, 2004-03-29
Social engineering in the latest crop of viruses has people jumping through hoops to open malicious attachments. How do we change the pattern?
Expand all |
Post comment
Human Nature vs. Security
2004-03-30
IT Professional (2 replies)
IT Professional (2 replies)
Human Nature vs. Security
2004-03-30
Mene Tekel (1 replies)
Mene Tekel (1 replies)
Human Nature vs. Security
2004-03-31
jaywalker (3 replies)
jaywalker (3 replies)
Human Nature vs. Security
2004-03-31
Anonymous (1 replies)
Anonymous (1 replies)
Viruses used to do real damage and present real annoyance to the infected person. Things like cussing at the user, wiping out their hard drive, etc. ... and as a result an entire culture began taking viruses seriously. Nowdays, viruses are discrete and people don't think there's anything wrong because they can't see anything wrong.
I have a shocking suggestion: the fix for this problem is for someone to create an agressive virus twin for each of these not-so-obvious viruses. The agressive twin would do create some real annoyance for the user. Like pop up a dialog box every minute saying "you're infected" until some fix utility was run, at which point everything would be back to normal. Five or six of these agressive, obvious twins and people would wake up and become more careful.
I would suggest one agressive twin for each new infection method. Thus an agressive twin that came in as a password protected zip file, and agressive twin that came in offer nude celebs, etc. etc ...
I would even recommend IT departments release such viruses into their organizations on purpose as teaching tools. I know it sounds like a waste of time but think of all the time it would save later once people started thinking "whew, I'm not going to do that again!"
Am I nuts?
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/231/25676#25676