Report: Recognize and Defeat Website Infections

21 Sep 2012

The report “This Site May Harm Your Computer”: How to Recognize and Defeat Website Infections was recently published by our researchers at Kaspersky Lab.  In most cases, the execution of malware is completely invisible to the visitor of a website, who sees the site as appearing to operate as usual.  However, whether you can see it or not, cybercriminals can indeed inject malicious scripts into the original code of a website, which redirects visitors of the website to malicious URLs and from there, malware is downloaded and executed on the victim’s computer.  So how can you tell if your computer is infected?  And how can you clean up –or better yet, avoid—an infection?

Here is what you can find inside the report:

  • 7 Most Common Web Injections Used by Cybercriminals
    • Simple redirection is the oldest and least complicated method used by cybercriminals
    • Three different cases of infecting legitimate JavaScripts have been widespread over the last few months
  • Symptoms of an Infected Machine
    • The website is blocked by Google or added to some other database of malicious URLs
    • The website doesn’t work properly, displays errors and warnings
  • What To Do If Your Computer is Infected: Removal Methods
    • There are several automated solutions that can help you locate the malicious code, including antivirus products and online website scanners
    • Manually search for and delete all instances of harmful code
  • Ways You Can Prevent an Infection
    • Use strong passwords and change them frequently
    • Perform regular updates.  Cybercriminals tend to exploit vulnerabilities in software, so all the software on your computer should be the newest possible versions

Check out the full report for more details.