DOCSLIB.ORG

Sophos Security Threat Report 2007 Malware

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Sophos Security Threat Report 2007 Malware Security threat report Security threat report 2007 Overview 2006 saw increasingly surreptitious behavior on the part 2006 at a glance of cybercriminals who have found more cunning ways to hide their activities. Copycat websites that only the keenest eye can detect as fake, spam campaigns that mutate in • Malware authors continuing to turn their a matter of seconds in order to evade detection, phishers backs on large-scale attacks in favor of replicating voicemail systems to duplicate the switchboards more focused attacks of legitimate companies – these are just three examples of • Explosive growth of web-based downloaders the rapidly changing nature of the threat. to spy on users The total number of different malware threats protected • Total number of different malware threats against by Sophos was 207,684, with Mytob at the top of protected against – 207,684 the list of malware families. Malware continued to spread • 41,536 new pieces of malware detected by via spam, instant messages, hacked websites, email, and Sophos network shares. In addition, the web became a signifi cant source of threats, being overrun by spyware, adware, • Trojans outnumbering Windows viruses potentially unwanted applications and undesirable websites. and worms 4:1 The motivation, as with all other spreading methods, was • New mass-mailing worm, Stratio had over fi nancial gain, with perpetrators trying to steal confi dential 1000 unique variants in November information or generate income through compromised PCs. • Email containing infected attachments – As malware writers continued to attempt to use malicious down to 1 in 337 code in a covert fashion to evade detection, the trend away • Most spam continuing to be relayed by from infected email that we saw in 2005 persisted. The poorly protected US computers proportion of infected email was down from 1 in 44 in 2005 to just 1 in 337 in 2006. Increasingly complex ways of getting private information Only 34% of businesses think 2007 will from users and businesses has seen more rapidly evolving spam campaigns, complex operational methods, and a raft be a better year for security than 2006. Source: Sophos online poll, December 2006 of new scams. These have been met with new laws and an increased vigor in applying them, but the threat landscape remains challenging for the year ahead. 1 Sophos security threat report 2007 Malware Malware growth rates In 2006, Sophos detected 41,536 new threats. Malware 8000 writers continued to fi nd new ways of infecting computers and duping users into handing over confi dential information 7000 throughout the year. There was a particular surge at the 6000 end of the year, with November seeing 7612 new threats – nearly four times November 2005’s number of 1940. 5000 Sophos does not expect the growth in malware to taper off 4000 in 2007. If anything, we expect to see even more devious attempts to steal information with the end goal of fi nancial 3000 gain. 2000 The spike in the graph above is attributable to the emergence 1000 in 2006 of a family of malware called Stratio, also known as Stration or Warezov. This mass-mailing worm saw major 0 growth and over one thousand unique variants of it were Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec spammed out in November. (Stratio is described in more New malware threats each month in 2006 detail on page 4.) Top ten email threats Sophos has a global network of tens of thousands of 0% 5% 10% 15% 20% 25% 30% monitoring stations capturing data on the latest viruses W32/Mytob spreading via email. W32/Netsky Although the proportion of infected email fell from 1 in 44 W32/Sober in 2005 to just 1 in 337 (0.3%) in 2006, there was W32/Zafi nevertheless some high-profi le malware dropping into users’ W32/Nyxem inboxes. Worms such as Mytob, Netsky and Sober spread widely via email in 2006. W32/Bagle W32/MyDoom 1 Mytob W32/Stratio The list of top ten malware families reveals that variants of the Mytob worm continue to plague insuffi ciently protected Troj/Clagger users around the globe. Mytob fi rst emerged in March W32/Dref 2005, yet people are still being infected by this email-aware worm. 18-year-old Farid Essebar, a Russian-born resident Top ten malware families 2006 of Morocco, known as the owner of the online handle “Diabl0”, was sentenced to two years in jail for spreading the Zotob worm.1 Evidence found within some Mytob variants suggests that he was also involved in their creation. With thousands of different variants of Mytob, many of which are hidden within bespoke compression code, it is likely to continue to hit unprotected computer users in 2007. 