WEBVTT 00:00:00.000 --> 00:00:06.700 align:middle line:90% 00:00:06.700 --> 00:00:08.680 align:middle line:84% In this video, we're talking about antiviruses 00:00:08.680 --> 00:00:11.020 align:middle line:90% and console tools. 00:00:11.020 --> 00:00:18.500 align:middle line:84% So "ransomware damage costs will rise to $11.5 billion in 2019 00:00:18.500 --> 00:00:22.760 align:middle line:84% and a business will fall victim to a ransomware attack every 14 00:00:22.760 --> 00:00:27.380 align:middle line:84% seconds at that time," according to Cybersecurity Ventures. 00:00:27.380 --> 00:00:30.310 align:middle line:90% So that's a pretty big number. 00:00:30.310 --> 00:00:31.250 align:middle line:90% That's a lot of money. 00:00:31.250 --> 00:00:35.670 align:middle line:84% And for every 14 seconds, there's a ransomware attack. 00:00:35.670 --> 00:00:38.180 align:middle line:84% So how easy is it to create a virus? 00:00:38.180 --> 00:00:39.980 align:middle line:90% Well, let's take a look. 00:00:39.980 --> 00:00:41.540 align:middle line:90% So this is a very simple virus. 00:00:41.540 --> 00:00:42.980 align:middle line:90% It's called a fork bomb virus. 00:00:42.980 --> 00:00:46.820 align:middle line:84% And I'm creating it with a text document. 00:00:46.820 --> 00:00:48.940 align:middle line:84% So I don't recommend doing this, but this 00:00:48.940 --> 00:00:51.710 align:middle line:84% is for demonstration purposes only. 00:00:51.710 --> 00:00:52.860 align:middle line:90% So I have a text document. 00:00:52.860 --> 00:00:54.370 align:middle line:84% I'm just going to name it forkbomb. 00:00:54.370 --> 00:00:58.702 align:middle line:84% And in the text, you could use any editor. 00:00:58.702 --> 00:01:00.160 align:middle line:84% We're going to zoom in here to make 00:01:00.160 --> 00:01:02.560 align:middle line:90% it a little bit easier to see. 00:01:02.560 --> 00:01:06.050 align:middle line:84% I'm simply going to put forkbomb.bat on there. 00:01:06.050 --> 00:01:08.920 align:middle line:84% And then I'm going to save the file as a batch file 00:01:08.920 --> 00:01:10.300 align:middle line:90% and name it the same thing. 00:01:10.300 --> 00:01:17.380 align:middle line:90% 00:01:17.380 --> 00:01:20.210 align:middle line:90% OK, then we save it. 00:01:20.210 --> 00:01:22.430 align:middle line:84% And this is now going to be a batch file. 00:01:22.430 --> 00:01:25.310 align:middle line:90% 00:01:25.310 --> 00:01:28.420 align:middle line:84% So when we run the file here, you 00:01:28.420 --> 00:01:31.040 align:middle line:84% can see it trying to open itself over and over and over again. 00:01:31.040 --> 00:01:32.470 align:middle line:84% And what this essentially does is 00:01:32.470 --> 00:01:35.680 align:middle line:84% it's similar to a denial of service attack. 00:01:35.680 --> 00:01:37.690 align:middle line:84% It's constantly trying to open itself out, 00:01:37.690 --> 00:01:40.990 align:middle line:84% and eventually, I'm going to run out of resources. 00:01:40.990 --> 00:01:43.030 align:middle line:84% Now, I can kind of bloat this thing up. 00:01:43.030 --> 00:01:45.490 align:middle line:84% I can add some additional files in there 00:01:45.490 --> 00:01:48.040 align:middle line:84% and have it run over and over and over again, speed up 00:01:48.040 --> 00:01:49.180 align:middle line:90% the process a little bit. 00:01:49.180 --> 00:01:53.950 align:middle line:84% I could have it open up multiple files, multiple strings. 00:01:53.950 --> 00:01:58.623 align:middle line:84% And the same thing is going to happen eventually. 00:01:58.623 --> 00:02:00.040 align:middle line:84% It's going to open so many things. 00:02:00.040 --> 00:02:01.665 align:middle line:84% It's going to tie up so many resources. 00:02:01.665 --> 00:02:04.120 align:middle line:84% The computer is eventually going to slow down and crash. 00:02:04.120 --> 00:02:06.340 align:middle line:84% And that is a really simple virus. 00:02:06.340 --> 00:02:10.870 align:middle line:84% I just used a text document, and I put one line in there - 00:02:10.870 --> 00:02:15.040 align:middle line:84% forkbomb.bat - and named it the same thing, 00:02:15.040 --> 00:02:17.530 align:middle line:90% saved it as a batch file. 00:02:17.530 --> 00:02:21.825 align:middle line:84% But that's an example of a very simple virus. 00:02:21.825 --> 00:02:24.200 align:middle line:84% So there's a lot of different types of viruses out there. 