Sunday, August 12, 2007

Methods Of Spreading Trojans &The Acceptable Files

We talked about two methods of Trojan-Attacks, before I was out to college.These methods are just but a few ways that “hackers” can gain access to your machine.Today I have found some time to compose this and share with you: Methods Of Spreading Trojans &The Acceptable Files

In this post I'll tell you about more ways by which the 'trojan-horses' are sent out and spread. About, How they are named and what format they are in, when sent to you. I will also tell you about some file-formats that you can safely accept as attachments or downloads and also the formats that you shouldn't accept.

Enough of intro... Read on...

Some other Trojan-Attack devices are:

Email:
The most widely used delivery method. It can be sent as an attachment in an email addressed to you.

Unsafe Web sites:
Sites that offer warez, illegal downloads, etc.
Files downloaded from such places should always be accepted with high suspicion.

IRC:
On IRC servers sometimes when you join a channel you will automatically get sent a file like “mypic.exe” or “sexy.exe” or sexy.jpg.vbs something to that effect. Usually you’ll find
wannabe’s are at fault for this.

Chat Sites:
Chat sites are probably one of the primary places that this sort of activity takes place. The sad part to that is 80% are not aware of it.

News Groups:
By posting articles in newsgroups with file attachments like (mypic.exe) in adult newsgroups are almost guaranteed to have someone fall victim. Don’t be fooled though, as these folks will post these files to any newsgroups.

Grapevine:
Unfortunately there is no way to control this effect. You receive the file from a friend who received it from a friend etc.

By informing you of these methods I hope I have made you more aware of the potential dangers around you posed by the TROJAN-HORSE.


The Acceptable Files:
Now, reading all this stuff about trojans in this trojan series you might be questioning yourself that what exactly is safe to accept as a file from anyone.I’ll show you what normal extensions should be for different types of files and what type of files should never come in .exe formats.

PICTURES
Ever had someone send you a picture of themselves? If you hang around on a chat site of any kind then chances are you’ve met someone or a group of people perhaps who’ve
wanted to send you their picture. If they did then hopefully it was not in the form of (mypic.exe). If it was you may want to run a virus check on those files in particular.

For all intensive purposes pictures should really only come in the formats listed below.
• Jpg (jpeg) For example (steve.jpg)
• Bmp (bitmap) For example (steve.bmp)
• TIFF (Tag Image File Format)
For example (steve.tiff)
• Gif (Graphics Interchange Format)
For example (steve.gif)

These are all legitimate!

Your browser can view almost all of these files short of the tiff format. Other programs that can be used to view these files are Photoshop, Paintshop, Netscape, Internet Explorer and Imaging just to name a few.

WARNING!
These are the file types by which images should come as. Anything else should be unacceptable. There is no reason to have an Image of any kind come as a .exe file. Don’t ever
accept the excuse that it’s an auto extracting image file!

READ ME AND TEXT FILES
Almost all program information documents on the net come in one of these formats. These files are simply information documents typed up in some word processing program or text
editor.

Some examples of their extensions are:
• DOC Document format for Microsoft Word, Word.
Example: (readme.doc)
• TXT Text format file can be opened by Notepad, Word,
Microsoft Word.
Example: (readme.txt)
• RTF (Rich Text Format)

Those are all acceptable legitimate formats. The truth is that a text files can come in almost any format. However there are formats that they really should never come in.

For Example:
.com
.exe
.txt.vbs

There is no reason for any files to be sent to you in any of the above formats if they are text documents. I can also assure you there is no reason a file should have a double extension. Such files if you should ever receive them should be treated with suspicion. By no means should you ever open a file if you do not know what type of file it is.

Hope you find it helpful. Please leave your comments.