answer
Discount Ans
INFORMATIONASSURANCE.1.docxRunning Head: INFORMATION ASSURANCE 1
INFORMATION ASSURANCE 2
Information assurance
Student’s name
Professors name
Course
Date of submission
Introduction
Malware analysis is the process of identifying the cause of any potential threat that could have caused harm to information technology or computer systems. Malware is a piece of software intended to cause harm to the system and network. Malware analysis is crucial in ensuring that information is assured and safe from potential attacks. Malware is a key threat to essential information since it can spread itself in the network, cause changes, remain undetectable, and damage the infected system or network. They can bring down the performance of the machine and cause crucial destruction of networks. When a computer becomes no longer applicable, the information inside becomes unavailable and thus is not assured.
Malware analysis is crucial in ensuring that the information is assured of safety and kept accessible by the relevant users (Sihwail et al., 2018). It is a key measure in defending and protecting information and its systems by enhancing integrity, authentication, confidentiality, non-repudiation, and availability. Information assurance is quite different from cybersecurity since it is a more established disciplined with a wider focus on non-digital and digital information protection of assets such as hard copy records. The document below contains a qualitative analysis of information assurance on malware analysis.
Importance of risk assessment information assurance during malware analysis
Information assurance will lead to risk assessments that will help the organization identify the key vulnerabilities capable of allowing malware threats to the entire system infrastructure, business processes, and individual systems. Malware analysis requires information assurance risk evaluation to provide relevant information about the potential threat that may exploit asset vulnerability. It determines that is required for the analysis concerning cost, technology, business operation, threat exploitation perspective. An objective and reliable risk assessment create a platform where organizations can develop a management plan to prevent, eliminate, and prevent potential malware threats. IA helps develop early vulnerability detection; this helps the business detect potential software defects and vulnerabilities before implementation. Assessment creates insight into the potential improvements opportunities and particular automated solutions applicable to monitor information assurance efforts continuously. Information assurance malware assessment is an integral part of an organization since financial data is prone to malicious attacks.
Malware threats that can affect information assurance
There are six common types of malware threats that mostly attack computer information systems. The types include viruses, Trojan horses, ransomware, adware, spyware, and adware. Viruses are designed to damage the target device or computer by corrupting the data present or fully shutting down the system. Cybercriminals are used to steal information, harm networks, and computer, develop botnets, and render crucial information (Cambou et al., 2018). Computer viruses are from human actions meant to infect computers and mobile devices, and they are spread often through internet downloads and email attachments.
Worms are the most common types of malware existing today; they are spread over computers by attacking the operating system vulnerabilities. A worm is a standalone program designed to replicates itself to infect additional computers without requiring individual actions; they are used to execute payloads due to their ability to spread fast. A payload has the potential to damage the system by deleting files and encrypting data for ransomware attacks. A Trojan horse is a program that enters the computer as an initial harmless and disguised file. It is designed to trick the user and fall into the trap of downloading or installing malware. When the Trojan is infected with a computer, the cybercriminal attains the ability to steal data modify files, install more malware, steal financial information, monitor activity, and execute denial of service attacks targeting web addresses. A Trojan can't replicate itself; however, the damage resulting to the user and the systems can be endless if combined with a worm. The other type of malware affecting information systems is spyware. It is installed on computers without the user's knowledge. It is designed to track internet activities and browsing habits.
It has the potential monitor, collects keystrokes, and extracts account information, financial data, and logins. It is spread by exploiting the vulnerabilities in the software, through Trojans, and exploiting software vulnerabilities.
Adware is aggressive advertising software that appears on the user's computer screen. Malicious adware has the potential of collecting data n, changing internet browser settings, and redirecting to advertising sites. The adware is obtained from the browser's vulnerability. There exists legitimate adware, but it asks for permission before collecting data from the user. Ransomware is the final type of malware (Paranthaman, 2017). It is very popular and known for generating a large amount of money for cybercriminals. It works by captivating the user's data and demands payment to release the data back to the user. It also restricts the user from accessing their data by locking down the system. The cybercriminals display messages forcing the user to make payments to gain back access to the computer and release restrictions. After payment, the computer transforms back to its original state.
Importance of malware analysis on information assurance
Malware analysis is crucial since it provides the user with the information needed to respond to specific network intrusions. The analysis goals are to determine what occurred and ensure that the infected systems and files are located. It assists in accessing the extent to which a particular malware can affect information assurance. After identifying the affected information files, the user develops signatures to detect malware infections in the network. This will reduce further damage apart from the one existing. Malware analysis is a crucial element in developing host-based and network signatures. Malware analysis assists in developing strategies for ensuring that the user's information is assured. It creates a platform for developing remediation and mitigation approaches when the information systems are attacked. Malware analysis occurs in two stages, referred to as code and behavioral analysis (Kuntz et al., 2017).
How to ensure information assurance from malware analysis
After conducting a malware analysis and detecting the potential vulnerabilities and threats, it is important to develop strategies to enhance information assurance. The business should implement multiple layers of security to enhance the protection of data. In this case, The layers include end-user training, antivirus software, ant-malware, and email, as wells as web filtering. There should be the implementation of firewalls in conjunction with updates and patch management. The systems and networks should be monitored regularly to enhance detection and response at earlier stages. Layered approaches are important since they ensure that all potential entrants are protected. For instance, firewalls may prevent hackers from gaining access to the network.
Conclusion
In summary, organizations should create a disaster and business continuity plan to protect the assured information after malware attack incidences. Back options are necessary to gain back access to crucial data after a ransomware attack. The business should not forget the end-users despite the effectiveness of the layer approaches. 94% of the malware attacks are executed through emails, which implies that business security is based on its end-users. There are several types of malware attacks that include viruses, Trojan horses, ransomware, adware, spyware, and adware. They are threats to the efforts of ensuring information assurance since they can gain access to information systems. Malware analysis is crucial since it provides the user with the information needed to respond to specific network intrusions. The analysis goals are to determine what occurred and ensure that the infected systems and files are located.
References
Sihwail, R., Omar, K., & Ariffin, K. Z. (2018). A survey on malware analysis techniques: Static, dynamic, hybrid, and memory analysis. International Journal on Advanced Science, Engineering and Information Technology, 8(4-2), 1662.
Kuntz, M., Tong, Y., & Lovaas, P. 2017 Challenges and Strategies for Malware Analysis for Incident Response and Prevention.
Paranthaman, R., & Thuraisingham, B. (2017, August). Malware collection and analysis. In 2017 IEEE International Conference on Information Reuse and Integration (IRI) (pp. 26-31). IEEE.
