|
![[Under Construction]](images/undercon.gif)
| |
Security concerns are at the root of most of the questions our technicians
encounter.
The folks in Grays Harbor Washington are effected by these security risks just
as much as anywhere else in the world. Here at Comfort PC we understand that
some of the terminology that is used in regards to these threats can be hard to
interpret from time to time. We have taken the time to offer some brief
explanations to some of the most commonly asked security questions we have
encountered. Take your time and read through some of these questions and
answers; they will at least make for interesting water cooler talk, and may even
help you to avoid a threat in the future!
- How do I know if I have a virus on my machine?
- Why am I getting all these
pop-ups when I go online?
- Who is spying on me?
- Got Worms?
- What is aTrojan horse
virus ?
- What can I do to feel safe
using my PC?
Viruses can do all sorts of unexpected things to your PC
and network. General rule of thumb is if it's out of the ordinary, it could be a
virus. Most of the time viruses are created to just aggravate the end user. Yes
there are people with nothing better to do with their time then to make your
life miserable. Viruses can spread and eventually make your PC and network
un-useable. As soon as you think you have an infection you must do something to
stop it! Best bet is to call Comfort PC today and
tell us what is going on. We will give you honest advice.
What are pop-ups?
Pop-up ads are a form of online
advertising on the World Wide Web intended to increase web
traffic or capture email addresses. It works when certain web
sites open a new web browser window to display advertisements.
The pop-up window containing an advertisement is usually
generated by JavaScript, but can be generated by other means as
well.
A variation on the pop-up window is the
pop-under advertisement. This opens a new browser window,
behind the active window. Pop-unders interrupt the user less,
but are not seen until the desired windows are closed, making it
more difficult for the user to determine which Web site opened
them.
When Pop-up turn bad:
Pornographic web sites are among the most
common users of pop-up ads. Some particularly vicious types of
pop-up ads (again, most often seen in connection with adult
entertainment sites) appear to have either been programmed
improperly or have been specifically designed to "hijack"
a user's Internet session. These forms of pop-ups sometimes
spawn multiple windows, and as each window is closed by the user
it activates code that spawns another window -- sometimes
indefinitely. This is sometimes referred to by users as a "Java
trap", "spam cascade" or "Pop-up Hell" among other names.
Usually the only way to stop this is to close the browser.
Where you least expect it:
Other pop-ups appear to come from
perfectly legitimate websites that have been hijacked to link to
other websites, usually in the form of pop-unders (see below).
Online dating services are most prevalent in this category Many
of these so called "free" dating services are known to harvest
email addresses and create false accounts for the purposes of
increasing site traffic and boosting advertising revenue.
Accounts created in this way usually only remain active for
three to four weeks, before the hijack is discovered and the
account deleted.
Non Browser Pop-ups:
Processes other than the Web browser can also
display pop-up ads, or can direct the browser to display them.
Many Spyware programs do
this, as well as some advertising-supported software, although
the line between the two is sometimes thin.
A different sort of pop-up ad can be sent via
the Messenger service in Microsoft's Windows operating system.
These pop-ups appear as Windows dialog boxes with a textual
message inside, usually directing the user to a Web site. Claims
have been made that this type of pop-up has been used to commit
extortion. Threats of legal action against the company D Squared
Solutions has caused them to stop using this technique.
Bottom Line:
Pop-up can bring your internet session to a screeching
halt and even bog down your system so much that it becomes unusable even
when your not on the internet. We see it all the time and we have become
experts at resurrecting these bogged down machines. We are also the
security experts and will help you to lock down your machine so you can feel
safe using the internet. Don't let a few bad apples spoil your RITE
to use the the World Wide Web. Let Comfort PC
liberate your PC and make surfing the web
comfortable again!
I n the field of computing, the term
Spyware refers to a broad category of malicious software
designed to intercept or take partial control of a computer's
operation without the informed consent of that machine's owner
or legitimate user. While the term taken literally suggests
software that surreptitiously monitors the user, it has come to
refer more broadly to software that subverts the computer's
operation for the benefit of a third party.
