Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware.

Published byAllan Nichols Modified over 9 years ago

Similar presentations

Presentation on theme: "Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware."— Presentation transcript:

1 Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware

2 © 2012 Pearson, Inc. Chapter 5 Malware 2 Chapter 5 Objectives Understand viruses and how they propagate Have a working knowledge of several specific viruses Understand virus scanners Understand what a Trojan horse is

3 © 2012 Pearson, Inc. Chapter 5 Malware 3 Chapter 5 Objectives (cont.) Have a working knowledge of several specific Trojan horse attacks Understand the buffer overflow attack Understand spyware Defend against these attacks

4 © 2012 Pearson, Inc. Chapter 5 Malware 4 Introduction Virus outbreaks  How they work  Why they work  How they are deployed Buffer overflow attacks Spyware Other malware

5 © 2012 Pearson, Inc. Chapter 5 Malware 5 Viruses A computer virus  Self-replicates  Spreads rapidly  May or may not have a malicious payload

6 © 2012 Pearson, Inc. Chapter 5 Malware 6 Viruses (cont.) How a virus spreads  Finds a network connection; copies itself to other hosts on the network Requires programming skill OR  Mails itself to everyone in host’s address book Requires less programming skill

7 © 2012 Pearson, Inc. Chapter 5 Malware 7 Viruses (cont.) E-mail propagation  More common for one major reason; Microsoft Outlook is easy to work with. Five lines of code can cause Outlook to send e- mails covertly.  Other viruses spread using their own e-mail engine.

8 © 2012 Pearson, Inc. Chapter 5 Malware 8 Viruses (cont.) Network propagation.  Less frequent, but just as effective Web site delivery.  Relies on end-user negligence Multiple vectors for a virus are becoming more common.

9 © 2012 Pearson, Inc. Chapter 5 Malware 9 Viruses (cont.) Symantic site information on the Sobig virus

10 © 2012 Pearson, Inc. Chapter 5 Malware 10 Viruses (cont.) Information on the Minmail virus from the Sophos site

11 © 2012 Pearson, Inc. Chapter 5 Malware 11 Viruses (cont.) Information on the Bagle virus from the internet.com site

12 © 2012 Pearson, Inc. Chapter 5 Malware 12 Viruses (cont.) Virus hoaxes from the McAfee site

13 © 2012 Pearson, Inc. Chapter 5 Malware 13 Viruses (cont.) Wikipedia information on Robert Tappan Morris, Jr.

14 © 2012 Pearson, Inc. Chapter 5 Malware 14 Viruses (cont.) Rules for avoiding viruses:  Use a virus scanner.  DO NOT open questionable attachments. Use a code word for safe attachments from friends.  Do not believe “Security Alerts.”

15 © 2012 Pearson, Inc. Chapter 5 Malware 15 Trojan Horses A program that looks benign, but is not A cute screen saver or apparently useful login box can  Download harmful software.  Install a key logger.  Open a back door for hackers.

16 © 2012 Pearson, Inc. Chapter 5 Malware 16 Trojan Horses (cont.) Competent programmers can craft a Trojan horse:  To appeal to a certain person or  To appeal to a certain demographic Company policy should prohibit unauthorized downloads.

17 © 2012 Pearson, Inc. Chapter 5 Malware 17 Trojan Horses (cont.) Still-valid CERT advisory on Trojan horses

18 © 2012 Pearson, Inc. Chapter 5 Malware 18 The Buffer Overflow Attack Program writes data beyond the allocated end of a buffer. Valid data can be overwritten. Can cause execution of arbitrary (and potentially malicious) code.

