You are viewing a free preview of this lesson.
Subscribe to unlock all 10 lessons in this course and every other course on LearningBro.
Malware — short for malicious software — is any software intentionally designed to cause damage, disruption or unauthorised access to a computer system. This lesson covers the main types of malware that appear on the GCSE Computer Science specification: viruses, worms, trojans, ransomware and spyware.
Malware can reach a computer through many routes:
A computer virus is a type of malware that attaches itself to a legitimate file or program. It only activates and spreads when the host file is opened or executed by the user.
A worm is similar to a virus in that it self-replicates, but with one critical difference: worms spread automatically across networks without any user action.
The WannaCry attack combined ransomware with worm-like behaviour. It exploited a vulnerability in Windows (called EternalBlue) to spread automatically across networks. Over 200,000 computers in 150 countries were affected, including many NHS hospitals in the UK. Patient records became inaccessible, forcing hospitals to cancel appointments and divert ambulances.
A trojan (named after the Trojan Horse from Greek mythology) disguises itself as legitimate, useful software. Once installed, it performs malicious actions in the background without the user's knowledge.
Ransomware encrypts the victim's files and demands a payment (ransom) — usually in cryptocurrency — in exchange for the decryption key.
| Reason | Explanation |
|---|---|
| No guarantee of recovery | The attacker may not provide a working decryption key |
| Funds criminal activity | Payment encourages further attacks |
| May be targeted again | Paying shows the victim is willing to pay, making them a target for future attacks |
| Legal issues | In some jurisdictions, paying a ransom to certain groups may breach sanctions laws |
Spyware is malware that secretly monitors the victim's activity and sends the collected data to the attacker. It runs in the background without the user's knowledge.
Adware displays unwanted advertisements on the user's computer. While not always classified as malware (some adware is bundled with free software and disclosed in the terms of service), malicious adware:
| Feature | Virus | Worm | Trojan | Ransomware | Spyware |
|---|---|---|---|---|---|
| Self-replicates | Yes | Yes | No | No | No |
| Needs user action | Yes | No | Yes (installation) | Varies | Varies |
| Attaches to files | Yes | No | No (standalone disguise) | No | No |
| Main purpose | Damage/disrupt | Spread/consume resources | Backdoor/theft | Extort money | Monitor/steal data |
| Spreads over network | Only via shared files | Automatically | No | Via email/exploits | Via downloads/email |
| Defence | How It Helps |
|---|---|
| Anti-malware software | Detects and removes known malware using signatures and heuristics |
| Keeping software updated | Patches close vulnerabilities that malware exploits |
| Firewall | Blocks unauthorised network traffic, limiting worm spread |
| Email filtering | Blocks malicious attachments before they reach users |
| User education | Teaches staff to avoid suspicious downloads and links |
| Regular backups | Allows recovery from ransomware without paying |
| Least privilege access | Limits the damage malware can do if it infects one account |
Subscribe to continue reading
Get full access to this lesson and all 10 lessons in this course.