Graphics Interchange Formats, famously known as GIFs, have taken over the world of social media in the last decade. Can these adorable memes spread viruses from device to device? In 2020, Microsoft Teams Messaging App was subject to a virus attack that spread through a funny GIF!
GIFs can contain and transmit viruses by concealing them in a color pixel when the GIF is created. When you receive an infected GIF, the virus is released to infect your device. To prevent infections, use common sense, a strong Anti-Virus Suite, and keep all your software up-to-date.
Millions of GIFs are shared daily among friends through social media, emails, and websites. Read on to explore the creation of these animated memes, how they may infect your device, and your best strategies to stop GIF viruses in their tracks!
How Viruses Can Be Transmitted Through GIFs
Each pixel in a GIF contains information that is a small part of the overall logarithm that creates the GIF. Most of this information translates into the colors and movement in the GIF. However, additional information can be hidden in the slightest bit of color.
This is referred to as a “steganography” and can be used to conceal encrypted messages and other information, such as viruses. This can be done without altering the appearance of the GIF, so the probability that anyone would recognize it is low.
Nowadays, many more people use messaging apps and meeting platforms to work from home. Your devices are ever more vulnerable to being infected with malware through the receipt of a GIF. More importantly, such viruses do not require you to click a link or download a file.
Traditional Methods Cyber Attackers Use To Transmit Malware With GIFs
Malware creators have become more adept at using GIFs to transmit viruses effectively. They take advantage of online messaging and sharing platforms to spread malware to take over other people’s computers.
Malware can hide in advertisements on websites that receive a lot of traffic. When a Stegano kit (used by cyber attackers) recognizes a vulnerable computer, it posts a customized GIF that contains a code that redirects the browser to a malicious website.
Internet Explorer is especially vulnerable to malware because Microsoft has discontinued support for versions 7, 8, 9, and 10, so there are no more security updates. Support for Flash was discontinued in 2020, leaving it open to malware as well.
The Microsoft Teams GIF Virus Attack!
Programs (such as Microsoft Teams, Zoom, and Google Meets) contain enormous amounts of personal information, including usernames, passwords, and other classified employee and business information.
In 2020, opportunists with mal intentions figured out how to use Microsoft Teams and other platforms to transmit their viruses through the use of GIFs. Read this BBC report for details.
The Microsoft Teams platform integrates with the company’s Office 365 subscription and uses extensions to integrate with non-Microsoft applications. Each time Teams is open, a new access token is created by Microsoft’s authorization and authentication server. These tokens, referred to as “authtokens,” make it possible to authenticate users and allow them to share files and images.
To gain personal or business information, a cybercriminal needs to get the user to visit a vulnerable subdomain vulnerable to a takeover and then grab the “authtokens” and use it to roam freely around the system.
Traditionally, infected email attachments or links were used by hackers. Still, as most cyber citizens have become wise to these scams, hackers have had to up their game use stealthier methods which is where the GIF comes into play.
Why Are Hackers Using GIFs To Transmit Viruses?
Because GIFs are cute!! The recipient of the message sees what appears to be a funny GIF and doesn’t think twice about it. I have forwarded countless GIFs to my family and friends.
Unlike links and attachments, the recipient of the GIF does not need to be click on or open a file. Viruses sent through GIFs spread automatically. Once the GIF has been viewed by the recipient, their computer has been compromised.
While the infected GIF appears to be normal, if the image were to be enhanced, the recipient would be able to make out a pixel pattern that conceals a malicious QR-like code.
How to Protect Your Devices Against Encrypted GIFs and Viruses
If Microsoft got hacked in 2020, what hope do you have?! Well, plenty of hope.
Here are the steps you can take to protect your devices:
- Use Common Sense: If you do not know and trust the sender, do not open unverified files, images, or attachments from emails or text messages. These files can easily infect your computer with viruses or malware. If you receive a text message or social media chat from a person you do not know, delete it without opening it. (swipe left)
- Install a Robust Antivirus and Antimalware Suite on All Your Devices: I personally use MalwareBytes, which is a very robust software that scans your device for all sorts of viruses and malicious programs. You can check MalwareBytes protection and get a great deal here. Do not forget to install it on your PC, phone, and tablet.
- Update Your Programs and Operating Systems: Make sure you update all your programs to the latest version and security packs. In our example above, Microsoft Teams responded to the cyber attacks using GIFs by issues a security update that closed the loophole exploited by the hackers. Is your phone operating system up-to-date? How about your windows pc? If not, take a few minutes to update today.
- Keep It Up! Once you have installed antivirus programs, make sure to run security scans regularly to detect and rid your computer of any threats. Also, make sure to update your security software regularly to keep up with ever-changing technology.
Conclusion:
GIFs are cute and entertaining, but some hackers have used them to spread viruses and malicious software. To protect yourself, only communicate with trusted friends, install a robust antivirus and antimalware suite on all your devices, and keep your programs and operating systems up to date. Happy browsing!
Wait….One last thing, you probably came to this article because your life, banking, social connections are all online, and it will grind to a halt if you lose my internet connection. Take control and keep your Wi-Fi connection even during a power outage. Check out this article from SecureHomeHero.com