How did the Internet change the everyday work of a security researcher?

Every May 17th is World Telecommunication and Information Society Day, which attempts to raise global awareness on how the Internet and new technologies changed our society, and the opportunities they gave to improve our lifestyle. This special date, also known as Internet Day in some Spanish-speaking countries, is an opportunity for us at ESET to celebrate its existence by remembering what it was like to work in security before the Internet appeared.

What do you think it was like to do the everyday work of a security researcher in the 1980’s? What has changed in terms of protection against threats? And, how has the procedure to find and investigate security issues changed?

This and other queries were answered by two of ESET’s respected security researchers, with decades of experience and a lot of stories to tell: Aryeh Goretsky and David Harley.

ESET’s Distinguished Researcher Aryeh Goretsky has been around technology and computers ever since he used a Commodore PET for the first time in the late 1970’s. H having worked now for some two-and-a-half decades in this industry, he has an interesting point of view when it comes to the rise of the Internet:

“We used to say that computer viruses spread at the speed at which courier and postal services could ship and deliver infected floppies.”

I suppose the Internet has been something of a mixed blessing for me. While it has enabled all sorts of means of communication that simply were not possible before (think instant messaging) as well as allowing existing lines of communication to occur at faster rates, it has also allowed malicious code to spread orders of magnitude more quickly than it previously could: before that, network connections often meant computers calling each other with  modems over telephone lines, or overnighting a set of floppy diskettes or CDs by courier, since that was faster than the network communications we had.

In the beginning, we used to say that computer viruses spread at the speed at which courier and postal services could ship and deliver infected floppies. Nowadays, a worm or other malware can become globally pandemic in an hour or two.”

In the early days of malware, floppy disks were the main means of distribution.

Meanwhile, ESET Senior Research Fellow David Harley started his career in information technology in the 1980’s and, ever since, he says industry puts up with him because, well, he’s been around so long –having written a number of Internet FAQs and articles on programming and security back when those were issues that most people didn’t think of as being important to them.

“In the 1980s, when I moved into information technology as a career, the Internet had already existed for a couple of decades – in fact, some of its underlying technologies, notably the telephone system, are far older. Nonetheless, it was a very different environment. There was no World Wide Web as such, though there were protocols and utilities subsequently assimilated into and/or replaced by web browser technology (archie, gopher, veronica).

“I first began to work from home – using a US Robotics modem borrowed from work that cost more than my own PC and occupied almost as much space as a trio of 12” baguettes.”

Access to the handful of machines that were permanently connected to the Internet was usually filtered for home users through services like AOL. Until I left the UK’s National Health Service in 1989, my online communications with the outside world were mostly restricted to services that sidestepped the ‘proper’ Internet – bulletin boards and the UK’s Prestel videotex/Viewdata system (rather like the teletext systems that have been gradually vanishing from television in recent years).

Moving to the Imperial Cancer Research Fund (now merged into Cancer Research UK) gave me direct access to more hardware – one of the (then) new 80386-driven PCs, a Mac IIcx, and a Sun workstation – but even when we got our own permanent connection to the Internet, it was limited to terminal access to a server in the NOC (Network Ops Centre) via telnet, kermit, and FTP. Still, it gave me access to useful resources such as mailing lists, security newsgroups, and vendor web sites.

And when I first began to work from home – using a US Robotics modem borrowed from work that cost more than my own PC and occupied almost as much space as a trio of 12” baguettes – I was able to add those resources to my home access to CIX and Compuserve (which both already gave me email, and access to various useful forums). Indeed, it’s through all these resources that I first met (virtually at any rate) many of the people I work with now (inside and outside ESET), and work I did on Internet FAQs provided a basis for some of my early articles, papers and books.”

Dial up modems were once our main way of accessing the internet.

So how did the Internet change our lives and what new possibilities emerged? Aryeh Goretsky says:

“Most financial crimes use computers instead of guns to accomplish their thefts.”

The Internet changed not just how people did existing things on their computers, like writing letters or drawing pictures, but gave rise to new services as well. Electronic banking existed well before—it was available on some dial-up services like CompuServe, Prodigy and QuantumLink, to name a few—but it was not until ISPs came onto the scene that banking followed, eager to give their customers new conveniences and services.

PayPal emerged as the de-facto standard for person-to-person financial transactions, and even criminals had their own payment systems, like e-gold and Liberty Reserve. With all of this money moving around the web, it wasn’t long before criminals looked for ways to steal it, and today, most financial crimes use computers instead of guns to accomplish their thefts.”

