| Virus
Glossary of Terms |
|
Below you will find an alphabetical list of commonly used virus terminology.
Click a term to view its definition. |
|
|
|
| |
|
Even though adware is not classified as harmful
malware, many users regard it as
irritating and
intrusive. |
| |
|
Adware can often have undesired effects on a
system, even interrupting the Internet
connection or system operations. The ads that
are displayed are also typically of an
unreliable nature, which, given the method by
which they are presented, is to be expected.
:: Back To Glossary :: |
| |
|
Backdoor |
|
The term
backdoor
is used to describe an application or service
that permits remote access to an infected
computer. It opens up a so-called
backdoor
to circumvent other security mechanisms. |
| |
|
Backdoors generally embed themselves in the
operating system or are included in shareware or
freeware. Backdoors can also spread via
e-mail or by riding piggyback on other malware.
|
| |
|
Once infected, the computer responds to client
programs suitable for executing various types of
processes. Some backdoors are designed to
give the outward appearance of messenger
applications in order to exploit existing
networks. The IRC (Internet Relay Chat)
network is popularly misused for this purpose.
|
| |
|
Backdoors are often one component in an
intricate web of different malware types that
might go so far as to set up a so-called bot
network. Bot networks are large networks
of infected computers that are used to run
complex operations, for example. As resources
are seized, you will notice that your computer
becomes sluggish.
:: Back To Glossary :: |
| |
|
Dialer |
|
Dialers
are dialing programs. As the name
suggests, they are used to dial up an Internet
connection, but they use preset and typically
overpriced phone numbers. |
| |
|
There are a great number of dubious websites,
some of which draw you in with serious content
but only allow access through their own special
dialer. |
| |
|
The bait ranges from "recipes" to "homework
assistance" and "adult" content. |
| |
|
Many people use
dialers
without knowing that some of these programs
actually use expensive numbers from pay-per-call
sites. The user is then liable for the
overpriced fees.
:: Back To Glossary :: |
| |
|
Grayware |
|
Grayware
is a blanket term for all applications that
cause annoying and possibly undesirable or
unforeseen behavior in the way programs run.
|
| |
Categories
|
|
·
Adware |
|
·
Dialers
|
|
·
Hacking tools |
|
·
Joke programs |
|
·
Remote access programs (RAP)
|
|
·
Spyware |
|
Unlike malware,
grayware
does not fall into the category of major
threats. Grayware
is not detrimental to basic system operations.
|
| |
|
But
grayware
generally harbors the risk of opening
vulnerabilities. Some applications
classified as
grayware
have been misused for malicious activity, while
others (adware)
are used to steer users toward products of
dubious origin. |
| |
|
What most software classified as
grayware
has in common is that it gathers information
about the user's behavior. This data is
then either sold or used to display targeted
advertising. |
| |
|
Businesses that work with confidential
information should generally be very cautious
using applications whose primary function is to
gather personal and confidential data.
:: Back To Glossary :: |
| |
|
Hacking Tools |
|
Hacking tools
are programs that render a computer or networks
more vulnerable to attack or use simulated
hacking to test the vulnerability of all
accessible components. The latter can
result in instability or even system crashes and
hardware damage. |
| |
|
In some cases, this is achieved by taking
information about the system or other systems
accessible through the local network that is
useful to hackers, and broadcasting it to
outside sources. |
| |
|
In other words, hacking tools can be used to spy
on an entire network. |
| |
|
Unlike backdoors and remote access programs,
hacking tools make it easy to exploit
vulnerabilities, or else they simulate hacking
until complete access is granted. |
| |
|
Classifying
hacking tools
as grayware is legitimate, because they are
primarily used to test the security of networks.
Such tools should only be used by professionals,
however. When in doubt, it is better to
remove hacking tools.
:: Back To Glossary :: |
| |
|
Joke Programs |
|
Joke programs
are classified as relatively harmless. The
objective in developing joke programs is to
annoy or play a joke on users. No files are
infected and no damage is caused. |
| |
|
You may be familiar with jokes like the one
about the "cup holder" or simulated virus
attacks that colleagues like to use to tease the
inexperienced. Software of this type is
classified collectively as "joke
programs," as long as it has no
potential to do damage.
