[ENG] Security Topics: Understanding the basic concepts/threats and protection of malware

 

Malware, short for malicious software, is a type of software designed to harm computer systems and steal important information. This is a serious threat to both individuals and organizations, and the damage that can occur can be very significant. In this post, you will learn about the concepts and types of malware, two cases of damage caused by malware, the causes of malware, and how to take action.

Malware Type
There are different types of malware, each with its own characteristics and methods of attack. Here are some of the most common types:

Viruses: A virus is a type of malware that connects to a legitimate program and infects other files on the system. When a virus is activated, it can steal information or damage your system.

Trojans: Trojans are a type of malware disguised as legitimate software. Once installed, you can create a backdoor that can steal information or allow other malware to break into your system.

Ransomware: Ransomware is a type of malware that requires ransom to encrypt files on a system and restore access.

Adware: Adware is a type of malware that displays unwanted advertisements on your system.

Malware Damage Cases
WannaCry: In May 2017, the WannaCry ransomware attack infected hundreds of thousands of computers worldwide, causing billions of dollars in damage. A vulnerability in Windows operating systems and a ransom demand to restore access by encrypting files on infected computers.

* WannaCry Accident Case

[NHS(National Health Service)]
One of the most famous victims of the WannaCry attack was the British National Health Service. The attack affected hospital computer systems across the country, resulting in thousands of cancellations of appointments and surgeries. The NHS has been criticised for failing to come up with appropriate cybersecurity measures, including outdated software and poor patch management.

[Renault in France]
The WannaCry attack also affected French carmaker Renault. The attack halted production at several plants, including one in Duay, France. Renault was able to recover from the attack relatively quickly, but the incident highlighted the vulnerability of the industry control system to cyberattacks.

[Telefonica in Spain]
Telefonica, one of the world's largest carriers, was also attacked by WannaCry. The company's computer system was affected, and employees were advised to turn off their computers to prevent further spread of malware. This attack had a significant impact on the company's operations, but it was able to recover without long-term damage.

 

Stuxnet: Stuxnet is a sophisticated worm discovered in 2010. It was designed to target an industrial control system and damaged Iran's nuclear program. It is likely that it was created by a country for cyber espionage or cyber warfare.

* Stuxnet Accident Case

[Natans nuclear facility in Iran]
Iran's Natanz nuclear facility was one of the main targets of the Stuxnet attack. The malware penetrated the facility's industrial control system, causing significant damage to the centrifuges used to enrich uranium. It is estimated that up to 1,000 centrifuges have been destroyed or disabled in this attack.

[Siemens Control System]
Stuxnet is designed to exploit vulnerabilities in Siemens industry control systems that are widely used in manufacturing and other critical infrastructure industries. The malware could spread to other Siemens control systems around the world, raising significant concerns about the potential impact of future attacks on key infrastructure.

[Another unintended target]
Stuxnet was specifically designed to target Iran's nuclear program, but it eventually infected thousands of other computers and control systems around the world. These included computers in the United States, Europe, and Asia, as well as other industrial control systems in industries such as petrochemicals and water treatment.

 

Cause of Malware
Malware can be caused by a number of factors:

Human error: Human error, such as clicking on suspicious links or downloading malicious attachments, is a common cause of malware infection.

Vulnerability in Software: Malware could exploit a vulnerability in software to access the system.

Older Software: Older software may contain vulnerabilities that have been fixed in the latest version, so older software can also cause malware infection.

How to take action against malware
Here are some steps to protect yourself from malware:

Using Anti-Virus Software: Antivirus software can detect and remove malware from your system. Keep your antivirus software up to date.
- Norton Anti-Virus
- McAfee Anti-Virus
- BitDefender Anti-Virus
- Kaspersky Anti-Virus
- Avast Anti-Virus

Keep Software Updates: If you keep software updates, it is important to keep your operating system and all applications up to date. Use this task to check for updates regularly and install them as soon as they are available. Some operating systems, such as Windows and macOS, have built-in update tools to facilitate this process.

Use strong passwords: Using strong passwords is important to protect online accounts from hackers. A strong password must be at least 12 characters long and must be a mixture of letters, numbers, and symbols. It is also important to use a unique password for each account to prevent hackers from accessing multiple accounts if one password is compromised.

Be careful online: Paying attention online means avoiding suspicious websites, not clicking on links from unknown sources, and not downloading attachments from unknown senders. Use caution when using a public Wi-Fi network as it can be vulnerable to cyberattacks. These precautions can help protect you from malware and other online threats.

---

Malware is a serious threat to individuals and organizations, and the possible damage can be very serious. By understanding the type and cause of malware and taking measures to protect yourself from it, you can prevent infection and keep your information safe. Always be careful online and keep your software up-to-date and one step ahead of the threat.