer age brought a major shift in technology and redefined the way we work, communicate, and entertain ourselves. From OTT platforms to financial transactions, the bits and data move seamlessly through optical fiber cables (OFC), at lighting speed.

But, on a parallel path, malware attack has ushered in a wave of cyber-crimes, ranging from identity theft to data hacking.

What is Malware...

Defined as any software which intentionally disrupts the working of a computer or network system. 

This can be in the form of data loss, denial of service (DDoS) attack, or hijack of core computer services. 

These attacks are not confined to business or home users, but extend to large industries such as water treatment, or electric substations.  

Malwares are classified into different categories. This is based on their attack signature, proliferation and of course, main intent or purpose.



Types of malwares

1. Virus

The most reputed, virus enter host computer through an infected file. The file could be downloaded, or passed through a storage media (USB, Memory Card). Once inside, the virus makes multiple copies of itself, while infecting other system files.

Destruction is the keyword here, and this includes corrupting, deleting or encrypting important data files. The computer also becomes slow or sluggish and eventually crashes.

The virus can also spread to other systems, via email attachments or storage devices (External hard disc, USB, Memory cards)  

2. Worm

Spread through an affected computer network, it doesn't need a host program to infect. They target system vulnerabilities like a weak firewall, or zero-day exploit (unknown system vulnerability).

Once inside, it consumes all the data files, making them inaccessible and eventually, corrupted. Once the job is done, it migrates to the next system in the affected network.

3. Ransomware

Now common in occurrence, ransomware hijacks sensitive data files. This is done by encrypting the complete system, making it inaccessible to the user.

All that is left is a screen, with a threat attached. Either pay a ransom or all your data will be lost. Payment is usually in the form of crypto currency. 

On paying the ransom, a key is provided to decrypt the data. But there is another side to this.

In due process, the affected information could be leaked into the dark web, attracting other scammers.

4. Trojan Horse

Doesn't encrypt anything. Neither does a damage occur to system or data files. 

On the contrary, some trojans can speed up the host system. All this is done to avoid detection, and here lies its true intent. 

To steal valuable user data including passwords, credit card information, or browsing history. This is done by using techniques like key loggers, system snapshots etc.

Trojan comes packaged as a useful software, hence its name. But once installed, it leads to unlimited access for the malware.

5. Rootkit

Provides the hacker with core system privileges, while remaining hidden. This allows for downloading more malwares such as trojans, into the affected computer.     

They form the first phase of attack, erstwhile providing a path for subsequent intrusions.

6. Adware

Commonly referred to as spam, they display unwanted ads, pop ups. Though not inherently destructive, can reduce system performance.

Also, chance of clicking unwanted links that can open malicious websites.

7. Joke Program

They are also not destructive in nature. Mostly causing annoyance, in the form of multiple messages boxes, or frequent opening or closing of CD-ROM tray.



The Remedy

Though a malware attack can occur at any instance, there are few steps which provide a protective shield against the same. They include

1. Keep the operating system up to date. Regular updates/patches can reduce exploits or backdoors used by malware.

2. Invest in a good antivirus software. Instead of freeware, go for a paid version which doubles in security. Notables include Norton, McAfee, Malware Bytes.

3. Do not open suspicious links or attachments. They may come from a known source, but as said earlier, can also be from an infected system.

4. To check the credibility of a website, cross check the same, using Norton Safe Web, or McAfee Site Advisor. This is especially important in case of e commerce transactions.

5. Use Cloud services to transfer/migrate data. This reduces risk of infection by removable storage devices, like USB drives. 




Helpful Links:










Labels:

Comments

Post a Comment

Popular posts from this blog

Man In The Middle Attack - EavesDropping in the Digital World

    This is a term used to describe a cyber attack where a hacker acts as middleman, during data transfer between user and an application. The app can be a financial or an E commerce website, Software as a Service (SaaS) etc. The hacker can intercept data passed via the browser to the website, and collect sensitive information such as account and credit card details, user login etc. To put it into context, it is like a postman who reads all the letters addressed to you, then reseals the same, on delivery. This way no one suspects a foul play.   Interception This is the first phase of the attack. Here the hacker establishes a connection with the target device whether a PC, Laptop or Smart phone. This is done   through various methods   like   Free WiFi  : Here a WiFi hot spot is set up  which is not password protected. When a user logs in to the network, they are in essence connecting to the hacker's system. Now any data transfer occurs via this co...
Post a Comment
Read more

X86 vs ARM - The PC War

X86 Vs ARM A Hype?  Recently laptops powered by ARM processors have taken industry by storm. Touted as being highly power efficient, providing 18 hours backup, on as single charge. That too while running multiple program instances. Would this spell an end to the x86 architecture, where Intel and AMD rule. Or will the tables turn around? What's the Difference? Let's start with an x86 based CPU. They feature a single processing unit which can be integrated to other external peripherals like Memory, GPU etc. Here each peripheral has a separate controller, knitted together by address and data BUS. When we look at ARM all the above components (Memory, GPU) are integrated within the main chip. Known commonly as SOC (System on a Chip) . This helps in reduced footprint. But they do come with a drawback. Cannot expand by adding extra peripherals. Coming to complexity, x86 provides a simpler set up, at least for a developer. Here most of the core tasks such as Memory Read/Write, Arithmet...
Post a Comment
Read more

The Brain within an Embedded System-Difference between Microprocessors and Microcontrollers

To understand the working of an Integrated Circuit, we need to first understand what an Embedded System is.  It is basically a conjunction of Hardware and Software parts. Embedded System is a stripped-down version of a mainstream computer, specializing in a single task. They are connected either as a standalone device, or as part of a larger electrical or mechanical system. Mainly in consumer electronics like fridges or microwaves, they have low power rating and, is economical to build. Embedded system performs complex mathematical calculations at any specific time. This is done thru a Central Processing Unit (CPU) , mostly a Microcontroller or at times, a Microprocessor. A Sensor is used to collect data from the external environment Eg: Temperature, atmospheric pressure etc. This is then fed into an Analog to Digital (ADC) converter. The digital signal thus obtained is stored in memory and, decoded by the CPU.  The output of the operation is then fed to a Digital to Analog...
Post a Comment
Read more