1200x-1

While according to David Harley:

“By 2001, Windows and Mac machines were able to make good use of the Internet and the Web in and out of the office. Indeed, working from home (which I’ve done full-time since 2006) tends to give the computer user more control and wider scope in terms of the services and applications used, at any rate if s/he uses his or her own device and is not reliant on an employer for Internet access.

The flipside is that users were more able to put themselves in harm’s way when the IT unit wasn’t responsible for their connection: by that time there was a lot more to worry about than infected floppy disks, with threats of all sorts capable of traversing the ether almost instantaneously, and keeping up with security news and having good network protection was more important than ever. Of course that hasn’t changed with the onset of BYOD/CYOD.”

Windows-XP-hot-topic

And what does this mean for a security researcher? Aryeh Goretsky says there’s a challenge:

“It means that things move much faster, and as a result, we have to respond more quickly.”

It means that things move much faster, and as a result, we have to respond more quickly.  Fortunately, the same Internet which empowers all the positive things allows us to communicate more efficiently as well, sharing threat intelligence and data.

And that means we can do things like leverage the power of the advances in networking, software and hardware that allow the Internet to run at scale not just to distribute things like updates more quickly than before, but reduce false positives, compatibility issues and other types of problems that plagued the old reactive kinds of anti-virus software that were reactive.”

The always-on internet connections mean that it's easier than ever to keep software updated.

That being said, David Harley concludes:

“The interactive nature of today’s web means that there is more information (and misinformation) out there than any one person can ever hope to gather and verify.”

The Internet gives me access to my colleagues at ESET, specialist mailing lists that share threat intelligence (and much else), the media, and a multitude of resources that simply didn’t exist or were impossible to find in the early 90s. Of course it’s easier to publish timely commentary (or papers, manuals, FAQs and so forth) with standard blogging and CMS tools than it was with lynx on a Unix server, and researching the topics for that content is far easier.

However, those advantages also have a flipside. The interactive nature of today’s web means that there is more information (and misinformation) out there than any one person can ever hope to gather and verify, unless it concerns an unusually esoteric topic.

It’s easier for someone who already has expertise in a particular field to select and evaluate information from that field, of course, but what is the everyday user supposed to do when anyone with a laptop – or even a cell phone – can find somewhere to say what they like?”

Rob Wilson / Shutterstock.com
by Sabrina Pagnotta, ESET

CPL Malware in Brazil: somewhere between banking trojans and malicious emails

When we analyze the most prevalent threats in Latin America, we see the same malware families across the region. In Brazil, however, there is a different situation. Not only is Brazil one of the most populated countries in the world, but it is also one of the countries with the highest percentage of Internet users using online banking. That is why Brazil is the country where banking trojans are the number one threat.

Throughout 2013 and 2014, we received and analyzed a considerable amount of CPL malware in our Latin American Research Lab, 90% of which came from Brazil. Of those malicious files, 82% of them are some variant of Win32/TrojanDownloader.Banload family; their main goal is to download and install banking trojans in infected systems.

Why do cybercriminals in Brazil use CPL files more and more? What advantages do they provide? The results of this investigation and the answers to several of these questions are in our white paper “CPL malware in Brazil: somewhere between banking trojans and malicious emails”.

First we discuss what CPL files are, how they work and how cybercriminals use them. We show the different methods used to propagate these threats and provide examples of emails, institutions and names of the files used to deceive users by means of Social Engineering techniques.

Then, we analyze the different routines that are executed in these files when a system is infected, as well as the purpose behind the attack, detailing some tricks used to complicate analysis, hide information and frustrate execution in virtualized environments.

Finally, we discuss the scope, statistics and impact of this attack, detailing how, over time, the use of CPL files by cybercriminals in Brazil has ceased to be a new or an isolated event, and has become a trend in itself.

This paper will help you understand the use of CPL files as a threat to users in Brazil, and the different techniques cybercriminals utilize to propagate them. Learn not only how to understand how CPL malware works, but also how to learn to protect yourself from these attacks.

Read the white paper: CPL Malware in Brazil.

Picture Credits: Flickr/Mike Vondran
by Matías Porolli, ESET

Unboxing Linux Malware: Spam from your servers

Today, ESET researchers reveal a family of Linux malware that stayed under the radar for more than 5 years. We have named this family Linux/Mumblehard. A white paper about this threat is available for download on WeLiveSecuriy.

