Skip to main content

How can I get infected?

For a network user who is protected by a firewall and whose ICQ and IRC connections are disabled, infection will mostly occur via an email attachment or through a software download from a website.

Many users claim never to open an attachment or to download software from an unknown website, however clever social engineering techniques used by hackers can trick most users into running the infected attachment or downloading the malicious software without even suspecting a thing.

An example of a Trojan that made use of social engineering was the Septer.

troj, which was transmitted via email in October 2001.

This was disguised as a donation form for the American Red Cross's disaster relief efforts and required recipients to complete a form, including their credit card details.

The Trojan then encrypted these details and sent them to the attacker's website.

  >> Infection via attachments

It is amazing how many people are infected by running an attachment sent to their mailbox.

Imagine the following scenario: The person targeting you knows you have a friend named Alex and also knows Alex's email address.

The attacker disguises a Trojan as interesting content, for example, a Flash-based joke, and emails it to you in your friend's name.

To do so, the attacker uses some relaying mail server to falsify the email's FROM field and make it look like Alex is the sender: Alex's email address is alex@example.com so the attacker's FROM field is changed to alex@example.com.

You check your mail, see that Alex has sent you an attachment containing a joke, and run it without even thinking that it might be a malicious because, hey, Alex wouldn't do something like that, he's my friend!

Information is power: Just because the attacker knew you had a friend Alex, and knew and guessed that you would like a joke, he succeeded in infecting your machine!

Various scenarios are possible. The point is that it only takes ONE network user to get your network infected.

In addition, if you are not running email security software that can detect certain exploits, then attachments could even run automatically, meaning that a hacker can infect a system by simply sending you the Trojan as an attachment, without any intervention on a user's part.
  _________________________

Labels:

Comments

Post a Comment

Popular posts from this blog

HOW TO BYPASS OR UNBLOCK BLOCKED SITES:-

Today everyone of us is a part of any college,office or any organization. Everywhere we find free open wifi’s , but the major problem with these are there are many websites which are blocked by the servers of college,ofiice or any organization. There are different type of securities that are implemented in these server to block some sites like Facebook ,Twitter etc. So In this post i’ll tell you easy and permanent method to access or bypass blocked sites Steps To Bypass Blocked Sites-   1. Connect your pc or laptop with wifi or your broadband connection in which you want to access blocked websites.   2. Open command prompt by clicking start and the typing “cmd” and then pressing enter.   4. 3. Now a command prompt window will appear.   5. Type ping Websitename (for exp: ping http://facebook.com) and press enter.   6. Now open your browser and enter the site which you had recently ping.   7.You will see the site will get...
Post a Comment
Read more

How Hackers Look Like and What They Think?

Self-educated hackers are more respected in hacker’s community because that person is really interested in hacking and he passed a lot of things that are not teached in schools and college. The most common things hackers do is computers electrical engineering, physics, mathematics, linguistics and philosophy. However, like every developer is not the hacker, hackers do not always have the skills of programming, but someone of them have. :) Clothing styles: Hackers dress simply, casually: jeans, T-shirt and shoes. T-shirts are usually with some humorous slogans. today there are T-shirts with pictures of Penguin (trademark Linux) or daemon (BSD). A small number of hackers prefers hiking boots. This prefer wearing of black clothes. Hackers care more about comfort, practicality and ease of maintenance of clothes. They hate business suits. OTHER INTERESTS: Hobbies that hackers do are widespread. Mostly they like science fiction, music, medievalism, chess, war games and intel...
Post a Comment
Read more

What is Pendrive Hacking ?

Windows allows the storage of the passwords, as do modern browsers. While this feature is convenient for users, it has imposed itself as a big security risk among organizations. We know that browsers store most passwords on daily basis, like MSN messenger, Yahoo, Facebook passwords, etc. Most people lack time and ask their browsers to save their passwords. As we know, there are many tools available to recover saved passwords, so in this article I will explain to you how to make a USB password stealer and steal saved passwords. Just to explain the concept, we are going to collect some password stealing tools, tools that are freely available on the internet and capable of stealing the passwords stored in the browsers or other windows files. Then, we create a batch program that will execute these combined programs and store the stolen usernames and passwords in a text file. To further spice up the penetration testing demonstration, we will also make this batch file execute as an...
Post a Comment
Read more