00:02:24.200 --> 00:02:28.220 align:middle line:84% There's ransomware, scareware, Trojans, worms, 00:02:28.220 --> 00:02:30.920 align:middle line:84% polymorphic viruses - a lot of different viruses 00:02:30.920 --> 00:02:35.030 align:middle line:84% out there doing a lot of different things. 00:02:35.030 --> 00:02:38.140 align:middle line:84% Well, on the security side, there's 00:02:38.140 --> 00:02:40.570 align:middle line:84% no shortage of antivirus software out there 00:02:40.570 --> 00:02:45.130 align:middle line:84% - AVG, ESET, ClamAV, Panda, Windows Defender. 00:02:45.130 --> 00:02:47.080 align:middle line:90% There's a lot of antiviruses. 00:02:47.080 --> 00:02:50.293 align:middle line:84% And there's free versions, and there's paid versions. 00:02:50.293 --> 00:02:52.210 align:middle line:84% And it doesn't matter what computer you're on. 00:02:52.210 --> 00:02:56.290 align:middle line:84% If you're on Windows, Linux, OS X, 00:02:56.290 --> 00:02:58.390 align:middle line:84% you should have an antivirus, and there 00:02:58.390 --> 00:03:02.150 align:middle line:84% is an antivirus out there for your operating system. 00:03:02.150 --> 00:03:04.450 align:middle line:84% Now, the argument I used to hear from people 00:03:04.450 --> 00:03:05.860 align:middle line:90% is - "Well, I'm on Linux. 00:03:05.860 --> 00:03:07.670 align:middle line:90% I don't need a antivirus. 00:03:07.670 --> 00:03:08.410 align:middle line:90% I am on Mac. 00:03:08.410 --> 00:03:10.000 align:middle line:90% There are no viruses." 00:03:10.000 --> 00:03:11.860 align:middle line:84% Truth of the matter is there's viruses 00:03:11.860 --> 00:03:13.810 align:middle line:84% for every type of operating system. 00:03:13.810 --> 00:03:17.380 align:middle line:84% And the more popular that operating system becomes, 00:03:17.380 --> 00:03:21.190 align:middle line:84% the more enticing it becomes for malicious hackers to attack. 00:03:21.190 --> 00:03:23.508 align:middle line:84% This is why we need to have an antivirus installed 00:03:23.508 --> 00:03:24.175 align:middle line:90% on our computer. 00:03:24.175 --> 00:03:27.380 align:middle line:90% 00:03:27.380 --> 00:03:29.240 align:middle line:84% Now, again, there are free and paid 00:03:29.240 --> 00:03:32.150 align:middle line:84% versions of a lot of the software out there. 00:03:32.150 --> 00:03:35.240 align:middle line:84% And again, Linux, Windows, OS X, they all 00:03:35.240 --> 00:03:37.820 align:middle line:84% have antiviruses that are going to work with that operating 00:03:37.820 --> 00:03:39.200 align:middle line:90% system. 00:03:39.200 --> 00:03:43.460 align:middle line:84% Most antivirus software nowadays will also scan for malware. 00:03:43.460 --> 00:03:46.970 align:middle line:84% The majority will also scan for ransomware. 00:03:46.970 --> 00:03:50.300 align:middle line:84% Some - mostly enterprise level - antiviruses 00:03:50.300 --> 00:03:51.920 align:middle line:84% will have some sort of online console 00:03:51.920 --> 00:03:54.860 align:middle line:84% that we could view our protected machines. 00:03:54.860 --> 00:03:56.960 align:middle line:84% Enterprise antivirus software will generally 00:03:56.960 --> 00:04:00.590 align:middle line:84% also have more features and allow 00:04:00.590 --> 00:04:03.200 align:middle line:84% for things like remote install of their software. 00:04:03.200 --> 00:04:05.750 align:middle line:84% They can remotely view computers, 00:04:05.750 --> 00:04:11.330 align:middle line:84% initiate antivirus scans, clean computers remotely, 00:04:11.330 --> 00:04:16.079 align:middle line:84% alert you when something happens, things like that. 00:04:16.079 --> 00:04:21.269 align:middle line:84% Antivirus software is also a simple and oftentimes cheap way 00:04:21.269 --> 00:04:22.770 align:middle line:90% of protecting your network. 00:04:22.770 --> 00:04:25.680 align:middle line:84% After all, there's a lot of viruses out there - viruses, 00:04:25.680 --> 00:04:29.200 align:middle line:90% worms, ransomware, and whatnot. 00:04:29.200 --> 00:04:31.540 align:middle line:84% In addition to having things like your computer 00:04:31.540 --> 00:04:36.195 align:middle line:84% patched, your users locked down, antivirus software 00:04:36.195 --> 00:04:37.570 align:middle line:84% is just another piece of software 00:04:37.570 --> 00:04:40.360 align:middle line:84% you can have to have an extra layer of protection there 00:04:40.360 --> 00:04:42.930 align:middle line:90% that's really worth having. 00:04:42.930 --> 00:04:45.000 align:middle line:90%