2 Sophos security threat report 2007 2 Netsky 5 Nyxem On 8 May 2004, the German teenager, Sven Jaschan, was This mass-mailing malware, most commonly known as the arrested in connection with the widespread Netsky and Kama Sutra worm because it uses a variety of pornographic Sasser worm outbreaks. In July 2005, he was sentenced disguises, caused panic for infected computers’ users in to one year and nine months on probation and 30 hours early 2006.6 Its payload was destructive, destroying DOC, community service.2* Despite this sentencing, the Netsky XLS, MDB, MDE, PPT, PPS, ZIP, RAR, PDF, PSD and DMP family, in particular variants Netsky-P and Netsky-D, fi les on the third day of any month. continue to make a signifi cant impact on the charts. 6 Bagle An additional worry is that Netsky-D can run on a default The Bagle family was fi rst seen and protected against in installation of Windows Vista, Microsoft’s recently released January 2004. Despite its maturity, computer users are still operating system.3 Although Vista includes additional being infected by this threat. Several more recent variants security features which will help lock down a computer from spread widely in February 2006: Bagle-CM posed as a attack, this threat again demonstrates the importance of up- message offering free tickets to the Winter Olympic games to-date virus protection. in Turin,7 while Bagle-CO carried the words of love in a fake Valentine greeting. 3 Sober Sober also continues to be a widespread threat. Having fi rst The success of these threats is a result of too many emerged in October 2003, it continues to present itself in computers running today without appropriate protection. Sophos’s top ten lists. Its most widespread variant, Sober-Z, Variants of Bagle will continue to spread via email until fi rst seen in late 2005, sent itself as an email attachment affected computer users install anti-virus against these pretending to be an email from the FBI, CIA or German threats. authorities, and attempted to turn off security software on the user’s computer. It stopped spreading on January 6, 2006 but despite spreading for only a few days at the Microsoft Windows Vista beginning of the year, it still managed to secure the Sober Microsoft launched Windows Vista, its successor for family third place in the list of the most prolifi c malware Windows XP, in November 2006. Vista boasts a number of families of 2006.** security settings, including User Access Control, which allows the user to make choices on what is allowed to run on a case- 4 Zafi by-case basis and offers better protection against malware. Its Another old-timer, Zafi was fi rst seen in April 2004, and Windows Mail email client has a number of default settings spread by harvesting email addresses. The fourth version which can help stop malware from being executed. This is of this code, Zafi -D, is the most widespread of this family.5 good news for computer users. Having an operating system Posing as a Christmas greeting, it used social engineering that can offer better protection against threats will certainly techniques to fool users into launching the attachment. At compliment their security policy. its height, it accounted for 1 in every 10 emails travelling However, it is important that users do not rely solely on the across the internet and claimed number one position in the security improvements in Windows Vista to protect their 2005 virus chart. systems from malware attacks. Sophos tested Microsoft Vista in its default settings and found that three high profi le and widespread email-aware worms would run on Vista: Stratio-Zip, Netsky-D and MyDoom-O. These three variants represented almost 40% of all the threats that were circulating during the month of November 2006. * Two years ago, in a blaze of publicity, Jaschan was hired by a German security Microsoft has an additional challenge to face in the coming fi rm, sending out a dangerous message that virus writers might be able to gain year. With Microsoft comfortably retaining the largest portion hasty employment in the industry despite their malicious behavior. of market share in the operating system business, they will continue to be targeted by malware authors searching for **In an odd twist, an unnamed 20-year-old German man, who had a number vulnerabilities in Vista code. Although Microsoft has made of pornographic pictures of children on his computer, turned himself in to the great improvements in issuing patches for known security authorities, believing a message sent by Sober-Z which claimed he was being holes in the code, exploits are regularly used in malware to investigated by Germany’s Federal Crime Offi ce (known as the BKA) for visiting bypass security on computers. illegal websites4. 3 Sophos security threat report 2007 7 MyDoom 10 Dref The MyDoom family of worms has been widespread for First seen in mid-2005, early versions of Dref spread via a number of years.
