Page 89 - Code & Click - 7
P. 89

Malvertising

            Malvertising  is  the  use  of  online  advertising  to  spread  malware.  It
            typically  involves  injecting  malicious  or  malware-laden  advertisements
            into legitimate online advertising networks and webpages. sMalvertising
            is attractive to attackers because it can be easily spread across a large
            number  of  legitimate  websites  without  directly  compromising  those
            websites.
                                                 Botnet

                                                 A botnet is a logical collection of Internet-connected devices,
                                                 such  as  computers,  smartphones,  or  Internet  of  Things  (IoT)
                                                 devices, whose security have been breached and control ceded
                                                 to a third party. Each compromised device, known as a ‘bot’, is
                                                 created when a device is penetrated by software from a malware
                                                 (malicious  software)  distribution.  The  controller  of  a  botnet
            is able to direct the activities of these compromised computers through communication channels
            formed by standards-based network protocols, such as IRC and Hypertext Transfer Protocol (HTTP).

            Mobile Malware
            Mobile malware is malicious software specifically designed to target
            mobile devices, such as smartphones and tablets, with the goal of
            gaining access to private data.
            It’s a growing threat because many companies now allow employees
            to access corporate networks using their personal devices, potentially
            bringing unknown threats into the environment.

                                         Smishing
                                         Smishing is a phishing cybersecurity attack carried out over mobile text
                                         messaging, also known as SMS phishing. SMS phishing can be assisted
                                         by  malware  or  fraudulent  websites.  This  form  of  attack  has  become
                                         increasingly popular due to the fact that people are more likely to trust
                                         a message that comes in through a messaging app on their phone than
                                         a message delivered via email.
            Vishing
            Vishing is a cybercrime that uses the phone to steal personal and
            confidential  information  from  victims.  Often  referred  to  as  voice
            phishing,  cyber  criminals  use  savvy  social  engineering  tactics  to
            convince victims to act, giving up private information and access to
            bank accounts. Often, the caller will pretend to be calling from the
            government, tax department, police, or the victim’s bank.

            Identity Theft
            Identity theft is the act of stealing a user’s online identity, such as usernames and passwords, to pose
            as that person and send messages and emails from his online profile. Identity theft leads to social
            disrepute for a person and is intended as a malicious act.


                                                                                                                 87
   84   85   86   87   88   89   90   91   92   93   94