As this is my first blog entry I felt I had to write on something close to home. As a technical writer I have been writing pieces for online articles related to computer performance and security issues. I am three quarters of the way through an article about malware (“malicious software”) and it is taking far longer than I expected. I have tried to condense it as much as possible. It begins with a definition, lists the various types of malware, and briefly covers the transition from virus to malware. Recently, I did a first pass on a section related to attack vectors and security vulnerabilities and I am about to write on botnets and rootkits. As I work on this I am overwhelmed by just how much information is available on these subjects.
Last weekend I switched off my computer for the day and enjoyed an amazing day of bike riding and an incredible swim at a local lake. While warming in the sun and with the continuous reflection of light bouncing off the water, I attempted to explain to my new friend the work I was doing and the subject matter of my writing. Not only was it a challenge to bring this virtual existence into the refreshing day we were experiencing, but it was also difficult in another way. In the back of my mind, as I was talking, and even during the times I write, I can’t help but think… “Am I portraying a certain kind of message?” Am I saying in some way: “The virtual sky is falling… the virtual sky is falling”?
According to the available documentation malware and cyber crime is a serious issue and there is sufficient reason to be concerned. And yet, I don’t want to be an alarmist. How bad can it be? Most people that face this would be getting a few web cookies and popup ads. By some accounts, there will be those that will have their computers controlled by remote hackers (also known as “black hats” or “crackers”). Is this real and is there more to this?
Two days ago, the whole thing strikes close to home for me. A good friend of mine tells me that she has had some funds - a thousand dollars - taken from a bank account. The account is shared between her and her husband. When dealing with her bank, the rep assured her that this happens all the time and it was likely an error related to misdirected funds and they were investigating it. Soon after this someone from the bank tells her that it could be from malware or a virus and she should check her computer. She is using a MacIntosh and I find this interesting because from what I know, malware is not typically targeted at MacIntosh computers. I try and help from my end by attempting to find some free online scanning utilities. Finding some online scanning tool for the MacIntosh wasn’t leading to much success. She resolves herself to checking with the computer wholesalers, and the bank, the next day.
The next day, the Mac distributor that she speaks to says that there hasn’t been a virus on a Mac in 10 or 11 years. A contradiction from what I hear. The people I work with tell me that Macs are just as vulnerable but they are just not targeted as much because they have less of a market share. This was something I was fully aware of but I was glad to have confirmed it. My friend tells me in our next conversation that she had received an online correspondence a few days back which appeared to be from her bank. The email had seemed to look legit and it described a warning about an expiration which linked her to a web page where she had to submit her account credentials. Right away I knew what this was… a Phishing scam.
By using “hoax” or “spoof” emails these scammers appear legitimate. In some schemes, like this one, there is an urgent message, a web link is displayed, and the user is taken to a “spoofed” web page. The aim of the scam is to get a password, or PIN information, debit or credit card numbers, or social security numbers, or bank account information. Once you enter the credentials they can record the information and use it for other purpose such as transferring funds.
From what I know… it takes close examination of the email and the spoofed web page to detect that it is in fact a scam. The email message that my friend received stated that she must act immediately.
Here’s my little blurb… if in doubt of an email such as this, take some time to confirm it person-to-person or by phone with the financial institute. If you see a web page that looks like it could be a fake, examine the URL address to see if it is exact or if there are misspellings. Some of these tricksters are mimicking the web address by using two letter v’s (“vv”) instead of the letter w (“w”). You can also check to see if the address can be altered. If the site address is: “http://www.mybank.org/actow.html” you can try and truncate the URL so that you are taken to the home page: “http://www.mybank.org”. To read more about email spoofing, see: http://www.cert.org/tech_tips/email_spoofing.html.
One point of clarification has to do with PC’s and Macs. I usually slam Microsoft in my articles and here is an opportunity to balance the scales. Nothing against Macs but according to my online research, the first virus “in the wild” was spread via an Apple II floppy disc in 1981. There were viruses since then and up until the turn of the century. In May of 2001 there was the introduction of the first AppleScript worm. This virus uses Entourage or Outlook Express on Mac computers to spread emails to address book entries. All things considered, Macs are safer to use. However, as can be seen, no one is safe from the exploits of cyber crime and from the annoyance of viruses and security breaches.
When I research and study the reports available online I can’t help but write about this subject with a particular tone as this is important to me. I don’t know the full ramifications of it but it is a growing concern as we become more and more comfortable with our virtual conveniences. We rely on technology to be secure and to protect us from cyber nasties and we underestimate the potential of what is in fact a pandemic. I do not want to portray some message about disaster being eminent. It is a clear indication of our reliance on computer technology.
For many people who experience malware first-hand and take on their own private battle by trying to remove these items and regain control of their system, this is more than an a casual annoyance. As for other mass attacks and what the fallout will be… much of the outcome depends on how organized this threat is and how able users and solution providers are able to rally against it. There is the equivalent of an online “Neighborhood Watch”. You can check it out at: http://stopbadware.org/home/about.
There were very few people that were affected by the first virus that struck in 1981. It did include a little rhyme:
It will get on all your disks
It will infiltrate your chips
Yes it’s Cloner!
It will stick to you like glue
It will modify ram too
Send in the Cloner!
The cyber threats we face today have a greater impact and strike closer to home. They target and have an impact on our real world lives.