Presentation is loading. Please wait.

Presentation is loading. Please wait.

Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.

Published byZoe Watson Modified over 9 years ago

Similar presentations

Presentation on theme: "Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software."— Presentation transcript:

1 Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software

2 2 Guide to Operating System Security Learning Objectives Explain how viruses, worms, and Trojan horses spread Discuss typical forms of malicious software and understand how they work Use techniques to protect operating systems from malicious software and to recover from an attack

3 3 Guide to Operating System Security Viruses, Worms, and Trojan Horses Different forms of malicious software (malware) Intended to  Cause distress to a user  Damage files or systems  Disrupt normal computer and network functions

4 4 Guide to Operating System Security Viruses Programs borne by a disk or a file that has the ability to replicate Typically affect  Executable program  Script or macro  Boot or partition sector of a drive

5 5 Guide to Operating System Security How Viruses Spread Transported from one medium or system to another Replicated throughout a system (eg, W32.Pinfi)

6 6 Guide to Operating System Security Virus Classification (Continued) How they infect systems  Boot or partition sector  File infector  Macro  Multipartite

7 7 Guide to Operating System Security Virus Classification (Continued) How they protect themselves from detection or from a virus scanner  Armored  Polymorphic  Stealth  Companion Benign or destructive

8 8 Guide to Operating System Security Worms Programs that replicate on the same computer or send themselves to many other computers Can open a back door

9 9 Guide to Operating System Security How Worms Spread Buffer overflow (eg, Code Red and Code Red II) Port scanning or port flooding Compromised passwords

10 10 Guide to Operating System Security Trojan Horses and How They Spread Programs that at first appear useful, but can cause damage or provide a back door Examples  Backdoor.Egghead  AOL4FREE  Simpsons AppleScript Virus

11 11 Guide to Operating System Security Locations for Viruses, Worms, and Trojan Horses (Continued)

12 12 Guide to Operating System Security Locations for Viruses, Worms, and Trojan Horses (Continued)

13 13 Guide to Operating System Security Locations for Viruses, Worms, and Trojan Horses (Continued)

14 14 Guide to Operating System Security Location for a UNIX/Linux System

15 15 Guide to Operating System Security Location for a Windows XP System

16 16 Guide to Operating System Security Typical Methods Used by Malicious Software Executable methods Boot and partitions sector methods Macro methods E-mail methods Software exploitation Spyware

17 17 Guide to Operating System Security Executable Methods Files that contain lines of computer code that can be run  Examples:.exe,.com,.bat,.bin,.btm,.cgi,.pl,.cmd,.msi Can infect source or execution code of a program

18 18 Guide to Operating System Security Boot and Partition Sector Methods Particularly affect Windows and UNIX systems Typically infect/replace instructions in MBR or Partition Boot Sector Can corrupt address of primary partition May move boot sector to another location if size of virus exceeds space allocated for boot sector Eradication typically involves recreating MBR and Partition Boot Sector instructions

19 19 Guide to Operating System Security Macro Methods A virus can infect a macro and spread each time the macro is used Software is configured so that macros are disabled unless digitally signed by a trusted source

20 20 Guide to Operating System Security Macro Protection

21 21 Guide to Operating System Security E-Mail Methods Sent as attachments to e-mail

22 22 Guide to Operating System Security Software Exploitation Particularly aimed at new software and new software versions Examples of potential vulnerabilities  DNS services  Messaging services  Remote access services  Network services and applications

23 23 Guide to Operating System Security Spyware Software placed on a computer  typically without user’s knowledge  reports back information about user’s activities Some operate through monitoring cookies

24 24 Guide to Operating System Security Protecting an OS from Malicious Software Install updates View what is loaded when a system is booted Use malicious software scanners Use digital signatures for system and driver files Back up systems and create repair disks Create and implement organizational policies

25 25 Guide to Operating System Security Installing Updates for Windows Windows Update  Provides access to patches that are regularly issued Service packs  Address security issues and problems affecting stability, performance, or operation of features included with the OS

26 26 Guide to Operating System Security Using Windows Update

27 27 Guide to Operating System Security Using Windows Update

28 28 Guide to Operating System Security Installing Updates for Red Hat Linux (Continued) Issued frequently; can be downloaded from Web site Red Hat Network Alert Notification Tool must be configured

29 29 Guide to Operating System Security Installing Updates for Red Hat Linux (Continued)

30 30 Guide to Operating System Security Installing Updates for NetWare Download updates and/or consolidated support packs from Novell’s Web site

31 31 Guide to Operating System Security Installing Updates for Mac OS X Software Update tool enables you to:  Configure the system to automatically check for updates at specified intervals  Manually check for updates  View currently installed updates

32 32 Guide to Operating System Security Installing Updates for Mac OS X

33 33 Guide to Operating System Security Viewing What Is Loaded When a System Is Booted Windows 2000, Windows XP Professional, and Windows Server 2003  View information on-screen  Have a log record information (Advanced Options menu) Red Hat Linux and NetWare  Automatically display boot load information Mac OS X  Display boot process by booting into either single user mode or verbose mode

34 34 Guide to Operating System Security Advanced Options Menu

35 35 Guide to Operating System Security Using Malicious Software Scanners Effective way to protect operating system Scan systems for virus, worms, and Trojan horses Often Called Virus Scanners

