Spyware�gathers
data, such as account user names and passwords, and transmits them to
third parties
Adware�displays
advertisements and gathers data, such as user Web surfing preferences,
to target advertisements at the user through a Web browser
Dialers�changes
computer Internet settings and can force a computer to dial pre-configured
phone numbers through a modem
Joke
Program�causes abnormal computer behavior, such as closing and
opening the CD-ROM tray and displaying numerous message boxes
Hacking
Tools�helps hackers enter computers
Remote
Access Tools�help hackers remotely access and control computers
Password
Cracking Applications�helps hackers decipher account user names
and passwords
Others�other
types not covered above
Spyware/grayware often gets into a corporate network when users download
legitimate software that have grayware applications included in the installation
package. Most software programs include an End User License Agreement
(EULA), which the user has to accept before downloading. Often the EULA
does include information about the application and its intended use to
collect personal data; however, users often overlook this information
or do not understand the legal jargon.
The existence of spyware and other types of grayware on your network
have the potential to introduce the following:
Reduced
computer performance�to perform their tasks, spyware/grayware applications
often require significant CPU and system memory resources
Increased
Web browser-related crashes�certain types of grayware, such as
adware, are often designed to create pop-up windows or display information
in a browser frame or window. Depending on how the code in these applications
interacts with system processes, grayware can sometimes cause browsers
to crash or freeze and may even require a system reboot.
Reduced
user efficiency�by needing to close frequently occurring pop-up
advertisements and deal with the negative effects of joke programs, users
can be unnecessarily distracted from their main tasks
Degradation
of network bandwidth�spyware/grayware applications often regularly
transmit the data they collect to other applications running on your network
or to locations outside of your network
Loss
of personal and corporate information�not all data that spyware/grayware
applications collect is as innocuous as a list of Web sites users visit.
Spyware/grayware can also collect the user names and passwords users type
to access their personal accounts, such as a bank account, and corporate
accounts that access resources on your network.
Higher
risk of legal liability�if computer resources on your network are
hijacked, hackers may be able to utilize your client computers to launch
attacks or install spyware/grayware on computers outside your network.
The participation of your network resources in these types of activities
could leave your organization legally liable to damages incurred by other
parties.