Understanding Malware: Types, Risks, and Prevention

Slide Note
Embed
Share

Dive into the world of malware to explore major types such as viruses, worms, ransomware, and more. Learn about social engineering tactics, insider threats, and best practices to safeguard against malware attacks. Discover the malicious intent behind grayware and how to prevent malware infections effectively.

andi
andi Follow

Uploaded on Jul 22, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. IT 6823 LM 7 Malware Dr. Lei Li

  2. NIST Framework Core Image source: https://www.nist.gov/document/cybersecurityframeworkv1- 1presentationpptx IT 6823 LM7 Malware 2

  3. Learning Outcomes Describe major types of malware Explain the characters of computer virus and ransomware Describe how social engineering work Explain the role of firewall in protecting the computer system Describe different type of inside threats and hacker Discuss the best practices against malware attacks & inside threats IT 6823 LM7 Malware 3

  4. Overview Malware Malicious intent Grayware Actors in malware attacks Social engineering Insiders, hacker Prevent malware attacks IT 6823 LM7 Malware 4

  5. Malware Any malicious program or code that is harmful to systems Virus Worms Spyware/adware Trojan Ransomware Rootkit A Keylogger Malicious cryptomining Exploits IT 6823 LM7 Malware 5

  6. Malware Image source: https://en.wikipedia.org/wiki/Malware#Security_defects_in_software IT 6823 LM7 Malware 6

  7. Malware Infection Growth Rate Source: https://purplesec.us/resources/cyber-security-statistics IT 6823 LM7 Malware 7

  8. Computer Virus Requires a host program Requires user action to transmit from one system to another Attaches bits of its own malicious code to other files or replaces files outright with copies of itself Don t catch headline as in the past, but still need to take it seriously. IT 6823 LM7 Malware 8

  9. Ransomware Scareware Screen lockers Encrypting ransomware IT 6823 LM7 Malware 9

  10. Grayware Privacy-invasive software Convey the commercial aspect of unwanted software contamination Potentially unwanted program Unwanted despite having been downloaded by the user Adware & spyware IT 6823 LM7 Malware 10

  11. Social Engineering Hack people s mind 98% of cyber attacks rely on social engineering Getting victim to: Give up usernames and passwords Install malware on their device Send money via electronic fund transfer, money order, or gift cards Authorize a malicious software plugin, extension, or third-party app Act as a money mule IT 6823 LM7 Malware 11

  12. Human Vulnerabilities for Social Engineering Reciprocity Scarcity Authority Consistency Liking Consensus Image source: https://purplesec.us/social-engineering/ IT 6823 LM7 Malware 12

  13. Types of Social Engineering Email phishing Trojan Spearing fishing SMS text message phishing (smithing) Scam calls Tech support scams IT 6823 LM7 Malware 13

  14. An Example Cybercriminals impersonate World Health Organization to distribute fake coronavirus e-book IT 6823 LM7 Malware 14

  15. Inside Treats Malicious insider A mole Careless users Most common threat IT 6823 LM7 Malware 15

  16. Insider Threat Behavior Image source: https://www.imperva.com/learn/application-security/insider-threats/ IT 6823 LM7 Malware 16

  17. Hacker Purpose of hacking Criminal financial gain Fame and reputation Corporate espionage State-sponsored hacking Hacktivist IT 6823 LM7 Malware 17

  18. Types of Hacker Black hat Whit hat Gray hat IT 6823 LM7 Malware 18

  19. Factors make a system more vulnerable to malware Security defects in software Insecure design or user error Over-privileged users and code Use of the same operating system IT 6823 LM7 Malware 19

  20. Firewall Restrict outside access to your computer/network Block traffic from certain location, applications or ports Allowing relevant and necessary data through Hardware firewall Network firewalls Software firewall Built in most OS Third party app IT 6823 LM7 Malware 20

  21. Best Practices against Malware Attacks Continuous User Education Use Reputable A/V Software Ensure Your Network is Secure Perform Regular Website Security Audits Scanning your organization s websites regularly for vulnerabilities Create Regular, Verified Backups IT 6823 LM7 Malware 21

  22. Protect Against an Insider Attack Protect critical assets Enforce policies Increase visibility Promote culture changes IT 6823 LM7 Malware 22

  23. Insider Threat Detection Solutions Insider familiar with security measures Combine several tools Machine learning tools for analyzing data stream and prioritizing alerts Behavior analytics Database activity monitoring IT 6823 LM7 Malware 23

Related


Analysis of Mixed-Mode Malware and Malware Analysis Tools

Analysis of Mixed-Mode Malware and Malware Analysis Tools

mac_h
Understanding Malware: Types, Symptoms, and Countermeasures

Understanding Malware: Types, Symptoms, and Countermeasures

kennade
Understanding Malware: Types, Usage, and Protection

Understanding Malware: Types, Usage, and Protection

zipporah
Evaluating Android Anti-malware Against Transformation Attacks

Evaluating Android Anti-malware Against Transformation Attacks

nady
MapReduce Method for Malware Detection in Parallel Systems

MapReduce Method for Malware Detection in Parallel Systems

zaer318
Understanding Malware: Definitions and Types

Understanding Malware: Definitions and Types

azel963
Understanding Malware and Computer Security

Understanding Malware and Computer Security

cwirk
Introduction to Malware Reverse Engineering

Introduction to Malware Reverse Engineering

joel_708
Understanding Malware: Types, Risks, and Prevention

Understanding Malware: Types, Risks, and Prevention

lkmy
Understanding Computer System Security Threats and Malware Types at Eshan College of Engineering

Understanding Computer System Security Threats and Malware Types at Eshan College of Engineering

balbuena_c
Understanding Malware Analysis Using Cuckoo Sandbox

Understanding Malware Analysis Using Cuckoo Sandbox

ash_g
Understanding DeepLocker Malware and AI-Embedded Attacks

Understanding DeepLocker Malware and AI-Embedded Attacks

enapl
Exploring SMT Solvers for Malware Unpacking

Exploring SMT Solvers for Malware Unpacking

ray_904
Emerging Malware Threats in the COVID-19 Era

Emerging Malware Threats in the COVID-19 Era

jeer686
Context-Aware Malware Detection Using GANs in Signal Systems

Context-Aware Malware Detection Using GANs in Signal Systems

sart_an
Understanding Malware: Types, Risks, and Removal Methods

Understanding Malware: Types, Risks, and Removal Methods

pron
Understanding Malicious Software in Computer Security

Understanding Malicious Software in Computer Security

kendallw
Understanding Malicious Software and Its Impact on Computer Systems

Understanding Malicious Software and Its Impact on Computer Systems

bess_wyn
Malware Dynamic Analysis Part 6 Overview

Malware Dynamic Analysis Part 6 Overview

couillard_n
Understanding Malware Analysis with OllyDbg: A Practical Approach

Understanding Malware Analysis with OllyDbg: A Practical Approach

mirren
Understanding Malware Execution and DLLs in IDA

Understanding Malware Execution and DLLs in IDA

pent_vi
Understanding Malicious Software: Classification and Payload Actions

Understanding Malicious Software: Classification and Payload Actions

rya_kav
Analyzing Android Applications for Malware Detection

Analyzing Android Applications for Malware Detection

mare117
Comprehensive Malware Analysis Techniques

Comprehensive Malware Analysis Techniques

kerschner_l

More Related Content