Trojans: What Are They and How to Protect Against Them?

Banking Trojans/ Spyware
These actively search for online banking information, hitting users in their bank accounts. Unlike extortion software or ransomware, banking Trojans try to rob you by misdirecting or rerouting transactions. The amount of damage they're capable of depends on how long it takes you to notice that something isn't right with your online banking or accounts.

Cryptotrojans
Alternatively known as extortion Trojans, or most commonly as ransomware, these are the more aggressive and brazen sibling of spyware. Instead of secretly monitoring your activity, they encrypt folders or systems and demand payment for the decryption key. If you don't want to pay up, most ransomware displays a countdown timer showing how long you have until your files are permanently deleted.

Never pay up, since as the old saying goes, "there's no honor among thieves."

Backdoor
These compromise your system by opening it up to cybercriminals, who can then control and manipulate it for their own purposes. Most of the time, security mechanisms that protect you against malware will be disabled, and illegal activity will be performed without your knowledge.

Botnet
A botnet isn't necessarily something bad. Any network of computers connected to one another that pool their resources to complete a task is a botnet. The problem arises when a botnet engages in illegal activity or uses a system without its user's knowledge, such as for DDoS attacks, or to send spam emails.

Corrupted software downloads
Trojans like to disguise themselves as harmless software or by piggybacking on legitimate software. For this reason, be careful which freeware you download, particularly from questionable sources. 'Free games', which often show as pop-up banners on websites, are a popular attack vector for Trojans.

Email attachments

These are another favorite among cybercriminals to gain unauthorized access to a system. You've probably had a Nigerian prince try to send you millions (or billions) of dollars. However, cybercriminals now send legitimate-looking messages and pretend to be Google, PayPal, or other large companies. If you've downloaded an attachment from one of these, it's too late.

Download software only from reputable sources
It's always best to download software directly from its developer or official mirrors. Avoid free banner games, or other types of freeware that seem too good to be true. If a website looks suspicious, it probably is. Err on the side of caution and only download software from reputable sources.

Be careful when opening email attachments
Before downloading an email attachment, always check the sender at least twice. A message from Amazon, eBay, or PayPal might look legitimate, however, hover your mouse over the sender's address: If you don't see an "@amazon.com" or "@paypal.com" ending, they didn't send the message.

Another way to check an email is by entering its exact subject line in a search engine. If results note that it's a malware scam, you'll have your answer quick enough.

Regularly update your operating system, drivers, and software
Malware and anti-malware are in a sort of Spy vs. Spy struggle with one another. On the anti-malware side (including software developers, like Microsoft), there is a constant effort to close the loopholes or exploits that malware developers uncover and exploit. Older operating systems or software are easy prey, so do yourself a favor and regularly update both to reduce your exposure.

Use antivirus software
There is dedicated software that specifically protects against Trojans. With the right antivirus program, you can rest easy knowing that it is patrolling and monitoring your computer or laptop in the background. Apart from Trojans, these will also guard against many other types of malware and threats.