6.1 Introduction to Malware

Introduction to Malware (重要)

  • Malware is a malicious software that damages or disables computer systems and gives limited or full control of the systems to the malware creator for the purpose of theft or fraud.
  • Examples of Malware:
    • Trojan Horse
    • Backdoor
    • Rootkit
    • Ransomware
    • Adware
    • Virus
    • Worms
    • Spyware
    • Botnet
    • Crypter

Different Ways a Malware can Get into a System

  • Instant Messenger applications
  • IRC (Internet Relay Chat)
  • Removable devices
  • Attachments
  • Legitimate "shrink-wrapped" software packaged by a disgruntled employee
  • Browser and email software bugs
  • NetBIOS (FileSharing)
  • Fake programs
  • Untrusted sites and freeware software
  • Downloading files, games, and screensavers from Internet sites

Common Techniques Attackers Use to Distribute Malware on the Web

  • Blackhat Search Engine Optimization (SEO): Ranking malware pages highly in search results.
  • Malvertising: Embedding malware in ad-networks that display across hundreds of legitimate, high-traffic sites.
  • Compromised Legitimate Websites: Hosting embedded malware that spreads to unsuspecting visitors.
  • Social Engineered Click-jacking: Tricking users into clicking on innocent-looking webpages.
  • Spearphishing Sites: Mimicking legitimate institutions is an attempt to steal login credentials.
  • Drive-by Downloads: Exploiting flaws in browser software to install malware just by visiting a web page.

results matching ""

    No results matching ""