MALWARE
 is short for malicious software,
 Meaning software that can be used to
compromise computer functions, steal data,
bypass access controls, or otherwise cause
harm to the host computer.
 is a broad term that refers to a variety of
malicious programs. This post will define
several of the most common types of
malware; adware, bots, bugs, rootkits,
spyware, Trojan horses, viruses, and worms.
The most common type of malware
1. Adware
 (short for advertising-supported
software) is a type of malware
that automatically delivers
advertisements.
 Common examples of adware
include pop-up ads on websites
and advertisements that are
displayed by software. Often
time’s software and applications
offer “free” versions that come
bundled with adware.
 Most adware is sponsored or
authored by advertisers and
serves as a revenue generating
tool. While some adware is
solely designed to deliver
advertisements, it is not
uncommon for adware to come
bundled with spyware that is
capable of tracking user activity
and stealing information. Due to
the added capabilities of
spyware, adware/spyware
bundles are significantly more
dangerous than adware on its
own.
Adware Example
 Fireball infected 250 million
computers and devices in 2017,
hijacking browsers to change default
search engines and track web
activity. However, the malware had
the potential to become more than
a mere nuisance. Three-quarters of
it was able to run code remotely and
download malicious files

2. BOT
 are software programs created to
automatically perform specific
operations. While some bots are
created for relatively harmless
purposes (video gaming, internet
auctions, online contests, etc), it is
becoming increasingly common to
see bots being used maliciously.
Bots can be used in botnets
(collections of computers to be
controlled by third parties) for DDoS
attacks, as spambots that render
advertisements on websites, as web
spiders that scrape server data, and
for distributing malware disguised as
popular search items on download
sites. Websites can guard against
bots with CAPTCHA tests that verify
users as human.
3. BUG
 a bug is a flaw produces an
undesired outcome. These flaws are
usually the result of human error
and typically exist in the source code
or compilers of a program. Minor
bugs only slightly affect a program’s
behavior and as a result can go for
long periods of time before being
discovered. More significant bugs
can cause crashing or freezing.
 Security bugs are the most severe
type of bugs and can allow attackers
to bypass user authentication,
override access privileges, or steal
data. Bugs can be prevented with
developer education, quality
control, and code analysis tools.
4. Ransom ware
 is a form of malware that
essentially holds a computer
system captive while demanding a
ransom. The malware restricts user
access to the computer either by
encrypting files on the hard drive or
locking down the system and
displaying messages that are
intended to force the user to pay
the malware creator to remove the
restrictions and regain access to
their computer. Ransom ware
typically spreads like a normal
computer worm ending up on a
computer via a downloaded file or
through some other vulnerability in
a network service.
 Ransom ware Example: This year,
the city of Baltimore was hit by a
type of ransom ware
named RobbinHood, which halted
all city activities, including tax
collection, property transfers, and
government email for weeks. This
attack has cost the city more than
$18 million so far, and costs
continue to accrue. The same type
of malware was used against the city
of Atlanta in 2018, resulting in costs
of $17 million.
5. Rootkit
 is a type of malicious software
designed to remotely access or
control a computer without being
detected by users or security
programs. Once a rootkit has been
installed it is possible for the
malicious party behind the rootkit to
remotely execute files, access/steal
information, modify system
configurations, alter software
(especially any security software
that could detect the rootkit), install
concealed malware, or control the
computer as part of a botnet.
Rootkit prevention, detection, and
removal can be difficult due to their
stealthy operation. A rootkit
continually hides its presence,
typical security products are not
effective in detecting and removing
rootkits. As a result, rootkit
detection relies on manual methods
such as monitoring computer
behavior for irregular activity,
signature scanning, and storage
dump analysis. Organizations and
users can protect themselves from
rootkits by regularly patching
vulnerabilities in software,
applications, and operating systems,
updating virus definitions, avoiding
suspicious downloads, and
performing static analysis scans.
6. Spyware
 is a type of malware that functions
by spying on user activity without
their knowledge. These spying
capabilities can include activity
monitoring, collecting keystrokes
data harvesting (account
information, logins, financial data),
and more. Spyware often has
additional capabilities as well,
ranging from modifying security
settings of software or browsers to
 interfering with network
connections. Spyware spreads by
exploiting software vulnerabilities,
bundling itself with legitimate
software, or in Trojans.
