You Might Be Infected
What’s hiding in your device?
Also known as Downup, Downadup and Kido, is a computer worm targeting the Microsoft Windows operating system that was first detected in November 2008 and still going strong this worm accounts for 1 in 5 of all UK detection’s.
This worm cracks passwords, exploits vulnerabilities and makes your PC a zombie (part of a botnet). With the creator of this malware still at large despite a $250,000 bounty from Microsoft this worm will likely continue to be modified and distributed for long time to come.
Even older than Conficker being first observed in 2003 and still topping the detected lists of Kaspersky, F-secure and Sophos this virus just won’t die. Often include with rootkits make this malware difficult to detect especially considering with its polymorphic nature.
Once infected it searches a user’s mailbox for email address and sends out spam. It can also be load with other malware as a payload, steal data, relay traffic and be used a node for password cracking.
We have covered this malicious app before however as it has infected 10 million devices it definitely deserves a place on this list. Hummingbad is rootkit that spams you with ads slowing you phone down and draining the battery.
The method of removal involves a factory reset making this one a pain to get rid of.
One of the more recent strains of ransomware Locky cryptolockers have become very wide spread this year infecting devices in over 100 countries.
Originally it works like a Trojan posing as a legitimate file but when opened it prompts the user to enable security settings. If the user enables this, files are encrypted and locky directs them to a website demanding that they pay up.
It has evolved quickly and while more recent ransomware such as zepto have been beaten locky still remains one of the most devastating.
Tinba Is a Trojan designed to steal your banking details. Once infected if the user goes to a banks website they get pop-ups that prompt them to enter their banking details.
Lightweight, and capable of being updated easily means this malware stays ahead of the security companies. Typically spread though infected adverts (referred to as malvertising) this malware can get you while you are browsing even safe websites.