Skip to Content (press Enter/Return)
preview

Malaware Protects Against Viruses, Worms, Trojans

comparative Essay
962 words
Open Document
962 words
  • Small
  • Normal
  • Large
  • Huge
bookmark

Malware Protection Policy Introduction Viruses, worms, Trojans, and Spy ware are nasty and dangerous intruders. Together they make up a class of software know as malware which is short for malicious software (Greene, 507). The Grocery, Inc. has been breached and now know that it was a inside job and it was a new and sophisticated plan that was developed by and disgruntled employee. The attacker was able to slip malware onto servers at all of the company's 200 stores. Further digging has brought to light that the malware appears to have snatched card data from customers as they swipe their card at the check out and transferred the data overseas. As a Information Security Administrator for Grocery Stores, Inc. I will asses the situation and develop a server malware protection policy that accounts for concerns of the stakeholders as well as reducing the chances for another attack and providing security controls. Purpose, Scope , and Overview The purpose of the policy should outline the server systems that require anti-virus and/or anti-spy ware (SANS) . The scope will need to apply to all servers that Grocery Inc. is responsible for. It also needs to include all server systems that is setup for internal use by Grocery Inc even if they do not retain administrative obligation or not. The overview will state that Grocery Inc. is trusted with the responsibility to provide professional management of clients servers as outlined in each of the contracts with its customer(SANS) . It also states that they have an obligation to provide appropriate protection against malware threats, such as viruses and spy ware applications(SANS) . Anti-Virus Grocery Stores Inc. needs all systems to have anti virus protection software... ... middle of paper ... ...s and how it may impact their work. Conclusion Having a layered security program that will protect at all levels and if one is unsuccessful the other defense is present. This is shown by having the anti virus, spy ware, and security restrictions. The fact of the matter is even having a layered defense will not guarantee that attacks can be prevented. Good security requires constant care and with out that care a vulnerable opening could develop. Monthly updates and reviews are needed to make sure that not holes are present in the systems. Reference Page Greene, S. Security Policies and Practice [VitalSouce bookshelf version]. Retrieved from http://devry.vitalsource.com/books/9781256084099/id/ch15fig08 SANS. (n.d.). Retrieved from http://www.sans.org/security- resources/policies/Server_Malware_Protection_Policy.pdf

In this essay, the author

  • Explains that viruses, worms, trojans and spyware are nasty and dangerous intruders. the grocery, inc. has been breached and now know that it was an inside job.
  • Explains the purpose, scope, and overview of the policy to outline the server systems that require anti-virus and/or antispy ware (sans).
  • Opines that anti-virus grocery stores inc. needs anti virus protection software installed, maintained, and monitored. they also suggest a virus scanning software on e-mail servers.
  • Explains that servers must have an anti-virus application installed that offers real-time scanning protection to files and applications running on the target system if they meet one or more of the following conditions.
  • Advises grocery stores inc. to protect themselves from spy ware and man in the middle attacks. they suggest encrypting the data at the time it transverses the network.
  • Opines that grocery store inc. needs to enforce strict security restrictions to every employee on the systems.
  • Recommends training employees on malware and how not to do activities that will harm the systems, customer data, and company reputation.
  • Concludes that having a layered security program will protect at all levels and if one is unsuccessful the other defense is present. good security requires constant care and monthly updates and reviews are needed to ensure that not holes are present in the systems.
Get Access
Check Writing Quality
Related
  • opinion
  • analytical
  • comparative
  • explanatory
  • The Pros And Dangers Of Ransomware
    opinion essay
    Ransomware remains a problem every person needs to be concerned about. This type of malware strikes at any time and nobody is immune. In fact, a ransomware attack in May 2017 hit more than 150 countries and more than 200,000 victims. This includes prominent organizations such as governments and hospitals.

    In this essay, the author

    • Explains that detecting ransomware is easy. the cybercriminal demands payment in the form of bitcoins and threatens to destroy files or share sensitive information on the internet.
    • Explains that surviving ransomware requires a company take three steps. miss one step and the problem could continue and leave the company at risk of future attacks.
    • Opines that ransomware is a problem that everyone needs to be concerned about. 50 ethical hackers were recently surveyed to understand the future of cyber attacks.
    • Explains that ransomware limits or prevents a user from accessing their computer system, doing so by locking files or the device's screen. cybercriminals are finding they are victims of crypto-ransom.
    • Explains that free solutions often cost a company all of the data that was infected during the attack. cyber experts know how to restore the files without any ransom being paid.
    • Explains that awareness is key in safeguarding against cyber criminals, as new viruses are developed every day.
    • Advises companies to have an it security incident response plan in place in the event of a computer system attack.
    1992 words
    Read More
  • Target Security Breach
    analytical essay
    With Target handling the security breach as best as they could, investigators and the Department of Justice are trying to figure out how the security breach happened. Upon investigation, it is believed that “the data was obtained via software installed on machines that customers use to swipe magnetic strips on their cards when paying merchandise…”(Reuters, 2013. p.1). Even though investigators provided the theory above, they are still unsure of how the cyber criminals were able to take so many card numbers from almost all the Target stores. The investigators and feds are still looking into how and who stol...

    In this essay, the author

    • Explains that hacking into large companies or agencies to steal one’s card information has become easy. lewis says that 80 to 90 percent of successful breaches of corporate networks required only the most basic techniques.
    • Explains that the security breach involved most of the target stores in the u.s. some customers filed a lawsuit against target for failing to protect customer data.
    • Explains that investigators and the department of justice are trying to figure out how the security breach happened. the data was obtained via software installed on machines that customers use to swipe magnetic strips on their cards when paying merchandise.
    • Explains that weisbaum's article provides information on what people can do to protect themselves after the security breach. credit cards offer better fraud protection, free credit monitoring, and a security freeze.
    • Explains that target and investigators are doing their best to find out who did this and how they managed to hack into so many target stores.
    • Opines that there is plenty of advice out there for those who would like to take extra precaution so this does not happen to them.
    • Analyzes how the u.s. hvac firm reportedly linked to target’s data security breach.
    • Cites johnson, k., and lewis, j. for raising the bar for cybersecurity.
    • Explains that target customers hit in major credit card securitybreach. 5 lessons learned from target security breach.
    564 words
    Read More
  • Malware : An Anti Virus Protection Software
    comparative essay
    At the Aim Higher College there have been recently discovered malware on the campus systems that are due to many recent attacks. I used an Anti-virus protection software called AVG on the computer systems on campus and ran a whole computer scan. The results came back very quick of numbers of malware being high and medium priorities that these should not be taken lightly. Furthermore, the scan found many viruses, Trojans, and malicious software and applications.

    In this essay, the author

    • Explains that at the aim higher college there have been recently discovered malware on the campus systems that are due to many recent attacks.
    • Identifies three high-priority malware files: cryptcat.exe, psh, astlog, and ipev, among others.
    • Recommends that information technology staff, security analysts, and users update their applications to keep up with all the security patches.
    726 words
    Read More
  • Penetration Testing
    explanatory essay
    As electronic commerce, online business-to-business operations, and global connectivity have become vital components of a successful business strategy, enterprises have adopted security processes and practices to protect information assets. But if you look at today's computing environments, system security is a horrible game of numbers: there are currently over 9,223 publicly released vulnerabilities covering known security holes in a massive range of applications from popular Operating Systems through to obscure and relatively unknown web applications. [01] Over 300 new vulnerabilities are being discovered and released each month. Most companies work diligently to maintain an efficient, effective security policy, implementing the latest products and services to prevent fraud, vandalism, sabotage, and denial of service attacks. But the fact is you have to patch every hole of your system, but an attacker need find only one to get into your environment. Whilst many organisations subscribe to major vendor's security alerts, these are just the tip of the security iceberg and even these are often ignored. For example, the patch for the Code Red worm was available some weeks before the worm was released. [02]

    In this essay, the author

    • Explains that penetration testing has been popularized by the media. many companies are now offering penetration services to identify vulnerabilities in systems and the surrounding processes.
    • Explains that system security is a terrible game of numbers in today's computing environments. over 9,223 publicly released vulnerabilities cover known security holes in applications from popular operating systems to obscure and relatively unknown web applications.
    • Explains the goal of wireless network penetration testing is to identify security gaps or flaws in the design, implementation or operation of the company’s wireless networks.
    • Explains klevinsky, laliberte, and gupta's hack i.t.: security through penetration testing.
    • Explains that penetration testing helps enterprises uncover network security weaknesses that can lead to data or equipment being compromised or destroyed by exploits.
    • Explains that penetration testing can identify vulnerabilities that unauthorized users could exploit, and identify more pervasive gaps and deficiencies in the organization’s overall security processes.
    • Explains that the penetration test should have clearly defined methodologies and goals. the ultimate goal is to see how secure your network is or from a hacker’s point of view, how insecure.
    • Explains that internal penetration tests are conducted using automated software, including scanning tools, to detect potential vulnerabilities in target companies' is infrastructure.
    • Explains that the goal of penetration testing is to mimic real-world attacks.
    • Explains the purpose of application security testing, which is to evaluate the controls over the application and its process flow.
    • Explains that dos testing evaluates the system's susceptibility to attacks that render it inoperable, dropping or denying legitimate access attempts.
    • Explains social engineering, which involves using social interaction to gather information and penetrate the company's systems.
    • Explains that penetration testing is a useful tool for vividly illustrating the potential impact of exploited security vulnerabilities.
    • Opines that penetration testing is only as good as the people conducting it.
    • Argues that penetration testing should never be regarded as a one-off service.
    3197 words
    Read More
  • Essay On Ransomware
    explanatory essay
    Ransom by definition: a sum of money demanded or paid for the release of a captive. With this, one can somewhat tell what ransomware is - a class of malware which restricts access to the computer system that it infects, and demands a ransom paid to the creator of the malware in order for the restriction to be removed. Standing strong as one of the most destructive and profitable malware till date for the perpetrators, it is reported “Since last couple of weeks we have been seeing 500+ incidents per day of this malware. The incidents are being reported from all over India.” says Mr. Katkar, CTO of India’s leading antivirus software Quick Heal, dated early September.

    In this essay, the author

    • Explains that ransomware is a class of malware which restricts access to the computer system that it infects.
    • Explains that winlock scammed over £10m from unsuspecting victims before the russian authorities arrested 10 individuals for involvement in such hackings in 2010.
    • Explains that kroll ontrack, a data recovery consulting firm based in midtown manhattan, has recently received an increase in the number of recovery requests from companies across europe of having to be infected with various forms of ransomware.
    • Opines that ransomware has evolved from a threat targeting russian users, to an attack that now affects several other countries outside europe.
    • Explains that ransomware is a form of malicious software that infects your computer and asks you for money.
    • Explains that an encrypting ransomware triggers a payload claiming that the user's license of use to the particular software had expired and would unlock the encryption.
    • Explains that non-encryption ransonware restricts user access to the system and displays varying from pornographic images to fake official authorities reports or notices branded with the logos of different law enforcement organizations
    • Explains that the victim may have unwittingly downloaded the ransomware by visiting compromised or malicious websites or executed the malware from what appears to be an attachment of emails imposing high-profile websites and services.
    • Illustrates how ransomware scans the hard disk for all kinds of documents and encrypts them into an unreadable form. it demands the victim to pay up to $300 to buy the unique key to decrypt the files.
    • Explains that the victims can't use their own credit or debit cards to make the payments, instead, they must purchase an anonymous debit card service that supports anonymous identities of the perpetrators.
    835 words
    Read More
  • Tjx Case Summary
    opinion essay
    The points of weakness identified in the hack on TJX included lack of encryption in processing, vulnerability to wireless attacks, vulnerable USB ports, lack of processing logs, weak compliance practices, and auditing failures. In order to minimize its risk to a hack, TJX should have followed the COBIT or COSO frameworks for cyber security. Both frameworks outline how to plan and organize company values, assess the risk, implement control activities, and maintain and monitor its system to make sure the company’s IT system is as secure as possible. Either framework would have identified the weakness TJX faced when leaving credit card information unencrypted for a time as well as storing unencrypted information. If credit cards could not be processed

    In this essay, the author

    • Opines that tjx should have followed the cobit or coso frameworks for cyber security to minimize its risk to a hack.
    381 words
    Read More
  • Malicious Code
    explanatory essay
    Malicious code is a real danger to modern systems. Most systems nowadays do not work in isolation; they are more likely to be connected to other systems and sometimes they can even be dependent on them. Therefore an attack on one of the systems in the network is a potential attacking attempt to any other systems, with which it is interacting. Therefore, it is inevitable for any networked or Internet-connected computers to deal with malicious code attacks at some point. Businesses lose billions of dollars each year because of malicious code attacks. Responding to the attack and restoring all the data on the computers is a time-consuming and expensive task. It is a much better practice to try preventing it through organizing and maintaining effective defenses. However, it is important to keep in mind that there is no one general solution that can help to prevent all the attacks. Attackers are constantly looking for new ways to take advantage of systems’ vulnerabilities and find new ones. That’s why organizations have to not only defend themselves against existing attack methods, but also try to predict and prevent new attacking techniques. It means that computer and network security is a never-ending challenge and expense.

    In this essay, the author

    • Explains that malicious code is a real danger to modern systems, since they are connected to other systems and can even be dependent on them. businesses lose billions of dollars each year because of malware attacks.
    • Defines malware as a set of instructions that run on your computer and make your system do something that an attacker wants to do. malicious code can be implemented in almost any computer language.
    • Describes the most common types of malware and defensive strategies against them. malicious code is classified according to its potential to infect other computers.
    • Explains that viruses are self-replicating software that attaches itself to executable files in order to spread.
    • Explains that the most widely adopted and effective defense against viruses is installing antivirus software.
    • Explains that a worm originates on one computer and then searches for other computers on the network to replicate. viruses infect files and spread with the help of human involvement.
    • Explains that worms replicate exclusively through the network, so it is important to defend a network at the host level.
    • Explains that backdoors are programs that allow an attacker to maintain control of a machine remotely.
    • Explains that trojan horses are programs that appear to be useful, while at the same time include malicious code and some hidden functionality.
    • Describes erbschloe, michael, "trojans, worms and spyware. a computer security professional’s guide to malicious code".
    • States that nazario, jose, "defense and detection strategies against internet worms", artech house computer security library, 2004.
    1628 words
    Read More
  • a
    explanatory essay
    Security is defined in three main areas: confidentiality, integrity, and availability. Each definition takes a corner of a triangle, which is supposed to emulate a perfect security design called the CIA triad. I will refer to these elements in the recent Target breach.

    In this essay, the author

    • Describes the conflicker worm as a blended attack that used two different vectors that looked like replication, and stealth.
    • Explains buffalo wild wings uses one of the top anti-virus products on the market and a defense in depth architecture.
    • Explains that information technology is performing a risk assessment on security related areas including physical access, network security, credit card controls, franchise security and end-point security. one security breach could cripple buffalo wild wings' future, customers, and brand.
    • Explains that security is defined in three main areas: confidentiality, integrity, and availability. target had a catastrophic security breach in december that involved 40 million credit cards, cvv numbers and customer information.
    • Explains that target used a secure encryption protocol called 3des, which encrypts the data three times with 156 trillion keys.
    • Explains that aloha uses a 128-bit aes encryption standard, which is stronger than target's 3des encryption. credit cards are encrypted as soon as they are swiped on the p1515 pos device.
    889 words
    Read More
  • Malware Case Study
    explanatory essay
    Target; an easy target The Target breach which is said to be the second-largest retail cyber-attack in history wasn’t necessarily inventive, nor did it appear destined for success, yet hackers were able to access roughly 40 million customers personal information by installing a malware into Target’s security system.1 In the days leading up to Thanksgiving 2013 the hackers installed malware in Target’s security and payments system which was designed to steal every credit card used in store at over 1,797 U.S. locations. The data breach initially disclosed in December which exposed around 40 million customer’s names, card numbers, card expiration dates, card security codes and debit card pins were recorded for the hackers to see, although the pins were encrypted. After a later review Target disclosed additional information which later was said to be that roughly 70 million more consumers had their names, addresses, phone numbers and email addresses exposed.2 What exactly is malware?

    In this essay, the author

    • Explains the target breach, which was the second-largest retail cyber-attack in history, was not inventive, nor did it appear destined for success.
    • Explains that browser navigators get redirected, random popup ads appear even though there are no browsers open, or a random security program you never installed opens up warnings.
    • Explains how fireeye's malware detection software alerted target of malware on their retail networks and figured out which servers the hackers had taken over. target ignored the alerts and didn't respond.
    • Explains that the simplest way of preventing malware from entering your computer is to keep your firewall turned on.
    • Opines that fireeye's continued to warn target of malware being present in their system, and by ranking it with the highest level of severity, target did not seem to care and ignore all warnings.
    • Explains that malware is a software installed to disrupt computer operation, gather information, or gain access to private computer systems. malware attaches itself to web pages, advertisements, toolbars or free music and games that are downloaded or accidentally clicked on.
    729 words
    Read More
  • Presentation Outline On Data Beeches And Cybercrime
    explanatory essay
    We know that the intruder stole passwords and other key access information from a vendor. This gave access to our point-of-sale terminals and install malware. The installed malware was designed to capture and store credit and...

    In this essay, the author

    • Introduces spencer beck, kaylyn nese, john bui, and jennifer tran to the media and target customers. they apologize for the impact this intrusion had on their guest.
    • Opines that target's security system is safer and more secure than ever before.
    • Explains that the series of events that they will explain come from john mullican, executive vice president and chief financial officer of target, during the senate committee on commerce, science and transpiration.
    • Explains that target was infiltrated by malware and resulted in a criminal breach of target’s security and data systems between november 27th through december 18th 2013.
    • Explains that the intruder stole passwords and other key access information from a vendor and installed malware to capture and store credit and debt card transactions.
    • Explains that the department of justice notified target about suspicious activity involving payment cards. target immediately started an internal investigation.
    • Explains that they met with the justice department and the secret service on december 13, and an independent forensic team was hired to further investigate the breach.
    • Explains that on december 15, a group of criminals infiltrated the network and installed malware on point of sale terminals. the malware was removed from all us stores.
    • Explains that payment processors and card networks were notified days after the malware discovery. they prepared statements to the public and to their guest.
    • Explains that we publicly announced the breech on december 19 on social media websites, posting notices on target’s website and emails.
    • Explains that two types of date have been compromised: payment card information, which affected 40 million guests, and certain personal data, including mailing addresses, phone numbers and other contact information.
    • Explains target has a history of protecting customer's information and invested significant capital and resources in security technology, staff and process.
    • Describes the steps taken to protect the target security system.
    • Explains that target has taken every precaution to make sure that this type of breach won't happen again.
    • Opines that target, the department of justice and secret service are taking this criminal activity seriously.
    • Opines that customers who made purchases in u.s. stores between nov. 27 – dec. 15 may be affected by this breach.
    • Summarizes the hearing before the senate committee on the judiciary, house of representatives, on protecting personal consumer information from cyber attacks and data breeches.
    884 words
    Read More
Get Access