Malwares also called malicious software is a term used to describe any form of intrusive software or viruses.
These malwares can take any form like executable code, scripts or even softwares. The motive of malwares is to cause some form of damages through virus, worm or Trojan.
Malware is specifically designed to cause damage to a stand alone computer or a networked PC.
Malicious programs perform a range of functions encrypting or deleting sensitive data, altering or hijacking the core computing functions and keeping a watch on the users' computer activity secretly.
The Most Recent Malware Attack
The latest victim to malware attack was a few months ago when ‘OSX.Proton’, a new variant of malware spread and attacked the security of Symantec’s blog.
This fake Symantec blog site at symantecblog[dot]com was an exact replica of the original blog site with the exact same content.
It was made in such a legitimate way that at a glance, it looked exactly the same.
However, if you looked closely, the email address used to register the domain was a dead giveaway.
To add to that suspicion was the certificate used by this fake site. It was a legitimate SSL certificate but was issued by Comodo rather than Symantec’s own certificate authority.
The highlight was a fake post, Symantec Malware Detector.
It was there on the page, which promised to detect and remove any malware that is there in your system. This was certainly a spam as a software like this is non-existent.
This photon malware when clicked and downloaded would steal the passwords.
As soon as anyone downloaded and ran the malware, the security of their system was compromised.
The ‘Check’ button would ask for the admin password and once you enter it, your PC is infected with malware.
Since it looked legitimate, it was very unlikely for anyone to question it.
You will see a progress bar claiming to be scanning the computer which means that the malware is already installed.
Tweets of this post became extremely viral on Twitter. This is how was brought to the fore.
The good news is that there are ways to combat these security threats.
What are the Steps Ahead?
There are certain softwares that you need to install on your device such as antivirus and firewalls that help identify and protect against activities that are malicious, and help your PC prevent or recover from attacks.
Malwarebytes for Mac is already installed and will help you get rid of malware for free. It's pretty easy to remove the malware from Mac.
But since your credentials may have already been compromised, you will need to take some emergency actions post-infection and change everything.
4 Ways to Secure Your Passwords
- It is highly recommended that all accounts have different passwords.
- A password manager is the best software to kept a track of all passwords.
- Don’t save the master password in your keychain or anywhere else on the computer because that can easily be hacked.
- It is best to keep that one password strong and memorized.
Also if you have any credit card details, pins other sensitive information on you PC, it might be compromised in case of a malware attack.
So, you definitely need password protection.
10 Ways to Prevent Any Future Attacks
- An updated, non-pirated operating system is a must have, let it automatically download and install updates.
- Do not download any software or files from unknown sources.
- Think before you click on anything, read the URL first if you suspect anything.
- Take a note of the pop-up blocking, download screen, and automatic update features.
- Update and keep your antivirus on at all time and schedule a scan to run at least once a month.
- Install anti-malware. But make sure it does not clash with your antivirus.
- Use firewalls, it is mandatory.
- Do not use open Wifi sources, they might be a reason for malware attacks.
- Keep a backup of all files in an alternative place.
- Consider additional spam filtering software and keep it switched on.
If you do not have assurity of IT security, talk to the IT experts. They will be able to guide you through the whole process of secured systems.
Found this useful?
Feel free to share your experience or ask for expert IT advice. Call 212-206-6262 anytime!