Security Manager's Journal: New ransomware attack hurts trustworthiness of Web
When an infection can result from just calling up a mainstream website, malware becomes harder to battle
Computerworld - Last week, my company was paid a visit by some interesting malware. This time, it was ransomware: malicious software that disguises itself as "security software" but actually holds the system hostage to trick the user into paying money to the software's handlers. This is the same kind of trickery I wrote about when I experienced a FakeAV infection.
Based on that experience, I know this malware is insidious. It embeds itself deeply into the computer, even below the file and operating system levels. There's no point in trying to clean it -- it will just come back. So I instructed the desktop team to wipe the infected computers and reimage them.
We were lucky -- only two users got infected by the compromised ad. The news service displays lots of ads in a rotation, so the chances of getting the compromised one are pretty small, at least on a single visit.
I had my team contact the news service to let people there know about the compromise. Even though it's not their fault directly, they will want to take some kind of action to ensure that other innocent visitors don't experience the same infection. In fact, it's possible the people who run the ad service are unaware that one of their ads is infecting potential customers. There are many ways an attacker can compromise code served up by Web servers, without the knowledge or participation of the webmaster.
I decided the best way to get rid of this particular nuisance is to block the category of all Web advertisements. Who needs them, anyway? (Well as it turns out, some people do -- I received a couple of requests to unblock the ad category, but in general, ads are an annoyance that users don't want). So one outcome of this experience is that my company's Web browsing experience is slightly less annoying than it was before.
More by J.F. Rice
- Security Manager's Journal: Security flaw shakes faith in Apple mobile devices
- Security Manager's Journal: Cyberattacks just got personal
- Security Manager's Journal: Target breach unleashes fresh scams
- Security Manager's Journal: Giving thanks for SIEM
- Security Manager's Journal: Hashing out secure applications
- Security Manager's Journal: Why the shutdown is like the cloud
- Security Manager's Journal: Thinking about passwords
- Security Manager's Journal: Android panic
- Security Manager's Journal: Auto-forwarded emails could be a huge problem
- Security Manager's Journal: Our network infrastructure has fallen far out of date
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The Threat Landscape Hardly a day goes by without the discovery of a new cyberthreat somewhere in the world! But how do you keep up with...
- Security for Virtualization In the rush to implement virtualization, security has become second. So while the business benefits are clear, the risks are less well documented...
- Mobile Policy Checklist Here's what to consider when putting together a mobile policy designed to support a highly productive workforce.
- Mobile Applications Case Study: 8 Billion Transactions a Day The story documents how the online brokerage company tradeMONSTER created a custom mobile app and the success gleaned from this initiative. Also covered...
- Mobile Apps and Devices Slash Customer Cycle Time Consolidated Engineering Laboratories' field employees used to collect data on triplicate forms that were sometimes hard to read and difficult to manage. After...
- Cloud Knowledge Vault Learn how your organization can benefit from the scalability, flexibility, and performance that the cloud offers through the short videos and other resources... All Malware and Vulnerabilities White Papers | Webcasts