Category Archives: attack

Email from Benedict Brown

Hello dear readers ,Hope you all are fine

Here I am sharing a latest scam and security issue for email users (mostly). A recent malware known as NUTRINO, considered to be one of the dangerous malwares knock your window by the name of Microsoft security expert (not in actual but posing themselves). Victim receive an email claim to be from ‘Benedict Brown’ representing Microsoft security Office telling the recepient that access to their bank accounts and cards has been blocked because of suspicious activity.

Email force you to click a link to download a report containing more details, and to read instructions to unblock your account. The report comes in word document and in order to read that report you will be asked to enable macros and doing so you permit the Nutrino to strike you PC and its working is very simple. Nutrino take sccreenshots of your PC and record what you type (as keylogger) and absorb your computer into a botnet. Nutrino is easy to handle by hackers so it is just a hotcake for them as it requires little knowledge of computer security. This scam is being discovered by Malwarebytes, acknowledge that criminal with zero coding knowledge can use Nutrino and it exploits programs that are known to be riddled with security flaws like adobe flash player.If you are using microsoft office 2007 you can be one of the victim.

What to do : Do not activate your macros unless you are well versed to it and use only when you are upto programming addons with microsoft office. If enabled, disable your macro from MS word etc.  secondly there is no Benedict Brown in Microsoft who is concerned about your personal account.(if such issue occured you will be notified on the account logging page itself and not in your mail address before your knowledge and in that case too you will be warned first)

Hope this will help you of being alert.

Thanks for reading

Jagat

How much safer are you with your antivirus

Hello my dear readers, Hope you people are fine,

I am sharing my post after couple of days due to busy schedule. We all are well aware of anti-viruses and their effectiveness since 1980’s when the term anti-virus was first establishing its name in the field of digital world. since then this word is jostling in the mind of computer users. In early years users did’nt gave  much weightage but as time passed and uses of computers and its applications increased, security measures to avoid any damage to softwares becomes a concern and the hence the importance of the antivirus was felt first. But a debate continued as to whether AVs are necessary or not. Sceptics sometimes blame security providers of hyperbolizing the issue. Some even reached to the extent of blame that the security companies create their own malwares and then put its crack later in market to establish and carry on their business. 

Former Firefox developer Robert O’ Callahan in his blog (www.snipca.com/23283) urged window 10 users to uninstall their antivirus saying that antivirus sellers are terrible. He recommended Windows defender as capable of any of the antivirus available in the market. This is what the topic I want to share over here. Yes, if the user is upto genuine windows and is having regular updates from Microsoft he/she must not be afraid of attacks or safety to maximum extent. Microsoft company itself worked and is working a lot in view of safety issues of the windows and utilities of Microsoft itself is providing all the common measures to keep its user safe and secure.

Why a big company like Microsoft will ignore such a major aspect of its product. As per former mozilla developer Antivirus hurt security significantly and poison other softwares of the windows as well. He draws on his own experience blaming AVs for blocking security updates to the browser which consumed major time of developer in fixing this. Security blogger Graham Cluley acknowledged that AVs sometimes suffered from its own flaws and vulnerablities. But people are crazy enough to use web without using one. In security lab test Microsoft defender did’nt overcome all security issues and failed in 10% but still it is recommended a better option than other rivals of the market. 

In my own experience, I tried to install one new AV as my old one getting expire a day after installation of new one and my new antivirus shows other as presence of virus. To my shock I tried to remove the files (vault backup) from my computer as there are chances when AVs put your infected files into their vault but still my new AV kept on showing my old one as virus. As per my view since XP is not being updated now from Microsoft and most of latest AVs do not offer any installation to XP hence safety of windows XP is on the verge of infection. Similarly windows vista and windows 7 too are vulnerable to an extent as these windows possess some old files which continued even in its latest versions too. Hence updating windows till windows 7 do not offer as much safety as required.Hence good antivirus becomes a necessity in this case. But windows 8 and 10 do provide a tough security to the sneakers if are updated to latest versions. 

In all I must say if your are using genuine windows with later versions your worry chances are reduced to large extent but still you can use antivirus with customized using capabilities for hastlefree browsing but pirated windows do need antivirus softwares from security point of view. Windows updates and availability of antivirus both are the need of hour as one cannot stay safe since thousands of attacks are being faced by your PC within an hour of your browsing in open world.

Thanks for reading

Jagat

Learn about types of Viruses

elk-cloner

Hello readers, hope you all are fine,

Dear ones as you all are using PCs in one or the other way, it is obvious that virus is one of the basic word which flashes through mind when we talk about PC problem. I am sharing my knowledge about the same :

What are viruses : Little programmes or scripts designed to lay digital garbage to your PC.when triggered it destroy data files or system files, some execute other unwanted software by providing smooth way to your system,some nefarious ones steal the confidential informations, some multiply themselves to slow down or full your PC with its own replicas even there are few which rig the system power load and cause to catch it a fire.

Virus is simply categorised into :

Replicators : A developer developed a game during nineties, in which when a fencer/ sword master hits a demon with his  sword and cuts the demon into pieces, as per programme not all but few bits of demon regenerated themselves in full demon again. Due to some erronous writing the programme transformed and not a few but all pieces of demon regenerated into a new full demon hence the demon kept on multiplying with every hit. thereby filling whole computer with single demon file and functioning of system stops. same is still existing in one or the other form.Good AV proves useful in controlling it.

Multi morphs : A genre of replicators/ multipliers, but these virus while making copy of its own change its programme little bit different from that of previous one and ultimately its functionally and spreads differently in different areas of PC. Every copy of new virus if forms is different from the parent. AV does not able to detect all hence this virus resides easily in the system.

Overwriting virus : these virus overwrite the programmes of the softwares and thereby making them to crash or malfunction. an overwriting virus destroys the oringinal file it infects. It does this by overwriting data in the system’s memory. The virus can be removed only by deleting the infected file. Often, cleaning an overwriting virus means losing the infected programs and reinstalling them.

Boot Sector Virus : Boot sector is a section in the system file which execute to boot the system. Boot sector virus hide inside the boot sector and execute itself before operating system starts and hence disallowing some programmes or even whole operating system to get started.

Residents : Virus which start itself with booting of machine are resident viruses. These virus don’t need any click to get started bu start itself with start of PC.It is able to do this because it stores and hides within the memory of the infected computer.

Non resident are those which needs to be executed by click or triggering some programme on the computer.

Mutlisector Virus : Also called multipartite virus , these kind of virus attacks both boot sector as well as system files as the same time infecting computer at serious levels. Because of this dual infection approach, the multipartite virus can re-infect the same system over and over again until fully eradicated.

The Macintosh didn’t release until 1984. However, the first virus for it was made by a 15 year old. Known as Elk Cloner, this virus infected the boot sector of Apple II computers. Interestingly, the first IBM PC virus (known as Brain) did not appear until 1986.

The field is quite vast this is only a drop, but still ,……..

Hope it will be helpful knowledge about virus

Thanks

Jagat