We get it (and IT!)

Phone: 1300-728-259 or .

Category Archives: Malware

7 Warning signs of malware infection

As companies go to the Internet to conduct their business, their IT security becomes more vulnerable to many hackers and viruses. That’s why it’s even more important to recognize whether or not your systems are under threat from malicious software to swiftly fend off the infection. So how do you know if your company’s IT security is under threat? Here are a few warning signs to tell if you are a victim of malware infection.

Slow computer

The most common symptom of a malware infection is a slow running computer. Are your operating systems and programs taking a while to start up? Is your data bandwidth suspiciously slow? If so, your computer may potentially have a virus.

However, before you immediately assume your computer has a virus, you should check if there are other causes to your computer slowing down. Check if you’re running out of RAM. For Windows, open task manager (Ctrl + Shift + Esc) and go to the Performance tab and check how many gigabytes of RAM you are using under the Memory section. For Mac OS users, you can open the Activity Monitor app and under System Memory you should be able to find out your RAM usage.

Other causes of a slow system include a lack of space on your hard drive and damaged hardware. Once you’ve ruled out the other potential causes, then a virus may have infected your device.

Blue screen of death (BSOD)

If your PC crashes regularly, it’s usually either a technical problem with your system or a malware infection. You might not have installed the latest drivers for your device or the programs you’re running could possibly be incompatible with your hardware. If none of these problems are apparent in your PC then the virus could be conflicting with other programs causing your crashes.
To check what caused your last BSOD go to Control Panel> System and Security> Administrative Tools> Event Viewer and select Windows Logs. Those marked with an “error” are your recorded crashes. For troubleshooting solutions, consult forums or your IT department to figure out what to do next.

Programs opening and closing automatically

Malware can also be present when your programs are opening and closing automatically. However, do check if some programs are meant to behave this way or if they are simply incompatible to run with your hardware first before coming to the conclusion that your computer has a virus.

Lack of storage space

There are several types of malware that can manipulate the files saved on your computer. Most tend to fill up your hard drive with suspicious files. If you find any unknown programs that you have never installed before, don’t open the application, search up the program’s name over the Internet and use antivirus protections once you’re certain that it’s malware.

Suspicious modem and hard drive activity

Combined with the other warning signs, if your hard disk is working excessively while no programs are currently running or if you notice that your external modem is always lit then you should scan your computer for viruses.

Pop-ups, websites, toolbars and other unwanted programs

These are irritating signs that your computer has a virus. Pop-ups come from clicking on suspicious pages, answering survey questions to access a website’s service or installing free applications. Don’t click on ads where Jane says she earned $8000 a month staying at home. When you get pop-ups appearing out of the blue, refrain from clicking anywhere on the pop-up page and just close out of the window and use your anti-malware tool immediately.

Equally, free applications allow you to download their service for free but the installation process can be riddled with malware. When you’re installing a program from the Internet it’s easy to just skim over the terms and conditions page and repeatedly press next. This is where they get you. In the process of skipping over certain installation steps, you might have agreed to accepting a new default browser, opening unwanted websites and other programs filled with viruses. Just be cautious the next time you download something for free. It’s best to try avoiding any of these practices when you can in order to protect your computer.

You’re sending out spam

If your friends are telling you that you’ve been offering them suspicious messages and links over social media or email, you might be a victim of spyware. These may be caused from setting weak passwords to your accounts or forgetting to logout of them.

In the end, it’s best to know how malicious software affects your computer so you can take steps to rectify the situation as soon as possible. Regardless of whether or not your system has experienced these symptoms, it’s always smart to perform regular malware scans to ensure your business is safe. To find out more about malware and IT security, contact us today.

New Android malware can erase your phone

People easily get riled up over online security. With a quick Google search, you can find dozens of articles warning about Trojans, viruses and other security threats. But how many of them do you actually need to worry about? Really, it all comes down to threats that cause massive damage and affect your unique technology. So if you’re an Android user, there’s a new type of malware that fits both these categories. With the ability to wipe out all the personal data on your phone, this terrifying security threat is something all Android users should be aware of.

How does it work

Mazar, as the malware is known, spreads exclusively via links in a text message. Once the user clicks on the link, Tor software is downloaded, which hides the source of the malware by allowing anonymous Internet connections. Then with little chance of being noticed, mazar is downloaded onto the phone.

What’s the risk?

Not only can mazar erase all your personal data, but it can also wreak havoc on your phone in other ways. If your Android is infected, the malware can secretly monitor your device, send text messages, and take control of your settings and keys. Similar to trojan malware, mazar creates a backdoor to your smartphone for cyber criminals to enter. Once the hacker is in, he can control your Android as however he sees fit.

How can you protect your Android?

If the language setting of your phone is set to Russian, you are safe. So unless you’re looking to take up a second language, the best security measure is to be cautious of all text messages you receive on your phone. Just like your mother taught you not to talk to strangers, you should also avoid clicking on their links. But you should also be wary of texts from friends because, as most of us know, hackers can easily disguise themselves as those close to us.

Lastly, there is one small, practical step that may help prevent mazar from infecting your Android. Simply switch off the security setting that allows apps from unknown sources to be installed on your phone.

