 |
Hacked: Who Else Is Using Your Computer?
A friend called me one day and asked if I would stop by to
look at his computer. He said it was running abnormally slow
and he had found something on his hard-drive he could not
explain. I could almost guess what it was he found.
Have I been hacked? You see, his computer had been hacked. Actually, in his
case, his computer had been tagged. Similar to the image you
see here. Tag, You're It!
---------------
The file transfer protocol, commonly referred to as "FTP",
has been around for many years. In the early days of the
Internet, it was one of the few ways to easily upload and
download files from one computer to another. Many
commercial operating systems come with an FTP server
installed. In other cases, the option for FTP services is
selected by a user when they are installing or updating
their operating system. If this service is not setup
properly, or you don't have an adequately configured
software or hardware firewall, it is an open invitation for
a hacker or intruder. FTP Tagging - The most common purpose for someone to
compromise your FTP server is for the storage and
distribution of illegally obtained software and files. This
could include cracked software, stolen movies, audio files,
and pornography. Removing this type of contraband from your
computer can be difficult, particularly if you are using a
Microsoft Windows platform. Hackers use sophisticated
scripts to create a maze of directory structures to house
their wares on your computer. They may use a combination of
names with spaces in them, and in some cases use extended
characters (characters outside the normal alpha-numeric
range). Deleting these directories through normal means may
be difficult, if not impossible, for the average user. Many
people wind up wiping their system and re-installing it, and
that is if they're lucky enough to find out their system has
been compromised. The above is a perfect example of why the statement, "I'm
not worried about being hacked. What do I have that a
hacker would want?" is not a good position to take. The fact
is, you do have something they want, your computers
resources. Why should a hacker store tons of illegally
obtained files on their systems when they can use yours. The Good, The Bad, And The Ugly
-------------------------------
The Good
--------
When I was young I use to spend hours upon hours on the
Internet Relay Chat, also know as the IRC. The IRC is
another method of Internet communication, which has been
around for quite a long time. When I was a frequent user of
the IRC, it was just plain fun. You would meet all kinds of
people from all over the world. It was the instant messenger
of the time. The Bad
-------
Today, the IRC is a huge communications network. It is made
up of thousands of channels, and can be accessed by pretty
much any operating system platform. It is also a favorite
means of communication for hackers. They can discuss new
exploits, methods of compromise, and even send and receive
files. Many hacker groups use a cryptic language to
communicate with each other on the IRC channels. Unless you
know the language constructs they use, their conversations
can look like a bunch of nonsense. There are many exploits, backdoors, and Trojans that effect,
or are contained in, the myriad of IRC clients on the
Internet. Making sure you choose one that's relatively safe
to use is not an easy task. As an example, take a look at
this list of IRC safety and security info at
irc.org. The Ugly
--------
It's not just the exploits and security risks associated
with using the IRC, which need to concern you. If a hacker
is able to install an IRC relay agent on your computer, it
can become a conduit through which they communicate and
distribute information. In my line of work, I've identified
many systems with IRC backdoors or relay agents installed.
The only thing the end user typically experiences is a
decrease in system performance and Internet access. Just Open The Door And Let Them In
Peer-to-Peer File Sharing
----------------------------------
If a total stranger were to knock on your door, and ask to
come in to just hang out for awhile, would you let them in?;
Most likely not. If you're using peer-to-peer file sharing
software to locate and download files on the Internet,
you're opening the door to destruction. Many of the file
sharing services and software available on the Internet now
tout themselves as being "safe" and "clean". This is as far
from the truth as you can get. If you're a regular user of
these services, the chance of your computer being
back-doored or hacked is significant. If you have anti-virus software installed (and up-to-date),
you've undoubtedly received messages regarding viruses when
downloading files from peer-to-peer services. These are not
the only things you could be downloading. Many hackers imbed
root-kits in files and distribute them using peer-to-peer
file sharing. Root kits contain many types of tools used by
hackers to gain control over computers. If the installation
of the kit on your computer goes undetected and is
successful, it's only a matter of time before your computer
is completely compromised. I can't tell you how many times I've found company
employees (and technical personnel) using peer-to-peer file
sharing services. Any organization that permits this is
putting itself at risk. And, the risk is much greater as
compared to a single home computer because of the number of
potential internal targets. Conclusion
----------
Of course, the above is just a few examples of different
methods and types of computer compromise. There are many
ways your computer can be hacked. Your best defense is a
good offense along with education and awareness.
When you configure your computer make sure you enable only
the software and services that you need. Many programs have
known exploits and / or require additional steps be taken to
adequately secure them. Don't make the assumption that you are not a target just
because you don't think you have anything of interest on
your computer. If our computer becomes unstable or dramatically decreases
in performance, don't assume it's just a quirk or that it's
time to upgrade. Make sure you have a software or hardware firewall in place
to protect you from the Internet. Your firewall should be
configured not to allow anonymous inbound access from the
Internet. This is the default configuration for most
firewalls, but you should make sure the one you are using is
properly configured. Make sure you have adequate virus and spyware protection,
and your pattern signatures are up-to-date. Many anti-virus
applications work on a subscription basis. It's not uncommon
to find out your subscription expired. If it is expired,
your software may not protect you from new and emerging
threats. And, do what ever you can to stay away from any type of
Internet peer-to-peer file sharing service. No matter how
safe the developer claims it is. About The Author
----------------
Darren Miller is an Information Security Consultant with
over sixteen years experience. He has written many technology
& security articles, some of which have been published in
nationally circulated magazines & periodicals. Darren is a
staff writer for http://www.defendingthenet.com and several other
e-zines. If you would like to contact Darren you can e-mail
him at Darren.Miller@ParaLogic.Net or
DefendTheNet@ParaLogic.Net. If you would like to know
more about computer security please visit us at our website. If someone you know has sent you
this article, please take a moment to visit our site and
register for the free newsletter at
Newsletter Subscribe. Original URL
------------
http://www.defendingthenet.com/NewsLetters/HaveYouBeenHacked.htm
|
|
|
|
RELATED ARTICLES
Corporate Security for Your Home Business
The words Corporate Security may conjure up images of a group of techies working in a wire-filled basement room of Microsoft or HP, combating hackers and terrorists online using words like algorithm and encryption. If you own your own business, do not allow yourself to think that security is only for big corporations. Every company, big or small, technological or traditional, has two major security concerns: protecting information, and protecting hardware.