In simpler terms, Spyware is a type of
program that watches after what users do with their computer and
then send this information to a hacker over the internet.
Spyware can collect many different types of information about a
user. More benign programs can attempt to track what types of
websites a user visits and send this information to an
advertisement agency. More malicious versions can try to
record what a user types to try to intercept passwords or
credit card numbers. Yet other versions simply launch
pop-ups with advertisements.
Spyware differs from
viruses
and worms in that it does not usually
self-replicate. Like many recent viruses,
however, Spyware – by design – exploits infected
computers for commercial gain. Typical tactics
furthering this goal include delivery of
unsolicited pop-up advertisements; theft of
personal information (including financial
information such as credit card numbers);
monitoring of Web-browsing activity for
marketing purposes; or routing of HTTP requests
to advertising sites.
As of 2005, Spyware has
become one of the pre-eminent security threats
to computer-systems running Microsoft Windows
operating-systems
What to do?
Knowledge is the first
place to start. So now that you have read
about Spyware you are ahead of the game! Next
step is to call in the
exterminator! A Comfort PC
technician can evaluate your system in the
comfort of your home or office and give you
honest advice. Most of the times Spyware
can be removed from your system right on the
spot and you will be back up and running!
We can show you how to protect yourself from
these spies and scammers. Your security is
a priority to us. After all how can you be
comfortable using your computer when your always
worried about some hacker trying peep in on you
and your computer.
A computer worm is a self-replicating
computer program, similar to a computer virus. A virus attaches
itself to, and becomes part of, another executable program;
however, a worm is self-contained and does not need to be part
of another program to propagate itself. They are often designed
to exploit the file transmission capabilities found on many
computers. The main difference between a computer virus and a
worm is that a virus cannot propagate by itself whereas worms
can. A worm uses a network to send copies of itself to other
systems and it does so without any intervention. In general,
worms harm the network and consume bandwidth, whereas viruses
infect or corrupt files on a targeted computer. Viruses
generally do not affect network performance, as their malicious
activities are mostly confined within the target computer
itself.The name 'worm' was taken
from The Shockwave Rider, a science fiction novel
published in 1975 by John Brunner. Researchers writing an early
paper on experiments in distributed computing noted the
similarities between their software and the program described by
Brunner and adopted the name.
Although technically a Trojan, the
Christmas Tree Worm was the first worm on a worldwide network,
spreading across both IBM's own international network and BITNET
in December 1987 - and bringing both to their knees.
The first worm on the Internet, and the
first to attract wide attention, the Morris worm, was written by
Robert Tappan Morris, who at the time was a graduate student at
Cornell University. It was released on November 2, 1988, and
quickly infected a great number of computers on the Internet at
the time, and causing massive disruption. It propagated through
a number of bugs in BSD Unix and its derivatives. Morris himself
was convicted under the US Computer Crime and Abuse Act and
received three years probation, 400 hours community service and
a fine in excess of $10,000.
In addition to replication, a worm may be
designed to do any number of things, such as delete files on a
host system, encrypt files in a cryptoviral extortion attack, or
send documents via e-mail. More recent worms may be multi-headed
and carry other executables as a payload. However, even in the
absence of such a payload, a worm can wreak havoc just with the
network traffic generated by its reproduction. Mydoom, for
example, caused a noticeable worldwide Internet slowdown at the
peak of its spread.
A common "payload" is for a worm to
install a "backdoor" in the infected computer, as was done by
"Sobig" and "Mydoom." These zombie computers are used by spam
senders for sending junk email or to cloak their website's
address. Spammers are thought to fund the creation of such
worms, and worm writers have been caught selling lists of IP
addresses of infected machines. Others try to blackmail
companies with threatened DoS (Denial of Service) attacks. The
"backdoors" can also be exploited by other worms, such as
"Doomjuice", which spreads using the backdoor opened by Mydoom.
Bottom Line
We don't want to bore you with any more of these geeky
terms. The truth of the matter is that a "worm" is one of the worst types
of viruses you can have. One worm type virus can bring a whole network of
computer off-line in a matter of hours! Here at Comfort PC we only have
one use for worms, and that's for catching fish here in the beautiful northwest.
