Examples of malware include:
● computer viruses
● programs that steal passwords
● programs that secretly record you
● programs that secretly delete your data

PHISHINGis when an attacker sends a message, email, or link that looks innocent, but is actually malicious. Phishing often involves impersonating someone you know or impersonating a platform that you trust.

Note: Not all phishing includes malware.
Sometimes an attacker wants to steal passwords to a service and might do so by impersonating a website, without installing malware on the user’s device.

--- COMMON WAYS MALWARE IS INSTALLED ---

-- OPENING A MALICIOUS ATTACHMENT OR FILE
A malicious attachment is often shared in phishing messages

-- CLICKING A MALICIOUS LINK
A malicious link is often shared in phishing messages.

-- DOWNLOADING UNLICENSED SOFTWARE
Software that cannot receive security updates increases risk (e.g. not from the Apple App store or Google Play store.)

-- VISITING COMPROMISED WEBSITES
Sometimes websites are taken over and are used to host malicious content.

-- DOWNLOADING AUTOMATIC CONTENT
Attackers may gain access to a network and can use this network to spread malware.

-- SHARING USB DEVICES OR PLUGGING INTO SUSPICIOUS PORTS
A charging station or port can be used to download malware.


--- TYPES OF MALWARE ---

ADWARE
ads everywhere
This malicious software usually attempts to display advertising to the user via overloading pop-ups or other methods. Some adware tracks information on the user or extracts personal information. Adware, like other malware, can be bundled with other software, often downloaded from non-reputable sources, such as outside of official app stores or from the software developer.

STALKERWARE
when your device helps your stalker
Stalkerware runs silently and gives the attacker full control over a device. Stalkerware can be installed when somebody has physical access to your device (such as a family member or partner, “let me use your phone for a moment”) and installs a stalkerware app or when a user gets tricked into downloading the app.

TROJAN
like a gift but an attack in disguise
When downloaded, Trojan software may perform like the intended legitimate application, but is in fact doing malicious things in the background. This is often found in pirated or “cracked” software or fake antivirus software.

RANSOMWARE
software holding you hostage
When downloaded, this malicious software holds a company, organization, or individual’s data for ransom. Ransomware gained popularity in the last decade and is now a multi-million dollar business for hackers around the world.

A.P.T. ATTACK
Advanced Persistent Threat
An A.P.T. attack is malware from an adversary with sophisticated capabilities and substantially more resources dedicated to achieving their goals: compromising your system. A.P.T. attacks are often used simultaneously with nation-state actors who will attempt to maintain “persistence,” or long -term access, to the system they are targeting.

from page 2

5 TIPS FOR DEFENSE AGAINST MALWARE
TIP #1: UPDATE YOUR SOFTWARE
(& CHECK YOU ARE USING LICENSED* SOFTWARE)... and lots more