What is Malware?

What is Malware?

Malware (malicious software) is any software intentionally designed to damage, disrupt, or gain unauthorized access to computer systems, networks, or data. Malware is one of the most persistent threats organizations face and a primary driver behind many compliance requirements for endpoint protection and monitoring.

Types of malware

• Viruses — attach to legitimate programs and spread when the infected program runs
• Ransomware — encrypts data and demands payment for the decryption key
• Trojans — disguise themselves as legitimate software to trick users into installation
• Spyware — silently collects information about user activity and sends it to an attacker
• Worms — self-replicate across networks without requiring user interaction
• Rootkits — hide deep within the operating system to maintain persistent, undetected access

Malware protection in compliance frameworks

• SOC 2 — CC6.8 requires controls to prevent and detect malicious software
• ISO 27001 — A.8.7 addresses protection against malware
• PCI DSS — Requirement 5 mandates deploying anti-malware solutions on all commonly affected systems
• NIST CSF — DE.CM-4 specifically addresses malicious code detection

Defense strategies

• Deploy endpoint detection and response (EDR) tools across all endpoints
• Keep operating systems and applications patched and up to date
• Implement email filtering to block phishing and malicious attachments
• Restrict administrative privileges to reduce malware installation risk
• Train employees to recognize social engineering and phishing attempts
• Maintain tested backup and recovery procedures to mitigate ransomware impact

How episki helps

episki tracks anti-malware controls, monitors policy compliance, and documents endpoint protection evidence for auditors. Learn more on our compliance platform.