The last post tackled the damage an internal threat might do to a person on the outside of a business organization. This post deals more with the threat from within from the viewpoint of the targeted organization itself. The problem with an internally planted backdoor or some other form of malware is that it is integrated with the programs themselves that are supposed to provide security to the system. The system that is affected can most of the time be freed of these stated threats by re-installing the said application with a version that is free of the problem code.
Just imagine the amount of information that has to be moved, re-processed and re-stored just to make up for a few lines of code that has been very well placed, hidden from view. Firewalls were supposed to prevent intrusion to links of the organization from the outside and inside but if the firewall was not to know the workings of the said code, it would recognize it as a legitimate process and allow the transfer of data without taking a second look. Corporate espionage has rival companies trying to get at the other’s secrets in hopes of getting ahead of other competitors. In the US, the FBI and other Internal security forces continuously monitor such activities such as the problem when stocks were manipulated within the Stock Exchange itself to boost the value of a particular stock to favor investors.
The risks the information we entrust to companies who serve us is great and sure they do take all necessary preventive measures as much as they could, but a threat from within is truly an adversary to be dealt with.
Tags: back-doors, hidden-code, Malware, trojans
Categories: General, IT Security Basics, Malware, Network Security, News, Physical Security, Privacy & Anonymity, Real-World Issues, Security Policies
It is perhaps the dream of most sites to be one of the known sites that will be included in the affordable search engine optimization practices we have today. Many have resorted towards link building and other known online marketing practices and have paid dividends by entrusting the same to companies such as Los Angeles SEO.
But of course, there are security concerns that most people take into consideration today. One is that potential worms and Trojans may just take the place of a site, providing the irritating pop-ups which are usually the origin of these said worms and banes of the Internet.
While search engine optimization is what many web and blog site owners are aggressively seeking, just make sure you do it the professional way and avoid the scam and spammers the web holds as well today. Rather than becoming an ideal site, you may just find your site the least one to be visited at any given day due to hazards many are avoiding.
[tags]search engine optimzation, seo, online marketing, security, worms, trojans[/tags]
Tags: online-marketing, search-engine-optimzation, security, seo, trojans, worms
Categories: IT Security Basics, Malware, Network Security, Real-World Issues, Security Policies, Spyware
Computer interface with various developed programs and most would have an assigned file name extension tagged to it. There are the usual files that would have a doc, xls, ppt, jpg and bmp file extensions. There are also the compressed files such as zip and amr. The compressed files offer some potential risk since they are usually zipped to group files into one manageable file. Program scripts and installation software are the common contents of these zipped folders to save on space and to make it easier for distribution and transfer.
It is best to proceed with caution before totally unzipping the contents to any directory of your computer. It is the executable files such as the setup.exe that may garner much doubt. Once executable files are double clicked, it will immediate process and try to install itself on the machine. Once finished, there is no telling what effects it may do or create, thus the need for people to think twice before clicking on the files.
[tags]filename extensions, filenames, zipped, scanning, virus scan, spyware, trojans[/tags]
Tags: filename-extensions, filenames, scanning, Spyware, trojans, virus-scan, zipped
Categories: IT Security Basics, Malware, Operating Systems, Review, Spyware, Storage
Viruses and malware issues are far from being a thing of the past. On the contrary, they seem to grow large by numbers as each day passes. Thus the works of security software companies have their work cut out for them. There is not definite date to which such threats and intrusions would wholly be resolved.
For the time being, it would be advisable for people to scan third party storage devices such as diskettes, USB drives and mobile storages to be safe and sound. These wandering viruses can attack at any time and this is a fact anywhere computer related materials are concerned.
Files can go as far as infecting the executable files, hence document, excel and compiled scripts are baits for immediate infection and malicious intrusions. Software applications also have their limits as their development teams cater only to a specific genre for known harmful files. But it is better to lower the risk of intrusion than not having protection at all.
[tags]scan, spyware, virus, infections, spyware, malware, trojans[/tags]
Tags: infections, Malware, scan, Spyware, trojans, virus
Categories: Backups, IT Security Basics, Malware, Network Security, Operating Systems, Programming, Real-World Issues, Security Policies, Spyware, Storage, Tips, Wireless Security
The main gist of security conscious and malicious programmers is to play with the known algorithms where most of the problems can be created and avoided. The never ending search for understanding algorithms has been a given today. Malware development has been obviously aggressive and the issues and plagues that it has continued to spread is really something that keeps technology people up on their feet.
The best way is to be aware of possibilities. The Internet is known to be always up to date with such risks, but overall, a person aware of the capabilities of such should know beforehand that spyware, malware and Trojans can easily penetrate systems without notice if they are not secured properly.
Such security breaches and issues are placed under the tutelage of network administrators and officers. Being aware of such potential risks beforehand is something that they should be aware of. Besides, it is also a given that most of these professionals are aware of such risks since they are always logged on the web.
Tags: administration, algorithms, Malware, Network Security, Spyware, trojans
Categories: Cryptography, IT Security Basics, Malware, Network Security, Privacy & Anonymity, Programming, Security Policies, Spyware
Trojans hacks and worms can easily enter a person’s computer by a mere click of a link. Instant messaging, the new trend in adhering towards faster and easier communication anywhere in the world has been enhanced thoroughly, going to the extent of allowing links to be followed, sometimes generated automatically from infected computers. Such are done even when offline messages are left, such as in Yahoo Messenger issues.
