Presentation is loading. Please wait.

Presentation is loading. Please wait.

20 Years of Malware Risk Robert M. Slade, M. Sc., CISSP

Published byJason Erickson Modified over 10 years ago

Similar presentations

Presentation on theme: "20 Years of Malware Risk Robert M. Slade, M. Sc., CISSP"— Presentation transcript:

1 20 Years of Malware Risk Robert M. Slade, M. Sc., CISSP malware@shaw.camalware@shaw.ca, rslade@isc2.org, malware@shaw.ca rslade@computercrime.org http://victoria.tc.ca/techrev/rms.htm

2 (c)1986Brain Was it the first? Was it the first? Are the risks the same? Are the risks the same?

3 Prehistory - 1940s-50s von Neumann architecture von Neumann architecture Harvard architecture Harvard architecture Howard Aiken, Mark I – IV Howard Aiken, Mark I – IV Risk – Law of unintended consequences Risk – Law of unintended consequences Cost/benefit – development versus viruses? Cost/benefit – development versus viruses?

4 Prehistory - 1960s-70s Core Wars Core Wars DARWIN – 1969 DARWIN – 1969 Survival of programs Survival of programs Imp Imp Replication, quite successful Replication, quite successful Risk – beware of playful programmers Risk – beware of playful programmers

5 Trojans Various types, difficult to define Various types, difficult to define Password stealing Password stealing Pranks Pranks Malicious damage Malicious damage Phishing (ID theft) Phishing (ID theft) Risks Risks Trust Trust Ill-defined threats Ill-defined threats

6 Pranks Non-malicious Non-malicious Anthem Anthem Flip Flip Risks? Risks?

7 Prehistory - 1980s Infamous Xerox worm Infamous Xerox worm Shoch and Hupp Shoch and Hupp Experiment in distributed computing Experiment in distributed computing Application with multiple segments Application with multiple segments Bug in the program Bug in the program Risk – unintended consequences again Risk – unintended consequences again

8 Prehistory - 1980s Apple viruses Apple viruses 1980-81 1980-81 Texas Texas Like Core Wars, examining survival Like Core Wars, examining survival Variant 1 successful Variant 1 successful Variant 2 escaped, interfered with game Variant 2 escaped, interfered with game Variant 3 to hunt down 2 Variant 3 to hunt down 2 Risk – buggy code Risk – buggy code Risk – antivirus viruses - Ohio Risk – antivirus viruses - Ohio

9 Fred Cohen Replication proposed at 1983 seminar Replication proposed at 1983 seminar Len Adelman Len Adelman 1984 thesis 1984 thesis 1986 dissertation 1986 dissertation Three major antiviral types identified Three major antiviral types identified

10 (c)1986Brain Brain Computer Services, Pakistan Brain Computer Services, Pakistan Ashar and Ashar Ashar and Ashar Stealth Stealth Boot sector infector Boot sector infector Risk – variants – Ohio, Den Zuk Risk – variants – Ohio, Den Zuk

11 1987 Lehigh Lehigh CHRISTMA CHRISTMA Risk - DoS Risk - DoS

12 1987 Jerusalem Jerusalem Risks – variants, malicious damage, reputation Risks – variants, malicious damage, reputation

13 1987 Polymorphism Polymorphism Many shapes Many shapes Self-encryption Self-encryption stub stub Modular construction Modular construction module signatures module signatures Updating Updating update module signature update module signature File pickup File pickup other signatures other signatures Risks Risks AV expert blood pressure (zero day) AV expert blood pressure (zero day) CPU time CPU time File distribution File distribution

14 1988 Stoned Stoned Risk – holdover technology (boot sector) Risk – holdover technology (boot sector) Internet/UNIX/Morris Worm Internet/UNIX/Morris Worm Risks - defaults Risks - defaults MacMag MacMag Risks – data, commercial Risks – data, commercial

15 1991 Desert Storm Desert Storm Risk – don't believe everything you read Risk – don't believe everything you read MSAV MSAV Anti-antivirus Anti-antivirus Risk - There is hardly anything in the world that some man cannot make a little worse and sell a little cheaper, and the people who consider price only are this man's lawful prey. - John Ruskin Risk - There is hardly anything in the world that some man cannot make a little worse and sell a little cheaper, and the people who consider price only are this man's lawful prey. - John Ruskin

16 1994 Good Times hoax Good Times hoax Risk – don't believe everything you read Risk – don't believe everything you read Springer-Verlag publishes "Robert Slade's Guide to Computer Viruses" Springer-Verlag publishes "Robert Slade's Guide to Computer Viruses" (ummm...) (ummm...)