If you suspect your PC or network is contaminated with a virus of any kind
call us today.
a Trojan horse is a malicious program
that is disguised as or embedded within legitimate software. The
term is derived from the classical myth of the Trojan Horse.
They may look useful or interesting (or at the very least
harmless) to an unsuspecting user, but are actually harmful when
executed.Often the term is
shortened to simply Trojan, even though this turns the
adjective into a noun, reversing the myth (Greeks were gaining
malicious access, not Trojans).
There are two common types of Trojan
horses. One, is otherwise useful software that has been
corrupted by a cracker inserting malicious code that executes
while the program is used. Examples include various
implementations of weather alerting programs, computer clock
setting software, and peer to peer file sharing utilities. The
other type is a standalone program that masquerades as something
else, like a game or image file, in order to trick the user into
some misdirected complicity that is needed to carry out the
program's objectives.
Trojan horse programs cannot operate
autonomously, in contrast to some other types of malware, like
viruses or worms. Just as the Greeks needed the Trojans to bring
the horse inside for their plan to work, Trojan horse programs
depend on actions by the intended victims. As such, if Trojans
replicate and even distribute themselves, each new victim must
run the program/Trojan. Therefore their virulence is of a
different nature, depending on successful implementation of
social engineering concepts rather than flaws in a computer
system's security design or configuration.
A Trojan horse program has a useful
and desired function, or at least it has the appearance of
having such. Trojans use false and fake names to trick users
into dismissing the processes. These strategies are often
collectively termed social engineering. In most cases the
program performs other, undesired functions, but not always. The
useful, or seemingly useful, functions serve as camouflage for
these undesired functions. A Trojan is designed to operate with
functions unknown to the victim. The kind of undesired functions
are not part of the definition of a Trojan Horse; they can be of
any kind, but typically they have malicious intent.
In practice, Trojan Horses in the wild often
contain spying functions
(such as a packet sniffer) or backdoor functions that allow a
computer, unbeknownst to the owner, to be remotely controlled
from the network, creating a "zombie computer". The
Sony/BMG rootkit Trojan, distributed on millions of music CDs
through 2005, did both of these things. Because Trojan horses
often have these harmful behaviors, there often arises the
misunderstanding that such functions define a Trojan Horse.
The basic difference from computer viruses is
that a Trojan horse is technically a normal computer program and
does not possess the means to spread itself. The earliest known
Trojan horses were not designed to spread themselves. They
relied on fooling people to allow the program to perform actions
that they would otherwise not have voluntarily performed.
Trojans implementing backdoors typically
setup a hidden server, from which a hacker with a client can
then log on to. They have become polymorphic, process injecting,
prevention disabling, easy to use without authorization, and
therefore are abusive
How Do I know?
Many folks must be wondering right about know, "how do I
know which programs are really Trojans?" The general rule of thumb
from Comfort PC is this: if it has the words "FREE" in the description, be on
alert. Most free games or programs end up making you pay in the end one way or
the other.
Still confused?
Give us a call and we will sort you out and
help you to feel safer using your PC.
Unfortunately, the world is full of people with nothing
more important to do than make life a little less comfortable for majority of
us. They keep coming up with new ways to infect our PCs, and invade our
privacy.
What is the answer? One word: KNOWLEDGE. The
more you know your enemy, the better chance you have of protecting yourself from
them. We hope this page has helped you to understand just a few of the
threats that are posed in this day in age. We strongly encourage you to
talk to a professional about tools and methods that can safeguard your PC or
business network. These threats are not to be taken lightly, as they can
bring your systems to a stop. Everyday, millions of dollars are lost due
to system down time which is attributed to some a variety of the things
discussed on this page.
Call us
today and we will have a certified network specialist check out
your computer or network. We will give you the tools and the KNOWLEDGE to
protect yourself from hackers and malicious software.
Copyright © 2006 [Comfort PC]. All rights reserved.
Revised: 10/13/06.
|
