Share This

Sunday, 9 June 2013

Malware, ransomware attacks are a growing threat to computer and mobile phone!

FORGET pickpockets or thieves. The biggest threat to your smartphone now is kidnappers cyber “kidnappers” that is, with their Ransomware.

As the name suggests, ransomware is a malware (malicious software) that will keep your phone or computer a prisoner until you pay a ransom. Only when the specified amount of money is paid will you be able to “free” your device and access data or information.

Although it is not new ransomware is said to originate from Russia in 2005 and has been attacking many computers worldwide since the Symantec Corp Internet Security Threat Report (ISTR) Volume 18 revealed that ransomware is emerging as the malware of choice because of its high profitability for attackers.

Luckily, says Symantec Malaysia's senior technical consultant David Rajoo, to his knowledge, no cases have been reported here yet.

“However, as the worldwide web has no boundaries and with increasing broadband penetration and as more users are accessing the Internet, Malaysia is certainly exposed to the Ransomware threats,” he says.

Infected machines display messages which demand payment in order to restore functionality. - David Rajoo Infected machines display messages which demand payment in order to restore functionality. - David Rajoo
Rajoo points out that awareness is key to combat ransomware threat.

As the report highlights, attackers are using deceptive links and poisoned websites to infect unsuspecting users with malicious software and lock their machines.

“The attackers, many of them cybercriminal organisations, then hold users' machines for ransom. Infected machines display messages which demand payment in order to restore functionality,” he tells.

Recent attacks have also displayed images that impersonate law enforcement.

Consumers on the Android platform are most vulnerable to ransomware and mobile threats, says the report.

Last year, mobile malware increased by 58%, and 32% of all mobile threats attempted to steal information, such as e-mail addresses and phone numbers.

Although Android has fewer vulnerabilities, its threats are higher than any other mobile operating system. Its open platform and the multiple distribution methods available to distribute malicious apps make it the go-to platform for attackers, adds the report.

With malware growing sophisticated every day, Rajoo adds, a mix of intelligence-based technologies can provide optimal security to stop new and unknown malware.

To avoid getting infected, ensure the device's software and anti-virus definitions are up to date, and avoid suspicious sites, Rajoo advises.

“We also advise users to use more than antivirus for protection. We recommend using advanced reputation security which provides layered defence. Use more than just Antivirus use a full functionality solution which includes heuristics, reputation-based, behaviour-based and other technologies,” he says, stressing that a key strategy is to fend off threats before they infiltrate your computer system.

Symantec Malaysia's Systems Engineering director Nigel Tan agrees that stopping the threat at the gate is important as cyber criminals continue to devise new ways to steal information from organisations of all sizes.

Staying ahead of attacks

“The sophistication of attacks coupled with today's information technology complexities require organisations in Malaysia and globally to remain proactive and use “defence in depth” security measures to stay ahead of attacks,” he added.

According to the annual ISTR which analyses the year in global threat activity, Malaysia was ranked 35th on its global Internet security threat profile in 2012.

As it highlights, there was a 42% surge last year in targeted attacks globally compared with the prior year.

These targeted cyberespionage attacks, designed to steal intellectual property, are increasingly hitting the manufacturing sector as well as small businesses, which are the target of 31% of these attacks.

Small businesses are attractive targets themselves and a way in to ultimately reach larger companies via “watering hole” techniques.

In a watering hole attack scenario, attackers compromise a carefully selected website by inserting an exploit resulting in malware infection. Through the compromised website, the attackers will target victims who visit the compromised site and take advantage of their software vulnerabilities to drop malware that will allow them to access sensitive data and take control of the vulnerable system.

As Symantec alerts, 61% of malicious websites are actually legitimate websites that have been compromised and infected with malicious code.

Business, technology and shopping websites were among the top five types of websites hosting infections. The shift of focus from government websites indicates an increase in attacks targeting the supply chain cybercriminals find these contractors and subcontractors susceptible to attacks and they are often in possession of valuable intellectual property.

The attack uses the security weaknesses in the supply chain specifically the small businesses to gain access into larger and more secured companies, adds Symantec.

Case in point is that those in sales became the most commonly targeted victims last year.

Another growing source of infections on websites is malvertisements this is when criminals buy advertising space on legitimate websites and use it to hide their attack code.

Tan urges organisations to continue to take proactive initiatives to secure and manage critical information from a variety of security risks, especially targeted attacks in the manufacturing and small business sectors, mobile malware, and phishing threats.

By HARIATI AZIZAN sunday@thestar.com

Saturday, 8 June 2013

New China-US relationship can avoid past traps

President Xi Jinping of China and President Obama took a walk Saturday on the grounds of the Sunnylands estate in California. 



At the informal meeting between the heads of China and the US on Friday, Xi Jinping expressed China's confidence that the two nations can avoid repeating history of conflicts between two powers; while Barack Obama welcomed China's peaceful rise.

This may be the most exciting statement between an existing power and a rising power. As Chinese, we can feel that the Chinese leader was speaking from the nation's heart, though we do not know if Obama was just trying to assure his guest, or expressing the real feelings of Americans.

This is a reflection of long-term strategic distrust between the two countries. We often doubt whether the real intentions of the US are not as friendly as its leader has stated. On the other hand, the Americans may not really believe what China has declared.

Relations between China and the US are more complicated than ever. There are numerous cases of frictions between the two countries in various areas, which have heavily influenced public opinions on both sides.

China cares about individual issues as much as the US. But it baffles us when the US raises many issues, such as cyber security, to a height closely related to strategic relations between the two countries. Is it a hoax to threaten China, or is it because the US believes each of the issues is more important than anything else?

The US leadership style has changed as each opposing political party takes charge. It appears urgent for each president to solve a particular issue. They have to make sure the handling of the Sino-US relationship is practical and yields tangible results as soon as possible.

It's unfair to think that China does not want to solve concrete issues. But what the US has demanded is often impossible for China to comply with.

Some of the demands are too selfish, which may require China to compromise its national interests while the US refuses to concede an inch. Other issues, such as intellectual property rights, may simply be too complicated to immediately solve.

The new relationship between the two powers will be based on a restructuring of the two countries' strategic thoughts as well as approaches in particular issues. It is not going to be easy for either leader to avoid misinterpreting the other side's intentions.

The new ties will require greater tolerance of each other. China and the US must realize that even a husband and wife can not avoid quarrels and have to tolerate each other.

Although the Sino-US relationship will see ups and downs, we know it would be even more difficult to deal with a major setback, as that would be against this historic momentum - Global Times

Related post:
Xi-Obama summit aims to boost ties, aspirations between China and USA

Xi-Obama summit aims to boost ties, aspirations between China and USA



Chinese President Xi Jinping (L, front) shakes hands with US President Barack Obama at the Annenberg Retreat, California, the United States, June 7, 2013. Chinese President Xi Jinping and his US counterpart, Barack Obama, met Friday to exchange views on major issues of common concern. Photo: Xinhua



Chinese President Xi Jinping (1st R) meets with U.S. President Barack Obama (1st L) at the Annenberg Retreat, California, the United States, June 7, 2013. Chinese President Xi Jinping and his U.S. counterpart, Barack Obama, met Friday to exchange views on major issues of common concern. Photo: Xinhua

Southern California residents are preparing a warm welcome for presidents of the world's two largest economies ahead of their two-day summit at Sunnylands. Anticipation is high for closer Sino-US ties that will help people from both countries pursue their own dreams.

"I'm glad that both presidents will come. I'm sure once they see Sunnylands, they'll want to see it again," John Benoit, chair of the Riverside County Board of Supervisors, said of the exclusive Rancho Mirage estate.

Benoit, a local highway patrol commander during the late 1980s when then-President Ronald Reagan regularly visited Sunnylands for New Year's Eve, told the Global Times he was eager to see the winter retreat formerly owned by late philanthropists Walter and Leonore Annenberg become the "Camp Davis of the West Coast" ahead of Chinese President Xi Jinping's visit.

"People in the world all dream about having a better life for themselves and their children," said Benoit, whose father's cousin was a priest in China during the 1940s. Benoit said that both the American and Chinese dreams have their own obstacles and opportunities, adding American people "have more challenges today than in the past."

John Harley, who works at a Riverside County-based company that grows and sells grapes, noted people from China and the US share common aspirations. "We're all people, and we all desire the same things: happiness, love and family," he said.

Harley told the Global Times that his company, which exports grapes to Shanghai and Hong Kong, posts an annual revenue of $15 million. "I see this business growing over the next decade. The better the relationship between the two governments, the better it is for our businesses."

Edward Chenghua Cai, president of the Southern California Chinese-American Federation, noted some Chinese-Americans had flocked to Rancho Mirage two days ahead of the private summit, which begins Friday, to express their hopes for deeper ties.

Wai-Jen Jeffries, president of the US National Organization of Chinese Women, told the Global Times she has personally known Xi for over two decades, having met the president during his visit to the US as  Party chief of Fuzhou, Fujian Province, in the 1990s.

"He's very easygoing and not interested in formalities at all. He calls me 'elder sister' every time I see him," she said of Xi. "I'm sure the two presidents' pragmatism will strike up the two countries' ties and bring people on both sides more benefits."

By Xu Yan and Sun Weichi in Rancho Mirage Global Times