When browsing the network of networks, Internet users have to face a multitude of threats. Thus, we have to face various types of malware, viruses and Trojans that can compromise the integrity of our computers. Cybercriminals, thanks to them, try to profit by using them and almost always end up affecting our privacy, system performance or both. In this sense, they can steal data, access our files and incidentally, on some occasions, compromise the security of the programs. Here we are going to thoroughly discuss everything about the computer worm, explaining what it is and the measures we can take to protect ourselves and thus be able to avoid it.
We are going to start by explaining what a computer worm is, its history, how they work, propagation and more.
What is the computer worm and which was the first
A computer worm can be defined as a malware that replicates itself to spread to other computers and usually uses a computer network to spread. Its way of acting is taking advantage of security flaws in the target computer to access it.
On the other hand, if we compare it with the way a virus acts, they are very different. Worms tend to act almost always causing some damage to the network, such as consuming bandwidth. Instead, viruses almost always corrupt or modify files on a target computer.
It should be noted that many computer worms are designed only to spread, and do not try to change the systems they pass through. The main purpose of a computer worm is to spread to as many computers as possible. To achieve this goal, they create copies of themselves on the affected computer and then distribute it through means such as e-mail or P2P programs among others.
As for the distribution of a worm, it has changed a lot since its inception. Cybercriminals initially used physical means to enter a network, such as a floppy disk. Today that technique would still be viable through the use of a USB stick. However, the most common method today would be through the Internet, such as using e-mail, P2P networks, instant messaging services, and more.
As for the first computer worm in history, it was the Morris worm dating back to 1988. Thanks to it, a large part of the existing servers at that time was managed to infect. Its name is due to its creator Robert Tappan Morris who had to answer judicially and was convicted for his actions. From here on, there was a before and after as the dangers it could cause were seen. Thus, a short time later, security companies such as Nirdesteam were among the first to develop the firewall.
Some famous computer worms
The Morris worm that we have already talked about is famous because it was the first to wreak havoc. Now we are going to talk briefly about three others that caused a sensation at the time and that had a great impact. Perhaps some of them sound familiar to you.
The first one we are going to talk about is the ILOVEYOU computer worm. It was so called because it was spread by e-mail with a message with that name. It appeared in the year 2000 in the Philippines and quickly spread globally. This worm was designed to randomly overwrite files on its victims’ computers. Then from the source computer he e-mailed copies of himself with Microsoft Outlook using the contacts in the address book. It caused multimillion-dollar losses around the world.
Another also very famous was SQL Slammer, which was a brute force Internet worm that spread in 2003. To achieve its objectives, it attacked a vulnerability in Microsoft SQL Server for Windows 2000. What it did was generate random IP addresses and send copies of itself same. In the event that the receiving computer had an unpatched version of SQL Server, it would enter and start up. The danger was that it turned infected computers into botnets and then carried out DDoS attacks .
Most recently in 2017 we have the WannaCry computer worm. In this case, it was also an example of ransomware integration. Thus, after spreading, it encrypted the files of its victims and then demanded the payment of a ransom to be able to recover them.
How a computer worm spreads
A computer worm usually spreads through one of the following tactics:
- By sending emails with attachments.
- With a link to a web or FTP resource.
- Through a shared file on P2P networks.
- By sending an ICQ or IRC message that contains a link.
- Through physical means such as a USB memory that is inserted directly into a computer.
This is a threat that we must take seriously. The reason is that they are becoming more dangerous, complex and harmful. An example is WannaCry that we talked about before and that ended up encrypting the files. Then came the note with the ransom to be paid. Another factor to take into account is that a worm often uses social engineering techniques to achieve greater spread. For this reason, the creators of a computer worm choose an attractive theme or name with which to disguise this malicious software.
What are the symptoms that we can have computer worms?
A computer worm usually acts discreetly and tries to be as inconspicuous as possible. However, there comes a time when we can observe a series of symptoms that may indicate that something is wrong.
One of the most typical is that we see that our computer slows down or fails . This happens when you consume too many resources and are unable to carry out your usual activity. Another may be when we see that we are running out of free space on the hard drive . It may also be that we see that our computer behaves erratically and strangely . Then we see strange alerts and new or missing files. In the event that our contacts mention that we have sent you rare and unusual messages . Perhaps it could be a computer e-mail worm that is sending messages to our acquaintances.
How we can prevent computer worms
There are two very important things we can do to avoid a computer worm. One of them is to use common sense and another is to have the software updated .
An important issue is that the worms are going to take advantage of the obsolete software to access our computer. Therefore, to avoid it we need to have updated:
- The operating system.
- An antivirus, and if possible, antimalware software.
- Programs and applications.
Another important thing is to never open email attachments from strangers . Also, another good practice is not to click strange links , use common sense and hover over it, we often see that the URL is suspicious. Also use strong passwords and enable multi-factor authentication , if possible. Finally, if you follow all these tips you can prevent a computer worm from infecting your computer.