Load more

Recommended publications
  • (IN)SECURE Magazine Contacts
    It’s February and the perfect time for another issue of (IN)SECURE. This time around we bring you the opinions of some of the most important people in the anti-malware industry, a fresh outlook on social engineering, fraud mitigation, security visualization, insider threat and much more. We’ll be attending InfosecWorld in Orlando, Black Hat in Amsterdam and the RSA Conference in San Francisco. In case you want to show us your products or just grab a drink do get in touch. Expect coverage from these events in the April issue. I’m happy to report that since issue 14 was released we’ve had many new subscribers and that clearly means that we’re headed in the right direction. We’re always on the lookout for new material so if you’d like to present yourself to a large audience drop me an e-mail. Mirko Zorz Chief Editor Visit the magazine website at www.insecuremag.com (IN)SECURE Magazine contacts Feedback and contributions: Mirko Zorz, Chief Editor - [email protected] Marketing: Berislav Kucan, Director of Marketing - [email protected] Distribution (IN)SECURE Magazine can be freely distributed in the form of the original, non modified PDF document. Distribution of modified versions of (IN)SECURE Magazine content is prohibited without the explicit permission from the editor. Copyright HNS Consulting Ltd. 2008. www.insecuremag.com Qualys releases QualysGuard PCI 2.0 Qualys announced the availability of QualysGuard PCI 2.0, the second generation of its On Demand PCI Platform. It dramatically streamlines the PCI compliance process and adds new capabilities for large corporations to facilitate PCI compliance on a global scale.
    [Show full text]
  • It Flash Jagan Institute of Management Studies
    Jims It Flash Jagan Institute of Management Studies August 2014 IT FLASH Volume 8 Issue 6 Year 2014 Viruses Here are my top 5 Worms, Trojans, or Viruses. 1. Melissa A macro virus named after a Miami stripper, was so effective in 1999 that the tidal wave of email traffic it gen- erated caused the likes of Intel and Microsoft to shut down their email servers. The virus contained a Word document labeled List.DOC as an attachment to an email allowing access to porn sites. 2. The Anna Kournikova Virusq qq This computer virus was attributed to a Dutch programmer Jan de Wit on February 11, 2001. The virus was designed to trick a recipient into opening a message by suggesting that it contained a picture of the lovely Anna Kournikova, instead the recipient triggered a malicious program. 3. MyDoom MyDoom began appearing in inboxes in 2004 and soon became the fastest spreading worm ever to hit the web, exceeding previous records set by the Sobig worm and ILOVEYOU. A side note, though I knew people affect- ed by Sobig and ILOVEYOU, I did not see either of these in the wild. The reason that MyDoom was effective was that the recipient would receive an email warning of delivery fail- ure – a message we have all seen at one time or another. The message prompted the recipient to investigate thus triggering the worm. 4. Sasser & Netsky Easily one of the most famous and prolific variants of computer worms, famous for effectiveness and the fact that it was authored by an 18 year-old German, Sven Jaschan, who confessed to having written these and other worms.
    [Show full text]
  • Hackers, Users, Information Security I.P.L. Png, Candy Q. Tang, Qiu
    Workshop on the Economics of Information Security (WEIS 2006) Hackers, Users, Information Security I.P.L. Png, Candy Q. Tang, Qiu-Hong Wang Revised, May 2006 Abstract We analyze the strategic interactions among end-users and between end-users and a hacker. We show that security efforts by end users are strategic substitutes. This explains the inertia among end-users in taking precautions even in the face of grave potential consequences. Next, we analyze the direct and indirect effects of changes in user fixing cost and the rate of enforcement against hacking. For instance, a reduction in user fixing cost would directly lead users to increase fixing effort. However, that would make them less attractive targets, and so induce less hacking, and hence, indirectly lead users to reduce fixing. National University of Singapore. Corresponding author: Ivan Png, tel: +65 6516-6807; http://www.comp.nus.edu.sg/~ipng/. We thank Anindya Ghose and the anonymous referees for very helpful advice and suggestions. © 2006, Png, Tang, and Wang 1 Workshop on the Economics of Information Security (WEIS 2006) 1. Introduction Information security is a critical issue of both national policy and business operations (Whitman 2003). For instance, in May 2004, Sven Jaschan created the Sasser worm to exploit a vulnerability in the Windows 2000 and XP operating systems. The Sasser worm and its variants caused hundreds of thousands of PCs to crash (ZDnet 2005). In August 2003, the Microsoft Blaster worm exploited a vulnerability in Windows 2000 and XP to infect hundreds of thousands of computers, from which it launched a “denial of service” attack on the Microsoft Windows Update server (Register 2003).
