Slashdot Mirror

← Back to Stories (view on slashdot.org)

Morpheus Hijacks Browsers For Affiliate Links

Posted by timothy on from the oh-no-this-can't-be-true dept.

An anonymous reader submits: "According to this news.com article, morpheus (aka streamcast) has begun silently installing a browser plugin on its users' machines that basically hijacks the web browser even when not running Morpheus. An afflicted browser will sense if a user is going to visit a shopping site like Yahoo! or Amazon, and secretly send them to a different site instead and then redirect them from this site to the user's intended destination. The user will not be aware that this is happening... however the site doing the redirecting will benefit because they are set up as an affiliate partner and will get a commission on the backs of the user. On a horrible scale of 1 - 10 for sleazy business practices, I rate this a 9. Comments?"

7 of 489 comments (clear)

  1. It's scumware... by ckkoh · · Score: 5, Informative

    This belongs to a new breed of nusiance known as scumware. Check out http://www.scumware.com for more info.

  2. At least it's easy to disable by Tremblay99 · · Score: 5, Informative

    Under "Tools" -> "Internet Options" -> "Advanced" deselect "Enable third party browser extensions" and reboot. Even if the .dll responsible for the redirection, bpboh.dll, is installed, it won't be able to run.

    1. Re:At least it's easy to disable by GoRK · · Score: 5, Informative

      No it doesn't. Browser extensions aren't the same thing as plugins like flash/shockwave/etc. that handle files based on a mimetype (or file extension - stupid microsoft). Browser Extensions change the behavior of the browser itself - They are things like the Google toolbar and that Alexa piece of crap. There are some useful ones too that do things like block ads and kill popups. I have Extensions turned off and I can still see flash just fine. Sadly, I can no longer kill popups or ads so easily in IE anymore. Oh well... for all these settings and extensibility, we still can't control the levels of access that scripting languages have to or system or selectively allow certain programs to run.

      I think IE is scumware.

  3. Has anyone asked Amazon about what they think? by shri · · Score: 5, Informative
    Has anyone asked Amazon what they think about this practice?

    From what I can see on their website ..

    To protect the integrity of the reputation of Amazon.com Associates as well as the Amazon.com brand name, you may not promote your site via certain forms of indiscriminate advertising, commonly referred to as "spamming." Accordingly, you may not promote your site via unsolicited commercial e-mail (UCE), postings to non-commercial newsgroups, or cross-postings to multiple newsgroups at once. In addition, you may not promote your site in any way that effectively conceals or misrepresents your identity, domain name, or return e-mail address.

    If I were Amazon, why would I pay 10-15% margin to someone who has not really promoted the product, but has hijacked the links?

    They also probably violate this portion of the operating agreement.

    We may reject your application if we determine (in our sole discretion) that your site is unsuitable for the Program. Unsuitable sites include those that: promote sexually explicit materials promote violence promote discrimination based on race, sex, religion, nationality, disability, sexual orientation, or age promote illegal activities include "amazon" or variations or misspellings thereof in their domain names otherwise violate intellectual property rights
  4. How to disable Morpheus redirects by Dynedain · · Score: 5, Informative

    After reading this article (and noticing redirects being performed on my system - i thought it was something else, not morpheus) I downloaded this utility: BHO Cop which is designed to search out these nasty browser-attached proggies and allow the user to disable them. I found the culprit: bpboh.dll put out by Wurld Media, who, according to their inadequite website, claim the primary goal of their business is to help companies be profitable (very ambiguous, don't you think?).

    Well, I disabled the .dll w/ BHO Cop, relogged in (WinXP) and low and behold, when I go to amazon.com, I end up at the root page rather than a referal page deep in the system.

    So - download and run BHO Cop now! who knows what else you might find (Acrobat seems to have dumped something as well)

    --
    I'm out of my mind right now, but feel free to leave a message.....
  5. Lavasoft's AD-AWARE will Remove this thing for ya! by EMR · · Score: 5, Informative

    goto http://www.Lavasoft.com and download ad-aware and the latest ref update and have it remove all your spyware from your computer..

  6. Re:Sleezy, but no point in Morpheus anymore anyway by ender81b · · Score: 5, Informative

    Exactly. Why the hell are people using it anyways? Go here to download the spyware free and opensource version.