Malware Unlimited

Understanding the scope of the threat

In the beginning, there were viruses. These bits of rogue software corrupted data, damaged hard drives and reduced system performance.

Like any new technology, viruses grew up and became even more damaging, which set the stage for new generations of evolved threats. Today, our computers and networks are exposed to a wide range of malicious software collectively known as malware - literally, bad code. As with earlier generations of threats, ignoring the risk is not an option. Failure to do so could compromise your company's brand protection efforts and impact the bottom line

Like most technologies, malware can take on a number of forms, including

• Worm. A type of virus that self-replicates and consequently spreads very quickly. Although worms on their own are not destructive, they can compromise network performance and security when combined with destructive payloads
• Trojan. A program that claims to be one thing, but is in fact another. For example, a Trojan could look like a game which, when downloaded, installs a virus
• Spyware. Software which quietly collects personal information and uses the results to affect system performance, redirect revenue-generating traffic or render the machine vulnerable to additional infection. Sometimes called a tracking cookie
• Keystroke logger. Perhaps the most insidious threat of all, as it captures keystrokes like user names and passwords and sends them to the individuals who originally wrote the code. Also known as keyloggers, these are often used for identity theft

Adware is another form of unwelcome software. Typically installed in the background when questionable applications such as peer-to-peer file sharing programs are downloaded, adware is used by marketers to learn end-user habits and help them target future online ads. Even if the intent is not criminal, adware resides in a gray area and its presence can still compromise security and reduce performance.

In any form, malware can rapidly damage your company and your brand. Broadly available Internet connectivity makes it easy for malware to spread from one machine or network to the next, meaning even small incursions can cause serious harm. Protection is a critical priority.

Aside from consuming scarce IT resources, such software can open the door for attackers to steal private or corporately sensitive information. This in turn threatens the very future of your brand and calls for decisive protective action.

At the very least, anti-virus and anti-spyware software must be installed on every desktop and laptop machine, as well as on the corporate network. Processes must be in place to install updated signature files across network devices as they become available.

Finally, acceptable use policies that restrict users from activities most likely to lead to malware infection - downloading unsanctioned software, for example - must be drawn up. As threatening as malware is to the future of the company, encouraging the right kind of behaviour can go a long way toward reducing the risk.