36 36 Guide to Operating System Security Malicious Software Scanners: Features to Look For (Continued) Scans memory and removes viruses Continuous memory scanning Scans hard and floppy disks and removes viruses Scans all know file formats Scans HTML documents and e-mail attachments

37 37 Guide to Operating System Security Malicious Software Scanners: Features to Look For (Continued) Automatically runs at a scheduled time Manual run option Detects known and unknown malicious software Updates for new malicious software Scans files that are downloaded Uses protected or quarantined zones for downloaded files

38 38 Guide to Operating System Security Using a Virus Scanner

39 39 Guide to Operating System Security Virus Scanning Software (Continued) continued …

40 40 Guide to Operating System Security Virus Scanning Software (Continued)

41 41 Guide to Operating System Security Using Digital Signatures for System and Driver Files Digital signature  Code placed in a file to verify its authenticity by showing that it originated from a trusted source Driver signing  Placing a digital signature in a device driver to Show that the driver is from a trusted source Indicate compatibility with an OS

42 42 Guide to Operating System Security Backing Up Systems and Creating Repair Disks Most OSs offers ways to back up your system Some OSs enable creation of a boot disk or repair disk  Windows 2000 Emergency Repair Disk (ERD)  Windows XP or Windows Server 2003 Automated System Recovery (ASR) set  Red Hat Linux Boot disk

43 43 Guide to Operating System Security Creating a Windows 2000 ERD Create a new ERD each time you:  Install software  Make a server configuration change  Install a new adapter  Add a NIC  Restructure a partition  Upgrade the OS Enables you to fix problems with the server

44 44 Guide to Operating System Security Creating a Windows 2000 ERD

45 45 Guide to Operating System Security Creating an ASR Set Two components  Backup of all system files (1.5 MB or more)  Backup of system settings (about 1.44 MB) Does not back up application data files

46 46 Guide to Operating System Security Creating an ASR Set

47 47 Guide to Operating System Security Creating a Red Hat Linux Boot Disk Enables booting a system from a floppy disk

48 48 Guide to Operating System Security Creating and Implementing Organizational Policies (Continued) Provide users with training in security techniques Train users about common malicious software Require users to scan floppies and CDs before use Establish policies about types of media that can be brought in from outside and how they can be used Establish policies that discourage/prevent users from installing their own software

49 49 Guide to Operating System Security Creating and Implementing Organizational Policies (Continued) Define policies that minimize/prevent downloading files; require users to use a virus scanner on any downloaded files Create quarantine areas for files of uncertain origin Use virus scanning on e-mail and attachments Discard e-mail attachments from unknown or untrusted sources

50 50 Guide to Operating System Security Chapter Summary Viruses, worms, and Trojan horses  How they spread through operating systems and across networks  What they target and why Typical forms of malicious software  Boot sector viruses  Viruses that attack through macros How to set up defenses, such as operating system patches and repair disks

Download ppt "Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software."

Similar presentations

September,2012 Managing Files and Folders 4/23/2015 Compiled By:- Solomon W. Demissie 1.

September,2012 Managing Files and Folders 4/23/2015 Compiled By:- Solomon W. Demissie 1.
 Application software consists of programs designed to make users more productive and/or assist with personal tasks.  Growth of internet simplified.

 Application software consists of programs designed to make users more productive and/or assist with personal tasks.  Growth of internet simplified.
Chapter 8 Operating Systems and Utility Programs.

Chapter 8 Operating Systems and Utility Programs.
1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
11 INSTALLING WINDOWS XP Chapter 2. Chapter 2: Installing Windows XP2 INSTALLING WINDOWS XP  Prepare a computer for the installation of Microsoft Windows.

11 INSTALLING WINDOWS XP Chapter 2. Chapter 2: Installing Windows XP2 INSTALLING WINDOWS XP  Prepare a computer for the installation of Microsoft Windows.
1 Web Server Administration Chapter 3 Installing the Server.

1 Web Server Administration Chapter 3 Installing the Server.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 12: Managing and Implementing Backups and Disaster Recovery.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 12: Managing and Implementing Backups and Disaster Recovery.
Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.

Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.
Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.

Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.
1 Networking and Security: Connecting Computers and Keeping Them Safe from Hackers and Viruses Networking fundamentals Network architecture Network components.

1 Networking and Security: Connecting Computers and Keeping Them Safe from Hackers and Viruses Networking fundamentals Network architecture Network components.
Enterprise Network Security Accessing the WAN Lecture week 4.

Enterprise Network Security Accessing the WAN Lecture week 4.
Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.

Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 12: Managing and Implementing Backups and Disaster Recovery.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 12: Managing and Implementing Backups and Disaster Recovery.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 14: Problem Recovery.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 14: Problem Recovery.
Chapter 7 Installing and Using Windows XP Professional.

Chapter 7 Installing and Using Windows XP Professional.
A+ Guide to Managing and Maintaining Your PC Fifth Edition Chapter 9 Optimizing and Protecting Hard Drives.

A+ Guide to Managing and Maintaining Your PC Fifth Edition Chapter 9 Optimizing and Protecting Hard Drives.
R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.

R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.
Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.

Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
Video Following is a video of what can happen if you don’t update your security settings! security.

Video Following is a video of what can happen if you don’t update your security settings! security.

Similar presentations

Ads by Google