Malware

From Wikispooks
Jump to navigation Jump to search

Concept.png Malware
(software)Rdf-entity.pngRdf-icon.png
Exodus 1.png
One of many apps from the Google Play Store which secretly installed the Exodus spyware on its victims' phone.
Interest ofSecurity Without Borders
Bad software, such as spyware or viruses

Malware is an umbrella term for bad computer software. Colloquially, this may include software which just unwanted, or annoying ("scumware", "nagware", "bloatware", "shovelware" etc.) but the primary meaning is software which by design presents a threat to the user, such as computer viruses or spyware. Malware in general is more associated with extortion of money and fraud, but it can be used by anyone with the technical capability for any purpose.

Pre-installed malware

In August 2019, Google warned that tens of millions Of Android smartphones come preloaded with malware, and that "if malware or security issues come as preinstalled apps, then the damage it can do is greater".[1] The problem with the presence of malware in the firmware dates back to early 2014.[2][3]

After a vulnerability was found in the Lenovo Solution Centre, Lenovo left it unfixed, but changed the software's end-of-life date to make it seem less important.[4]

Hardware backdoors by intelligence agencies

In 2014 it was revealed via Edward Snowden that the NSA routinely backdoors networking hardware exported from the USA.[5] Further, it stands to reason that some "bugs" in commercially available hardware are deliberate design flaws[6] or planned features[7] to give state actors speedy access to any system. The peculiar destruction of Laptops from The Guardian that held part of the Snowden archive, which was reported about by Privacy International in 2014,[8] showed that GCHQ targeted specific chips on the mainboard and related components, while it could have chosen to instead/or in addition shred the whole hardware to conceal this very specific action. Intelligence agencies, when they get initial access to a system through a browser,[9] may choose, depending on the capability and value of a target, to not write the data for their surveillance tools on the hard drive where it could more or less easily be found, but on these very chips whose firmware can likely be rewritten, as it is known to be the case with all USB components.[10] This would make it possible to bypass all security monitoring and measures initiated on the level of the operating system running on the device. It is not clear if the restitution by GCHQ, the way it was done, was deliberate to communicate this very fact, or by mistake.

Spyware

Full article: Spyware

Spyware is created to exfiltrate users' data or facilitate surveillance of users. Its origins include criminal gangs, individuals, private companies[11] and intelligence agencies.

Viruses

Full article: Stub class article Computer virus

Computer viruses may go beyond spying to have a payload intended to destroy data and/or hardware (for example, Stuxnet, intended to damage the Iranian centrifuges used to refine uranium).

Installation

"AT&T employees took bribes to unlock millions of smartphones, and to install malware and unauthorized hardware".[12]


 

Examples

Page nameDescription
Computer virus
Fysbis
Ransomware
Spyware

 

Related Document

TitleTypePublication dateAuthor(s)Description
File:Operation-shady-rat.pdfreport2 August 2011Dmitri Alperovitch
64 pounds thermometer.png
As of 27 September, our 19 Patrons are giving £64/month, almost 2/3 of our webhosting bill. Please help keep this site running by donating or spreading the word about our Patreon page.



References