    [Show full text]
  • Compliments of Edited by Linda Mccarthy and Denise Weldon-Siviy
    Compliments of Edited by Linda McCarthy and Denise Weldon-Siviy page press Smart Books for Smart People® The author and publisher have taken care in the preparation of this book, but make no expressed or implied warranty of any kind and assume no responsibility for errors or omissions. No liability is assumed for incidental or consequential damages in connection with or arising out of the use of the information or programs contained herein. All trademarks are the property of their respective owners. Publisher: Linda McCarthy Editor in Chief: Denise Weldon-Siviy Managing Editor: Linda McCarthy Cover designer: Alan Clements Cover artist: Nina Matsumoto Interior artist: Heather Dixon Web design: Eric Tindall and Ngenworks Indexer: Joy Dean Lee Interior design and composition: Kim Scott, Bumpy Design Content distribution: Keith Watson The publisher offers printed discounts on this book when ordered in quantity for bulk purchases, or special sales, which may include electronic versions and/or custom covers and content particular to your business, training, goals, marketing focus, and branding interests. For more information, please contact: U.S. Corporate and Education Sales (510) 220-8865 Except where otherwise noted, content in this publication is licensed under the Creative Commons Attribution-Noncommercial-No Derivative Works 3.0 United States License, available at http://creativecommons.org/licenses/by-sa/3.0/us/legalcode. ISBN 978-0-615-37366-9 Library of Congress Cataloging-in-publication Data McCarthy, Linda Own your space : keep yourself and your stuff safe online / Linda McCarthy. ISBN 978-0-615-37366-9 (electronic) 1. Computer security. 2. Computers and children.
    [Show full text]
  • Part 2 of Examples of Malicious Computer Programs
    www.rbs2.com/cvirus2.pdf 9 Jul 2005 Page 1 of 25 Examples of Malicious Computer Programs Part 2 Copyright 2004-2005 by Ronald B. Standler Keywords address, addresses, arrest, attachment, attack, attacks, author, authors, Bagle, Blaster, case, cases, code, computer, computers, consequences, conviction, court, crime, criminal, criminals, damage, email, e-mail, Goner, harm, harms, history, infect, infected, injury, injuries, internet, Jaschan, law, laws, legal, mail, malicious, Microsoft, MyDoom, Netsky, Parson, Pechman, perpetrator, program, programs, propagate, propagates, propagation, punish, punishment, restitution, Sasser, Slammer, SoBig, software, victim, victims, virus, viruses, worm, worms Table of Contents Introduction . 2 Goner Worm . 4 Perpetrators of Goner Worm . 4 Slammer . 5 SoBig . 6 Blaster . 8 Perpetrators of Blaster . 8 my comments on Parson’s sentence and restitution . 12 links to U.S. v. Parson documents . 15 Bagle . 16 MyDoom . 19 Netsky . 20 Sasser . 22 Sven Jaschan: author of Netsky and Sasser . 22 Conclusion . 25 www.rbs2.com/cvirus2.pdf 9 Jul 2005 Page 2 of 25 Introduction my previous essay In May 2002, I wrote my first essay about the harm done by malicious computer programs (i.e., computer viruses and computer worms). That essay, which is posted at http://www.rbs2.com/cvirus.htm , discussed fourteen examples of malicious computer programs: 1-5. five early examples, released during the years 1986 to 1994 6. the worm released into the Internet by Robert Tappan Morris in 1988 7. Melissa Virus, released in March 1999 8. ILOVEYOU Worm, released in May 2000 9. Anna Worm, released in February 2001 10. CodeRed, released in July 2001 11.