19 © 2012 Pearson, Inc. Chapter 5 Malware 19 The Buffer Overflow Attack (cont.) A Microsoft Security Bulletin on a buffer overflow attack

20 © 2012 Pearson, Inc. Chapter 5 Malware 20 The Buffer Overflow Attack (cont.) Web tutorial for writing buffer overflows

21 © 2012 Pearson, Inc. Chapter 5 Malware 21 Spyware Requires more technical knowledge Usually used for targets of choice Must be tailored to specific circumstances Must then be deployed

22 © 2012 Pearson, Inc. Chapter 5 Malware 22 Spyware (cont.) Forms of spyware  Web cookies  Key loggers

23 © 2012 Pearson, Inc. Chapter 5 Malware 23 Spyware (cont.) Legal Uses  Monitoring children’s computer use  Monitoring employees Illegal Uses  Deployment will be covert

24 © 2012 Pearson, Inc. Chapter 5 Malware 24 Spyware (cont.) Example of free spyware removal software

25 © 2012 Pearson, Inc. Chapter 5 Malware 25 Other Forms of Malware Rootkit  A collection of hacking tools that can Monitor traffic and keystrokes Create a backdoor Alter log files and existing tools to avoid detection Attack other machines on the network

26 © 2012 Pearson, Inc. Chapter 5 Malware 26 Malicious Web-Based Code Web-Based mobile code  Code that is portable on all operating systems  Multimedia rushed to market results in poorly scripted code  Spreads quickly on the web

27 © 2012 Pearson, Inc. Chapter 5 Malware 27 Detecting and Eliminating Viruses and Spyware Antivirus software operates in two ways: Scans for virus signatures  Keeps the signature file updated Watches the behavior of executables  Attempts to access e-mail address book  Attempts to change Registry settings

28 © 2012 Pearson, Inc. Chapter 5 Malware 28 Detecting and Eliminating Viruses and Spyware (cont.) Anti-spyware software  www.webroot.com www.webroot.com  www.spykiller.com www.spykiller.com  www.zerospy.com www.zerospy.com  www.spectorsoft.com www.spectorsoft.com

29 © 2012 Pearson, Inc. Chapter 5 Malware 29 Summary There are a wide variety of attacks. Computer security is essential to the protection of personal information and your company’s intellectual property. Most attacks are preventable. Defend against attacks with sound practices plus antivirus and antispyware software.

Download ppt "Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware."

Similar presentations

Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
Presented by: Melissa Dark CERIAS, Purdue University.

Presented by: Melissa Dark CERIAS, Purdue University.
CHAPTER 2 KNOW YOUR VILLAINS. Who writes it: Malware writers vary in age, income level, location, social/peer interaction, education level, likes, dislikes.

CHAPTER 2 KNOW YOUR VILLAINS. Who writes it: Malware writers vary in age, income level, location, social/peer interaction, education level, likes, dislikes.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,

Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,
By Joshua T. I. Towers. 13.3 $13.3 billion was the direct cost of malware for business in 2006 “direct costs are defined as labor costs to analyze, repair.

By Joshua T. I. Towers $13.3 billion was the direct cost of malware for business in 2006 “direct costs are defined as labor costs to analyze, repair.
What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:

What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:
SPYWARE  Do you know where your personal information is?

SPYWARE  Do you know where your personal information is?
INTERNET THREATS AND HOW TO PROTECT YOUR COMPUTER -BRIAN ARENDT.

INTERNET THREATS AND HOW TO PROTECT YOUR COMPUTER -BRIAN ARENDT.
COMPUTER TERMS PART 2. NETWORK When you have two or more computers connected to each other, you have a network. The purpose of a network is to enable.

COMPUTER TERMS PART 2. NETWORK When you have two or more computers connected to each other, you have a network. The purpose of a network is to enable.
Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.

Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.
Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.

Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.
Chapter Nine Maintaining a Computer Part III: Malware.

Chapter Nine Maintaining a Computer Part III: Malware.
R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.

R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.
Adware, Spyware, and Malware Anand Dedhia Bharath Raj ECE 4112 Project 28 April 2005.

Adware, Spyware, and Malware Anand Dedhia Bharath Raj ECE 4112 Project 28 April 2005.
1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.

1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.
Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.

Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.
Computer Security Fundamentals Chuck Easttom Chapter 1 Introduction to to Computer Security.

Computer Security Fundamentals Chuck Easttom Chapter 1 Introduction to to Computer Security.

Similar presentations

Ads by Google