As an MSP provider, we know how stressful security issues can be. The worry can cause you to lose focus and be less productive. That’s why we want our customers to know that we’re always there to offer security tips and solutions to keep your data safe. Whether you’re looking for a security solution for your Android or for your business, give us a call and we’re happy to give you some peace of mind.

How scary is the new mac scareware?

If you wanted a classic example of how malware evolves, the new scareware discovered on Mac in the past few weeks is a perfect example. The way it attempts to fool users is unlike almost any of its predecessors. In other words, it’s very convincing. Here’s what you need to know about this new scareware on the block.

What is scareware?

For those who’ve never heard of it, scareware is a type of malware designed to trick you into purchasing illegitimate software. If you’ve ever been prompted to buy the antivirus software known as Mac Defender (also known as Mac Protector, Mac Guard, Mac Security, etc.), then you’ve seen scareware firsthand. Essentially, this malware burrows into your computer and attempts to scare you into purchasing their product, oftentimes which is antivirus. This new form of scareware on Mac works in the same fashion.

How this new Mac scareware fools consumers

If you’re familiar with scareware, you may think you have nothing to worry about. You already know how scareware attempts to trick users, so why should you be afraid of this one? The reason is this malware masquerades as an Adobe flash update, and quite a believable one at that because the installer is signed with a legitimate Apple developer certificate and downloads a legitimate version of flash on your machine. The catch is that it also downloads the scareware.

What happens once you download the scareware?

After you download the Adobe Flash update, the scareware is also installed on your system. You’ll then be prompted to scan your computer. If you do, it will claim you have a variety of malware on your system like Trojans, viruses, worms and more, in an attempt to scare you into buying fake security software to clean the malware out. If you’re reading this and have somehow gotten to this stage in the ruse, don’t buy the software.

Lessons to learn

Regardless of whether you’re a Mac or PC user, there is a valuable lesson to learn here. When getting software updates, ignore all prompts from random third party sites. Instead you should get your updates directly from the software developer.

Malware is becoming a growing threat for Mac users. So it’s important to remember that just because you use a Mac, doesn’t mean you’re automatically immune to security threats. If you’d like to know more about how to protect your Apple systems, call our Mac security experts today.

Regin – is it really a big threat?

Security_Dec01_CMalware is a constant threat to a business’s security. However, with many malware infections we tend to be able to learn a lot about them in a very short amount of time, which weakens the power of each attack. There is a new threat called Regin however, that is leaving many security experts baffled. Here is an overview of Regin and what it means exactly for businesses.

What exactly is Regin?

What is most interesting about Regin is that a number of security experts seem to not really fully understand it. They know that it exists, they know it is complex, and they know it is one of the most advanced pieces of malware ever created. But, they don’t know what exactly it does, or where it comes from.

What we do know is that Internet security firm Symantec is credited with first bringing Regin to public attention, and that it has been around since at least 2008. So far, the company has said it is similar to the Stuxnet virus that was supposedly developed in (or by) the US and used to attack and subvert the Iranian nuclear program.

Regin is known to infect Windows-based computers and at its core is a backdoor trojan style of infection. From detected infections it is looks like the purpose of the malware is not to steal information but to gather intelligence and facilitate other types of attacks.

What makes this malware so powerful and disturbing is that it is much more advanced than other infections. Using various encryption methods it can hide itself extremely well, making it difficult to detect. It can also communicate with the hacker who deployed it in a number of different ways, thus making it a challenge to block or stop. As a result, it is far from easy to actually figure out what exactly this malware is doing and why.

Who has been infected?

According to various security experts we have been able to compile a list of companies and organizations that have been targeted to date. These include:

  • Telecommunications companies
  • Government institutions
  • Financial companies
  • Research companies
  • Individuals and companies involved in crypto-graphical and mathematical research

At the time of this article, no known attacks have been carried out against companies in the US, Canada, or the UK. The main countries targeted so far have been Russia and Saudi Arabia, along with a smaller number of infections in Malaysia, Indonesia, Ireland, and Iran. A total of 10-15 countries have been targeted since the malware was first discovered in 2008.

Is this a big deal for my company?

Just because your company is operating in a country that hasn’t been affected thus far, doesn’t mean that you aren’t at risk of being attacked by this malware in the future. If you operate in any of the industries or sectors listed above, you could still be at risk, especially if you do business with clients in infected regions.

For now, however, it appears that Regin is only infecting larger government bodies and large companies outside of North America and much of Europe, so the chances of you being infected are relatively low. Although as with any threat, this can change at any moment.

What we recommend is that you ensure your antivirus and antimalware solutions are kept up to date and always switched on. You can rest assured that eventually experts will learn more and block this malware from infecting systems. Beyond this, working with an IT partner, like us, who can ensure that your valuable data and systems are secure, is also a good idea. The same goes with watching what you download and any emails you open. If you don’t know or trust the source, don’t download any program, open an attachment, or read an email connected to it.

Looking to learn more about the security of your systems? Contact us today.

This entry was posted in General Articles C, Security – News and General and tagged, , , ,, , , . Bookmark the permalink. Both comments and trackbacks are currently closed.

