Computer Worm & Virus: A Definition and Important Information To Understand

It seems these days you can't go more than a week or two at most without hearing about a new worm or virus spreading on the internet. While you probably have a general idea what they are, you may wonder where they come from and what the difference between a virus and a worm is.

Both viruses and worms are very similar, for the most part. They are malicious pieces of software which cause a variety of problems for computer users including: causing your computer to constantly restart so it's impossible to use, emailing your personal documents to strangers, erasing your documents or your entire hard drive, or even using your computer to send spam.

The main difference between a virus and a worm is that a virus requires a person to run it for it to cause problems, while a worm spreads and causes damage without human intervention. So in other words, for your computer to be infected by a virus, you generally need to do something, like open and run an attachment to an email, while with worms your computer can be infected even if you don't do a thing.

Many viruses and worms take advantage of the frequent security holes discovered in many Microsoft programs and operating systems (Windows). Microsoft regularly releases patches to fix these holes, but many users don't know about them or don't know how to apply the patches, which leaves them vulnerable, and the patches can take weeks or months to come out.

For example, in 2003 a group of people discovered a vulnerability in Windows which worked as follows: one computer would send a special request to a second computer over and over and over, thousands of times in a second. Now the second computer was supposed to ignore those requests because they weren't coming from an authorized computer.

However, due to a bug (or programming error) in some versions of Windows, if enough requests happened fast enough, the second computer would essentially throw its hands up in the air and say "whatever you say next, I'll do!" and whatever instruction that computer was given next, it did it.

So all someone had to do was write a worm which would make those thousands of requests, the vulnerable computer would say "tell me what to do" and the worm would say "install me," and the infected computer would go on and do it to the next computer, which would do it to the next one, over and over and over, causing the worm to cascade accross the world, infecting thousands of computers in minutes.

Microsoft, recognizing the problem, created a software "patch" which sealed the security hole. A month after the patch was released, someone created and released the MSBlaster worm. Because millions of Windows users hadn't installed the patch, their computers got infected, and suddenly they found they couldn't use their PCs for more than five minutes without the machine restarting.

People who used Macintosh computers, and other computers not running Windows had a natural immunity to this and most other worms and viruses. There are well over 100,000 known viruses and worms for Windows, and fewer than 70 (yes, only seventy) for Macintosh, by comparison. In fact, those Mac viruses only affect very old Macs, and there is just one virus that runs on current Macintosh computers (ones running OS X) and that virus isn't considered a real threat because of the built-in security of OS X.

If you run Windows, as you must realize by now, it is absolutely essential for you to keep your computer patched with the latest security patches as soon as they come out -- although to be fair, Macintosh users should also install any security patches for their OS, for just because there aren't any viruses for OS X, it doesn't mean it's impossible for one to be written!

Beyond that, it is an incredibly bad idea to run a computer without having current, up-to-date antivirus program such as Norton Antivirus installed and running on the computer. When I say current and up-to-date, I mean that there is essentially a list of viruses that gets updated as often as every day. If your computer's antivirus software doesn't have the current list, it can't protect you against viruses and worms. So if you have a three year old copy of McAffee antivirus, you are not safe.

Even if you have a 1 month out of date copy, you're still not safe!

Then there's the question of whether you're even using the right antivirus program in the first place! In 2006, tests revealed that the top three most popular antivirus programs -- Norton, McAfee, and Trend Micro, had a staggering 80% failure rate at detecting the latest threats!

It seems that the virus and worm writers are using those three programs to check to see if the programs find the new virus. If the programs detect it, the virus writer keeps working on the virus until it gets through undetected. And then he releases it "into the wild," where it infects all the PCs using those three programs.

The best option right now seems to be a program called Kaspersky, which consistently ranks as the best antivirus program to use, with a success rate of 99.6% at protecting your computer!

Protecting your computer from viruses, worms, and the many other threats can seem complicated and time consuming to a lot of people. But don't make the mistake of ignoring the problem; protect yourself, or you could end up regretting it.

