Skip to main content

Malware - The Nemesis in Disguise

 



The era of computer age brought a major shift in technology and redefined the way we work, communicate, and entertain ourselves. From OTT platforms to financial transactions, the bits and data move seamlessly through optical fiber cables (OFC), at lighting speed.

But, on a parallel path, malware attack has ushered in a wave of cyber-crimes, ranging from identity theft to data hacking.

What is Malware...

Defined as any software which intentionally disrupts the working of a computer or network system. 

This can be in the form of data loss, denial of service (DDoS) attack, or hijack of core computer services. 

These attacks are not confined to business or home users, but extend to large industries such as water treatment, or electric substations.  

Malwares are classified into different categories. This is based on their attack signature, proliferation and of course, main intent or purpose.



Types of malwares

1. Virus

The most reputed, virus enter host computer through an infected file. The file could be downloaded, or passed through a storage media (USB, Memory Card). Once inside, the virus makes multiple copies of itself, while infecting other system files.

Destruction is the keyword here, and this includes corrupting, deleting or encrypting important data files. The computer also becomes slow or sluggish and eventually crashes.

The virus can also spread to other systems, via email attachments or storage devices (External hard disc, USB, Memory cards)  

2. Worm

Spread through an affected computer network, it doesn't need a host program to infect. They target system vulnerabilities like a weak firewall, or zero-day exploit (unknown system vulnerability).

Once inside, it consumes all the data files, making them inaccessible and eventually, corrupted. Once the job is done, it migrates to the next system in the affected network.

3. Ransomware

Now common in occurrence, ransomware hijacks sensitive data files. This is done by encrypting the complete system, making it inaccessible to the user.

All that is left is a screen, with a threat attached. Either pay a ransom or all your data will be lost. Payment is usually in the form of crypto currency. 

On paying the ransom, a key is provided to decrypt the data. But there is another side to this.

In due process, the affected information could be leaked into the dark web, attracting other scammers.

4. Trojan Horse

Doesn't encrypt anything. Neither does a damage occur to system or data files. 

On the contrary, some trojans can speed up the host system. All this is done to avoid detection, and here lies its true intent. 

To steal valuable user data including passwords, credit card information, or browsing history. This is done by using techniques like key loggers, system snapshots etc.

Trojan comes packaged as a useful software, hence its name. But once installed, it leads to unlimited access for the malware.

5. Rootkit

Provides the hacker with core system privileges, while remaining hidden. This allows for downloading more malwares such as trojans, into the affected computer.     

They form the first phase of attack, erstwhile providing a path for subsequent intrusions.

6. Adware

Commonly referred to as spam, they display unwanted ads, pop ups. Though not inherently destructive, can reduce system performance.

Also, chance of clicking unwanted links that can open malicious websites.

7. Joke Program

They are also not destructive in nature. Mostly causing annoyance, in the form of multiple messages boxes, or frequent opening or closing of CD-ROM tray.



The Remedy

Though a malware attack can occur at any instance, there are few steps which provide a protective shield against the same. They include

1. Keep the operating system up to date. Regular updates/patches can reduce exploits or backdoors used by malware.

2. Invest in a good antivirus software. Instead of freeware, go for a paid version which doubles in security. Notables include Norton, McAfee, Malware Bytes.

3. Do not open suspicious links or attachments. They may come from a known source, but as said earlier, can also be from an infected system.

4. To check the credibility of a website, cross check the same, using Norton Safe Web, or McAfee Site Advisor. This is especially important in case of e commerce transactions.

5. Use Cloud services to transfer/migrate data. This reduces risk of infection by removable storage devices, like USB drives. 




Helpful Links:










Labels:

Comments

Post a Comment

Popular posts from this blog

Virtual Private Network (VPN) - Browsing Anonymous

  Privacy is a major concern when browsing the internet. Your data could be eavesdropped by hackers, companies targeting ads or even rogue state actors. What gets revealed would be personal browsing history, location monitoring, IP addresses to name a few. Enter the tech... Virtual Private Network or simply known as VPN is a technology used to prevent unauthorized access of your private data. Even if a hacker penetrates the network and get hold of data packets, all that is revealed is gibberish.  This is because all the information that passes through your device is encrypted and can be only revealed through a personal key.  Internet Service Provider Before going further, a knowledge of Internet Service Provider (ISP) is needed. They are the backbone of the World Wide Web. ISP provides each device with a unique IP (Internet Protocol) address, bandwidth allocation and network security. When a website is searched, first it goes from your device to the Router or Modem which...
Post a Comment
Read more

Cyber Stalking - Unwanted Attention

With the advent of digital age, we are more connected than ever. Social media has transcended geographical locations, and no place is out of reach. But with this type of connectivity, there is a rise in the number of antisocial players. Cyber stalking cases has reportedly gone high in recent years.  Stalking is considered as any form of unwanted attention, contact or harassment directed towards an individual. This results in victim's personal space being encroached or taken for granted.  The preparator perform stalking through fake profiles, monitoring social media sites, messages or chat history. They initiate a volley of hate speech or try to tarnish their victim's reputation. Here stalking can be also a form of love addiction. An unrequited love can cause the stalker to perform the above steps as an act of revenge. Mode of Operation Installing a piece of code in the victim's computer for accessing the webcam. The spyware comes bundled with a software which could be do...
Post a Comment
Read more

Ransomware - Trojan in Disguise

  You log into the computer, and it boots up. But instead of seeing the welcome screen, you get a dialog box.  "Your data has been encrypted. To recover, pay $$ of Bitcoin." The message also has a countdown timer, which indicates a payment deadline.  Passwords, credit card details, personal videos/pictures all have been compromised. The hacker even threatens to leak everything online. What happened...... Ransomware is a type of malware that encrypts personal data and blocks access to a computer/network. To regain control, a ransom needs to be paid. Usually this is through Bitcoin, or other crypto currencies. On payment, a key is given, which decrypts everything, and returns access to the system.  However, you could be placed in a "Sucker's list" which is sold in the dark web. This can attract more ransomware attacks, in future. History.... Originating in the 90s, the attacks were first recorded in Russia. Since then, it has crossed into Europe and North America...
Post a Comment
Read more