Beware of the RATs!

Nov 13, 2005 10:18 GMT  ·  By

Probably, most users don't find daily security warnings a surprise, and terms such as viruses and worms, trojans, phishing schemes and vulnerabilities are common in today's security scenery. However, soon, this zoo is about to grow even more and not many people are aware of it. The new menace is the RAT, or Remote Access Trojan, and this threat is much more evolved than what users were supposed to keep a lookout for until now.

Most likely, all users that know a thing or two about Internet security systems are aware of what a trojan is, but just to make sure, we'll go over the subject one more time. Trojans are unauthorized applications bundled with other legal software, which are installed without the user's permission. Most of the time, trojans are programmed to open backdoors or cause damage to one's computer; they produce loss of data, destroy applications installed on that system, and the list continues.

Ok, now that we covered what classical trojans are all about, what's the deal with the RATs? How do they manage to get passed firewalls and antivirus running on the target system? Security companies announced that RATs can be found bundled with freeware; their favorite location is deep inside file-sharing applications and even electronic greeting cards. Now, who would have thought of such a thing? File sharing programs which include unwanted and dangerous software... well, nothing new about that. Kazaa used to be the champion of bundling spyware, adware and other such 'pleasant' surprises. RATs can also be found on porn sites and also inside online casinos. So if you plan on visiting such sites or using the applications mentioned earlier, don't be too surprised if you'll end up with a few 'gifts'.

RAT remains hidden until you decide on making an online payment, you fill in your personal data, enter the credit card number and, in a while, you'll discover that, somehow, your bank account has been emptied. RATs act as keylogges and watch your every move as you enter usernames, passwords and access different accounts. Obviously, the RATs are directed from a distance and the hackers in charge will receive all the information they need from their scouts, manage to break into accounts and commit fraud. Major banks have already started having a taste of what the RATs can do and requested fast solutions from the security companies.

But a user that doesn't have a well tuned firewall, antivirus software and anti-spyware installed can't really expect to have a clean computer for a long time. And if, so far, rules were few, pretty simple to follow and making sure that there was no breach for viruses to get inside one's system, now things have changed - staying safe from RATs is more difficult. These new trojans make even the most disciplined user, that keeps all security software updated and doesn't access any suspicious links or attachments susceptible to having the computer infected, vulnerable, despite all of his/her efforts. Only updating security programs and having a well tuned firewall just won't do anymore and, in order to hope for computer security, you have to juggle a lot more. As a matter of fact, not even experts are exactly sure what is the perfect combination between having the proper software installed and also having a secure online behavior, but there are a few major guidelines that users need to remember.

Avoiding websites that are likely to contain RATs is a must, so porn, file sharing, online casinos will all have to be avoided as much as possible if you just can't stay completely away. Even apparently harmless software can bundle RATs; freeware in particular could form an interesting duo with the RATs.

As for unwanted e-mails, it's pretty obvious where we're going with this... abstain from clicking on every link you receive from strangers. If an offer seems too good to be true, no matter if it sells medication, huge discounts or anything else, it's probably fake. What isn't fake is the load of RATs, worms and viruses that will find a way to install on the user's computer. Even what seems to be a harmless electronic greeting card could actually be the perfect cover for RATs, and installing them is very well camouflaged by accessing the card itself. What's even trickier is that many of such e-mails appear to have been sent by people close to the user.

Detecting the installed RATs is extremely hard, even for experienced users who know how to read the symptoms of an infected computer. The hard drive will no longer run continuously, the modem lights will stop blinking (but with more broadband subscribers, that really won't be very helpful). The thing is this new generation of trojans is much more "efficient" than the previous, it hides better and causes just as much if not more damage.

Juggling all these software services and proper browsing should ensure a safer online experience, very boring, but safe. Of course, people aren't really going to care that much about the possibility of being infected over not entering certain websites, but every user knows the risks involved.

Since the number of Internet threats consisting of viruses, worms, trojans (to mention just a few) is growing day by day, Softpedia gives you the chance to vote for your favorite antivirus application. Vote here for the antivirus which takes care of your security.