17 1995 Concept Concept Macro virus Macro virus Risks Risks Outdated definitions of program Outdated definitions of program Extraneous functionality Extraneous functionality

18 1999 Melissa Melissa First of the fast burners First of the fast burners Used multiple linked applications Used multiple linked applications Risks Risks Platform dominance Platform dominance Convenience Convenience (Pornography) (Pornography)

19 2000 Life Stages Life Stages Risk - file formats and extensions Risk - file formats and extensions

20 2001 Lindose/Winux Lindose/Winux Cross-platform Cross-platform Code Red Code Red Worm speed Worm speed

21 Intermission DCOM DCOM

22 2003 Sobig Sobig Spambotnets Spambotnets Risk – commercial and criminal impetus to malware Risk – commercial and criminal impetus to malware

23 Spyware and Adware Potentially Unwanted Software – PUS Potentially Unwanted Software – PUS Risk - definition Risk - definition

24 Mobile Cell phones, PDAs, Blackberry, etc. Cell phones, PDAs, Blackberry, etc. Risk – computers everywhere Risk – computers everywhere

25

26 20 Years of Malware Risk Robert M. Slade, M. Sc., CISSP malware@shaw.camalware@shaw.ca, rslade@isc2.org, malware@shaw.ca rslade@computercrime.org http://victoria.tc.ca/techrev/rms.htm

Download ppt "20 Years of Malware Risk Robert M. Slade, M. Sc., CISSP"

Similar presentations

Quantum Computing : Security Implications Robert M. Slade, MSc, CISSP

Quantum Computing : Security Implications Robert M. Slade, MSc, CISSP
Computer Security Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Chapters 14 and 15 Operating Systems: Internals and Design Principles,

Computer Security Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Chapters 14 and 15 Operating Systems: Internals and Design Principles,
Computing Issues that Affect Us All lesson 30. This lesson includes the following sections: Computer Crime Computer Viruses Theft Computers and the Environment.

Computing Issues that Affect Us All lesson 30. This lesson includes the following sections: Computer Crime Computer Viruses Theft Computers and the Environment.
Securing Your Computer 1,2,3 The Basics Just the facts……..  In 2003, Symantec documented 2,636 new computer vulnerabilities, an average of seven per.

Securing Your Computer 1,2,3 The Basics Just the facts……..  In 2003, Symantec documented 2,636 new computer vulnerabilities, an average of seven per.
Computer Viruses Computer viruses are a type of Malware that can infect other computer operating systems. They can do harmful things to the host it infected.

Computer Viruses Computer viruses are a type of Malware that can infect other computer operating systems. They can do harmful things to the host it infected.
Primary Threats to Computer Security

Primary Threats to Computer Security
POSSIBLE THREATS TO DATA

POSSIBLE THREATS TO DATA
Lecture: Malicious Code CIS 3360 Ratan K. Guha. Malicious Code2 Overview and Reading Assignments Defining malicious logic Types Action by Viruses Reading.

Lecture: Malicious Code CIS 3360 Ratan K. Guha. Malicious Code2 Overview and Reading Assignments Defining malicious logic Types Action by Viruses Reading.
Malicious Software programs exploiting system vulnerabilities known as malicious software or malware program fragments that need a host program e.g. viruses,

Malicious Software programs exploiting system vulnerabilities known as malicious software or malware program fragments that need a host program e.g. viruses,
1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:

What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:
Computer Viruses. History Malicious software – 1970’s Programs distributed over exchange servers speeds spread of viruses Brain sparks term: Virus.

Computer Viruses. History Malicious software – 1970’s Programs distributed over exchange servers speeds spread of viruses Brain sparks term: Virus.
1 Malicious Logic CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 25, 2004.

1 Malicious Logic CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 25, 2004.
Malware Fundamentals POLITEHNICA University of Bucharest 14 th of January 2015 Ionuţ – Daniel BARBU.

Malware Fundamentals POLITEHNICA University of Bucharest 14 th of January 2015 Ionuţ – Daniel BARBU.
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
Video Following is a video of what can happen if you don’t update your security settings! security.

Video Following is a video of what can happen if you don’t update your security settings! security.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 7 – Malicious Software.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 7 – Malicious Software.
Malicious Software Malicious Software Han Zhang & Ruochen Sun.

Malicious Software Malicious Software Han Zhang & Ruochen Sun.
1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.

1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.
Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.

Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.

Similar presentations

Ads by Google