Presentation is loading. Please wait.

Presentation is loading. Please wait.

By Michael Carlisle CpSc 420 December 6, 2007. Worms – A Definition!  Worm – a program that copies itself from one computer to another.

Published byDaniel Elliott Modified over 8 years ago

Similar presentations

Presentation on theme: "By Michael Carlisle CpSc 420 December 6, 2007. Worms – A Definition!  Worm – a program that copies itself from one computer to another."— Presentation transcript:

1 By Michael Carlisle CpSc 420 December 6, 2007

2 Worms – A Definition!  Worm – a program that copies itself from one computer to another.

3 Common Terms  Payload – the code’s harmful results. Example – Nyxem worm – targets files with commonly used extensions ○ ZIP, DOC, PDF, PPT, XLS … ○ Replaces data in those files with the text “DATA Error [47 0F 94 93 F4 F5]” Example – Melissa.U – deletes critical files on Windows computers. ○ Command.com, IO.sys, Ntdetect.com, Suhdlog.dat

4 Common Terms (cont.)  Mitigation – make something less severe, or to eliminate possiblity of adverse action Many types ○ Patches ○ Updates  Propagation – spreading or self- replication of a worm.

5 Good Worms?!?  Xerox PARC – created in the late 1970’s Designed to find idle processors on a network Once found, helped to share processing and improve CPU cycle use efficiency  Welchia (Nachia) Downloaded patches and updates from Microsoft Found the vulnerability it used and patched it Many considered this a malicious worm ○ Created a lot of traffic ○ Rebooted computers

6 Malicious Intent  Melissa – macro virus Attacked Outlook and Word Distributed by an infected attachment Sends infected file to first fifty e-mail addresses encountered modified Word documents by adding a quote from “The Simpsons” Damage – 300 – 600 million dollars!

7 Malicious Intent  ILOVEYOU VBscript appeared as e-mail attachment (LOVE-LETTER-FOR-YOU.TXT.vbs) Overwrote music and image files with copy of itself Damage – 10 to 15 billion dollars! http://www.dia.unisa.it/~ads/corso-security/www/CORSO-0102/macrovirus/ilovey3.jpg

8 Malicious Intent  Mydoom – one of the fastest spreading worms ever Transmitted by e-mail Finds local files – address book Finds folders entitled “shared folder” to spread via file sharing networks Supposedly responsible for… ○ Decrease 10% in global Internet performance ○ 50% decrease Web load times

9 ILOVEYOU Worm  Searches Microsoft Outlook address book and retrieves all addresses  No limit in number of recipients  Social engineering – e-mails addressed with subject “ILOVEYOU”  Works only with systems that have WSH (windows scripting host) installed  Copies itself to 2 directories Main windows directory ○ File named Win32DLL.vbs System directory ○ File named MSKernel32.vbs  Modifies Windows Registry to make sure it runs during every boot  Overwrites music and image files and copies itself… adds.vbs extension  Searches for mIRC Tries to send html file across IRC channels File has prompt to download an ActiveX control

10 ILOVEYOU Worm (cont.) HTML file sent through IRC

11 Preventative Measures  Education, Education, Education! User’s need to be aware of common worm tactics (social engineering)  Updates Make sure software is updated regularly IMPORTANT – OS updates regularly!  Patches

12 Any Questions?

13 References  Bezroukov, Dr. Nikolai. “Melissa Worm/Virus – a Worm Parasiting on Ms Office 97 Architectural Problems and Ms Word Users’ ignorance.” 6 March 2007. 1 December 2007.  “Computer Worm”. Wikipedia, The Free Encyclopedia. 7 November 2007. 1 December 2007.  “ILOVEYOU”. Wikipedia, The Free Encyclopedia. 30 November 2007. 1 December 2007.  Kehoe, Brendan. “Zen and the Art of the Internet.” 1992. 27 November 2007.  Landesman, Mary. “Nyxem aka Blackmal Worm.” 29 November 2007.  “Melissa Worm.” Wikipedia, The Free Encyclopedia. 7 November 2007. 1 December 2007.  “Mitigation.” The Free Dictionary. Farlex. 30 November 2007.  “Morris Worm.” Wikipedia, The Free Encyclopedia. 28 November 2007. Wikimedia Foundation. 1 December 2007.  Seeley, Donn. “The Internet Worm of 1988.” 27 November 2007.  “VBS.ILoveYou.A”. CA. 11 October, 2005.  “Welchia”. Wikipedia, The Free Encyclopedia. 7 November 2007. 1 December 2007.

