Menu

Online Safety Series – Beware of Malware

Learn more cybersafety tips in our Online Safety Series

I recently spent a lazy Sunday afternoon poring over an online clothing store, purchasing a dress (okay, it might have been two dresses) for upcoming social events. While browsing the web the next day I was displayed banner advertisements for the specific dresses that I had deliberated on, yet not purchased. A tempting reminder of what could have been hanging in my wardrobe perhaps? Or maybe a subtle reminder to run a system scan to delete any ‘not-so-friendly’ tracking cookies from my machine.

Luckily, when running my spyware scan I discovered my computer had taken on an ‘unwanted guest’ in the form of malware. The term ‘malware’ refers to a broad category of malicious software that is designed to infiltrate or damage a system without your consent. Malware can be the culprit behind a sluggish computer that directs you to fake websites you didn’t intend to visit.

Nastier types of malware can allow spammers to send emails using your account, erase files from your computer, and even track your online activity- sending your personal details to not-so-friendly people in cyberspace. All without you knowing. My specific offender was the StealthMBR.

Sound ‘stealthy’? Well it is. This particular type of malware opens a back door on your computer allowing hackers access to your system while bypassing your firewall and security software. To add insult to injury, it also messes with your operating system files. Yikes!

Stunex – the ‘blockbuster’ of malware

Of course, this is small fish when compared to the more publicised cases of malware. When security experts came across computer worm Stuxnet in 2010, it had already ravaged the Iranian nuclear program infecting more than 100,000 computers. In what Vanity Fair has called “one of the great technical blockbusters in malware history” the software had the remarkable ability to convince staff at a nuclear research facility that everything was running as usual (the equivalent of that trick you see in the movies where the bad guys record mundane security footage and play it back through the system while robbing the bank.)

By the time staff became aware of the Stuxnet breach, the worm had disabled the “off switch” at the plant and destroyed one fifth of Iran’s gas centrifuge equipment, rendering the nuclear program several years behind schedule. I was beginning to think that my computer got off rather lightly!

A whole lot of bots

According to Security Intelligence Report No. 9, Jan-Jun 2010, Microsoft desktop anti-malware products alone removed ‘bots’ from 6.5 million computers around the world over the second quarter of 2010 alone. In Australia in this three month period, this was 66,576 computers.

iiNet recently participated in the Australian Internet Safety Initiative, through the Internet Industry Association’s iCode (http://www.icode.net.au/index.php). This initiative uses various sources to gather data on computers that are behaving oddly on the internet within Australia. Daily reports are sent to internet service providers, identifying compromised IP addresses on their networks. We will be kicking off our involvement within the next week or so, sending helpful emails to our customers who might be unknowingly harbouring malware on their machines.

 

This is specifically timely when the ‘DNS Changer’ looms on July 9th. You see, surfing the Web works a bit like making a call from the contact list on your mobile. To make the call, you simply hit the favourite in your contact list- after all- who remembers phone numbers these days? Similarly, it’s hard to remember a string of numbers, call it the “phone number” of a website you’re trying to visit. Instead, we remember domain names- like iinet.net.au or facebook.com and the magic of DNS (domain name server) converts that name into numbers that your computer can understand. According to the FBI, a recent online fraud scheme has infected more than 4 million computers with malware ‘DNS changer’ in more than 100 countries- Australia included. This malware hijacks your browser to redirect you to sites you didn’t intend to visit (with each visit generating cash for the fraudsters.) The FBI plans to shut down those DNS servers in the next fortnight, and if your computer is unluckily being redirected there (without your knowledge) you’ll be sans Internet until you figure out what’s going on.

 

To avoid being webless on July 9th, hit up the “Self Help” section of the IIA website http://www.icode.net.au/ and run a free scan to rid your system of pesky intruders. Keep an eye out from an email from iiNet that might tell you of another kind of infection. And if anyone needs me, I’ll be flicking through pages of high fashion in Vanity Fair. Erm, for the articles of course ;)

 

A friendly reminder:

You may recall we ran an Online Safety Series article in July 2011 about fraudulent or ‘Phishing’ emails – correspondence to you purporting to be from a company you would normally trust, such as your bank (or friendly ISP).

