It's hard to predict which malware program will become the next "big one." Rarely is the particular piece of malware that goes explosively viral (forgive the pun) new or innovative. The famous Melissa virus wasn't the first Microsoft Word macro virus. The Michelangelo boot virus wasn't the first boot virus to overwrite hard drive sectors. Nimba wasn't the first HTML threat. And the Iloveyou worm wasn't the first VBS malware program. The malware that takes off seems to be a combination of just the right social engineering and timing. I've given up on predicting what will become the Next Big Thing.
Although the latest two big threats aren't the lead-off story on CNN Headline News, they have exploited more end-users than any threat of the past few years. My e-mail and cell phone are busy with messages from friends and family exploited and trying to clean up.
The first major threat going around these days is known as XP Antivirus 2008, though it's also known by a few other similar names. A user is socially engineered into installing a bogus anti-virus program, which then, in a not so startling development, detects thousands of malicious viruses, and prompts the user to buy their program to get rid of the malware. Often the only malware program the user has is the XP Antivirus 2008 program itself.
The interesting aspect of this malware program is its capability to modify the normal Microsoft Windows desktop to look as if the status bar is sending an alert message indicating a virus infection. The alert warning looks like an official Microsoft Windows warning, bubbling up from the area where you normally expect legitimate programs to be. The XP Antivirus 2008 program install looks just as official, but once installed asks for money to get rid of the supposed viruses or starts stealing confidential information.
Too late, most users realize they have been scammed by the malware program. The Internet is full of sites and tools attempting to help users disinfect their PCs. Most solutions don't work, no matter how well intended. The malware program is programmed to prevent easy cleanup, including blocking access to Web sites that can offer good help and preventing legitimate cleanup tools from running.
My advice with any successful malware-exploited PC is to back up the data, format your drive, re-install your programs, fully patch, and begin all over again. Change your online passwords and PINs, monitor your credit, and begin your cyberlife anew. Today's malware is criminally motivated and trying to steal all your money, one way or another.
Get the independent advice and expertise you need to support a virtual workforce.
The increase in Linux popularity has increased the frequency and sophistication of malware attacks. Read this 2 page white paper now to learn how you can protect your Linux environment with real-time protection that is certified by all major Linux vendors.
Download now »Ensuring acceptable application delivery will become even more difficult over the next few years. As a result, IT organizations need to ensure that the approach that they take to resolving the current application delivery challenges can scale to support the emerging challenges. This handbook elaborates on the key tasks associated with planning, optimization, management and control and provides decision criteria to help IT organizations choose appropriate solutions.
Download now »A common misconception is that mid-range storage requirements are dramatically different than that of a larger enterprise. Mid-range storage users may require less capacity, but they have similar functionality and management requirements. This ESG paper examines mid-range storage needs and reviews a new solution that adjusts size while retaining value, performance and functionality.
Download now »
Sign up to receive Security Resource Alerts
This white paper provides guidance on how to develop a strategic approach to managing and monitoring logs, a key function required for compliance with many regulatory mandates and a critical defense against security threats.
Download now! »Learn about the processes and technologies that support security information management (SIM) operations, as well as the business case for SIM. The series examines different options for implementing SIM and gives you evaluation criteria for selecting the best option for your organization.
Download now! »Learn the strategies, actions, and capabilities that Best-in-Class organizations employ and technologies they choose to obtain superior performance against various security performance metrics. This report provides guidelines for identifying which security solutions to consume as a MSS and defines best practices for choosing and managing MSSPs.
Download now! »