The Never Ending Spyware Story
It's been with us since 1993, it's gotten more intrusive, more complicated.
The Move to a New Anti-Virus Model
This is the second in a series of articles highlighting reasons why we need a new model for anti-virus and security solutions.
Be Alert! Others Can Catch Your Money Easily!
So called phishers try to catch the information about the account numbers and passwords of internet users. They deceive people with faked emails and websites that resembles exactly the originals of well known banks or electronic payment systems. They make people surrender their passwords and account numbers ? and afterwards they clear their accounts.
SCAMS ? Be Aware ? And Report When Necessary
The Internet is a vast International Network of people and businesses ? and a place where people can make a fairly decent living. However, it is also a place where certain unsavory characters can freely roam ? to take your dollars and run. Scams ? the human mind can be either pure or devious ? and it is the devious mind that you have to look out for and be aware of at all time.
Viruses, Trojans, and Spyware - Oh My!
Have you ever had to call Symantec or McAfee to ask them how to remove a virus? Or have you spent hours online trying to figure out how to remove spyware, only to find out that you did something wrong and now your computer won't boot? I know your pain and frustration with just trying to use your computer without worry. As a computer technician at ARCH Computing Services, I know how hard it can be to pay someone to remove viruses and spyware. In fact that's how I started in the computer business. I didn't want to pay someone to fix the problems that I usually caused. A little voice in my head told me "I can build a computer, it doesn't look that hard!"
Blogs as Safe Haven for Cybercriminals?
To blog or not to blog? Well, why not? Lots of people like either to write or to read blogs -- sometimes both. The much-quoted survey by the Pew Internet & American Life Project, says 27 percent read blogs. 38 percent of all Internet users at least know what a blog is. The survey was made in November 2004 and estimated that 32 million Americans to be blog readers by the end of 2004. So now there must be much more blog readers and writers.
Remove Rogue Desktop Icons Created By Spyware
If you have used a Windows machine for a while, whether it's Windows XP, Windows 2000, or Windows 98, you're sure to have noticed desktop icons appearing from out of nowhere. How can icons mysteriously emerge on your Windows desktop?
Is The Internet Over Regulated
Today's Internet or World Wide Web is being over regulated.
Don?t Become An Identity Fraud Statistic!
"You've just won a fabulous vacation or prize package! Now, if you'll kindly give me your credit card information and social security number for verification purposes, you will receive this awesome gift!"
The One Critical Piece Of Free Software Thats Been Overlooked
Can You Prevent Spyware, Worms, Trojans, Viruses,
... To Work When You Switch Your Pc On ?
I Can And I Do It On A Pro-active Basis.
Network Security 101
As more people are logging onto the Internet everyday, Network Security becomes a larger issue. In the United States, identity theft and computer fraud are among the fastest rising crimes. It is important to protect your network and ensure the safety of all computers and users in that network.
Internet/Network Security
Abstract
Homogeneous symmetries and congestion control have garnered limited interest from both cryptographers and computational biologists in the last several years [1]. In fact, few steganographers would disagree with the investigation of spreadsheets. Our focus in this work is not on whether write-back caches and evolutionary programming [13] can cooperate to achieve this intent, but rather on exploring an analysis of Markov models (Eale).
Desktop Security Software Risks - Part 1
This is the second in a series of articles highlighting reasons why we need a new model for anti-virus and security solutions.
8 Surefire Ways to Spot an EBAY Scam E-Mail and Protect Yourself from Identity Theft
Ebay is a great site and is used by many to buy and sell new and used Items. It truly is the worlds Largest Garage Sale Unfortunately when an online site becomes as big and popular as E-Bay the scam artists seem to just naturally follow. These Scam artists will often try to steal your Idenity and get your bank or credit card information in addition to your E-Bay Id and Password
Virus and Adware - Fix them Both!
We all get the odd virus now and then, but sometimes that one virus could cause so many problems. In this article I shall be going though just some of the problems that these virus software programs can do, and how to fix them.
Hacked: Who Else Is Using Your Computer?
A friend called me one day and asked if I would stop by to
look at his computer. He said it was running abnormally slow
and he had found something on his hard-drive he could not
explain. I could almost guess what it was he found.
Have I been hacked?
Is Your Music Player Spying On You?
In today's times spyware is a very serious issue and all computer users should be aware of the possible damage it can cause. It is estimated by well known industry insiders that nearly 90% of all computers are infected with some kind of spyware. This no
surprise as spyware programs can be highly contagious and spread from computer to computer via emails and network exchanges rapidly.
Spyware Symptoms
Spyware symptoms happen when your computer gets bogged down with spyware programs running in the background without your knowledge. Spyware, adware, malware and even spamware can cause your computer to behave very strange.
Is My PC Vulnerable on the Internet?
No longer are viruses the only threat on the internet. In recent years other threats have evolved which include spyware, adware, hacking, identity theft, information theft, pop-ups and the loss of information.
|
