Torjan Horse Vs Computer Virus Vs Logical Bomb


  • Torjan Horse:
    • In Computing, a Torjan Horse is a program that appears harmless but is in fact malicious.
    • Torjan horse contains the malicious code when triggered causes the loss or the theft of data.
    • Unlike the virus, it is not able to replicate  itself nor it can propagate without an end user assistance.
    • This is why attacker must use social engineering tactics to trick the end user into executing the Torjan.
    • Typically, malware programming is hidden into the innocent looking email attachment or free download.
    • when user clicks on the email attachment or download  the free program the malware that is hidden is transferred into the users computing device  and carry out the task as designed by the attacker.
    • some of them are : Bitfrost , Tiny Banker ,Fake AV Trojan, Magic Lantern ,Zeus.
Computer Virus:

  • Computer Virus is a malicious code that replicate by copying itself to another program , computer boot sector or documents and change how a computer works.
  • It works in two phase ,
  • The first phase in which the virus inserts into the file , is called the insertion phase.
  • The second phase in which it performs some actions ,called the execution phase.
  • It requires someone to knowingly or unknowingly to spread  the infection without knowledge or permission of a user or system administrator.

  • Logical Bomb(Bomb):
    • A logical bomb is a malware that is trigered by a response to an  event such as launching and application or when specific date / time is reached .
    • Attackers use bomb in a various of ways.
    • Once  activated , a logical bomb implements the malicious code that causes harm to a computer.
    • Attackers use a combination of spyware and logical bomb  in an attempt to steal your identity.
  • Bacteria, or rabbit: programs, make copies of themselves to overwhelm a computer system's resources. Bacteria do not explicitly damage any files. Their sole purpose is to replicate themselves. A typical bacteria program may do nothing more than execute two copies of itself simultaneously on multiprogramming systems, or perhaps create two new files, each of which is a copy of the original source file of the bacteria program. Both of those programs then may copy themselves twice, and so on. Bacteria reproduce exponentially, eventually taking up all the processor capacity, memory, or disk space, denying the user access to those resources.
  • A dropper is a program that is not a virus, nor is it infected with a virus, but when run it installs a virus into memory, on to the disk, or into a file. Droppers have been written sometimes as a convenient carrier for a virus, and sometimes as an act of sabotage. Some anti-virus programs try to detect droppers.



Comments

Post a Comment

Popular posts from this blog

Process Vs Thread

The Process and Thread are the essentially correlated. The process is an execution of a program whereas thread is an execution of a program driven by the environment of a process. Another major point which differentiates process and thread is that processes are isolated with each other whereas threads share memory or resources with each other. Key Differences Between Process and Thread : All threads of a program are logically contained within a process. A process is heavy weighted, but a thread is light weighted. A program is an isolated execution unit whereas thread is not isolated and shares memory. A thread cannot have an individual existence; it is attached to a process. On the other hand, a process can exist individually. Each thread has its own stack, so if a thread dies its stack is reclaimed. In contrast, if a process dies, all threads die including the process. Conclusion: Processes are used to achieve execution of programs in concurrent and sequential manner.
Read more

Reasoning Vs Inference

Inference: Inference is a general term representing the derivation of new knowledge from existing knowledge and axioms (i.e., rules of derivation) within a single step, and can be one of many kinds, such as, induction, deduction and abduction. For example, "modus tollens" is a rule of inference. Thus, one inference is the derivation of new knowledge using a single step using modus tollens. Inference is about taking in data and trying to draw a conclusion based on the limited information you have in a situation where not all the data is given. Reasoning: Reasoning is in context of a goal (e.g., decide whether a propositional formula is satisfiable or not)  and is carried out via a search process involving multiple inferences. Choices during such search have to be made such as which axiom to "fire" along with which knowledge in order to derive new knowledge. Resolution is a particular kind of reasoning involving the "resolution rule". Reasoning is
Read more

Frame vs Packet

Image
Difference Between Frame and Packet     The crucial difference between frame and packet is that frame is the serial collection of bits, and it encapsulates packets whereas packets are the fragmented form of data and it encapsulates segment. Data link layer performs framing process. On the other hand, Network layer performs fragmentation of the data and create smaller chunks known as packets. Another major difference is that a frame includes device’s MAC address while a packet includes device’s IP address. Basis for comparison Frame Packet Basic Frame is the data link layer protocol data unit. Packet is the network layer protocol data unit. Associated OSI layer Data link layer Network layer Includes Source and destination MAC address. Source and destination IP address. Correlation Segment is encapsulated within a packet. Packet is encapsulated within a frame. Conclusion: Frames and Packets function as protocol data units utilized on the
Read more