6.1 Introduction to Malware
Introduction to Malware (重要)
- Malware is a malicious software that damages or disables computer systems and gives limited or full control of the systems to the malware creator for the purpose of theft or fraud.
- Examples of Malware:
- Trojan Horse
- Backdoor
- Rootkit
- Ransomware
- Adware
- Virus
- Worms
- Spyware
- Botnet
- Crypter
Different Ways a Malware can Get into a System
- Instant Messenger applications
- IRC (Internet Relay Chat)
- Removable devices
- Attachments
- Legitimate "shrink-wrapped" software packaged by a disgruntled employee
- Browser and email software bugs
- NetBIOS (FileSharing)
- Fake programs
- Untrusted sites and freeware software
- Downloading files, games, and screensavers from Internet sites
Common Techniques Attackers Use to Distribute Malware on the Web
- Blackhat Search Engine Optimization (SEO): Ranking malware pages highly in search results.
- Malvertising: Embedding malware in ad-networks that display across hundreds of legitimate, high-traffic sites.
- Compromised Legitimate Websites: Hosting embedded malware that spreads to unsuspecting visitors.
- Social Engineered Click-jacking: Tricking users into clicking on innocent-looking webpages.
- Spearphishing Sites: Mimicking legitimate institutions is an attempt to steal login credentials.
- Drive-by Downloads: Exploiting flaws in browser software to install malware just by visiting a web page.