Download ppt "By Michael Carlisle CpSc 420 December 6, 2007. Worms – A Definition!  Worm – a program that copies itself from one computer to another."

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Thank you to IT Training at Indiana University Computer Malware.

Thank you to IT Training at Indiana University Computer Malware.
Computer Viruses and Worms* *Referred to slides by Dragan Lojpur, Zhu Fang at Florida State University.

Computer Viruses and Worms* *Referred to slides by Dragan Lojpur, Zhu Fang at Florida State University.
COMPUTER BASICS METC 106. The Internet Global group of interconnected networks Originated in 1969 – Department of Defense ARPANet Only text, no graphics.

COMPUTER BASICS METC 106. The Internet Global group of interconnected networks Originated in 1969 – Department of Defense ARPANet Only text, no graphics.
Telnet and FTP. Telnet Lets you use the resources of some other computer on the Internet to access files, run programs, etc. Creates interactive connection.

Telnet and FTP. Telnet Lets you use the resources of some other computer on the Internet to access files, run programs, etc. Creates interactive connection.
Viruses, Worms, Spyware, and Other Perils of an On- Line World Computer Services Tech Talk September 23, 2003.

Viruses, Worms, Spyware, and Other Perils of an On- Line World Computer Services Tech Talk September 23, 2003.
Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.

Malicious Attacks. Introduction Commonly referred to as: malicious software/ “malware”, computer viruses Designed to enter computers without the owner’s.
What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:

What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:
CSE331: Introduction to Networks and Security Lecture 31 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 31 Fall 2002.
1 Computer Viruses (and other “Malicious Programs) Computer “Viruses” and related programs have the ability to replicate themselves on an ever increasing.

1 Computer Viruses (and other “Malicious Programs) Computer “Viruses” and related programs have the ability to replicate themselves on an ever increasing.
Computer Viruses and Worms Dragan Lojpur Zhu Fang.

Computer Viruses and Worms Dragan Lojpur Zhu Fang.
Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.

Computer Viruses By Patsy Speer What is a Virus? Malicious programs that cause damage to your computer, files and information They slow down the internet.
 Lesson 05: Computer Maintenance. Keep Software Up-To-Date Patches Security Holes Improves Software Stability Improves Software Performance Adds.

 Lesson 05: Computer Maintenance. Keep Software Up-To-Date Patches Security Holes Improves Software Stability Improves Software Performance Adds.
Classification of Viruses. A Government Report from Gibb, McMillan and Wylie.

Classification of Viruses. A Government Report from Gibb, McMillan and Wylie.
Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.

Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
Tyler’s Malware Jeopardy $100 VirusWormSpyware Trojan Horses Ransomware /Rootkits $200 $300 $400 $500 $400 $300 $200 $100 $500 $400 $300 $200 $100 $500.

Tyler’s Malware Jeopardy $100 VirusWormSpyware Trojan Horses Ransomware /Rootkits $200 $300 $400 $500 $400 $300 $200 $100 $500 $400 $300 $200 $100 $500.
1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.

1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.
1. 2 What is security? Computer Security deals with the prevention and detection of, and the reaction to, unauthorized actions by users of a computer.

1. 2 What is security? Computer Security deals with the prevention and detection of, and the reaction to, unauthorized actions by users of a computer.
Unit 2 - Hardware Computer Security.

Unit 2 - Hardware Computer Security.

Similar presentations

Ads by Google