Reacting to malware infections: The correct way.

975203113Computers must have appropriate protection from malware attacks. Aside from creating annoyances, malware infections can also affect the performance of your computer. Furthermore, the data on your system and confidential information that you use online may also be tracked and used without your knowledge. Because of the severity of the problems that it can cause you need to be very cautious about preventing malware infections, and know how to deal with them properly.

Signs of a malware infection

Before proceeding with the steps on how to respond to malware infections, we first need to learn about the signs and symptoms of a malware infection. These include:

  • Several pop-ups appear even when not browsing the Web.
  • Unusual slowness of the computer and Internet connection.
  • System hangs or freezes.
  • Corrupted programs.
  • Antivirus is disabled.
  • E-mails sent to or from your account which you did not send.
  • High network activity, even when not using large programs or accessing huge data.
  • Redirected access to some sites.

Security_March31_CHow to respond to a malware infection

In case you experience any of these symptoms, the first thing to do is to ensure that your antivirus and antispyware program is updated. This is to make sure that they detect the latest known threats on their database. You should then run scans to see if an infection is detected. If it is, the programs usually have a way to remove the infection. You then need to follow the steps the program recommends.

If this doesn’t work, disconnect the infected computer from the network to prevent the spread of the malware. Furthermore, avoid accessing the Web and using vital information such as bank account and credit card information. Let the technical department or your IT partner handle the concern since they are trained in determining and eradicating system malware infections.

Once the problem has been pinpointed, a tech specialist will go through the process of eliminating the infection. This includes backing up data on the computer and restoring the system to its original state. Depending on the extent of the infection, the computer may need to be wiped clean, or reformatted before restoring backed-up files.

After the whole process, the computer must be tested to ensure that the infection has been totally removed. Moreover, further investigation and studies must also be done to determine where the problem started, as well as to create a strategy as to how to prevent this from happening in the future.

How to prevent a malware attack

Prevention is better than a cure and this definitely applies to malware infections. It’s best to arm yourself with knowledge on how to avoid malware attacks and prevent your systems from being infected.

  1. Ensure that security protection is always updated and that you run system scans on a regular basis.
  2. Avoid downloading attachments or clicking links from unknown sites or senders.
  3. Enable firewall protection.

Malware can hugely affect business operations and the security of private information. One of the best ways to prevent this is to work with an IT partner, like us, who can help recommend and install protection systems. You might want to think about getting help in managing these solutions too, to ensure that your systems are secure at all times.

If you have questions or concerns with regards to malware prevention and resolution, feel free to call us. Our support team is always ready to help.

How to respond to a malware infection

Security_March31_BA malware infection is an attack that you do not want invading your business systems. Malicious software can often make its way on computers without your knowledge, causing various disturbances. What’s even worse, is that vital information saved on your computer or data that you access online could be stolen. Computers must have proper protection. In the event that malware infection is detected an immediate response is required.

Signs of a malware infection

Before proceeding with the steps on how to respond to malware infections, we first need to learn about the signs and symptoms of a malware infection. These include:

  • Several pop-ups appear even when not browsing the Web.
  • Unusual slowness of the computer and Internet connection.
  • System hangs or freezes.
  • Corrupted programs.
  • Antivirus is disabled.
  • E-mails sent to or from your account which you did not send.
  • High network activity, even when not using large programs or accessing huge data.
  • Redirected access to some sites.

How to respond to a malware infection

In case you experience any of these symptoms, the first thing to do is to ensure that your antivirus and antispyware program is updated. This is to make sure that they detect the latest known threats on their database. You should then run scans to see if an infection is detected. If it is, the programs usually have a way to remove the infection. You then need to follow the steps the program recommends.

If this doesn’t work, disconnect the infected computer from the network to prevent the spread of the malware. Furthermore, avoid accessing the Web and using vital information such as bank account and credit card information. Let the technical department or your IT partner handle the concern since they are trained in determining and eradicating system malware infections.

Once the problem has been pinpointed, a tech specialist will go through the process of eliminating the infection. This includes backing up data on the computer and restoring the system to its original state. Depending on the extent of the infection, the computer may need to be wiped clean, or reformatted before restoring backed-up files.

After the whole process, the computer must be tested to ensure that the infection has been totally removed. Moreover, further investigation and studies must also be done to determine where the problem started, as well as to create a strategy as to how to prevent this from happening in the future.

How to prevent a malware attack

Prevention is better than a cure and this definitely applies to malware infections. It’s best to arm yourself with knowledge on how to avoid malware attacks and prevent your systems from being infected.

  1. Ensure that security protection is always updated and that you run system scans on a regular basis.
  2. Avoid downloading attachments or clicking links from unknown sites or senders.
  3. Enable firewall protection.

Malware can hugely affect business operations and the security of private information. One of the best ways to prevent this is to work with an IT partner, like us, who can help recommend and install protection systems. You might want to think about getting help in managing these solutions too, to ensure that your systems are secure at all times.

If you have questions or concerns with regards to malware prevention and resolution, feel free to call us. Our support team is always ready to help.