As you know the Internet is a place of a security minefield. No one better know when a malware infiltrate in their device, even though one practices hard enough to protect ones PC. Nevertheless, the tricky ways of the developers won’t make you achieving the goal and their trick result into some malicious malware inside the PC.
There are several methods Cybercriminals use to proliferate to their malware through the Internet. There might be lake of the knowledge about these ways and most probably sources due to which their PC is all encounter with some threat. Our main practice by this article is to make you aware of about many Dangerous online places that you may encounter, and what you can do to stay out of the harm.
Let’s begin our discussion with one of the popular social media site, i.e., Facebook and see why it is in our list of Dangerous online apps by analyzing the two infamous incidents that ever happened with Facebook:
You may listen about the infamous Cambridge Analytic Scandal, an incident of October 2018 for which the tech giant was fined a ₤500,000, in which the scandal together with the passage of GDPR compelled Facebook to add more options to their privacy settings in which how they want their data to be collected and used.
Another Facebook security breach happened in the month of September when the 50 million users accounts are exposed due to the vulnerabilities in the “View As” feature. This is different than the previous with the view that the later on directly allow the attackers to steal the personal details rather than ask for which type of details the users want to be collected, which were seen in the Cambridge Analytical event.
The Facebook admitted its mistake and solved the issues quickly. Facebook sent a cryptic message, which had written as the “Your privacy and security are important to us. We want to let you know about recent action we have taken to secure your account” to the affected users.
Due to the popularities, the Facebook continues to be in the eyes of the Cybercriminals and is one of the favorite ways for them to spread their malware. This is the reasons why Facebook is so called Facebook virus, representing a scam through which the Cybercriminals try to spread their malware. This is the reason behind putting Facebook in the list of Dangerous online websites.
Lasq, a security researcher, published a code which fully functioned Facebook worm. This code, which is based on some security vulnerabilities in the mobile version of Facebook sharing pop-up. However, this does not affect the desktop version of the Facebook, even though it could be said to be an alarming. The vulnerabilities create due Clickjacking existence in the mobile sharing dialogue which is exploited with iframe elements. This flaw is abused by the hackers to distribute their spam. They have been posting the spam links on the Facebook users’ wall and try to infiltrate their malware.
Other social media websites
In our talks of Dangerous online places, not only the Facebook but also the other social media social websites must be included. Bromium and Dr. Mike MVuire after their research, carried out through social media such Facebook, Twitter, Linkedin, and instagram, say that Cybercrime us generating a worth of $3.25 billion annually.
Their report was published in this February is bases on three factors. These are:
- How Cybercrimes manage to generate such revenue, the way the Cybercriminals use to generate revenue and which revenue is the most profitable at this time
- How these money are transferred and made legal
- Where these revenue are converted into the assets
The reports states that the malicious services offered mainly on the social media websites through the hacking tools, bootnets for hire, cryptocurrency scams. The social media crimes are now increased significantly. One out of five attacks include the social scam and this is quite an alarming and indicating that the social media platform, which was once the way of entertainment and have fun while using it, now is totally a vulnerable sources of malicious malware.
You might have heard that “the spam emails should be trashed”. Why this is so, and why your Gmail Inbox also in the list of the “dangerous online places”, you will understand it after a while.
Malware infections are distributed through spam emails or phishing emails. Sometime often an opening of such emails is enough for the malware to get inside. However, in most of the cases, clicking on an attachment on such emails leads the infection.
Security researchers, in 2017, detected a phishing technique Stealing login credentials for Gmail and other services. From analyzing them a common pattern was seemed to be appeared. The spam emails appear on the Gmail account. The emails are hardly to detect as a malicious as they usually use trustworthy companies name. These emails include malicious attachment clicking on which a new tab will be open up. This redirected site is what the attackers promote.
In the case of stealing logins credential for Gmail and other services, the attackers redirect the victims into phishing Gmail account. The location bar show as an address “accounts.google.com” and hence the victims can easily be misled. Once sign in into this phishing Gmail, the users account gets compromised.
Google play store
Researchers from Trend Micro reported a number of malicious beauty camera apps for Android on the Google play store. These are the dangerous online apps since they allow their developers to access to the device from their remote server. From all these apps, some are variants of same camera app that edit the photos to make beauty effect and various other filters. However, these all are removed from the Google play store. Won’t you think this comes bit a late when many a user, hundred and billions downloaded them already?
NO any websites are left that are said to be fully or 100% secure. They get compromised. Dangers with any Websites which enables the attacks are as follows:
- Broken authentication,
- XML eternal entries
- Cross-site scripting (XSS)
- SQL injection
- Insecure deserialization
Out of these, Cross-site scripting (XSS) is the one which has been recently detected to have patched in version 5.2.0 of the popular plug-in called Abandoned Cart Lite for WooCommerce. Through this attack, the Cybercriminals main aims are to distribute its two malicious payloads inside a compromised PC.
“In 2018, the number of attacked users doubled, reaching more than 110,000 PCs across the world. The number of attacks almost tripled, to 850,000 infection attempts.”
Most active malware in the porn websites is the Jimmy Trojan which is also distributed via spam emails. Trojans are the one which is designed to collect the browsing related data.
Pornhub and XNXX are two major adult websites at now. In previous year, Brazzers, Chaturbate, Youporn and X-videos were the most focused websites.
Since the dangerous online places on the Internet are limited that we discuss all of them one by one. This article will only aware you of some of these sources and instruct you do surf the Internet with more precise way so that you won’t create any chance of any malware to get intrude by yourself. Remember you are the responsible for your any PC infection. You should take your responsibility. Try to keep store the personal details on the PC as less as possible. Keep it on any crucial files and documents on any external device. By doing these, you shall manage to get damaged more by any PC intrusions.