Cornell University

Computer Virus Seminars at Cornell University

June 27, 2002

Lecturer: Christine M. Orshesky, CISSP, CQA

Survival of the Fittest — The Evolution of Computer Viruses and other forms of Malware

   
Date: 27 June 2002, 2:00-4:30 PM
Place: McGraw Hall Room 165
Format: Lecture/Demonstration
Audience:   Open (estimated 50-70 attendees)

Abstract:

As an online community, we have been combating computer viruses and other forms of malicious code for several decades. Taking a look back over the last year or so of computer virus and malware related headlines, it is obvious that something has been changing. Viruses and other forms of malware are a viable method an attacker can use to enter your system, your network, and the networks of others. The threats from computer viruses are no longer simply a nuisance — displaying messages and deleting files — but rather a mechanism to perform other threats to your information and systems — namely netspionage. Malware is used to siphon data, expose data, send data to remote locations, and/or attack others. As such, it seems that it is time we learned what the problem is, why it has persisted and what can be done to mitigate the risks. This seminar will review the evolution of malware with a focus on the current validity of axioms that we have believed about malware, the seemingly hidden affects of malware, and the implications malware could have for you and Cornell University — now and in the future.

Outline:

  1. Introduction and Perspective
    1. Definitions
    2. Lay of the land
      1. Surveys
      2. Headlines
      3. Virus Statistics
    3. Profiles of some recent incidents
      and their residual effects
  2. Evolutionary Process
    1. Means
    2. Opportunity
    3. Motive
    4. Intent
  3. Evolutionary Timeline
    1. Axioms
    2. Keys to Survival
      1. Adaptation
      2. Propagation
    3. Damage/Impact
  4. Mitigation Strategies
  5. Expectations for the Future

Table of Contents

  1. Click Here to Start
  2. Topics for Discussion
  3. What is Malware?
  4. Where Are We Today?
  5. Profile of Recent Event – Code Red
  6. Profile of Recent Event - SirCam
  7. Profile of Recent Event – Klez
  8. Evolution Process
  9. Nuisance to …
  10. …Netspionage
  11. Axioms
  12. Keys to Survival
  13. How Fast Do They Spread?
  14. Damage Caused
  15. Impact
  16. Mitigating the Risk
  17. Mitigating the Risk
  18. Mitigating the Risk
  19. Expectations for the Future
  20. Summary
  21. Some Information Resources
  22. Additional Resources
  23. End of Presentation

See also Lecture #1, Digital Immunity — Myths and Reality

Sponsored by Cornell's Office of Information Technologies

Last updated June 04, 2007