A backdoor is a means of contact to a computer program that bypasses security mechanisms. A programmer may from time to time install a backdoor so that the program can be accessed for troubleshooting or other purposes. However, attackers often use backdoors that they distinguish or install themselves, as part of an exploit. In some cases, a worm is designed to take benefit of a backdoor created by an earlier attack. Whether installed as an administrative tool or a way of attack, a backdoor is a security risk, because there are always crackers out there looking for any vulnerability to exploit. In her article "Who gets your trust?" security consultant Carole Fennelly uses an analogy to illustrate the situation: "Think of forthcoming a building with an elaborate security system that does bio scans, background checks, the works. Someone who doesn't have time to go through all that might just rig up a back exit so they can footstep out for a smoke -- and then hope no one finds out about it."
Backdoors are a definitely not a good practice because the use of backdoors cannot be monitored and accounted for despite that a vendor perhaps ‘merely’ wanted to have a plan B should the software’s or device’s main password have been lost or forgotten. As you can see from this example are backdoors not necessarily something illegal, but definitely a security risk rather to be found in niche software of local vendors that in a blue chips middle-of-the-road Software Company.
By meaning does a backdoor usually give root or admin privileges. As malicious code found in a virus or a Trojan horse normally lacks that most privileged account feature they are not considered backdoors with the exception of root kits, invisible malware flying under the radar of the operating system and anti-virus program, which includes a backdoor counting remote access. Yet, please note that by way of key logger malware a hacker may intercept the admin password which later, in phase two of the attack permits the cybercriminal to create a backdoor of some sort.
As a best practice to prevent vendor backdoors it is suggested to include the topic in the service level agreement whereas due care is needed in all other cases. This includes but is not limited to restricting disgruntled staff or employees who have been given notice from creating accounts with admin rights to the mandatory, updated antivirus/ antispyware on a patched system. Technically, an imposition prevention and detection system can be helpful against backdoors, and all efforts against backdoors can be leveraged with IT security audits of course.
If you need any further assistance regarding help for Backdoor Computer Security, please visit http://www.livetechcare.com
No comments:
Post a Comment