If you need a little help, take a look at my Safe and Easy Web & Email CDs that come as part of the bundle of CDs I have for Windows computers. They lay it all out, step by step, so you can easily protect yourself and avoid problems.

Computer Security Tip: Is Your Computer A Zombie?

A virus with more power than all of the greatest supercomputers in the world put together, and it could be on your computer now

Here's a scary thought.

A couple of weeks ago, I wrote an article about the "Storm Worm" that has been flooding everybody's inboxes with fake "ecard" and "greeting card" messages that try to lure you to a malicious website so it can infect your computer.

Well the problem is far worse than I ever imagined.

According to recent reports, the Storm Worm is currently infecting as many as TEN MILLION computers around the world.

These computers are infected so that they can be slaved together into what is called a "zombie net". If this makes you picture a scene from a horror movie, with thousands of the living dead shuffling after a helpless victim, in a way, you're not far off.

Zombie nets, also known as "botnets" are computers just like any other, but they've been infected with a virus that makes the computers remote controlled by some unknown person or group of people.

In most cases, these zombies can be infected without the computer's user having any idea it's happening, and the computer can remain infected for weeks or months!

And yes, if you are using Windows, it's very possible your computer could be infected right now and you'd have no idea.

If you're using a Mac (Apple), since there are currently NO worms or viruses that infect the Mac OS, you're safe. But you should keep reading because I'm about to reveal a tip that can help protect you in the future if there ever is a virus or worm for Mac.

The tip I'm going to share in a moment also can help protect Windows AND Mac users from common scam emails like phishing scams.

So these Zombie Nets are used by criminals to launch attacks on web sites, steal information, and other criminal activity.

So yes, that means that if your PC is infected, you are (in a way) aiding in committing crimes. Fortunately, you're not going to be arrested, but you should do what you can to protect yourself anyway.

The more we fight back against these criminals, the safer we all are!

The way it stands, whoever is behind the Storm Worm -- and authorities don't know who it is, or if they do, they're not letting on -- has a vast army of computers at their command. The army is so powerful, that as I mentioned before, they can out-think the world's greatest supercomputers!

The way that the Storm Worm emails try to trick you into infecting your computer keeps changing -- they're doing this to make it hard for people like me to tip you off and protect you.

The most recent ways they've been luring people in is by claiming that there is a video of you on YouTube.com, or by sending out fake "registration details" emails.

The registration details welcome you as a new member of a service you've never heard of or signed up for, and want you to log in and update your login information.

This is very similar to the common "phishing scams" which try to trick you into giving away personal information through fake emails from places like eBay, PayPal, or others. The only difference is they're trying to get a program (virus or worm) onto your computer instead of getting you to type in personal information like passwords or social security numbers.

Here's a tip to recognize most or all of these scam emails and Storm Worm emails.

Take a look at the bottom edge of the window you're reading this article in (this should work for those of you reading this in a regular email program or if you're reading it on a web page). You should see an area (probably just a solid color with no information in it right now) called the "status bar".

If the window just stops with no bottom border a few millimeters tall, then look in the View menu above and look for a menu option called status bar. If it's not checked, click on it to activate the status bar. If you accidentally turn it off, just go back to the View menu and click the option again.

Now that it's turned on (if it wasn't already) take a look at it again and put your mouse pointer over the following link:

http://www.worthgodwin.com/

You should see the address http://www.worthgodwin.com/
appear on the status bar. It matches what the address above says, because this is a legitimate email.

(Note: if you're a Mac user running the Mac OS X Mail program -- the one with the postage stamp icon -- then this may not show up on a status bar, but a little "tool tip" that appears hovering over the link itself)

A scam email or Storm Worm email would normally show a weird address on the status bar that just has numbers in it, like 27.98.143.21 or something like that. Numbers separated by dots.

When you see something like that, where the status bar shows just a bunch of numbers instead of a real address, 99% of the time you should avoid clicking on the link.

until next time, stay safe, have fun, and enjoy,

Worth Godwin