:: Back To Glossary :: |
| |
|
Malware |
|
Malware is
the name given to software that runs computer
processes that are either unexpected or
unauthorized but always harmful. The term
"malware" generally covers viruses, worms and
Trojan horses. |
| |
|
Depending upon its type, malware may contain a
replicating or non-replicating program element,
although
malware,
by its nature, is multi-faceted and can consist
of several elements (as can be seen from the
different names of the component parts). |
| |
|
Interaction of its diverse elements allow this
type of malware to spread much more easily,
making it more dangerous as well. One
element usually acts as a worm to help it
proliferate while it smuggles in a common virus
or Trojan piggyback. |
| |
|
Programming:
|
|
As malware becomes increasingly modular, simple
programming skills are sufficient to create it
or to equip a successful worm with a simple but
destructive payload. The times are gone
when extensive knowledge of a programming
language was a must. |
| |
|
Ambition and malice often feed each other when
one group uses intelligent methods to exploit
vulnerabilities and ensure wide proliferation,
while another group uses tried and tested
malware as a transport mechanism for malicious
code or propaganda. |
| |
Reproduction and Proliferation:
|
|
Malware spreads in many different ways.
Worms can be dispersed through e-mail, instant
messaging programs or network connections.
Viruses generally reproduce within a system,
though some virus types can also reproduce
through automated propagation modes, similar to
worms. |
| |
|
Although Trojans are not equipped with automatic
mechanisms for reproducing and spreading, they
still linger throughout the Internet and hide in
e-mails or web pages, through which they are
downloaded via integrated or hidden links while
a page is loading.
:: Back To Glossary :: |
| |
|
Phishing |
|
The term
phishing
refers to a method of stealing personal data
whereby an authentic-looking e-mail is made to
appear as if it is coming from a real company or
institution. The idea is to trick the
recipient into sending secret information such
as account information or login data to the
scammer. |
| |
Legitimate companies will never send you an
e-mail asking for information relating to
confidential data, your credit card, bank
account or social security number.
We strongly discourage answering such requests
or clicking on
links
within the e-mail. |
| |
Method
|
|
A phishing e-mail will first try to win your
trust through an authentic-looking but fake
e-mail - for example, a message from your bank.
This typically includes a request to make some
change to your account login using a link that
is provided. |
| |
|
Clicking the link takes you to what is usually a
perfectly falsified website by the scammer
asking you to log in. Once you have taken this
step, it is already too late, because the
scammer knows your login information and can get
to work. The only remedy is to immediately
disable or block your account access.
:: Back To Glossary :: |
| |
|
Spyware |
|
Spyware
is software that monitors and collects a user's
data and eventually transmits it to a company
for various purposes. This typically
happens in the background - that is, the
activity is invisible to most users. |
| |
|
Many users unwittingly agree to install spyware
by accepting the end-user license agreement
(EULA) of freeware without reading it
thoroughly. Spyware is thus often
completely legitimate marketing-oriented
software. |
| |
|
Nevertheless, many perceive it to be an
objectionable form of data acquisition, since
the user has no control over the information
that is transmitted. What's more, spyware
can also interfere with a network connection and
result in increased system activity. |
| |
|
The State of California defines spyware as
programs that are installed under misleading
premises, as software that hides in PCs and
furtively monitors the user's activities (for
example, by logging the history of websites
visited).
:: Back To Glossary :: |
| |
|
Trojan Horse |
|
The term Trojan horse
or Trojan comes from Greek legend. In the
world of computers, it refers to covert
infiltration by malware or malicious software
under the guise of a useful program. |
| |
|
After a Trojan is activated, it is often very
difficult to discover the extent of the damage
and generally identify the malware. The
Trojan may change its original name and
reactivate every time a PC is restarted. |
| |
|
In general, it's rare for a large number of
files to be infected. Instead, the
Trojan
embeds itself directly in the computer's
operation system. Depending on the
motivation of the virus author, the malware
contained in the Trojan may be designed to
collect personal or financial data.
:: Back To Glossary :: |
| |
|
Virus |
| |
|
A computer virus
is software with the ability to self-replicate
and attach itself to other executable programs.
|
|
The behavior is comparable to its biological
counterpart.
