User's blog

Cyber Crime Techniques

Written by

Pooja Kotwani

in

Worms, Viruses

The Threat

Computer systems can be targeted by various attacks, including viruses, worms, and hacking attempts. These threats can lead to system crashes, the theft and misuse of sensitive data, or even driver issues in certain scenarios.

Who is Behind These Attacks?

The culprits are hackers – individuals who exploit vulnerabilities in computer systems or networks. These malicious programmers possess advanced coding skills and create bugs that infiltrate systems, causing them to malfunction.

Types of Infections

Several types of infections can compromise a computer’s functionality and performance. Here are the most significant ones:

1. Virus: Viruses are small software programs that attach themselves to legitimate programs.

  • The term “virus” is often misused to describe other forms of malware, adware, and spyware that lack self-replicating capabilities.
  • A true virus spreads from one system to another through executable code.
  • Viruses often propagate by infecting files on networked or shared systems, causing corruption or modification of system files on the host computer.

2. Worm: Worms are self-replicating programs.

  • Unlike viruses, worms do not need to attach themselves to existing programs.
  • They spread across networks, often exploiting weak security in infected systems.
  • Worms operate autonomously and can cause significant damage.
  • Examples include Lovgate.F, Sobig.D, and Trile.C.

3. Trojan Horse: Trojan horses allow hackers to gain unauthorized remote access to targeted systems.

  • Once installed, hackers can control the system and perform various activities.
  • Trojans can steal sensitive information, such as login credentials for e-banking.

4. Malware: Malware is a broad category encompassing programs designed to harm systems, steal data, bypass security controls, or disrupt functionality.

5. Adware: Adware refers to software that displays advertisements, often bundled with free software downloaded from unreliable sources.

Examples: pop-up ads and advertisements displayed by applications.

6. Spyware: Spyware is software installed covertly to gather user information and transmit it to advertisers or other entities. It can enter systems through viruses or new program installations.

7. Ransomware: Ransomware holds systems or data hostage, demanding payment for restoration.

  • Often referred to as “scareware,” it intimidates users into paying a fee.
  • Some variants, like Cryptolocker, encrypt files.
  • Ransomware is distributed via malicious websites or email attachments.

8. Shortcut Virus: This type of virus creates shortcut files across the system, consuming disk space.

9. Email Virus: These viruses spread through emails and become active when recipients open infected messages.

Examples:  Melissa Virus.

10. Bots: Bots, similar to worms and Trojans, are automated tools used by cybercriminals to perform tasks remotely.

Signs of Malware Infection

Here are some indicators that a system might be infected with malware:

  • Increased CPU usage
  • Slower computer or browser performance
  • Frequent system freezes or crashes
  • Appearance of unknown files, programs, or icons
  • Programs operating or reconfiguring themselves without user input
  • Issues with system boot-up
  • Emails or messages being sent automatically without the user’s knowledge
How to Stay Protected

Follow these precautions to safeguard your system:

  • Always scan external devices like USB drives and CDs before accessing them.
  • Scan email attachments thoroughly.
  • Avoid downloading unverified software from the internet.
  • Ensure Windows Firewall is active while browsing.
  • Use lightweight antivirus tools such as Malwarebytes or AdwCleaner.
  • Avoid heavy antivirus programs that may slow down your system.
  • Contact a computer technician if issues persist.
  • Perform a full system scan at least once a month.
  • Clear temporary files every three months to maintain performance.

Trojan Horse

Understanding Malware and the Trojan Horse Virus

Malware is a term used to describe any software designed to damage or exploit any programmable device, service, or network. It encompasses various malicious programs, including computer viruses, worms, ransomware, spyware, Trojan horses, and more. This article focuses on the Trojan Horse virus and its implications.

What is a Trojan Horse?

The term “Trojan Horse” is derived from the classical tale of the Trojan War. It refers to malicious code capable of compromising a computer system. Designed to steal, harm, or manipulate data, it operates by deceiving users into executing harmful files. Unlike viruses and worms, a Trojan Horse cannot replicate itself.

For example:
There was once a Trojan masquerading as a game. Many users downloaded this seemingly harmless game, which secretly became a self-replicating virus. Although the game initially appeared harmless, it backed up all files on the user’s drive, leading to disruptions. This Trojan was relatively benign and easy to remove, but it serves as an example of how deceptive these threats can be.

Over time, numerous Trojan viruses have emerged, with some posing significant risks. Trojans are often embedded in downloaded MP3 files, games from unsecured websites, or ads displayed during web browsing.

A notable type of Trojan, known as “Direct-Action-Trojans,” can infect systems without spreading to others. For instance, the “Js.ExitW” Trojan, downloadable from malicious sites, creates an endless cycle of system restarts and shutdowns. Although not overtly destructive, it highlights the need for vigilance as many Trojans can be far more harmful.

Features of a Trojan Horse
  • Steals sensitive information like passwords.
  • Enables remote access to the victim’s computer.
  • Deletes or manipulates data on the infected system.
Uses of a Trojan Horse
  • Spying: Collects sensitive information like usernames, passwords, and financial details.
  • Backdoor Creation: Alters systems to grant access to cybercriminals.
  • Zombie Machines: Turns devices into controlled bots for malicious purposes.
How Does a Trojan Horse Work?

Unlike viruses, a Trojan Horse requires users to download its executable (.exe) file to function. Once installed, the software operates maliciously on the target system.

Spammers often distribute Trojan-laden email attachments disguised as legitimate files. Upon downloading and executing the file, the Trojan installs itself and runs whenever the device is powered on.

Cybercriminals also employ social engineering tactics, embedding Trojans in links, pop-up ads, and banners. When clicked, these elements infect the device. Infected systems may unknowingly become “zombie computers,” remotely controlled by hackers to spread malware.

A user might receive an email from a trusted contact containing an attachment that appears authentic but is malicious. The Trojan remains dormant until triggered by a specific action, such as visiting a banking site, at which point it activates, performs its intended task, and either destroys itself or continues operating undetected.

Types of Trojan Horses

1. Backdoor Trojan: Allows attackers to remotely access the compromised system.
2. Ransom Trojan: Encrypts files and demands payment for decryption.
3. Trojan Banker: Steals online banking and credit card information.
4. Trojan Downloader: Installs additional malware on the victim’s device.
5. Trojan Dropper: Hides malicious files from detection.
6. Trojan GameThief: Targets online gamers to steal credentials.
7. Trojan-Spy: Collects login details from applications like Skype or Yahoo Messenger.

Advantages of a Trojan Horse
  • Distributed through email attachments.
  • Embedded in pop-up ads on web pages.
  • Facilitates remote access to systems.
  • Capable of deleting or altering files.
Disadvantages of a Trojan Horse
  • Requires executable file installation to function.
  • Operates undetected, often triggering during sensitive activities.
  • Slows down affected systems or causes shutdowns.
  • Delays in file processing on infected devices.
Preventing Trojan Horse Infections
  • Avoid downloading files like images or audio from unsecured websites.
  • Refrain from clicking on pop-up ads promoting games or services.
  • Do not open attachments from unknown sources.
  • Install reliable antivirus software to detect and remove infected files.

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

More posts