Danger Of Malware

Computer worms and viruses pose a clear and present danger for corporate and public information security in that as time and technology progress, the damaging effects this "malware" has on the network increases. Throughout this paper the term "malware" is used to define software that damages your system, causes instability, or exhibits antisocial behavior such as changing settings or interfering with a computer's registry and security settings. Typical examples include computer viruses or worms.

Viruses are computer programs or scripts that attempt to spread from one file to another on a single computer and/or from one computer to another, using a variety of methods, without the knowledge and consent of the computer user. A worm is a specific type of virus that propagates itself across many computers, usually by creating copies of itself in each computer's memory. Many users define viruses simply as trick programs designed to delete or move hard drive data, which, strictly speaking, is not correct. From a technical viewpoint, what makes a virus a virus is that it spreads itself. The damage it does is often incidental when making a diagnosis.

The most common method used for spreading a virus is through e-mail attachments.

The most common tool used to mitigate the risk and danger of this threat is using a virus scanner which attempts to scan a computer program before it runs. Another tool against viruses is common sense. Don't open an e-mail from an unknown or suspicious source unless you know the risk of opening the attachment. Avoid the risk of malware with the following:

* Keep your computer software current. Both the operating system and the anti-virus application must be updated on a regular basis.

* Only download updates from a reputable source.

* Always weigh the risks of installing something on your computer. This includes reading the fine-print license!

* Install and use a firewall.

* "Prevention is always better than cure."

Businesses are also reducing the damage caused by malware by moving some of their mission-critical functions to outside servers and accessing the applications via the web, referred to as "webware." In place of security-challenged and difficult-to-install desktop software packages, companies now have a choice of on-line services that they can subscribe to for a monthly fee. The advantages include: (1) there is no capital outlay; (2) there are no install issues; (3) access can be made anywhere in the world; (4) since all data is on the vendor's server, backup is done by the system; and (5) any computer or software platform can be used, as long as it has a browser.

When malware was first struck information security systems it was relatively simple and harmless. Today malware is more damaging - both in terms of the actual damage done to computer files and applications and of the cost it impedes on the corporation. Any organization with a running network must defend the security of that network. This requires firms to purchase anti-virus software that

...