There are two components in the Mumblehard malware family: a backdoor and a spamming daemon. They are both written in Perl and feature the same custom packer written in assembly language. The use of assembly language to produce ELF binaries so as to obfuscate the Perl source code shows a level of sophistication higher than average.

Monitoring of the botnet suggests that the main purpose of Mumblehard seems to be to send spam messages by sheltering behind the reputation of the legitimate IP addresses of the infected machines.

The relationship between the components and their command and control servers are illustrated in the following diagram:

overviewPrevalence

ESET Researchers were able to monitor the Mumblehard backdoor component by registering a domain name used as one of the C&C servers. More than 8,500 unique IP addresses hit the sinkhole with Mumblehard behavior while we were observing the requests coming in. The following chart shows the number of unique IP addresses seen each day over that period.

ip_per_day_only

We can see from the chart that during the first week of April, more than 3,000 machines were affected by Mumblehard. The number of infected hosts is slowly decreasing, but the overall view shows that infection happens at specific times and that the botnet size has doubled over a 6-month period.

A quick look at the list of victims suggests that Mumblehard mostly targets web servers.

Links with Yellsoft

Our analysis and research also shows a strong link between Mumblehard and Yellsoft. Yellsoft sells software, written in Perl, designed to send bulk e-mails. This program is called DirectMailer. The first link between them is that the IP addresses used as C&C servers for both the backdoor and spamming components are located in the same range as the web server hosting yellsoft.net. The second link is that we have found pirated copies of DirectMailer online that actually silently install the Mumblehard backdoor when run. The pirated copies were also obfuscated by the same packer used by Mumblehard’s malicious components.

Prevention

Victims should look for unsolicited cronjob entries for all the users on their servers. This is the mechanism used by the Mumblehard backdoor to activate the backdoor every 15 minutes. The backdoor is usually installed in /tmp or /var/tmp. Mounting the tmp directory with the noexec option prevents the backdoor from starting in the first place.

The white paper with all the technical details is available for download on WeLiveSecurity.

Picture Credits: Flickr/Christian Barmala
by Marc-Etienne M.Léveillé, ESET

Ransomware: Should you pay the cybercriminals?

Ransomware is a growing threat, threatening to take over your machine, encrypt your files and demand payment in exchange for their safe return. But, as we explore below, paying the ransom is rarely the solution.

What is ransomware?

Ransomware is a type of malware, or malicious software, which has exploded in notoriety in recent years.

The malware is often installed on your machine via a phishing email or a drive-by-download on a compromised website, and a short time later a pop-up message will appear on screen telling the user to pay a ransom (in some cases as much as $300) in order to ‘unlock’ their stolen documents.

Fortunately, the severity of ransomware varies considerably. At the lower-end, most variants simply bombard the user with ‘scareware’ pop-up messages, telling them to pay up to restore normal service. However, these variants  haven’t actually encrypted any files.

That said, there are other versions which block access to the start screen, while ‘filecoders’, like CryptoLocker, will encrypt documents stored on the system’s hard drive.

These warning messages typically claim to be from law enforcement agencies, warning of illegal activities or content. They may alternatively claim that the system’s operating system is a forfeit, or pretend to be an anti-virus solution that has identified an infection.

To date, the most prolific variants of ransomware been CryptoLocker, TorrentLocker, Reveton and CryptoWall although newer versions like CryptoFortress, CoinVault and others have emerged in recent months, sporting newer tactics like making emails appear quarantined and running operations through the Tor or Invisible Internet Project (I2P) anonymizing networks. As ESET found with Virlock, ransomware is increasingly polymorphic, which makes it harder to detect and remove.

Ransomware, described by one malware analyst as a “polished and finished product for the bad guys”, is so widespread now that it’s a big concern for businesses. One study earlier this year found that ransomware had a bigger impact on organizations than widely-publicized advanced persistent threat (APT) attacks.

What you should do

Paying for the ransom is a dangerous option. For starters, there is no guarantee your files will be returned or that the malware has been removed. Will the hacker exploit you again in six months’ time? The truth is you don’t know.

Instead, information security professionals recommend a few useful tips, such as regularly backing up your data and ensuring your computer is running the latest software and anti-virus (ESET protects against CryptoLocker, Cryptowall, CTB locker and many other types of ransomware).

