Trends in CyberCrime and Malware Diagnosis
Malware is an acronym for Web based threats or malicious application – hostile, intrusive, or troublesome program code made to infiltrate your personal computer system minus the owner’s consent. Malware consists of computer viruses, spyware, Trojan horses, worms, adware, rootkits, botnets, crimeware, as well as other unwelcome software that can be used for organized Internet crime. In last year, organizations lost $120 million within the 3rd quarter to phishing and Trojan-based online banking scams. Small businesses lost $25 million as part of these frauds. (Source: the US Federal Deposit Insurance Corporation.)
Currently things have improved. There are fewer computer viruses or worms, and now we are finding more phishing attacks. Spam numbers are overflowing, changing and shifting towards organized crime with increasingly more pieces of malware. There’s fundamentally 1 objective – to make money from penetrating your computer at home and at work. This can include monitoring browsing practices and advertising – but largely these are precise assaults that use your personal computer system for criminal activities. Old software including Titanium antivirus software from the likes of Panda have been retired in lieu of much more intelligent Titanium cloud technology geared to instantly stop viruses and spyware for full Internet security.
Principally, malware is made to work fast in stealth mode, and data-stealing malware can cause damage without a business actually realizing. A single click may endanger private private data, or perhaps a corporation’s infrastructure and reputation. Companies are struggling to keep up with the influx of quicker, more dangerous content security risks, for example information stealing malware, botnet infections, and other combined threats.
For example, detection of malware Shih-Hao Weng, a TrendLabs℠ engineer, discovered a new SASFIS variant that uses a right-to-left bypass (RLO) technique. This has been generally related to spamming in the past, however nowadays, it is now one of the new social engineering tactics employed by hackers for cybercrime.
Figure 1. Sample SASFIS spam
Strong, fast and easy-to-use protection- Trend Micro™ Titanium™ Internet Security for Netbooks uses cloud technology to automatically stop viruses and spyware before they reach your computer, so it won’t slow you down – it’s a whole new way to protect your computer. Real-time updates keep your PC protected from the latest online threats. Using less than half the disk space and memory of traditional security products, Titanium Internet Security is light on your system resources so your computer runs faster. It’s designed to be easy-to-use and understand with simple screens and reports. Includes spam blocking and customizable parental controls. Keep your children safe from cyber criminals and inappropriate content when they go online – nothing comes close to Trend Micro Titanium Internet Security for Netbooks.
Here is how it works. The SASFIS Trojan arrives with a RAR file attachment in a spammed message, containing an XLS file. When it is extracted on the desktop, the supposed XLS file looks like a genuine MS Excel document. Even so, the truth is the file is really a screensaver that Trend Micro detected as TROJ_SASFIS HBC. This Trojan drops BKDR_SASFIS AC, permitting threads to become injected towards the standard svchost exe process.
Technically, even though the file may look initially to be an Excel worksheet, it includes a Win32 binary header, which in turn only executable data files have. For the user, the file will seem to be named phone&mail).xls.scr. This could lead them to believe that the file is indeed an Excel file and therefore “safe” to open, when in reality it is an executable SCR file.
With the arrival and popularity of social media networks and websites including Facebook, there is now also malware on social media sites. In America, a current Facebook malware attack will be the “Most Hilarious Video Ever” (5/28/2010). It will take you to a Facebook logon page, but it’s really a fishing site. You will then get a Request for Permission that asks you to set up an HD media player application. The attackers display bogus testimonials from various other Facebook users who have lost their own credentials already – this is an automated procedure since they’re updated constantly. You are taken to a page suggesting that you update a video player, and you receive a Download Now prompt. In fact, it really is an adware application. In the UK, this very same strike was different and had users take a quiz.
People can easily prevent this assault from affecting computers by employing best practices including not opening suspicious-looking email messages, and never installing and executing the attachments. Don’t download anything, do not click an attachment that comes in email, and just be suspicious. Use something as formidable as Titanium antivirus security, a firewall, anti-spyware and anti-fraud. All in one programs are best for the latest technology. Keep in mind that few things in life, or on the internet are free, thus be cautious downloading anything that is free of charge. Further, eBay, banks, the IRS, and many dependable organizations rarely send out emails to you. Exercise extreme care.
Conventional content security solutions are simply not speedy enough to keep up with the many new attacks being produced on a day-to-day, and even hourly, basis. Nevertheless, there are exciting technology that may support consumers and companies alike in fighting the war versus cybercrime. Internet security products including Trend Micro™ Titanium™ Internet Security for Netbooks uses cloud technology to automatically stop viruses and spyware before they reach your computer, so it won’t slow you down- it’s a whole new way to protect your computer.
Kristin Gabriel is a writer for Trend Micro™ Titanium™ Internet Security for Netbooks which in turn makes use of cloud technology to instantly prevent viruses and spyware before they get to your computer. Real-time update versions always keep PCs safeguarded from the most recent online threats. Utilizing less than half the disk space and memory of traditional security products, Titanium is easy on resources so computer systems work more rapidly. It’s meant to be effortless to work with and understand using simple displays and reports and includes spam blocking and customizable parental controls. www.trendmicro.com.
