Internet Security: Privacy, Passwords, Malware and Scams

Current dangers to internet security, from emailed viruses to online malware, privacy and password issues and email scams.

Humans and their weaknesses...
(... and what that can will do to your network)

What will 2008 mean for network and systems administrators? What or who will cause the biggest headaches? Will technology itself be their bane? Or will the human being prove to be the master culprit in 2008? In all their complexity, human beings are weak, inquisitive and some times downright stupid. David Vella identifies five human characteristics that he believes will be the cause of much havoc within organisations in 2008.

Internet Malware

People are Horny

Let's be honest. In today's globalised world of business nothing generates more money than sex and people's capacity for lust. By nature people are horny and while that is not necessarily a bad thing, malicious individuals know very well how they can exploit this weakness to their own benefit.

Few will admit to it, but everyone knows that a huge number of people have visited or visit websites with porn content at work. Porn on the internet is a huge and complex business and as usual where there are huge amounts of money to be made you will always find shady people connected in one way or another to these activities for their own personal gain.

A growing number of pornographic websites are designed in such a way that exploits and other malware are hidden so when a person clicks on any images or links, these are downloaded and the individual's machine will become infected.
In 2008 we will see a lot of people's computers becoming infected with malware that is transferred through the web browser. This will not happen only via pornographic websites but also through relatively popular websites that have been taken over by hackers.

Email Viruses

People are Ignorant.

And unbelievably so... especially when it comes to the technical side of modern technology. In theory, technology is there to serve people and not shackle us and make our lives misery. Unfortunately, in practice things don't really work out that way.

How many times have we received emails with an attachment that contains some slideshow or document that wishes us (yet again) Happy Holidays or Seasons Greetings?

In 2008, we will see an increase in client-side application exploits through emails and the web in the form of 'funny' jokes, chain letters, save-the-world and all the other useless stuff. Users will continue to open the attachments and the risk of infection within an organisation's network will increase (no matter how many times you tell them not to open emails that looks suspicious or they were not expecting).

Internet Privacy

Privacy? What's that?

'John Doe just sent 5 of your friends a Candy Cane Martini.'

So much talk about privacy from the privacy advocates. Do people really care? People will give away their name, age, gender, email and where they live in order to be able to send a 'free' virtual beer. Now that's fun!

The reality is that although people in general rally behind privacy advocates in the fight for their 'rights'; if the guy at the back of the platoon suggests that you can send a free beer by just 'adding an application' most, if not all users will fall over each other to do just that; leaving the poor privacy advocates alone at the front screaming their heads off until their voice is just a squeak.

So in 2008 people will continue giving away personal information for free to unknown individuals and organisations through myriad social networking sites. And a lot of people will be doing this while they are at work!

While the network administrator may be updating his systems with the latest patches, sweating and hoping that systems stay up, employees will be browsing the latest and greatest social networking site sending 'cool free beers' and subscribing to different applications and useless services.

With people giving out so much information for free, we can all expect a spam-healthy 2008.

Internet Password Security

People are so helpful

It's in our nature to be good to our neighbors and colleagues; well, most of us anyway. It feels good to be able to help somebody in need.

So the next time our beloved network administrator calls me from his cell phone in an airport in the middle of nowhere asking me for my password as he needs to install some software that will make my system go faster (and therefore I can navigate Facebook more efficiently) I'm more than happy to help him and provide him with my details.

Social engineering gets you everywhere. Actually, more importantly, it gets you into everything, especially trouble. (helps in dating as well)

2008 will be a happier place because everyone will be helping each other out; unfortunately that does not necessarily mean that it will be a good thing or for a good cause.

Targeted attacks through social engineering will generate more high profile cases in 2008.

Email Spam

People are greedy

"Request for urgent business relationship

First I must introduce myself as person sending this communication for you.   My name is Dr Hector Eucrepto II and I am top official for Nigeria water salt plant.  My uncle Dr Fidilissimo Afarfar was head of plant but he was attacked by rebels on their way to a disco party.  The reason for the attack is not know but I think that it is because my uncle did not like house music.

Before he was attacked my uncle Dr Fidilissimo Afarfar stealed 50 million us dollars (five with seven zeros) from company that supplied big pipe.  My uncle was very greedy person but during rebel attack he bumped the head and he is now turned in a good person.  He prays for world peace every day and he sees beauty pageants on antenna televison every Sunday.

Since my uncle is now a kind person he told me to find another kind person to give him the money (50,000,000$) so that the person can open free hospital for nice models in beauty pigeons. This is the reason I am contacting you sir because tru the facebook I realize that you are a very kind men and have a very big thrust.  The uncle Dr Fidilissimo Afarfar would like to send you money to open the hospital for the sick people. 

I am looking forward to your email so I can give you more details how I can send you the money to open the hospital.   Please do not tell anyone till now on this project and I solicit your confidentiality in this translation.

World peace,

Dr Hector Eucrepyo II"
People fall for this stuff - need we say more?

David Vella is Director of Product Management at GFI Software