If you do get infected, and haven’t followed the advice above, all is not lost; your best bet is contacting an IT professional although there are free decryption tools online, and ways you can remove the malware via the operating system.

For less sophisticated ransomware that hasn’t encrypted files, you can enter Windows Safe Mode and run an on-demand virus scanner to hopefully remove the malware. Alternatively, you could try and do the same by logging onto the computer from another user account (hopefully bypassing the malware on the start screen), or by accessing the infected PC from a ‘clean’ PC on the same network.

If you can’t get onto the home screen, another option is System Restore, which will restore system files and programs to a state they were in previously. To do this, shut down your computer, reboot and hit the F8 key continuously to enter advanced boot options. You should see an option to repair your computer.

ESET security expert and Editor in Chief of We Live Security says users shouldn’t pay for the following reasons: “If you pay, you will support cybercrime activities by funding them with money; you don’t have any guarantee that your information is going to be decrypted again. Remember, this is not a service, they are cybercriminals. [And] even if you pay, you are not going to be ‘whitelisted’ so you could get infected again so it’s not a real solution for the future either. Prevention is the most important tool against Ransomware, since the infection can be usually cleaned afterwards but not always the information restored.”

Labaca Castro recommends using a security solution to prevent computer getting infected, frequently back-up information so it is somewhere safe and recover it easily, and avoid opening attached files in emails from unknown senders. Additionally, ESET also offers a decryptor for specific variants from Simplocker to recover your information.

by Karl Thomas, ESET

Four Mortal Kombat moves cybercriminals use to attack your security

After a long wait, Mortal Kombat X is finally here. Over the past decade, this fighting video game series has been enjoyed by many generations of gamer. Some of the tricks employed by the characters in the legendary fighting series aren’t a million miles away from those deployed by cybercriminals however…

With security threats increasing all the time, users are in a constant battle to protect their online security – Mortal Kombat style, in fact.

Below, you will see four malicious techniques used by attackers, which would not be out of place in a classical battle between Sub Zero, Kitana, Reptile and their rivals:

Fatality

This is indeed the best-known move to finish off an opponent, available since the very beginning of the series. Many people will certainly feel the adrenaline rush when hearing the famous “Finish Him” (or “Finish Her”, when fighting against a female character) line, providing the chance to execute a fatal finishing move.

Mortal Kombat fans will remember that Shang Tsung’s specialty move is the “Soul Drain”, which involves him stealing his opponent’s soul.

As computer technology has improved, the video above seems pretty unimpressive; nonetheless, it still keeps certain parallels with what goes on in the world of IT security – think about a ransomware infection, the kind of malware that “kidnaps” information and demands the payment of a ransom to restore access to it. We can say that practically in all cases the compromised files are important, private, confidential and valuable.

Isn’t that also the computer’s soul? Of course it is. Therefore, when blocking access to the system’s files, the ransomware is somehow attacking against the system’s own existence… and taking away its innermost and most valuable contents. Just as a dark sorcerer would do.

A piece of advice – the best weapon is prevention. Make sure you have an adequate security solution, are cautious when browsing, and ensure you keep an appropriate security backup schedule to recover essential files in case they are compromised.

Brutality

This final move is a combination of successive punches to finish off the opponent and make him explode! As you’d guess from its name, we can’t help thinking about brute force attacks carried out for password stealing purposes.

These attacks allow cybercriminals to automatically compare a list of credentials from a dictionary with the ones stored in the server, generating massive login authentication attempts until retrieving the correct key, explains Denise Giusto from ESET. These credential dictionaries include widely-used words or common expressions.

With the same discipline, strength and speed used by Kitana in the video below where she destroys her opponent, cybercriminals make numerous password-guesses in a matter of seconds, gaining access to accounts for different platforms and services.

A piece of advice – create a strong and safe password so that no one can guess it – not even someone trying with four arms at the same time.

Good practice is to combine letters and numbers, although in those cases it is important to emphasize on the character-length – it should be longer, as long passwords take longer to break.

Babality

One of the most polemic additions to the Mortal Kombat series was this final move that consisted of turning an opponent into the baby version of themselves. Many complained that it wasn’t gory or violent enough, while others thought it was funny and original.

The truth is that once turned into a baby, the only thing the character who lost the fight can do is cry or have a tantrum, but, in contrast to the cases in which the other techniques are used, he doesn’t die and, at least his body remains in one piece.

