ST06-006 -- Understanding Hidden Threats: Corrupted Software Files

Who's Online Now

0 members (), 760 guests, and 35 robots.

Key: Admin, Global Mod, Mod

ShoutChat

Comment Guidelines: Do post respectful and insightful comments. Don't flame, hate, spam.

KSC PAD 39A

KSC PAD 39B

TLE DATA

IDB.COM.AU
For all your TLE downloads.

May
S	M	T	W	T	F	S
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

Today's Birthdays

There are no members with birthdays on this day.

AUS-CITY Recent Posts

Saturday: Light Rain, Minimum Temperature: 8°C (47°F) Maximum Temperature: 15°C (58°F)
by Webmaster - Fri 03 May 2024 01:01:AM

Friday: Light Rain, Minimum Temperature: 10°C (49°F) Maximum Temperature: 15°C (59°F)
by Webmaster - Fri 03 May 2024 01:01:AM

Tonight: Light Cloud, Minimum Temperature: 10°C (50°F)
by Webmaster - Fri 03 May 2024 01:01:AM

Arkansas Gov Sarah Sanders signs executive order in response to Biden's Title IX changes
by Webmaster - Thu 02 May 2024 09:08:PM

Two Stars in a Binary System are Very Different. It's Because There Used to be Three
by Webmaster - Thu 02 May 2024 08:35:PM

The Highest Observatory in the World Comes Online
by Webmaster - Thu 02 May 2024 08:29:PM

Peter Oosterhuis, golfer and broadcaster known for his Masters commentary, dead at 75
by Webmaster - Thu 02 May 2024 07:56:PM

Texans general manager provides update on star receiver Tank Dell after shooting
by Webmaster - Thu 02 May 2024 07:51:PM

Is the JWST Now an Interplanetary Meteorologist?
by Webmaster - Thu 02 May 2024 07:42:PM

Retired Pro Bowl tight end has new 'passion' post-NFL career
by Webmaster - Thu 02 May 2024 07:19:PM

AUS-CITY Latest Photos

Art By MA
by Alisa, July 27

"5greenheart" by MA
by Alisa, July 27

"3moons" by MA
by Alisa, July 27

Art By MA
by Alisa, July 27

Popular Topics(Views)

4,737,421 The most hated Government Department

3,125,623 UBI, Updates and the rest :-)

841,023 Access to new forum UBI and PBS Private

701,196 CYPRUS SAT ON AIR CH60

520,074 What can we expect of TV Plus ?

511,785 Department of Child Safety's most shameful office

432,922 UBI vs DigiTurk - Turkish Package Changes

347,283 TARBS WAS SCREWED!!!!

339,765 Moderate 4.4 quake hits near Gisborne, Gisborne District, New Zealand

325,983 aussiefrogs.com offline

AUS-CITY Earthquake Map

AUS-CITY Advertisements

Print Thread

Rate Thread

ST06-006 -- Understanding Hidden Threats: Corrupted Software Files #43641 Fri 06 Feb 2009 12:34:PM
Joined: Feb 2001 Posts: 3,536 Ontario, Canada VA3DBJ OP Mission Commander
OP VA3DBJ Mission Commander Joined: Feb 2001 Posts: 3,536 Ontario, Canada	Cyber Security Tip ST06-006 Understanding Hidden Threats: Corrupted Software Files Malicious code is not always hidden in web page scripts or unusual file formats. Attackers may corrupt types of files that you would recognize and typically consider safe, so you should take precautions when opening files from other people. What types of files can attackers corrupt? An attacker may be able to insert malicious code into any file, including common file types that you would normally consider safe. These files may include documents created with word processing software, spreadsheets, or image files. After corrupting the file, an attacker may distribute it through email or post it to a web site. Depending on the type of malicious code, you may infect your computer by just opening the file. When corrupting files, attackers often take advantage of vulnerabilities that they discover in the software. These vulnerabilities may allow attackers to insert and execute malicious scripts or code, sometimes without being detected. Sometimes the vulnerability involves a combination of certain files (such as a particular piece of software running on a particular operating system) or only affects certain versions of a software program. What problems can malicious files cause? There are various types of malicious code, including viruses, worms, and Trojan horses (see Why is Cyber Security a Problem? for more information). However, the range of consequences varies even within these categories. The malicious code may be designed to perform one or more functions, including * interfering with your computer's ability to process information by consuming memory or bandwidth (causing your computer to become significantly slower or even "freeze") * installing, altering, or deleting files on your computer * giving the attacker access to your computer * using your computer to attack other computers (see Understanding Denial-of-Service Attacks for more information) How can you protect yourself? * Use and maintain anti-virus software - Anti-virus software recognizes and protects your computer against most known viruses, so you may be able to detect and remove the virus before it can do any damage (see Understanding Anti-Virus Software for more information). Because attackers are continually writing new viruses, it is important to keep your definitions up to date. * Use caution with email attachments - Do not open email attachments that you were not expecting, especially if they are from people you do not know. If you decide to open an email attachment, scan it for viruses first (see Using Caution with Email Attachments for more information). Not only is it possible for attackers to "spoof" the source of an email message, your legitimate contacts may unknowingly send you an infected file. * Be wary of downloadable files on web sites - Avoid downloading files from sites that you do not trust. If you are getting the files from a supposedly secure site, look for a web site certificate (see Understanding Web Site Certificates for more information). If you do download a file from a web site, consider saving it to your desktop and manually scanning it for viruses before opening it. * Keep software up to date - Install software patches so that attackers cannot take advantage of known problems or vulnerabilities (see Understanding Patches for more information). Many operating systems offer automatic updates. If this option is available, you should enable it. * Take advantage of security settings - Check the security settings of your email client and your web browser (see Evaluating Your Web Browser's Security Settings for more information). Apply the highest level of security available that still gives you the functionality you need. In email clients, turn off the option to automatically download attachments. Related information * Securing Your Web Browser * Recovering from Viruses, Worms, and Trojan Horses _________________________________________________________________ Author: Mindi McDowell _________________________________________________________________ Produced 2006 by US-CERT, a government organization. Note: This tip was previously published and is being re-distributed to increase awareness. Terms of use <http://www.us-cert.gov/legal.html> This document can also be found at <http://www.us-cert.gov/cas/tips/ST06-006.html> For instructions on subscribing to or unsubscribing from this mailing list, visit <http://www.us-cert.gov/cas/signup.html>.