Developments in CyberCrime and Malware Diagnosis

Malware is an acronym for Web based dangers or detrimental software - hostile, intrusive, or troublesome program code made to infiltrate your personal computer system with no owner's permission. Malware comprises computer infections, spyware, Trojan horses, worms, adware, rootkits, botnets, crimeware, along with other undesirable software to use for organized Internet crime. Throughout last year, organizations lost $120 million in the third quarter to phishing and Trojan-based online banking scams. Small enterprises lost $25 million as part of these frauds. (Source: the US Federal Deposit Insurance Corporation.)

Currently things have changed. There are fewer computer viruses or worms, and now we are discovering more phishing episodes. Spam numbers are exploding, growing and going towards organized crime with more and more pieces of malware. There's fundamentally one particular aim - to make money from invading your computer at home and work. This can include monitoring browsing practices and marketing - but mostly these are targeted assaults that use your computer system for felony activities. Aged software including Titanium antivirus software from the likes of Panda have been retired in place of more savvy Titanium cloud technology geared to instantly prevent viruses and spyware for full Internet security.

Primarily, malware is designed to work quickly in stealth mode, and data-stealing malware can cause damage without a firm even knowing. One click can compromise personal private information, or a corporation's facilities and reputation. Establishments are striving to keep up with the influx of quicker, more insidious content security risks, for example data stealing malware, botnet infections, and other combined dangers.

For example, detection of malware Shih-Hao Weng, a TrendLabs℠ engineer, discovered a new SASFIS version that uses a right-to-left bypass (RLO) method. This was commonly associated with spamming in the past, however nowadays, it is now among the new social engineering techniques used by hackers for cybercrime.

Figure 1. Sample SASFIS spam

Here is how it works. An SASFIS Trojan will come with a RAR file attachment via a spammed message, containing an XLS file. When it's extracted to the desktop, the supposed XLS file seems like an authentic MS Excel document. However, the truth is the file is a screensaver that Trend Micro recognized as TROJ_SASFIS HBC. This Trojan drops BKDR_SASFIS AC, permitting threads to become injected towards the normal svchost exe process.

Technically, even though the file may seem initially to be an Excel worksheet, it includes a Win32 binary header, which only executable data files possess. For the user, the file will appear to be named phone&mail).xls.scr. This could cause them to think that the file is indeed an Excel file and thus "safe" to open, when in reality it's an executable SCR file.

With the introduction and popularity of social media networks and sites including Facebook, now there is also malware on social media websites. In America, a recent Facebook malware attack will be the "Most Hilarious Video Ever" (5/28/2010). It will take you to a Facebook login page, but it is a legitimate fishing site. You will then get a Request for Permission that asks you to install an HD media player application. The assailants display false testimonials from other Facebook users who've lost their own credentials already - this is an automated procedure because they are updated all the time. You are taken to a webpage asking you to update a video player, and you get a Download Now prompt. In fact, it is actually an adware application. In the UK, this very same attack was completely different and had people take a test.

Users can easily stop this episode from affecting computers by employing best practices which includes not opening suspicious-looking emails, and not downloading and executing the attachments. Do not download anything at all, don't click on an attachment that comes in email, and simply be dubious. Work with something as powerful as Titanium antivirus security, a firewall, anti-spyware plus anti-fraud. All-in-one packages are ideal for the newest technology. Remember that few things in life, or on the web are free, hence be careful getting anything that is free of charge. Additionally, eBay, banks, the IRS, and most respected institutions hardly ever send out email messages to you. Exercise extreme caution.

Typical content security solutions are simply just not speedy enough to keep up with the many new attacks being made on a daily, or even hourly, basis. Nevertheless, you can find interesting new technologies that may help consumers and businesses alike in fighting the war against cybercrime. Internet security solutions including Trend Micro™ Titanium™ Internet Security for Netbooks uses cloud technology to automatically stop viruses and spyware before they reach your computer, so it won't slow you down- it's a whole new way to protect your computer.

Kristin Gabriel is a contributor for Trend Micro™ Titanium™ Internet Security for Netbooks which uses cloud technology to immediately stop viruses and spyware before they get to your computer. Real-time updates keep PCs shielded from the most recent online threats. Using less than half the disk space and memory of conventional security solutions, Titanium is easy on system resources so computers run quicker. It's made to be uncomplicated to use and comprehend using simple screens and reports and includes spam blocking and easy to customize parental controls. www.trendmicro.com.