 Spyware Example: DarkHotel, which
targeted business and government
leaders using hotel WIFI, used
several types of malware in order to
gain access to the systems belonging
to specific powerful people. Once
that access was gained, the
attackers installed key loggers to
capture their targets passwords and
other sensitive information.
7. Trojan horse
 commonly known as a “Trojan,” is a
type of malware that disguises itself
as a normal file or program to trick
users into downloading and
installing malware. A Trojan can
give a malicious party remote access
to an infected computer. Once an
attacker has access to an infected
computer, it is possible for the
attacker to steal data (logins,
financial data, and even electronic
money), install more malware,
modify files, monitor user activity
(screen watching, keylogging, etc),
use the computer in botnets, and
anonymize internet activity by the
attacker.
 Trojan Example: Emotet is a
sophisticated banking Trojan that
has been around since 2014. It is
hard to fight Emotet because it
evades signature-based detection, is
persistent, and includes spreader
modules that help it propagate. The
trojan is so widespread that it is the
subject of a US Department of
Homeland Security alert, which
notes that Emotet has cost state,
local, tribal and territorial
governments up to $1 million per
incident to remediate.
8. Virus
 is a form of malware that is capable
of copying itself and spreading to
other computers. Viruses often
spread to other computers by
attaching themselves to various
programs and executing code when
a user launches one of those
infected programs. Viruses can also
spread through script files,
documents, and cross-site scripting
vulnerabilities in web apps. Viruses
can be used to steal information,
harm host computers and networks,
create botnets, steal money, render
advertisements, and more.
9. Computer worms
 are among the most common types
of malware. They spread over
computer networks by exploiting
operating system vulnerabilities.
Worms typically cause harm to their
host networks by consuming
bandwidth and overloading web
servers. Computer worms can also
contain “payloads” that damage
host computers. Payloads are pieces
of code written to perform actions
on affected computers beyond
simply spreading the worm.
Payloads are commonly designed to
steal data, delete files, or create
botnets. Computer worms can be
classified as a type of computer
virus, but there are several
characteristics that distinguish
computer worms from regular
 viruses. A major difference is that
computer worms have the ability to
self-replicate and spread
independently while viruses rely on
human activity to spread (running a
program, opening a file, etc). Worms
often spread by sending mass emails
with infected attachments to users’
contacts.
 Worm Example: Stuxnet was
probably developed by the US and
Israeli intelligence forces with the
intent of setting back Iran’s nuclear
program. It was introduced into
Iran’s environment through a flash
drive. Because the environment was
air-gapped, its creators never
thought Stuxnet would escape its
target’s network — but it did. Once
in the wild, Stuxnet spread
aggressively but did little damage,
since its only function was to
interfere with industrial controllers
that managed the uranium
enrichment process.
Malware Symptoms
1. Increased CPU usage
2. Slow computer or web browser speeds
3. Problems connecting to networks
4. Freezing or crashing
5. Modified or deleted files
6. Appearance of strange files, programs, or
desktop icons
7. Programs running, turning off, or
reconfiguring themselves (malware will
often reconfigure or turn off antivirus and
firewall programs)
8. Strange computer behavior
9. Emails/messages being sent automatically
and without user’s knowledge (a friend
receives a strange email from you that you
did not send)
Malware Prevention and Removal
 Install and run anti-malware and firewall
software. When selecting software, choose
a program that offers tools for detecting,
quarantining, and removing multiple types
of malware. At the minimum, anti-malware
software should protect against viruses,
spyware, adware, Trojans, and worms. The
combination of anti-malware software and
a firewall will ensure that all incoming and
existing data gets scanned for malware and
that malware can be safely removed once
detected.
 Keep software and operating systems up to
date with current vulnerability patches.
These patches are often released to patch
bugs or other security flaws that could be
exploited by attackers.
 Be vigilant when downloading files,
programs, attachments, etc. Downloads
that seem strange or are from an unfamiliar
source often contain malware.
Comodo- The best way to remove malware and to
stay protected from future attacks are by
downloading Antivirus Software from Comodo. It
features a proactive mechanism that defends
against any kind of malware attack. The Comodo
Antivirus Software provides does automatic
scanning of files when downloaded from the
internet. On the whole, the Comodo’s antivirus
program protects against any malicious software
including zero-day malware.
Different Cyber Intruder
1. Trolls
2. Hackers
3. Spies
4. Hackers
LECTURE COMP 1: SECURITY ISSUES AND THREATS COMPUTER CRIMES