    [Show full text]
  • 2001-2013: Survey and Analysis of Major Cyberattacks Arxiv
    2001-2013: Survey and Analysis of Major Cyberattacks Tavish Vaidya Georgetown University Abstract Widespread and extensive use of computers and their interconnections in almost all sectors like communications, finance, transportation, military, governance, education, energy etc., they have become attractive targets for adversaries to spy, disrupt or steal information by presses of keystrokes from any part of the world. This paper presents a survey of major cyberattacks from 2001 to 2013 and analyzes these attacks to understand the motivation, targets and technique(s) employed by the attackers. Observed trends in cyberattacks have also been discussed in the paper. 1 Introduction Cyberattacks are computer-to-computer attacks undermining the confidentiality, integrity, and/or availability of computers and/or the information they hold[1]. Computer networks have no geo- graphical borders that need to be crossed for an attacker to steal information. This grants freedom to any attacker to pick his target anywhere in the world and carry out a cyberattack. Therefore, se- curing computer systems is as important as securing physical entities from being attacked. In terms arXiv:1507.06673v2 [cs.CY] 1 Sep 2015 of money, Ponemon Institute[2] estimated the average cost of cyberattacks to be $11.6 million per organization for 2013, which was 26 percent more than 2012. Cyberattacks have not only caused losses in billions of dollars[3], but also had psychological impact on human psyche. As an example, in August 2004, fear of cyberattacks during Olympic games in Greece kept people from attending the Olympic events[4]. With Internet of Things1 al- ready here, securing computer networks and end devices becomes a paramount concern to prevent cyberattacks from disrupting and hijacking them for malicious purposes.
    [Show full text]
  • Malicious Bots : an Inside Look Into the Cyber‑Criminal Underground of the Internet / Ken Dunham and Jim Melnick
    An Inside Look into the Cyber-Criminal Underground of the Internet KEN DUNHAM JIM MELNICK Boca Raton London New York CRC Press is an imprint of the Taylor & Francis Group, an informa business AN AUERBACH BOOK Auerbach Publications Taylor & Francis Group 6000 Broken Sound Parkway NW, Suite 300 Boca Raton, FL 33487-2742 © 2009 by Taylor & Francis Group, LLC Auerbach is an imprint of Taylor & Francis Group, an Informa business No claim to original U.S. Government works Printed in the United States of America on acid-free paper 10 9 8 7 6 5 4 3 2 1 International Standard Book Number-13: 978-1-4200-6903-7 (Hardcover) This book contains information obtained from authentic and highly regarded sources. Reasonable efforts have been made to publish reliable data and information, but the author and publisher can- not assume responsibility for the validity of all materials or the consequences of their use. The authors and publishers have attempted to trace the copyright holders of all material reproduced in this publication and apologize to copyright holders if permission to publish in this form has not been obtained. If any copyright material has not been acknowledged please write and let us know so we may rectify in any future reprint. Except as permitted under U.S. Copyright Law, no part of this book may be reprinted, reproduced, transmitted, or utilized in any form by any electronic, mechanical, or other means, now known or hereafter invented, including photocopying, microfilming, and recording, or in any information storage or retrieval system, without written permission from the publishers.
    [Show full text]
  • CIS 381: Social & Ethical Issues of Computing
    CIS 381: Social & Ethical Issues of Computing Security Dr. David Koop D. Koop, CIS 381, Spring 2019 Privacy • Privacy related to notion of access • Access - Physical proximity to a person - Knowledge about a person • Privacy is a "zone of inaccessibility" • Privacy violations are an affront to human dignity • Too much individual privacy can harm society • Where to draw the line? [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !2 Solove’s Taxonomy of Privacy • Information collection: Activities that gather personal information • Information processing: Activities that store, manipulate, and use personal information that has been collected • Information dissemination: Activities that spread personal information • Invasion: Activities that intrude upon a person’s daily life, interrupt someone’s solitude, or interfere with decision-making [M. J. Quinn] D. Koop, CIS 381, Spring 2019 !3 Data Mining by the Government • Data mining: Process of searching through one or more databases looking for patterns or relationships among the data • Examples: - IRS Audits: match information from different sources and find returns that appear likely to have errors resulting in underpayment - Syndromic Surveillance Systems: search for patterns indicating the outbreak of an epidemic or bioterrorism - NSA Telecommunications Records Database: analyze calling patterns to detect terrorist networks - Predictive Profiling D. Koop, CIS 381, Spring 2019 !4 Code of Fair Information Practices • "Bill of Rights for the Information Age" (1970s) • Code - No secret databases - People should have access to personal information in databases - Organizations cannot change how information is used without consent - People should be able to correct or amend records - Database owners, users responsible for reliability of data and preventing misuse [M.
