I got curious — how did people even catch viruses on their computers? Was it something a friend sent? Or maybe they downloaded a cracked game or some shady program? Share your stories — would be interesting to read.
I worked for a small company, not an IT job, this happened like 10 years ago.
The office administrator lady got an email from an unknown address. The email was in Italian, she couldn’t speak Italian, but we had an Italian client, so it was not unexpected that we got an email in Italian. The email had an attachment, a docx file. She downloaded it, opened it then Word asked if she wants to allow running macros embedded in the document, and she obviously clicked yes. We had a small Linux file server, and the virus running on her PC encrypted several tenthousand excel files before it was noticed that something is happening and her machine could be switched off.
No problem - said the boss, we only lost a half day of work, as we have an offsite backup, it runs every night, we can just restore yesterday’s data. Unfortunately the backup stopped half years ago, but no one checked the logs…
One popular way was that Internet Explorer 6 included something called ActiveX, which basically allowed any website to run code on your computer as though it was a locally-installed program. You could just click on some URL and next thing you know it’s writing files to your hard drive. This is one of the main reasons why the Internet Explorer 6 / Windows XP era was particularly virus-filled. A website could open your freaking CD tray.
From the ActiveX wikipedia page:
Developers had to register with Verisign (US$20 per year for individuals, $400 for corporations) and sign a contract, promising not to develop malware.
Promising not to. And they did it anyway. The bastards.
I have a friend, curently doing a master in cybersecurity, got ransomware’d because he cracked a game on a fake fitgirls site :')
So it’s a masters with practical experience.
