JusticeDept.com

September 16, 2009

Malware / Virus: Unable To Deliver Package

Filed under: Uncategorized — Tags: , , , , , — @ 2:46 pm

Alert — There has been a resurgence of an email virus that installs malware on the victim’s computer. The email claims to be from a delivery company, such as, the UPS, FedEx or DHL. Do not open the email. Definitely, do not unzip the email attachment.

The email usually looks something like this:

Hello!

Unfortunately we were not able to deliver the postal package you have sent on the 5th of June in time
because the addressee’s address is erroneous.
Please print out the invoice copy attached and collect the package at our department.

DHL Express Services.

Attachment Converted: “c:\FILE_Xfecf.zip”

August 26, 2009

Warning To Businesses Banking On-line

Filed under: Uncategorized — Tags: , , , , , , — @ 6:04 pm

The Financial Services Information Sharing and Analysis Center represents some of the largest banks in the United States of America. They have issued a report that recommends to commercial banking customers to take rigorous steps in securing online bank accounts.

The report recommends to “carry out all online banking activity from a standalone, hardened, and locked-down computer from which e-mail and Web browsing is not possible.” The best method would be to use a Linux based operating system. Even better yet would be to use a version of Linux, such as Knoppix, that can be booted from DVD. This would prevent a hacker, virus, malicious websites or other threats from making permanent changes.

It is estimated that 491 million computers will be infected within the next year with almost all of them running Microsoft.

August 25, 2009

Using Caution with Email Attachments

Filed under: Uncategorized — Tags: , , , , — @ 8:06 pm

While email attachments are a popular and convenient way to send documents, they are also a common source of viruses. Use caution when opening attachments, even if they appear to have been sent by someone you know.

Why can email attachments be dangerous?
Some of the characteristics that make email attachments convenient and popular are also the ones that make them a common tool for attackers:
Email is easily circulated – Forwarding email is so simple that viruses can quickly infect many machines. Most viruses don’t even require users to forward the email—they scan a users’ computer for email addresses and automatically send the infected message to all of the addresses they find. Attackers take advantage of the reality that most users will automatically trust and open any message that comes from someone they know.

Email programs try to address all users’ needs – Almost any type of file can be attached to an email message, so attackers have more freedom with the types of viruses they can send.

Email programs offer many “user-friendly” features – Some email programs have the option to automatically download email attachments, which immediately exposes your computer to any viruses within the attachments.
What steps can you take to protect yourself and others in your address book?

Be wary of unsolicited attachments, even from people you know – Just because an email message looks like it came from your mom, grandma, or boss doesn’t mean that it did. Many viruses can “spoof” the return address, making it look like the message came from someone else. If you can, check with the person who supposedly sent the message to make sure it’s legitimate before opening any attachments. This includes email messages that appear to be from your ISP or software vendor and claim to include patches or anti-virus software. ISPs and software vendors do not send patches or software in email.

Save and scan any attachments before opening them – If you have to open an attachment before you can verify the source, take the following steps:

Be sure the signatures in your anti-virus software are up to date (see Understanding Anti-Virus Software for more information)
Save the file to your computer or a disk
Manually scan the file using your anti-virus software
Open the file

Turn off the option to automatically download attachments – To simplify the process of reading email, many email programs offer the feature to automatically download attachments. Check your settings to see if your software offers the option, and make sure to disable it.

Consider additional security practices – You may be able to filter certain types of attachments through your email software (see Reducing Spam) or a firewall (see Understanding Firewalls).

January 19, 2009

Recovering from a Trojan Horse or Virus

Filed under: Uncategorized — Tags: , , , , , — @ 3:51 pm

by the United States Computer Emergency Readiness Team
www.us-cert.gov

Michael D. Durkota and Will Dormann It can happen to anyone. Considering the vast number of viruses and Trojan horses traversing the Internet at any given moment, it’s amazing it doesn’t happen to everyone. Hindsight may dictate that you could have done a better job of protecting yourself, but that does little to helpyou out of your current predicament. Once you know that your machine is infected with a Trojan Horse or virus (or if your machine is exhibiting unexpected behavior and you suspectthat something is wrong), what can you do? If you know what specific malicious program has infected your computer, you can visit one ofseveral antivirus web sites and download a removal tool. Chances are, however, that you will not be able to identify the specific program. Unfortunately your other choices are limited, butthe following steps may help save your computer and your files. 1. Call IT supportIf you have an IT support department at your disposal, notify them immediately and followtheir instructions.2. Disconnect your computer from the Internet Depending on what type of Trojan horse or virus you have, intruders may have access to yourpersonal information and may even be using your computer to attack other computers. You canstop this activity by turning off your Internet connection. The best way to accomplish this is tophysically disconnect your cable or phone line, but you can also simply “disable” your networkconnection. 3. Back up your important files At this point it is a good idea to take the time to back up your files. If possible, compile all ofyour photos, documents, Internet favorites, etc., and burn them onto a CD or DVD or save themto some other external storage device. It is vital to note that these files cannot be trusted, sincethey are still potentially infected. (Actually, it’s good practice to back up your files on a regular basis so that if they do get infected, you might have an uninfected set you can restore.)4. Scan your machineSince your computer (including its operating system) may be infected with a malicious program, it is safest to scan the machine from a live CD (or “rescue” CD) rather than a previously installedantivirus program. Many antivirus products provide this functionality. Another alternative is touse a web-based virus removal service, which some antivirus software vendors offer (try searching on “online virus scan”). Or you could just try Microsoft’s web-based PC Protection Scan. The next best action is to install an antivirus program from an uncontaminated source such as aCD-ROM. If you don’t have one, there are many to choose from, but all of them should provide the tools you need.

After you install the software, complete a scan of your machine. The initial scan will hopefullyidentify the malicious program(s). Ideally, the antivirus program will even offer to remove the malicious files from your computer; follow the advice or instructions you are given. If the antivirus software successfully locates and removes the malicious files, be sure to followthe precautionary steps in Step 7 to prevent another infection. In the unfortunate event thatthe antivirus software cannot locate or remove the malicious program, you will have to followSteps 5 and 6. 5. Reinstall your operating systemIf the previous step failed to clean your computer, the most effective option is to wipe or format the hard drive and reinstall the operating system. Although this corrective action will also result in the loss of all your programs and files, it is the only way to ensure your computeris free from backdoors and intruder modifications.Many computer vendors also offer a rescue partition or disc(s) that will do a factory restore ofthe system. Check your computer’s user manual to find out whether one of these is providedand how to run it.Before conducting the reinstall, make a note of all your programs and settings so that you canreturn your computer to its original condition.It is vital that you also reinstall your antivirus software and apply any patches that may be available. Consult “Before You Connect a New Computer to the Internet” for further assistance.6. Restore your files If you made a backup in Step 3, you can now restore your files. Before placing the files back indirectories on your computer, you should scan them with your antivirus software to check themfor known viruses. 7. Protect your computerTo prevent future infections, you should take the following precautions: • Do not open unsolicited attachments in email messages.• Do not follow unsolicited links.• Maintain updated antivirus software. • Use an Internet firewall.• Secure your web browser.• Keep your system patched.To ensure that you are doing everything possible to protect your computer and your importantinformation, you may also want to read some of the articles in the Resources section below.

Powered by WordPress