    [Show full text]
  • Cyber War Attacks and Hacking
    Cyber Attacks, Threats, Espionage and Hacking V. Rajendran Advocate and Cyber Law Consultant Email: [email protected] URL: venkrajen.in +91-44-22473849; +91-9444073849 Cyber Crimes and Digital War • Digital War: what constitutes a digital war • Key features: – No physical barriers – Offender is often anonymous – No physical or other personal contacts – Victims do not even know that they are victimized – Legal process: filing a complaint, investigation etc – Trans-border, international, global reach – International laws and treaties Cyber Terrorism and Cyber Crimes • Cyber Terrorism is a cyber crime against a community, a nation or a group and often with a cause, a belief, a misguided faith • Terrorism and crime are as old as civilisation • Terrorism and acts of treason, Cyber Crime or cyber terrorism, espionage, sedition and attacking a nation’s defence infrastructure have been spoken about in as early as 350 BC in Kautilya’s Arthashastra Critical Infrastructure and Intelligence • The most intelligent system: Human brain • Thinking, interpretation, non-conformance, violation and criminality – all inter-related ! • Crime per se is as old as human being and criminality is as old as human brain and thinking • Use of intelligent systems in the historic past – Use cryptography (Caesar, Alexander, Kautilya) – Use of spying – in politics, governance (Arthashastra) – Information collection – Intelligence gathering – its use, abuse, misuse? Weapons and tools in cyber attacks • As against the ICBM, Surface to Air Missiles, a cyber attack has the key- board, mouse and network with a sound knowledge of technology as its tool and enabler • Stuxnet infamously called the first digital weapon and many other technologies are used • Quite often, what is technology to one, is an instrument of crime and attack for another.
    [Show full text]
  • 10 Worst Computer Viruses of All Time 10 Worst Computer Viruses of All
    10/8/12 HowStuffWorks "Worst Computer Virus 9: ILOVEYOU" 10 Worst Computer Viruses of All Time by Jonathan Strickland Laptop Image Gallery 10 Worst Computer Viruses of All Time Computer viruses can be a nightmare. Some can wipe out the information on a hard drive, tie up traffic on a computer network for hours, turn an innocent machine into a zombie and replicate and send themselves to other computers. If you've never had a machine fall victim to a computer virus, you may wonder what the fuss is about. But the concern is understandable -- according to Consumer Reports, computer viruses helped contribute to $8.5 billion in consumer losses in 2008 [source: MarketWatch]. Computer viruses are just one kind of online threat, but they're arguably the best known of the bunch. There's nothing quite like finding out your computer has a serious virus. Computer viruses have been around for many years. In fact, in 1949, a scientist named John von Neumann theorized @iStockphoto.com/Olaf Loose that a self-replicated program was possible [source: Krebs]. The computer industry wasn't even a decade old, and already someone had figured out how to throw a monkey wrench into the figurative gears. But it took a few decades before programmers known as hackers began to build computer viruses. While some pranksters created virus-like programs for large computer systems, it was really the introduction of the personal computer that brought computer viruses to the public's attention. A doctoral student named Fred Cohen was the first to describe self-replicating programs designed to modify computers as viruses.