The best way to avoid such links is to refrain from clicking on links without prior notice from the actual user. While most people would rely heavily on the level of relationship that they would have with their online buddy, it is still best to double check and verify before proceeding on the site link.
Being infected is quite painful that it leads to even formatting the entire system. This holds true for people who are not aware or have the time to clean it manually and methodically. Hence, the best way is to be more cautious, especially when peculiar links are met.
[tags]trojans, worms, yahoo messenger, instant messaging, hijack[/tags]
Tags: hijack, Instant Messaging, trojans, worms, yahoo-messenger
Categories: IM, IT Security Basics, Instant Messaging, Malware, Spyware, Wireless Security
Harmful objects can be obtained from the web. We are all aware that Malware and Trojans are rampant objects that have been wandering of anywhere on the Internet, especially websites that are often visited by people for reference and information. Such sites would get hijacked and also contaminate visiting users as well, something that can be done through Internet cookies stored on the web folder in the machines.
While developers and security administrators have religiously searched for ways to find such solutions, the ever changing development of new threats coming from the Internet has been far from over. To date, even the well-protected workstations can still be penetrated by objects that are not immediately visible.
Internet fences in the form of firewalls and software protection templates have tried to stop such intrusions but need to be updated frequently to answer the related threats. Without such temporary fences that are up, workstations are sitting ducks waiting to be shot, and if web administrators are not up to date with the new threats, the fences used are good as gone once they occur.
[tags]malware, trojans, spyware, firewall[/tags]
Tags: firewall, Malware, Spyware, trojans
Categories: IT Security Basics, Malware, Network Security, Physical Security, Security Policies, Spyware
Electronic mail has become the buzz of the town in recent years and while some use e-mail as a means of cheaper and faster ways of sending messages and files over the Internet, it cannot be discounted that some use e-mail as a form of exploit as well, by send unrecognized files to various recipients who in the same way may not know the harmful effects that such files would bring to their personal workstations.
While there are various means of supplying computer protection such as firewalls and anti-virus protection for single and networked computers, some harmful file just tends to get past them. That is why there are specific softwares used for specific infections, particularly the Trojan developed files that do their work unnoticed.
So the next time you get mail from someone who has an attachment with questionable file name extensions, better think twice before clicking or opening it. It may cause more pain than enjoyment in most cases.
[tags]spyware,malware,trojans,security[/tags]
Tags: IT Security Basics, Malware, security, Security Policies, Spyware, Tips, trojans
Categories: IT Security Basics, Malware, Security Policies, Spyware, Tips
I’ve always thought that hackers stick together when it comes to controlling someone’s machine, but apparently they don’t. The Trojan SpamThru comes with its copy of anti-virus software to remove any of its competitors from the machine.
Malware that attempt to block access to anti-virus software updates is pretty common, but this takes a different tack to keep itself ahead of its rivals. How does it work? SpamThru secretly installs a pirated copy of Kaspersky’s anti-virus for Wingate onto your compromised computer from a server controlled by hackers. It then programs to bypass any license signature checks before downloading updates. That means users remain unaware of the hidden anti-virus scanning for any of the other malware and eliminating them. SpamThru also uses P2P to control all of the machines it has infected. Even if the central server gets shut down, the hacker can immediately update his peers in the network to identify a new central server. As long as he controls one peer, his network will remain strong. All this is done so SpamThru’s built in junk mail dispatching client can operate in peace. It can even randomize the height and width of embedded gif files in the spam sent to defeat anti-spam solutions that reject e-mail with static images.
Good thing it’s easy to remove by downloading the latest set of anti-virus updates. This increase in sophistication, comparable with commercially available software out in the market, does raise an interesting question. If the hackers can use anti-virus software to promote their own ends, will security personnel come up with ways to put viruses and Trojans to good use?
[tags]news, trojans, malware[/tags]
Tags: Malware, News, Real-World Issues, trojans
Categories: News, Real-World Issues
Though trojans and viruses are frequently mentioned when dealing with network and computer security, the terms are often interchanged for one another. An innocuous-looking program like a free screensaver that can bring your computer crashing around you is called a trojan. Trojans were named after the Trojan Horse of mythology, when the Greeks pretended to retreat because they feared the wrath of a goddess, leaving a wooden horse as their offering. The Trojans rejoiced and let the horse in, not knowing that a few of the Greeks were hidden inside the horse. In the dead of the night they crept out and attacked the city. That sums up how trojans work. Though it seems like an innocent and useful application or file, these programs would have malicious code hidden inside it. These usually come masquerading as a legitimate attachment or a game file you’d want to download. and they work once you open them.
Trojans are broken down by how they breach the system and how much damage they can cause. Some can be harmless, changing your wallpaper or colors. Others can gain access to your information through keylogging or corrupt your files without your knowledge. A backdoor trojan, for example, will open a way for a malicious attacker to gain access to your computers. The main difference between a trojan and a virus is how it’s distributed. Though a trojan can be sent to multiple targets, as long as it isn’t open it remains inactive.
Trojans are usually transferred through these means: as e-mail attachments, through websites, or file-sharing networks. The simple precaution of not opening e-mails with attachments, even those from your friends and associates, can keep trojans away. Pay attention to the extensions of these attachments, They could be masquerading as image files but are actually executable code. Last, if you find a file that seems useful, check online if it’s legitimate and real. Never download applications if you’re not sure about where it came from.
[tags]trojans, tips[/tags]
Tags: IT Security Basics, Tips, trojans
Categories: IT Security Basics, Tips
