Presentation is loading. Please wait.

Presentation is loading. Please wait.

Malware Creators Are Quite Clever, You Know...

Published bySuzanna Short Modified over 6 years ago

Similar presentations

Presentation on theme: "Malware Creators Are Quite Clever, You Know..."— Presentation transcript:

1 Malware Creators Are Quite Clever, You Know...
Brian Long Brian Long Training & Consultancy Services

2 Malware Malware = software that has malicious purpose or behaves maliciously: Worms Viruses Adware Spyware Exploit tools Backdoor servers Spreaders Rootkits

3 Malware Malware typically arrives through some exploit
Backdoors are planted Stuff may get broken Data may be stolen Host facilities may be consumed parasitically

4 Malware Continued existence and stealth achieved through rootkits
Terminology dates back some way with Unix Rootkits hide stuff Files Directories Registry keys/entries Processes and so on

5 Malware Rootkits are low-level, high-tech nasties
Some use kernel-mode code installed through a driver Some achieve what they need to at user mode Various approaches implemented successfully Regular toolkit will not see rootkits Rootkit deployment is increasing rapidly

6 Case Study Live web server Locked away in a shed somewhere
Only access via Remote Desktop Something seemed funny, hence the call Dodgy IP activity, but… …nothing visible

7 Case Study Turned out to be a skilled hacker’s P2P system
26.5GB of music and video files being distributed around an IRC crew on the quiet Rootkit installed Disk space faked Everything hidden Customer very surprised to see it all spill out into the open

8 Malware Common implementation language is Delphi
If not, C++ or assembly language With lots of inline assembly Microsoft are getting on the case: Sysinternals.com are getting on the case:

9 B.L.E.A.C.H. Infected by adware? Having trouble removing spyware? Suspect you have some malware? You need to clean your system with BLEACH*. BLEACH* is the quick and effective way to rid yourself of unwanted and malicious software on your Windows desktop, LAN servers and Web servers. Enquiries to * Brian Long Elbows Away Computer Hackers

10 Thank you Brian Long brian@blong.com http://blong.com
p|-|34|2 |v|’/ 1337 $|<!11z

Download ppt "Malware Creators Are Quite Clever, You Know..."

Similar presentations

Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
Day 4-1-1 anti-virus 3-3-1.anti-virus 1 detecting a malicious file malware, detection, hiding, removing.

Day anti-virus anti-virus 1 detecting a malicious file malware, detection, hiding, removing.
Rootkit Definition A rootkit is a collection of tools (programs) that enable administrator-level access to a computer or computer network. Typically, a.

Rootkit Definition A rootkit is a collection of tools (programs) that enable administrator-level access to a computer or computer network. Typically, a.
What are Trojan horses?  A Trojan horse is full of as much trickery as the mythological Trojan horse it was named after. The Trojan horse, at first glance.

What are Trojan horses?  A Trojan horse is full of as much trickery as the mythological Trojan horse it was named after. The Trojan horse, at first glance.
By Joshua T. I. Towers. 13.3 $13.3 billion was the direct cost of malware for business in 2006 “direct costs are defined as labor costs to analyze, repair.

By Joshua T. I. Towers $13.3 billion was the direct cost of malware for business in 2006 “direct costs are defined as labor costs to analyze, repair.
Vijay krishnan Avinesh Dupat  Collection of tools (programs) that enable administrator-level access to a computer or computer network.  The main purpose.

Vijay krishnan Avinesh Dupat  Collection of tools (programs) that enable administrator-level access to a computer or computer network.  The main purpose.
Windows Malware: Detection And Removal TechBytes Tim Ramsey.

Windows Malware: Detection And Removal TechBytes Tim Ramsey.
Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.

Malicious Attacks By: Albert, Alex, Andon, Ben, Robert.
Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.

Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.
Viruses, Hacking, and AntiVirus. What is a Virus? A type of Malware – Malware is short for malicious software A virus – a computer program – Can replicate.

Viruses, Hacking, and AntiVirus. What is a Virus? A type of Malware – Malware is short for malicious software A virus – a computer program – Can replicate.
 Discovered in June/July 2010  Targeted Siemens software and equipment running Microsoft Windows  First malware for SCADA systems to spy and subvert.

 Discovered in June/July 2010  Targeted Siemens software and equipment running Microsoft Windows  First malware for SCADA systems to spy and subvert.
VIRUSES + DESTRUCTIVE PROGRAMS = MALWARE

VIRUSES + DESTRUCTIVE PROGRAMS = MALWARE
Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.

Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.
MSIT 458 – The Chinchillas. Offense Overview Botnet taxonomies need to be updated constantly in order to remain “complete” and are only as good as their.

MSIT 458 – The Chinchillas. Offense Overview Botnet taxonomies need to be updated constantly in order to remain “complete” and are only as good as their.
Viruses.

Viruses.
 We all know we need to stay safe while using the Internet, but we may not know just how to do that. In the past, Internet safety was mostly about.

 We all know we need to stay safe while using the Internet, but we may not know just how to do that. In the past, Internet safety was mostly about.
What is a Computer Worm? A computer worm is a self- replicating program very similar to a virus. A virus attaches itself and becomes part of another executable.

What is a Computer Worm? A computer worm is a self- replicating program very similar to a virus. A virus attaches itself and becomes part of another executable.
Rootkits. EC-Council The Problem  Microsoft Corp. security researchers are warning about a new generation of powerful system-monitoring programs, or.

Rootkits. EC-Council The Problem  Microsoft Corp. security researchers are warning about a new generation of powerful system-monitoring programs, or.
Spyware and Viruses Group 6 Magen Price, Candice Fitzgerald, & Brittnee Breze.

Spyware and Viruses Group 6 Magen Price, Candice Fitzgerald, & Brittnee Breze.
Vijay Krishnan Avinesh Dupat. A rootkit is software that enables continued privileged access to a computer while actively hiding its presence from administrators.

Vijay Krishnan Avinesh Dupat. A rootkit is software that enables continued privileged access to a computer while actively hiding its presence from administrators.

Similar presentations

Ads by Google