SECURITY ISSUES: THREATS TO COMPUTERS &  Computer crimes can be categorized into
COMMUNICATIONS SYSTEMS two which is illegal
perpetrated against computer
There are many threats to computer and the
or telecommunications and use of
communication system which are error, accident
and natural hazards. computer and telecommunications to
accomplish illegal acts by using the
HUMAN ERRORS computer as a tool

 Humans often are not good at assessing Other examples of computer crimes
their own information  theft of hardware
 Humans emotions effect their performance  theft of software
 Humans perceptions are slower compared  theft of intellectual properties
to the equipment information overload to  theft of time and services
humans can sometimes be a problem  theft of information.

PROCEDURAL ERRORS
SECURITY SAFEUARDS: PROTECTING COMPUTER
• When people fail to follow the steps and AND COMMUNICATION
instruction prepared, error tends to occur
Security is a system or software of safeguard for
SOFTWARE ERRORS protecting information technology against
facing disaster, system failures, and
• Software malware or bug : causes a program
also unauthorized access that can result in damage
or software to not run properly
and lost.
DIRTY DATA PROBLEMS

• Incomplete, out-dated or inaccurate source of Computer security can be divided into five

data components:

ELECTROMECHANICAL PROBLEMS 1. Deterrent (a thing that discourages or is

intended to discourage someone from doing
 Mechanical system can wear out or become something) to computer crime
damaged after a period of usage  Enforcing the law
 They can sometimes be badly designed or  CERT to provide round the clock
constructed information on international computer
security threats
 Power surges and failures can damage the
 Tools used to fight fraudulent
equipment connected and unauthorized  online uses
 Rule base detection software
 predictive statistical model software
NATURAL HAZARDS
 Employee internet management 
• Unpredictable and often lead to  Internet browsing filtering software
disaster when occurs  Electronic surveillance
2. Identification and access
 scan Verify legitimate right of access by
what you have, what you know, and who
you are
 What you have like keys, cards, signatures,
badges
 What you know like pin numbers and
passwords
 Who are you like bio metrics such as face
scan and finger print
3. Encryption
 The process of altering and changing a data
into unreadable form to prevent
unauthorized access
 Advantage is data is available over the
internet  spreading surveillance tactics but also help keep
 Disadvantage is law officer may not be able
to read the data. 
4. Protection of software and data
 Restrict access to online files; use
transaction logs\
 Use audit controls to track who used what
programs and servers, which files were
opened, and so on
 Use people controls—screen applicants; do
background checks;
monitor Internet, email, and computer
usage; use shredders for discarded
documents and materials
5. Disaster recovery plan
 Method of retrieving important data and
information after a disaster has happened
 Data storage system must be kept
separately and data have to be backed up
 Back up all data and keep in mainframes in
different positions
(TOPIC) Privacy Surveillance: Data Collectors and
Spies
1. As surveillance becomes a common element of
our daily lives, privacy is in danger of no longer
being considered an intrinsic right.
2. Everything from our web browsing to mobile
devices and the Internet of Things (IoT) products
installed in our homes have the potential to erode
our privacy and personal security, and you cannot
depend on vendors or ever-changing surveillance
rules to keep them intact.
3. Having "nothing to hide" doesn't cut it anymore.
We must all do whatever we can to safeguard our
personal privacy. Taking the steps outlined below
can not only give you some sanctuary from
you safe from cyber attackers.
PERSONALLY IDENTIFIABLE Information
Known as PII, this can include your name, physical
home address, email address, telephone numbers,
date of birth, marital status, Social Security
numbers (US)/National Insurance numbers (UK),
and other information relating to your medical
status, family members, employment, and
education
Data management is at the heart of privacy
Data is a vague concept and can encompass such a
wide range of information that it is worth briefly
breaking down different collections before
examining how each area is relevant to your
privacy and security.
WHY DOES IT MATTER?
 All this data, whether lost in different data
breaches or stolen piecemeal through phishing
campaigns, can provide attackers with enough
information to conduct identity theft, take out
loans using your name, and potentially
compromise online accounts that rely on security
questions being answered correctly. In the wrong
hands, this information can also prove to be a gold
mine for advertisers lacking a moral backbone.
BROWSING HABITS AND WEBSITE VISITS
Internet activity is monitored by an Internet Service
Provider (ISP) and can be hijacked. While there is
little consumers we can do about attacks at this
level, the web pages you visit can also be tracked
by cookies, which are small bits of text that are
downloaded and stored by your browser. Browser
plugins may also track your activity across multiple
websites.
SECURE OTHER BROWSERS
Cookies: Clearing out your cookie caches and
browser histories can prevent ad networks from
collecting too much information about you. The
easiest way to do so is to clear the cache
(Firefox, Chrome, Opera, Safari, Edge).
HTTP v. HTTPS: When you visit a website address,
you will be met with either Hypertext Transfer
Protocol (HTTP) or Hypertext Transfer Protocol
Secure (HTTPS). The latter option uses a layer of