It’s the goal of these emails to extract as much information about you or your account, so be sure to always be aware that there are people out there, far less nice than you could imagine, who would try and trick you into divulging personal information.

At iiNet and Westnet, we’re certainly not immune to these emails. There has been a recent upsurge in phishing emails claiming to be from your ISP, asking you to follow a link and enter in your account details. Have a look through our Online Safety Series fact sheet from 2011 if you need a phishing refresher course.

 

 


12 comments

  1. Ubuntu is a Linux operating system which is free both in terms of price and also in terms of freedom from copywrite restrictions.
    You can install as many copies of it as you want, and modify the software if you want, or copy parts of it.
    It’s built properly from the ground up so viruses cannot run it it, You don’t have to scan for anything, just enjoy the internet.
    It’s a lot faster because your computer isn’t bogged down with background processes that ‘protect your computer’, (they don’t work really), and spy on you.
    It is easy to install and comes with all the programs you might need, plus all the free apps can imagine, also installable for free from the Ubuntu Software Center.
    Why do people persist blindy and suffer with the tyranny of endless new viruses and anitvirus solutions which lag behind the viruses when they can just install an operating system that’s not affected by all that rubbish? Can’t people see it’s just a new form of the old fashioned ‘protection racket?
    Install Ubuntu today and set yourself free.

  2. vickie dwyer says:

    just joined up with you guys and very impressed with everything you do,thanks

  3. Phillip says:

    A bit of a worry that a trojan around since 2008 (according to McAfee) was not detected by your resident antimalware program BEFORE it had a chance to install itself. I’d consider trying a different brand.

    Tracking cookies are the least of your worries :)

    Adam O'grady Reply:

    Hi Philip,

    In regards to the antimalware program in use, were you using the Internet Security (on it’s own or part of the Protection Pack) that we currently sell?

    Regards,
    Adam

  4. Keith says:

    After being on the net since inception I get lots of spam and possibly malware (I use Apple computer), while I have a junk bin in Macmail, each morning I spend few minutes and dump from my Westnet email data base and set up junk mail or deletes for them too.

  5. Ken Johnson says:

    I am not sure if this is the correct venue but here goes. When I send emails from outlook using Windows 7 (64 bit) operating system, a minimum of 3 emails are sent even if there is only one in the outbox. Does anybody have an answer?

    Adam O'grady Reply:

    Hi Ken,

    This sounds like an unusual issue. Do you use Microsoft Outlook, Windows Live Mail or do you visit out webmail service (http://webmail.westnet.com.au)to send and receive emails? If a client such as Outlook or Live Mail has become buggy, it might be worth trying to send through webmail to see if the same problem occurs.

    If the problem exists within an email client such as Outlook or Live, you may need to check for any rules or settings that could be causing duplicates. You can also call our Support team on 1300 786 068 (Westnet) and they can run through some troubleshooting with you to try and fix this issue.

    Cheers,
    Adam

  6. As one who helps Seniors and others with computer problems I have always been impressed with Westnet and how it looks after its subscribers. I always recommend it when I give talks at clubs. In particular my wife, when living in Canberra was give invaluable assistance when Telsta lost her ADSL connection with Westnet ensuring she had a wireless connection until fixed.

  7. Gavin says:

    Are you saying that even if I continue to use Westnet’s antivirus system subscription, I also need to follow your suggestions in the article?

    Adam O'grady Reply:

    Hi Gavin,

    If you are using the antivirus included as part of a the Email Protection option, this will only work to make sure your incoming and outgoing emails are protected from viruses. We would still recommend that you install an firewall and antivirus program on your computer to stop viruses getting in through other methods.

    Cheers,
    Adam

  8. Ken Johnson says:

    Thanks Adam I’ll callWestnet tomorrow. FYI I use Microsoft Outlook through mail.westnet.com.au

  9. Chesley says:

    Even if we have anti malware installed on our computer, there will always be the time that we will catch one. This is true especially for PC users. I use to download stuff from the internet. This is how I usually get them.

Menu

Search