    [Show full text]
  • Vysoké Učení Technické V Brně Brno University of Technology
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Digital library of Brno University of Technology VYSOKÉ UČENÍ TECHNICKÉ V BRNĚ BRNO UNIVERSITY OF TECHNOLOGY FAKULTA INFORMAČNÍCH TECHNOLOGIÍ ÚSTAV INFORMAČNÍCH SYSTÉMŮ FACULTY OF INFORMATION TECHNOLOGY DEPARTMENT OF INFORMATION SYSTEMS KRYPTOVIROLOGIE A BUDOUCNOST MALWARE BAKALÁŘSKÁ PRÁCE BACHELOR´S THESIS AUTOR PRÁCE JOSEF PRCHAL AUTHOR BRNO 2007 VYSOKÉ UČENÍ TECHNICKÉ V BRNĚ BRNO UNIVERSITY OF TECHNOLOGY FAKULTA INFORMAČNÍCH TECHNOLOGIÍ ÚSTAV INFORMAČNÍCH SYSTÉMŮ FACULTY OF INFORMATION TECHNOLOGY DEPARTMENT OF INFORMATION SYSTEMS KRYPTOVIROLOGIE A BUDOUCNOST MALWARE CRYPTOVIROLOGY AND FUTURE OF MALWARE BAKALÁŘSKÁ PRÁCE BACHELOR´S THESIS AUTOR PRÁCE JOSEF PRCHAL AUTHOR VEDOUCÍ PRÁCE DANIEL CVRČEK SUPERVISOR BRNO 2007 Abstrakt Malware je spojený s informační technikou. Oboje se ovlivňuje navzájem. Cílem této práce je přiblížit různé typy těchto programů, stručně popsat historii a vývoj. Nastínit hlavní trendy v této oblasti a pokusit se předpovědět, kam bude vývoj směřovat. Klíčová slova A pack with the Devil, bezpečnost, bot, botnet, červ, distribuovaný výpočet, hoax, Hybris, integrace kódu, IRC, kryptovirologie, malware, metamorfismus, Morrisův červ, neuronové sítě, OneHalf, openssl, P2P, peer-to-peer, polymorfismus, Slapper, sociální inženýrství, válka červů, Vecna, vir, virus, Zmist, Zombie Abstract Malware is connected to information technology. They influence each other. The aim of this thesis is to describe various types of this software
    [Show full text]
  • Computersicherheit
    WikiPress Computersicherheit Dieses Buch beschreibt kenntnisreich, wie Computerviren und andere Computersicherheit Bedrohungen des Computers funktionieren und wie man sich vor ih- nen schützen kann. Es informiert über Würmer, Trojaner, die Hoax- und Technik, Methoden, Schutz Massenmails, die regelmäßig das E-Mailfach überquellen lassen, sowie die Phishing-Versuche dreister Abzocker, mit denen versucht wird, den Mail- lesern Passwörter für ihre Konten zu entlocken. Doch auch die Schutz- Aus der freien Enzyklopädie Wikipedia möglichkeiten kommen nicht zu kurz: angefangen von Virenschutzpro- zusammengestellt von grammen über Spamfilter bis hin zu Verschlüsselungsmodellen für die gefahrlose Kommunikation. Michael Diederich Michael Diederich wurde am 11. Mai 1983 in Duisburg geboren und hat seine Schulzeit in Baden-Württemberg mit der fachgebundenen Hoch- schulreife beendet. Nach einem viermonatigem Auslandsaufenthalt stu- diert er jetzt Wirtschaftsinformatik an der Fachhochschule Furtwangen. Er interessiert sich für Sicherheit in Computersystemen, Webapplikatio- nen und ist Mitglied im Chaos Computer Club. WikiPress 7 Veröffentlicht in der Zenodot Verlagsgesellschaft mbH Computersicherheit Technik, Methoden, Schutz Inhalt Aus der freien Enzyklopädie Wikipedia zusammengestellt von Michael Diederich Vorwort . 9 Personal Firewall . 94 WikiPress 7 Dieses Buch . .9 Spyware . 106 Originalausgabe Adware . 107 Veröffentlicht in der Überblick . 11 Dialer. 108 Zenodot Verlagsgesellschaft mbH Computersicherheit. 11 Palladium . 113 Berlin, März 2006 Datenschutz . 14 Next-Generation Secure Die Artikel und Bilder dieses Bandes stammen aus der Wikipedia (http:// Datensicherheit . 20 Computing Base . 114 de.wikipedia.org, Stand 12. Januar 2006) und stehen unter der GNU-Lizenz Trusted Platform Module . 117 für freie Dokumentation. Sie wurden vom WikiPress-Redaktionsteam für Viren, Würmer, Trojaner. 21 Kopierschutz. 120 den Druck aufbereitet und modifiziert. Sie dürfen diese modifizierte Ver- Malware .
    [Show full text]