encryption to enable secure communication
between a browser and a server.
WHY DOES IT MATTER?
Cookies are used to personalize internet
experiences and this can include tailored
advertising. However, such tracking can go too far,
as shown when the unique identifiers added to a
cookie are then used across different services and
on various marketing platforms. Such practices are
often considered intrusive.
Microsoft PowerPoint
 Is a powerful presentation software
developed by Microsoft
 It is a standard component of the
company’s Microsoft Office suit software,
and is bundled together with word, Excel
and other Office productivity
 is a slideshow presentation program first
developed by Forethought, Inc. for the
Macintosh computer in 1987
 Microsoft has released several updated
versions, each offering more features and
incorporating better technology than the
one before it. The most current version
of Microsoft PowerPoint is available
in Office 365
Parts of MS PowerPoint
 Office Button- is located on the upper-left
corner of the PowerPoint window
 Quick access toolbar- is the collection of
button that provide one click access to
commonly used commands such as
o Save- to save files
o Undo- to rollback action taken
o Redo- to reapply an action you
rolled back
 Title bar – it is located at the top in the
center of the PowerPoint window. It
displays the presentation name followed by
a program name
 Menu bar- it contains a list of options to
manage and customize PowerPoint
presentation
 Toolbars- below the menu bar. And there
are 16 different toolbars. The two most
common ones are the Standard and
Formatting Toolbar. When several toolbars
are docked on the same row, they might
show only the buttons that you have used
most recently.
 Minimize Button- a feature of a graphics  Slide show- this view is used to display each
based operating system that hides the slide full screen the way your audience will
application currently on screen see it
 Maximize Button- a feature of a graphic  Zoom control- is used for magnifying and
based operating system that enlarges the shrinking of active PowerPoint presentation
window to the size of the screen
 Close Button- a button in the upper right
corner of a window with an “X” in it. It close
Digital Laws and Ethics in Business
the program running in the current window
 Outline and Sliders Tabbed pane- allows Computer and Internet Crimes
the user to easily view the presentation in
outline format (text), as well as a list of all Computer Crimes or Cybercrime
the slides in the presentation (with visuals)  Refers to any crimes that involves a
 Slide- the area which will be displayed as computer and a network , where the
full screen when viewed in Slide Show computer may or may not have played an
mode instrumental part in the commission of a
 Placeholders- displayed as dotted lines crime
which allows you to identify where you can  Refers more precisely o criminal
add text and insert elements such as images exploitation of the internet
and tables
 Insertion Point- it is the blink vertical line in Two types of Computer Crimes
your presentation. It indicates where you
1. Crimes that target computer network or
can enter text on the slide
devices directly
 Ruler- it used to set the alignment and
2. Crimes facilitated computer networks or
margins of the elements in the presentation
devices, the primary target of which is
 Vertical Scrollbar- a scroll bar to use when
independent of the computer network or
you want to scroll vertically through the
device
PowerPoint window
 Horizontal Scrollbar- a scroll bar to use Exploit
when you want to scroll horizontally
 Is an attack on an information system that
through the PowerPoint window
takes advantage of a particular system
 Status Bar- displays slide position and the
vulnerability
type of design in PowerPoint
 Notes Areas-a place that you add notes to Types of Exploits
each slides content
 Normal View – the most commonly used 1. Computer Viruses
view to create, edit or modify your 2. Worms
PowerPoint presentation 3. Trojan Horse
 Slide Sorter View- is commonly used to 4. Botnet
delete slides, rearrange, slides, cut, copy or 5. Distributed Denial of service attacks
paste slides 6. Rootkit
7. Email Spam
 8. Phishing  Refers to listening to, recording, monitoring
9. Computer Fraud or surveillance of the content of
communication, including procurement of
the content of data, either directly through
Types of Perpetrators access and use of a computer system or
indirectly through the use of electronic
1. Hackers eavesdropping or tapping devices at the
2. Malicious Insider same time that the communication is
3. Industrial Spies occurring
4. Cybercriminals
5. Hacktivism and Cybertererrorist Offenses against the Confidentiality, Integrity and
Availability of Computer Data and System
Cyber Crime Law
1. Illegal Access
 Republic Act No. 10175 2. Illegal Interception
o An act defining cybercrime, 3. Data Interference
providing for the prevention, 4. System Interference
investigation, suppression and the 5. Misuse of Devices
imposition of penalties thereof and 6. Cyber- squatting
for other purpose
 Electronic Commerce Act of 2000 (RA No. Computer- Related Offense
8792) 1. Computer Forgery
o An act providing for the recognition 2. Computer Related Fraud
and use of electronic commercial 3. Computer Related Identity Theft
and non-commercial transactions
and documents, penalties for Content Related Offenses
unlawful use thereof and for other
1. Cybersex
purposes.
2. Child Pornography
ACCESS 3. Unsolicited Commercial Communication
4. Libel
 Refers to the instruction, communication
with, storing data in, retrieving data from,
or otherwise making use of any resources of
a computer system of communication
network Ten Commandments of Computer Ethics

