Unlike mass computer virus attacks – that aim to infect as many computers as possible – targeted attacks use a totally different approach. Instead, targeted attacks try to infect the network of a single targeted company or organisation – or apply a specially developed Trojan agent to a single server on the organisation’s network infrastructure.
Cybercriminals often target businesses that process or store information that can be exploited by the criminal for personal gain. Typical targets include:
Because large companies – that are normally the subject of targeted computer virus attacks – will often have a high level of IT security, the cybercriminals may need to employ some particularly cunning methods. With most organisations benefiting from a firewall and other protective measures against external attacks, the criminal may look for assistance from within the organisation: