Print Print

Computer Security, Malware and Botnets

by Karoli on February 27, 2007

Nancy Willard is the executive director of the Center for Safe and Responsible Internet Use and the publisher of the report I referred to in earlier posts. She has written an article for Education World entitled Malware and Porn Traps: What Schools Can Do.

From the article:

While discussing the Amero case in online forums, I have gotten many e-mails from teachers stating, “That could have been me” — an entirely accurate statement.

But it’s also important to note that it could happen to any of your students as well.

And this:

The following point must be made absolutely clear to all school administrators and police officers: There are various forms of “malware” (malicious software) or Web sites with “porn traps” or “mouse traps” (a Web site feature that essentially takes control of the browser and causes pornographic sites to pop up when the user tries to exit). Malware and porn traps are lurking on the Internet, just waiting for someone to make a mistake that will result in the display of objectionable material. [Emphasis Added]

The article goes on to list three essential steps for all schools to take. It’s an excellent article and should be required reading by every teacher and IT administrators for school districts in this country.

Not just the schools

It’s not just school districts who need to beware. Just tonight, this article popped up in my feeds via 9o1am about a new trojan out in the wild that started spreading yesterday via email attachment OR by visiting an infected site, a new way of spreading the malware. From F-Secure:

It may use any of the following strings as its Subject:

  • 230 dead as storm batters Europe.
  • A killer at 11, he’s free at 21 and…
  • British Muslims Genocide
  • Naked teens attack home director.
  • U.S. Secretary of State Condoleezza Rice has kicked German Chancellor Angela Merkel

Attachments may be any of the following filenames:

  • Full Clip.exe
  • Full Story.exe
  • Read More.exe
  • Video.exe

More variants and explanation can be found on the F-Secure blog.  As an aside, I’m a lot annoyed that Trend Micro doesn’t have any alerts up on their website about it, so I’ve subscribed to F-Secure’s blog and will be watching it for any updates that should be shouted out.  If the system is infected, a rootkit is installed that allows your system to be taken over by a botnet that then goes out and posts more infected files.

The thing that’s different about this is that it’s being posted in blog comments and message board postings.  Make sure you’ve got up-to-date virus protection, your firewall is turned on, and of course don’t click links or open attachments when you aren’t sure of their source and haven’t scanned them specifically.


Technorati Tags: , , , , , ,

Tagged as: Internet, Julie Amero

  • Marie
    I can't sit down at a computer without checking its health. When I started my job about a year ago, my boss had just gone into business for herself. I never asked her, but I believe the computer I use came from her previous employment where they were sort of careful to remove the data files before letting it out the door. But, not the junk.

    Anyway, I spent that first day updating Windows, installing Firefox, firewall, and anti-virus software (it had none), and cleaning out about 90 cases of spyware and 400 instances of various other forms of malware. There was one super evil search bar type thing attached to IE that took a couple weeks to finally get rid of. This thing made even the simple act of closing IE launch pop-up ads for porn sites.

    The one so-called expert said that Julie was in fact computer literate because she had an AOL account, etc. Well, whoever had this particular computer before me was also computer literate. But still managed to get a tangled up mess on her computer.
  • Doug
    There are six computers in the house (one per person plus a notebook), all as protected as they can be... and yet two of them have been seriously zapped within the past year. One of them was the PC of the most careful of the kids -- and I still don't know how it got nailed by a very nasty bug. That's the unfortunate reality of the world today -- it can and will eventually happen, even if you are relatively savvy and careful.
  • I run full versions of anit virus and have my router and my computer behind firewalls. I I scan with both Ad-Aware and SuperAntiSpyware. Every once in awhile something sneaks by - usually my bad caused by clicking the wrong button.

    The lastest emails that have gotten by my spam guard have the title "your photo". I assume this is to lure me in thinking it relates to Flickr - I dunno and I sure did not open it to find out.

    With all the virus variants and bored folks out there creating them I sometimes wonder if crossing my fingers for luck is not one of my better defenses.
blog comments powered by Disqus

Previous post:

Next post: