drive-by downloads
What are they?
A drive-by download is a type of malicious software (malware) that is downloaded and installed without a user’s knowledge or permission. Drive-by downloads can occur simply by visiting a website; no clicking or downloading is necessary. The website may have been hacked, or it may contain malicious code that exploits vulnerabilities on your computer.
Once installed, the malware can be used to collect sensitive information (such as passwords, credit card numbers, and banking information), send spam, or even take control of your computer.
Drive-by downloads are a growing threat. According to Norton, “in 2012, drive-by attacks increased by 62 percent over the previous year.” And, McAfee reports that “ drive-by download attacks increased by 48 percent in 2012.”
How do they work?
When you visit a website, your computer sends a request to the server that hosts the website. The server then sends back the website’s content.
If the website has been hacked, or if it contains malicious code, the server can send exploit code along with the website’s content. This code takes advantage of vulnerabilities on your computer, and it can then download and install malware without your knowledge or consent.
In some cases, you may be redirected to a malicious website without realizing it. This can happen if you click on a bad link, or if you visit a legitimate website that has been hacked.
Once the malware is installed, it can be used for a variety of purposes, such as stealing your passwords, credit card numbers, and banking information; sending spam; or even taking control of your computer.
How can you protect yourself from drive-by downloads?
There are a few things you can do to protect yourself from drive-by downloads.
First, keep your software up to date. Hackers exploit vulnerabilities in software to conduct drive-by attacks, so it’s important to keep your software programs up to date with the latest security patches. This includes your operating system, web browser, plugins, and any other software you have installed on your computer.
Second, use a reputable security program with real-time protection. This will help to block malicious websites and prevent malware from being downloaded and installed without your knowledge.
Finally, be cautious when clicking on links or downloading files. If you’re not sure whether a website or link is safe, don’t click on it. And, be wary of downloads, even if they appear to come from a trusted source. If you’re not sure whether a file is safe, scan it with your security program before opening it..Reference
botnets
What are botnets?
A botnet is a collection of internet-connected devices, each of which is running one or more bots. Botnets can be used for a variety of purposes, including distributed denial of service (DDoS) attacks, click fraud, and stealing information.
How do botnets work?
In most cases, botnets are created by malware that infects a device and causes it to become a part of the botnet. The malware will often include a mechanism for communicating with a command and control (C&C) server that can be used to issue commands to the devices in the botnet.
Once a device is infected with malware and added to a botnet, the botnet operator can then use the C&C server to issue commands to the device. For example, the operator could instruct the devices in the botnet to send a flood of requests to a particular website, resulting in a denial of service attack.
What are the dangers of botnets?
Botnets are a serious threat because they can be used to launch powerful attacks that can take down websites, steal information, or spread malware. Additionally, botnets can be very difficult to shut down because they often include thousands or even millions of devices.
How can I protect myself from botnets?
There are a few things you can do to protect yourself from botnets:
Install security software and keep it up to date.
Don’t click on links or attachments from unknown sources.
Be cautious about what you download.
Don’t install pirated software.
What should I do if my device is part of a botnet?
If you think your device might be part of a botnet, you should run a security scan to check for malware. If you find malware on your device, you should remove it immediately. You should also change any passwords that might have been compromised.
Visit malwarezero.org to learn more about most dangerous computer virus in the world. Disclaimer: We used this website as a reference for this blog post.