Malicious Software

Loading...

En provenance du cours de Google

IT Security: Defense against the digital dark arts

1400 notes

Google

IT Security: Defense against the digital dark arts

1400 notes

Cours 5 sur 5 dans Specialization Google IT Support Professional Certificate

This course covers a wide variety of IT security concepts, tools, and best practices. It introduces threats and attacks and the many ways they can show up. We’ll give you some background of encryption algorithms and how they’re used to safeguard data. Then, we’ll dive into the three As of information security: authentication, authorization, and accounting. We’ll also cover network security solutions, ranging from firewalls to Wifi encryption options. Finally, we’ll go through a case study, where we examine the security model of Chrome OS. The course is rounded out by putting all these elements together into a multi-layered, in-depth security architecture, followed by recommendations on how to integrate a culture of security into your organization or team. At the end of this course, you’ll understand: ● how various encryption algorithms and techniques work as well as their benefits and limitations. ● various authentication systems and types. ● the difference between authentication and authorization. ● how to evaluate potential risks and recommend ways to reduce risk. ● best practices for securing a network. ● how to help others to grasp security concepts and protect themselves.

À partir de la leçon

Understanding Security Threats

Welcome to the IT Security course of the IT Support Professional Certificate! In the first week of this course, we will cover the basics of security in an IT environment. We will learn how to define and recognize security risks, vulnerabilities and threats. We'll identify the most common security attacks in an organization and understand how security revolves around the "CIA" principle. By the end of this module, you will know the types of malicious software, network attacks, client-side attacks, and the essential security terms you'll see in the workplace.

The CIA Triad2:31

Essential Security Terms4:11

Malicious Software5:05

Malware Continued2:50

Rencontrer les enseignants

Google

Malware is a type of malicious software that can be used to obtain your sensitive

information or delete or modify files.

Basically, it can be used for any and all unwanted purposes.

The most common types of malware you'll see are viruses, worms, adware, spyware,

Trojans, root kids, backdoors, botnets, my, I know, I know, it's a long list, but

we'll go into detail about each of these and even learn about some real-life cases.

But for now, let's talk about the most common forms of malware.

Viruses are the best known type of malware, and

they work the same way that viruses in your body work.

When you get sick, a virus attaches itself to a healthy cell in your body, then

replicates itself and spreads to other healthy cells in your body, until bam!

You're sneezing and wheezing and you're a mess.

In a computer virus,

the virus attaches itself to some sort of executable code like a program.

When the program is running, it touches many files,

each of which is now susceptible to being infected with the virus.

So, the virus replicates itself on these files, does the malicious work it's

intended to do, and repeats this over and over until it spreads as far as it can.

Scary, right?

Well, hold on tight, we're just getting started.

Worms are similar to viruses except that instead of having to attach themselves

onto something to spread, worms can live on their own and

spread through channels like the network.

One case of a famous computer worm was the ILOVEYOU or

Love Bug which spread to millions of Windows machines.

The worm would spread via email.

Someone would email a message with a subject line of I Love You, and

an attachment that was actually the worm disguised as a love letter text file.

The techs file was actually an executable file that when opened would execute

many attacks like copying itself to several files and folders, launching other

malicious software, replacing files, and then hiding itself after it was done.

The worm spread by stealing e-mail addresses that were in the victim's

computer and chat clients.

It then proceeded to send that email out to everyone in the address book.

The Love Bug spread across the world and

caused billions of dollars in damage, not so lovely.

This was just one of the many reasons why you should never

open email attachments that you do not recognize.

Adware is one of the most visible forms of malware that you'll encounter,

most of us see it every day.

Adware is just software that displays advertisements and collects data.

Sometimes we legitimately download adware.

That happens when you agree to the terms of service

that allows you to use free software in exchange for showing you advertisements.

Other times, it may get installed without your consent and

may do other malicious things than just display advertisements.

In Greek mythology, there's a famous tale of the invasion of the city of Troy.

The Greeks,

who had been trying to gain access into the walled city, finally decided to hide

themselves in a giant wooden statue of a horse under the guise of a gift.

The Trojans allowed the gift inside, then

in the dead of night ,the Greeks broke out of the statue and attacked the city.

In computer security, we have malware that functions like a Trojan horse,

and it's named after this exact thing.

A Trojan is malware that disguises itself as one thing but does something else.

Just like how the historical Trojan horse was accepted into the city

by the citizens of Troy.

A computer Trojan has to be accepted by the user,

meaning the program has to be executed by the user.

No one would willingly install malware on their machine, that's why trojans

are meant to entice you to install them by disguising themselves as other software.

Spyware is the type of malware that's meant to spy on you.

Which could mean monitoring your computer screens, key presses,

webcams, and then reporting or

streaming all of this information to another party, it's not good.

A keylogger is a common type of spyware that's used to record

every keystroke you make.

It can capture all of the messages you type, your confidential information,

your passwords, and even more.

Ransomware is a type of attack that holds your data or

system hostage until you pay some sort of ransom.

Remember the availability principle we learned about in the first video?

Does this attack sound like a way to decrease the availability of our security?

Bingo!

That's because it is.

A recent case of ransomware was the WannaCry ransomware attack in May of 2017.

The malware took advantage of a vulnerability in older Windows systems,

infecting hundreds of thousands of machines across the world.

Most notably, the attack shutdown the systems for

the National Health Services in England, causing a health-related crisis.

The WannaCry ransomware attack devastated systems around the world.

These types of attacks are becoming more common and

we need to be ready to fight them, so let's soldier on.

Explorer notre catalogue

Rejoignez-nous gratuitement et obtenez des recommendations, des mises à jour et des offres personnalisées.

Coursera propose un accès universel à la meilleure formation au monde, en partenariat avec des universités et des organisations du plus haut niveau, pour proposer des cours en ligne.

© 2018 Coursera Inc. Tous droits réservés.

Télécharger dans l'App Store

Disponible sur Google Play