When it comes to threats and computer attacks, cybercriminals perform a kind of Babality when using Social Engineering techniques to turn their victims into innocent creatures who fall for different types of scams – malicious links, fake websites, prizes that will never be handed out, profiles run by bots, fraud under the name of legitimate entities, and more.

Why do we still find inattentive users clicking on an attractive ad claiming he has won a prize for being the millionth visitor to the site?

A piece of advice – many of these threats are spread hidden in email attachments, so you should be careful when the email you receive comes from an unknown sender; a good choice is not to enable macros, and scan the mails with a security solution.

It is also worth checking which URL it’s redirecting the advertised link to, because in many cases it is easy to identify a fake or questionable website by looking at its domain. Moreover, do not forget that Social Engineering is based on exploiting topical events; consequently, look out for these topical scams and avoid falling into a trap.

Friendship

Friendship is an act of good will towards the weakened adversary. Instead of killing him, the winning character gives him a gift, dances around or shows some attitude that somehow simulates mercy.

And when it comes to fake friendship, we can’t help thinking about the masters of disguise: the rogue. They are programs that claim to be an antivirus or security solution, usually free of charge, but are actually harmful. The attack starts with striking warning windows indicating the existence of malicious software in the system.

Scared, the victim generally downloads a fake security application that installs malware in the computer.

A piece of advice – once more, you should pay attention so that you can always identify a rogue and, therefore, avoid it. If you use an efficient security solution, you will know that your computer is clean and that the disturbing warning is probably a scam.

As you can see, the fatal techniques used in Mortal Kombat have their parallels in the computer world. Adequate security can ensure you aren’t defeated!

And should you fancy picking up Mortal Kombat X today, it goes without saying you should buy it through the official channels – plenty of malware comes from fake game downloads around the net!

Apply good defensive practices and enjoy the battle! (Only in the video game, of course!)

by Sabrina Pagnotta, ESET

World Backup Day: Six ways to backup your data

Today is World Backup Day, and it goes without saying that backing up data is a thoroughly sensible thing to routinely get into the habit of doing.

Not only does it make sense in case your laptop is stolen, or your hard disk fails, but it also means that should your computer become infected with ransomware. This is a particularly nasty strain of malware that encrypts your files and threatens to delete them if you don’t pay a ransom within a certain time period. ESET doesn’t recommend giving in to ransomware demands for many reasons both ethical and practical (not least because you mark yourself as a possible target for future attacks), but if your files are all safely backed up, you won’t even feel tempted to negotiate with them in the first place.

There are plenty of options available for people looking to backup up their data, all with their own pros and cons. Here are some of your options, but remember: it’s best to have more than one backup to be safe.

1. USB stick

usb stick

Small, cheap and convenient, USB sticks are everywhere, and their portability means that they’re easy to store safely, but also pretty easy to lose. There are questions about the number of read/write cycles they can take, so should be considered alongside other backup methods.

Pros:

+ Extremely portable

+ Very cheap

+ Can easily transfer data to other sources

Cons:

– Portability means they’re small and easy to lose

– Questions over read/write cycle longievity

2. External hard drive

external hard drive

External hard drives are just what they sound like – hard drives that live outside your computer, meaning they can be plugged in to other sources. If using them for backup, it’s best not to use them as an ‘extra every day hard drive’.

Pros:

+ Relatively cheap

+ Plenty of storage space for larger files

Cons:

– Potentially open to problems which lost files in the first place (a power surge or malware)

3. Time Machine

31K9Lw38KvL

For the Mac users out there, Time Machine is an option that backs up to external hard drives automatically. Apple sells  its own brand of dedicated wireless Time Capsules, but you can use any hard disk for it. Using this method, you’ll automatically keep backups hourly for the last 24 hours, daily for the last month and then weekly backups until the machine is full.

Pros:

+ Automated, meaning you shouldn’t forget to stay up to date

+ Frequency of backups means you should never be too out of date

+ Backs up whole drive, not just the key files

Cons:

– Dedicated wireless machine is expensive

– Mac only

4. Network Attached Storage

wdfMyCloud-2

Businesses tend to backup their files to network attached storage, but with more and more homes having multiple computers, the idea has a certain appeal, especially for those looking to save files from more than one source. With prices coming down, a dedicated wireless storage solution is a convenient option which requires less thought.

Pros:

+ Automatic backups mean you don’t risk forgetting

+ Wireless solutions also work with phones and tablets

Cons:

– Can be expensive

– Can be awkward to set up and maintain

5. Cloud Storage

dropbox

While network attached storage is essentially your own Cloud Server, there are plenty of third party cloud storage options around: free, paid, or free with paid extras. iCloud, Dropbox, Google Drive and OneDrive are big names, but others are available.

