Presentation is loading. Please wait.

Presentation is loading. Please wait.

SPYWARE Presented by The State Security Office November 17, 2004.

Published bySavannah Jess Modified over 9 years ago

Similar presentations

Presentation on theme: "SPYWARE Presented by The State Security Office November 17, 2004."— Presentation transcript:

1 SPYWARE Presented by The State Security Office November 17, 2004

2 We Have Viruses, Worms, Spam Virus – code inside existing program Worm – independent code that spreads Spam – message broadcast to many email addresses

3 So What’s Spyware? Technology Gains information about user... without their knowledge Benefits other party, not user

4 Spyware Can... Track Browsing Steal Identity Corrupt Data Create Profiles Slow the Computer Slow the Network Change Homepage Modify Hosts File Download Malware Modify Registry Change Settings Hijack Computer Leak Information Violate HIPPA

5 Good Cookie Not all Information Gathering is Bad! Retains sign-on through session Holds a shopping cart Allows purchases Gets correct delivery address Holds the user’s place

6 Bad Cookie Some Information Gathering is Very Bad Gets more than you intend to give Holds it longer than you want Shares it with others

7 Kinds of Spyware Adware –  Annoyance or  Serious problem System Monitors –  Monitors activity  Reports to others Trojan Horses  Innocent looking program  Causes harm

8 $pyware Why do we have Spyware infections? $$$$ MONEY $$$$$ “I’m your bank, give me your account number...” “Okay, it’s 4323409857... anything else you want?”

9 $$ Motivation $$ Target advertising Aggressive advertising Advertisers pay to piggyback Sell bogus products Credit cards, passwords, account numbers Get private business information Extortion

10 How? People Open Doors... F for User Awareness... Fall for ploys (phishing) Fail to keep software updated Fail to keep security settings reasonable Fail to use spyware protection

11 Doors Users Open #1 is P2P File Sharing Software vulnerabilities Weak privacy settings Intentional downloads Bad Internet neighborhoods End User License Agreements Clicking on pop-up advertisements Phishing

12 Sneaky Ways In Cookies Unintentional downloads Drive-by downloads Piggybacking on legitimate downloads Disguised anti-spyware Disguised anti-porn Associated with trusted products

13 Prevention People Tools Policy

14 People Awareness Reactions to social engineering ploys  Don’t click on links in pop-ups  Don’t believe spam reports Extreme caution when loading software Know how to recognize problems Know how to use the tools Understand the policies

15 Tools Choose good software tools  Keep the products updated  Use them regularly Know about good resources Take advantage of the P3P standard

16 Policy Product updates Restrict or forbid dangerous practices  P2P file sharing  Public instant messaging  Unapproved software installation Use appropriate settings Consider notebook and home systems Report problems promptly

17 Legislation State and Federal Much is already illegal Legislation may not help much

18 Detection Use good tools Inoculate Update weekly Scan weekly Symptoms: Slow computer, lots of pop-ups, browser hijacking

19 Removal Remove bad files Remove copies of files! Reverse host file changes Reverse browser changes Reverse registry settings Good tools and/or Experienced Help

20 Resources The State Security Office  http://www.cio.arkansas.gov/security http://www.cio.arkansas.gov/security Spyware Warrior  http://www.spywarewarrior.com http://www.spywarewarrior.com Spybot Search and Destroy  http://spybot.safer-networking.de/en http://spybot.safer-networking.de/en Ad-Aware  http://www.lavasoft.de http://www.lavasoft.de

21 Ad-Aware Can I use Ad-Aware Personal (free) version at work? No, Ad-Aware Personal is free for individual use only. For profit business entities, governmental entities, or educational institutions, must purchase a valid end-user license in order to use the software. Lavasoft FAQ, http://www.lavasoft.de/, November 16, 2004http://www.lavasoft.de/

22 Spyware Warriors Real Spyware... Real Spyware Warriors... Their Stories Tim Stoddard, UALR Sky Brower, PC Assistance

Download ppt "SPYWARE Presented by The State Security Office November 17, 2004."

Similar presentations

Viruses & Spyware A Module of the CYC Course – Computer Security 8-28-10.

Viruses & Spyware A Module of the CYC Course – Computer Security
Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
Wichita Public Library Rex Cornelius Electronic Resources Webliography online at:

Wichita Public Library Rex Cornelius Electronic Resources Webliography online at:
Mary Burger Owner ComputerDiva, LLC Vancouver, WA www.computerdiva.biz.

Mary Burger Owner ComputerDiva, LLC Vancouver, WA
Online Safety. Introduction The Internet is a very public place Need to be cautious Minimize your personal risk while online Exposure to: viruses, worms,

Online Safety. Introduction The Internet is a very public place Need to be cautious Minimize your personal risk while online Exposure to: viruses, worms,
SECURITY CHECK Protecting Your System and Yourself Source:

SECURITY CHECK Protecting Your System and Yourself Source:
Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
INTERNET SAFETY FOR EVERYONE A QUICK AND EASY CRASH COURSE.

INTERNET SAFETY FOR EVERYONE A QUICK AND EASY CRASH COURSE.
Computer Ethics Ms. Scales. Computer Ethics Ethics  the right thing to do Acceptable Use Policy  A set of rules and guidelines that are set up to regulate.

Computer Ethics Ms. Scales. Computer Ethics Ethics  the right thing to do Acceptable Use Policy  A set of rules and guidelines that are set up to regulate.
Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.

Don’t Lose Your Identity – Protect Yourself from Spyware Dan Frommer Sherry Minton.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.

Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.
What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:

What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:
Spring 2008 www.umsl.edu/~iclabs. Definitions  Virus  A virus is a piece of computer code that attaches itself to a program or file so it can spread.

Spring Definitions  Virus  A virus is a piece of computer code that attaches itself to a program or file so it can spread.
Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.

Internet Safety for Students Malicious Programs By: Mr. Bradshaw Scott City R-1 Schools.
GET CONTROL! Avoid The Headache… Five Simple Steps to a Safer Computer – NUIT Tech Talk.

GET CONTROL! Avoid The Headache… Five Simple Steps to a Safer Computer – NUIT Tech Talk.
Security Advice Georgie Pepper Campsmount Acadamy.

Security Advice Georgie Pepper Campsmount Acadamy.
How It Applies In A Virtual World

How It Applies In A Virtual World
Threats to I.T Internet security By Cameron Mundy.

Threats to I.T Internet security By Cameron Mundy.

Similar presentations

Ads by Google