7 common malware sources and how to avoid them

Malware does harm by getting your information, messing with files, slowing down your system, or taking control of your device.

Such malware does not naturally enter your system. So where does malware really come from? How can you avoid them?

1. Email attachment

You may receive dozens of emails daily, some from people you know and trust, some from unfamiliar people or companies. You may receive some attachments in your email, such as files you can open, download, or simply view. They can be handy, but watch out! Some are malicious files and can damage your computer.

Do not open email attachments from unknown or suspicious senders. If you're not sure, clean up any suspicious emails or mark them as spam.

You should also not open email attachments with unusual names or file extensions. For example, an email with a file named "invoice.exe" is most likely not a real invoice; it's malware, because ".exe" means executable. Just delete it and move on.

 

Also, use anti-virus software and keep it up-to-date as it can scan email attachments and block or remove any malware found.

And finally, use secure attachment if your email provider offers it. This can check email attachments in a virtual environment before they are sent to you and prevent any malicious files from entering your inbox.

2. Fake website

There are several ways a fake website can distribute malware. Some of them are acting as if they are a real website you normally use, such as your favorite bank, social network or news site. The fake website may have the same domain name, logo, design or content as the real website.

For example, instead of www.facebook[.]com, the fake site might use www.faceb00k[.]com or www.facebook[.]net. It may try to ask you to sign in with real information or say you need to update your account. By doing so, you have given your login information to the scammers behind the fake website.

Don't get caught up in things like free downloads, coupons, prizes, or surveys. They will take you to a website that installs malware on your device.

Be careful when accessing websites without verifying their authenticity. You can do this by checking the URL and domain name. Also, always use a secure connection when accessing websites that require entering personal or financial information. If you see a warning message that the site is unsafe or has an invalid certificate, it's best not to proceed.

 

3. Download the software

Software downloads are a source of concern for malware infections. You may want to download software from a particular search engine, but you don't know if what you're adding to your machine is legit or the malware is actually harmful.

In most cases, you are probably downloading the right software. However, such software may contain too much malicious content that will affect the legitimate software and your entire computer system. Perhaps the most disturbing aspect is that this malware can appear at the top of your targeted searches, which could lead you to believe that the software website is legitimate.

To keep malware out of software downloads, simply don't download anything from shady websites that say they have a free or cracked version of the software. They are often filled with nasty malware that can damage your device.

Always scan downloaded files with a trusted antivirus or anti-malware tool before opening them. Malwarebytes is one of the best tools to use in this case.

Read the terms and conditions and uncheck any unwanted options before installing the software. Some software may try to install additional programs or change your browser settings. Be careful and opt out of any offers or features you don't need or want.

4. Torrents

Torrents allow you to download games, movies, music, and more, but they can come with malware.

 

Only download files from well-known and reputable torrent sites with positive user reviews to avoid torrenting malware. Also, as before, be very careful when downloading files with suspicious extensions like ".exe", as they carry a high risk of containing malware. Always scan them with an antivirus suite before opening or launching them.

5. Removable storage media

Some storage devices that you can plug in and out of your computer may contain malware. These can be flash drives, external hard drives, CDs and DVDs, etc. In addition to the files they store, these devices can retain malware collected from previously infected computer systems or loaded with specific malware by hackers taking advantage of the victim's curiosity.

Avoid using removable storage media from unknown sources. Use caution when plugging in USB or other storage media into your system, especially from someone you don't trust. Also, scan any external devices with trusted antivirus software before accessing their content.

6. Insider Threats

Insider threats are people who have legitimate access to your organization's network or data but use it for malicious purposes. They can be employees, contractors, partners or even former employees who can still break into your system.

Insider threats can do a lot of damage, such as stealing sensitive information, installing malware, sabotaging operations, or leaking secrets to competitors or hackers.

Set up user permissions controls to restrict access to sensitive data and systems to prevent malware from insider threats. Also, regularly monitor and check user activity to look for any strange activity. Finally, you should talk to workers and employees about insider threats, to create a strong security culture within the organization.

7. Unpatched software

Unpatched applications or software could allow hackers to take control of your computer. According to ZDNet, one in three data breaches in 2019 stemmed from unpatched software vulnerabilities.

So how can you avoid getting malware from unpatched or outdated apps? Here are some tips:

 

1. Update your operating system and software programs regularly using recent security updates.
2. Enable automatic updates to ensure bug fixes and security bugs are installed on time.
3. When downloading apps, use only reputable certified app stores.
4. Consider uninstalling old and unused apps on your computer and smartphone systems.