Pros:

+ Can be done automatically

+ A certain amount of space is usually free

+ Device agnostic

Cons:

– Requires an internet connection to work

– You can’t account for their security breaches

– Companies aren’t obliged to keep these services around forever

6. Printing

printer

At a first glance, this might sound a facetious inclusion. But while considerably less technically advanced, printing offers you a hard copy of your most important documents that will survive power outages, and are easy to store and access even if your computer is out of action for a few days. Of course it’s hard to keep documents up to date this way, and it won’t work for video or audio files, but for that novel you’d be devastated to lose, it’s certainly worth considering.

Pros:

+ A backup that won’t be affected by hardware outages or tech headaches

+ Impossible for hackers to access

Cons:

– Impossible for certain file types

– Awkward to manage

– Less practical for longer documents

– Not great for the environment

However you choose to backup your data (and it’s smart to consider using more than one solution, at least for your life-or-death files), make sure that you do it. Often people don’t think about what were to happen if their valuable files were to be lost, until it’s too late. Don’t make that mistake, and use World Backup Day to make sure your files are all safe and accounted for.

by Alan Martin, ESET

10 tips for protecting your virtual Bitcoin wallet

One of the most famous recent incidents was the attack on the bitcoin exchange, Bitstamp. On this occasion, 19,000 BTC were stolen after the virtual wallets belonging to the exchange were compromised. The equivalent value of the resulting loss amounted to an astonishing USD 5 million. So, how can you protect yourself? You need to protect both your identity and your wallets from potential digital theft.

  1. Use a versatile Bitcoin client

For the purpose of privacy, and to hide your IP address, you can use a Bitcoin client that allows you to change to a new address with each transaction.

  1. Protect your identity

Be careful when sharing information about your transactions in public spaces like the web, so as to avoid revealing your identity together with your Bitcoin address.

  1. Use an “escrow service”

When you need to buy or sell something and you aren’t sure who is on the other side, you can use an “escrow service.” In these cases, the person who needs to make the payment sends their bitcoins to the escrow service while they wait to receive the item they are buying.

  1. Make a backup of your virtual wallet

With regard to physical storage, as with any critically important backup policy, it is recommended to make frequent updates, use different media and locations, and keep them encrypted.

  1. Encrypt your wallet

Encrypting your wallet is crucial, especially when it is stored online. As you might expect, the use of a strong password is equally essential. With this in mind, you can use tools like DESlock+ to encrypt files that contain any sensitive information. Even better is to encrypt the entire system or user space where these files are located.

  1. Don’t forget about two factor authentication

When using online storage services, it is recommended to use two factor authentication and whenever possible, online services that support the use of hardware wallets.

  1. Avoid using wallets on mobile devices

You should avoid using mobile devices, especially in the case of large sums of money, as they can be lost and/or compromised. In these cases, it is actually better to keep the wallet on equipment that is not connected to the Internet.

  1. Consider using multi-signature addresses

For corporate transactions, or any transactions that require a high level of security, it is possible to use multi-signature addresses, which involve the use of more than one key, the keys usually being stored on separate equipment in the possession of the authorized staff. This way, an attacker will need to compromise all the equipment on which the keys are stored in order to be able to steal the bitcoins, making their task more difficult.

  1. Update your systems regularly

Naturally, any application can have faults, so it is essential to constantly update your Bitcoin clients and your operating system, as well as other products that run on it. Virtual wallets can be affected by any kind of malware that might be hosted on the hardware, so it is recommended to have a properly updated security solution to run full scans on a regular basis.

  1. Get rid of a virtual wallet if you aren’t using it

Lastly, getting rid of a virtual wallet when it is no longer needed requires a careful process to check that it has really been completely destroyed. On Linux systems, you can use the shred command for this purpose, which overwrites the wallet file with random data before deleting it.

Now you know how to protect yourself…

Although it is impossible to guarantee total protection of our assets from digital theft, this shouldn’t stop us from enjoying the use of the technology. So long as we make sure to take the necessary precautions, there’s no reason not to take advantage of the benefits offered by cryptocurrencies as they make inroads into our economy.

by Denise Giusto Bilić, ESET We Live Security

 

Follow

Get every new post delivered to your Inbox.

Join 95 other followers