Cyber 1. Thou shall not use a computer to harm

 Refers to a computer network, the
electronic medium in which online
communication takes place
Interception
other people
2. Thou shalt interfere with other people
3. Thou shalt nit snoop around in other
people’s files
4. Thou shat not use a computer to steal
5. Thou shalt not use a computer t5o bear a
false witness
 6. Thou shalt not use or copy software for Republic Act No. 8293
which you have not paid
 An act prescribing the intellectual property
7. Thou shalt not use other people’s computer
code and establishing the intellectual
resources without authorization
property office, providing for its powers
8. Thou shalt not use appropriate other
and functions and for other purposes
people’s intellectual output
9. Thou shalt think about the social
consequence of the program you write
10. Thou shalt use a computer in ways that
show consideration and respect

Applicable Philippine Laws That Penalize

Cybercrime

 Republic Act No. 10175 Section 4

Paragraph A (LIBEl)
o The unlawful or prohibited acts of
Social Networking
libel as defined in Article 335 of the
Revised Penal Code, as amended,  Are the most means of communication used
committed through a computer by a large number of people especially the
system or any other similar means youth
which may be devised in the future  Is a social structure made of nodes that are
tied by one or more specific types of
interdependency such as values, vision,
 Cybercrime Prevention Act of 2012 ideas financial exchange friendship kinship
o Act defining cybercrime, prevention, dislike conflict or trade
investigation, suppression and the
Types of Social Network
imposition of penalties thereof and
for other purposes 1. Socializing: Online Communities- Facebook,
We Chat, Meet me, MySpace
Intellectual Property Law
2. Carrier and Business Opportunities:
 Award to investors, artist and institutions Business Network- LinkedIn, Viadeo, XING
certain exclusive rights to produce, copy , 3. Matchmaking, Soul mate: Online
distribute and license goods and Matchmaking- Shaadi, Adult Friend Finder,
technologies Bharatmatrimo
 How are they Protected? 4. Getting Back in Touch: Alumni Network-
1. By patented objects Facebook, Classmates.com Orkut
2. By trademarks
Features on Social Network
3. By industrial design
4. By trade secrets 1. Messaging
5. By layout design 2. News
6. By geographical Indication 3. Communities
4. Like buttons
5. Games
6. Audio and Video Uploads