Computer
viruses
can also be contagious (might spread on or even
beyond the infected computer), exhibit symptoms
(the presence of malicious code and its
magnitude) and involve a recovery period with
possible long-term effects (difficulty in
removal and loss of data). |
| |
Common Types of
Viruses
|
|
·
ActiveX viruses infect only browsers that
support ActiveX. |
|
·
Boot sector viruses infect a particular sector on storage media that is
reserved for data needed to boot up a computer.
|
|
·
Macro viruses can occur in all file types that permit storage
of document-related macros. |
|
·
Java viruses exploit vulnerabilities in outdated versions of
the Java Runtime Environment. |
|
·
Script
viruses spread by exploiting script languages,
including cross-platform languages. |
|
·
File infector viruses infect executable
programs. |
| |
|
Proliferation |
|
Viruses can spread by attaching themselves to
many types of files as soon as these files are
executed, copied or sent. |
| |
Payload
|
Some computer viruses are programmed to include
a payload. This payload can either display
propaganda or images, or else destroy files,
reformat your hard drive or cause other damage.
|
| |
|
If the virus is not programmed to do damage, it
can still cause problems by blocking hard disk
space and RAM, weakening the overall performance
of your computer. Virus attacks are becoming
more and more the norm and occurring with
greater frequency than in the past, often with
disastrous consequences. |
| |
|
Growing Proliferation |
|
One cause for the rise in virus attacks is the
sharp rise in the number of networked computers,
especially related to Internet usage. The larger
the number of shared files, the greater the risk
of a virus infection. |
| |
|
Besides the rising number of opportunities for
viruses to penetrate an organization, another
reason for the rise in attacks is new types of
viruses. These include macro viruses and
portable executable viruses (PE viruses), which
can spread very quickly through shared documents
and e-mails or e-mail attachments.
:: Back To Glossary :: |
| |
|
Vulnerabilities |
|
Vulnerabilities
in computer security usually consist of
opportunities either to operate the computer
remotely without input from the user, or to
directly or indirectly spy on data (during a
data transfer). |
| |
|
There are many different ways in which
resourceful data thieves can achieve their
objective, from simple, plausible
vulnerabilities such as a connected, unblocked
computer in a public area to programs
implemented secretly such as remote access tools
and Trojans. |
| |
Take Precautionary Measures
|
|
For times when there are no updates for your
software; For vulnerabilities that are not
covered by software updates (e.g. because they
are still unknown), and as a precaution against
your own lack of vigilance; |
|
·
Use antivirus software to actively protect
against viruses and other harmful agents. |
|
·
Use a personal firewall as protection against
attacks from the network or the Internet, and as
a defense against worms and
|
|
Trojans. |
| |
|
What Will Help? |
| |
Vigilance
|
|
·
Lock your computer when you leave your desk
|
|
·
Always ask yourself: Have I read the message
asking me for confirmation? |
|
·
When browsing the Internet, you should pay
particular attention to questions of any type
and, if necessary, select "No" or |
|
"Cancel" to exit if you are in any doubt. |
|
·
Only provide personal data to trusted
contractual partners. |
| |
Keep Software Up-to-Date
|
|
·
Implement
recommended
updates to your operating system regularly. |
|
·
Remove superfluous software
:: Back To Glossary :: |
| |
|
Worms |
|
A computer
worm
is an autonomous program or constellation of
programs that distributes fully functional whole
or partial copies of itself to other computers. |
| |
|
The unique feature of a computer
worm
is its ability to exploit every feasible method
of spreading to achieve its objective of maximum
possible proliferation. |
| |
|
Worms
are specialists in spreading and reproducing.
They consistently exploit all known
vulnerabilities, including people, to penetrate
barriers that seem to be impenetrable to normal
viruses. A worm does not have a payload of
its own but is often used as a transport
mechanism for viruses that ride piggyback and
immediately start their work. |
| |
|
Proliferation |
| |
|
Worms
spread through various methods, including: |
| |
|
·
E-mail with attachment
- The trick here is for a worm to search through
the e-mail address book of an infected computer
|
|
and automatically send e-mails to all available
addresses under the owner's name - with itself
as an attachment. |
|
·
A network connection - as is present during
internet usage, for example - is used by some
worms to infiltrate connected |
|
computers without any further action required by
exploiting vulnerabilities. |
|
·
Worms can also be spread by all other methods
common to malware. The danger, as already
mentioned, is that worms |
|
exploit all opportunities simultaneously.
:: Back To Glossary :: |
|
|
| |
| Email:
Support@BayTownNetworks.com |
| |
