Vulnerabilities, Spyware, Malware, Spam & Phishing

by patndoris on Jun.18, 2008,under Computers

This write up was done by my new friend George on Multiply. I was impressed with the simplicity and clarity he used to describe various types of spyware, malware etc., how it attacks, how it hides, what it does, how you know you've got it, and what you need to do. I'll go into more detail about preventing and cleaning but this is a wonderful overview.

...

For the record, I contacted him to ask permission to reproduce his article (thus a new friendship was born) and he readily gave it. Here is the original link if you'd like to check out more information available in the Free Software group (you'll have to join Multiply if you're not already signed up on there.)

A big thank you to George for allowing me to share this with you. I've reproduced the article just as it was written.

As always, prevention is the best defense. A solid firewall, good virus protection, running multiple spyware scanners, doing regular cleanup, and arming yourself with knoweldge goes a long way. Make sure you establish a regular maintenance routine and stick to it. Yes, it takes a bit of time, but it's far easier and less time consuming than trying to clean up the mess you get if you happen to get infected. And remember to be smart when you're online.

You can have the latest and greatest Computer, 500GB, 2GB RAM and 8.0Ghz processor, but you are just as susceptible to the same nasty things that someone with their 10yo Computer and 128MB Ram, 10GB Hard drive and .500ghz processor is.



Vulnerabilities


What are Vulnerabilities and how do they attack?


Vulnerabilities are flaws in computer software that create weaknesses in the overall security of the computer or network. Vulnerabilities can also be created by improper computer or security configurations. Threats exploit the weaknesses of vulnerabilities resulting in potential damage to the computer or personal data.


How Do You Know?

  • Software companies usually announce vulnerabilities as they are discovered and quickly work to fix the vulnerabilities with software and security "patches".  Without mentioning names, the smaller companies are usually faster to do this than the almost monopoly companies.

What To Do

  • Keep software and security patches up to date, by downloading all updates 2 or 3 times each week.
  • Configure the correct security settings for your specific operating system, internet browser and security software.
  • Develop personal security policies for online behaviour.
  • Install a proactive security solutions, to block threats targeting vulnerabilities.
Spyware

How do they attack?


Spyware can be downloaded from Web sites, email messages, instant messages, and from direct file-sharing connections. Additionally, a user may unknowingly receive spyware by accepting an End User License Agreement from a software program.
  • Do not accept or open suspicious error dialogs from within your browser
  • Spyware may come as part of a "free deal" offer - do not accept free deals
  • Always read carefully the End User License agreement at Install time and cancel if other ?programs? are being installed as part of the desired program
  • Keep software and security patches up to date

How Do You Know?

  • Spyware frequently attempts to remain unnoticed, either by actively hiding or by simply not making its presence on a system known to the user

What To Do

  • Use your Anti Spyware Program to provide Spyware Protection and proactively protect from other security risks
  • Ensure that your Firewall is configured to block unsolicited requests for outbound communication.
  • Do not accept or open a suspicious error dialog from within your browser
  • Spyware often comes as part of a "free deal" offer - do not accept or download any "free deals", specially the huge "FREE" HTML pics that are everywhere on Multiply.
  • Always read carefully the End User License agreement at Install time and cancel if other ?programs? are being installed as part of the desired program.
  • Keep software and security patches up to date.

Malware


How do they Attack?


Malware is a category of malicious code that includes Viruses, Worms, and Trojan Horses. Destructive malware will utilize popular communication tools to spread, including worms sent through email and instant messages, Trojan horses dropped from web sites, and virus-infected files downloaded from peer-to-peer connections. Malware will also seek to exploit existing vulnerabilities on systems making their entry quiet and easy.

How Do You Know?

  • Malware works to remain unnoticed, either by actively hiding or by simply not making its presence on a system known to YOU, the user.

What To Do

  • Only open email or Instant Message attachments that come from a trusted source and that are expected.
  • Have email attachments scanned by your security program prior to opening them
  • Delete all unwanted messages without opening.
  • Do not click on Web links sent by someone you do not know.
  • If a person on your Friends list is sending "strange messages", files, or web site links, terminate your Instant Messenger session.
  • Scan all files with your security program, before transferring them to your system.
  • Only transfer files from a well known source.
  • Ensure your Firewall blocks all unsolicited outbound communication. A certain Windows Firewall DOES NOT.
  • Keep security patches current by updating them Regularly.
Spam

How do they Attack?


Email Spam is the electronic version of junk mail. It involves sending unwanted messages, often unsolicited advertising, to a large number of recipients. Spam is a serious security concern as it can be used to deliver Trojan horses, viruses, worms, spyware, and targeted phishing attacks.

How Do You Know?

  • Messages that do not include your email address in the TO: or CC: fields are common forms of Spam
  • Some Spam can contain offensive language or links to Web sites with inappropriate content

What To Do

  • Install Spam filtering/blocking software such as
  • If you suspect an email is Spam, do not respond, just delete it.  If you have a good E-mail program like Mozilla Thunderbird, you can train it to delete spam for you.
  • Consider disabling your E-mail?s preview pane and reading emails in plain text.
  • Reject all Instant Messages from persons who are not on your Friends list.
  • Do not click on URL links within Instant Messages, unless they are from a known source and expected.
  • Keep software and security patches current by downloading updates regularly.

Phishing

How do they Attack?


Phishing is essentially an online con game and phishers are nothing more than tech-savvy con artists and identify thieves. They use SPAM, malicious Web sites, email messages and instant messages to trick people into divulging sensitive information, such as bank and credit card accounts.

How Do You Know?

  • Phishers, pretending to be legitimate companies, may use email to request personal information and direct recipients to respond through malicious web sites.
  • Phishers tend to use emotional language using scare tactics or urgent requests to entice recipients to respond.
  • The phish sites can look remarkably like legitimate sites because they tend to use the copyrighted images from legitimate sites.
  • Requests for confidential information via email or Instant Message are USUALLY not legitimate.
  • Fraudulent messages are often not personalised, may share similar properties like details in the header and footer, are often written with poor grammar, spelling mistakes and other give-away errors in their English.

:cleanup, computers, malware, phishing, spam, spyware, vista, vulnerabilities, xp