Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Acquires Spyware Removal Company

Posted by CowboyNeal on from the keeping-things-clean dept.

ack154 writes "Checking for updates on my new favorite spyware removal company, I found that Microsoft has acquired Giant AntiSpyware as of 12/16. I must say that it is very refreshing to see Microsoft finally start to take some serious action to help combat this rampant problem. According to the Giant site, a beta version is expected within one month for Microsoft customers (running Windows 2000 and later, of course)."

79 of 442 comments (clear)

  1. IE? by AmigaAvenger · · Score: 5, Funny

    So i'm going to assume the first logical step is that the software uninstalls/disables IE?

    1. Re:IE? by yummy1991 · · Score: 5, Funny

      I thought windows already was disabled.

    2. Re:IE? by Lord+Prox · · Score: 3, Funny

      *ahem* it's not disabled, it's differently abled you insensitive clod...

    3. Re:IE? by Zorilla · · Score: 2, Insightful

      Well, I guess we can start with this.

      --

      It would be cool if it didn't suck.
    4. Re:IE? by SpaceKow · · Score: 2, Insightful

      I just hope it does not remove ads from competing companies like Google or Yahho.

      I

      --
      Free Web based FTP
  2. Typical Microsoft by l810c · · Score: 3, Insightful
    How long has their 'security first' initative been going on? They must not be getting anywhere, because they now have to aquire their security apps.

    What percentage of spyware comes in through IE and ActiveX? Seems like they would just fix that. Stop it at the door, don't wait for it to get in and then Try to kill it.

    I sure hope they don't start charging for this after the beta. Talk about a conflict of interest. We have this buggy, highly exploitable browser that we do not plan on updating for a couple of years until Longhorn comes out. But in the meantime, you can Buy this program that will maybe help after the fact.

    1. Re:Typical Microsoft by lordkuri · · Score: 2, Insightful

      I sure hope they don't start charging for this after the beta.

      now I'm no lawyer, but isn't that borderline extortion? or maybe racketeering?

    2. Re:Typical Microsoft by danpat · · Score: 3, Interesting

      Don't be silly. From a profit taking point of view, why on earth would they want to fix the problem, when it's the potential source of extra revenue?

      From MS's point of view, their large marketshare combined with a demand for security fixes has actually *created* demand for more things they can sell, rather than harming their business. With no real competitors in their space, they have the luxury of taking their time fixing things. There is no percieved alternative so they're not driven to compete with anyone in the security space.

    3. Re:Typical Microsoft by Anonymous Coward · · Score: 4, Interesting

      Performing workarounds for Windows is what leads to acceptance of viruses (just buy an antivirus) and what leads to acceptance of spyware (just buy an antispyware) and what leads to acceptance of systems so bogged down by combinations of the above (just reinstall every 6 months).

      It's a bit like living in a really bad neighbourhood and denying it's a problem. "Oh we're OK, we live in a safe area. As long as you put bars on all your windows, don't leave the house when it's dark, put up bullet proof windows, and don't make eye contact with the neighbours you're perfectly safe"

      Apart from how it's broken, it works perfectly.

      MS is fucked, but they don't mind. The consumer state of society today means MS can just tell people they need to buy something, and people will do what they're told to.

    4. Re:Typical Microsoft by Johnathon_Dough · · Score: 4, Informative
      I sure hope they don't start charging for this after the beta.

      "Microsoft's tool, expected to be available within 30 days, initially will be free but the company isn't ruling out charging for future versions. 'We're going to be working through the issue of pricing and licensing," Nash said. "We'll come up with a plan and roll that out.' Microsoft's disclosure that it may eventually charge extra for Windows protection reflects a recognition inside the company that it could collect significant profits by helping to protect its customers,"
      Article Source

      Looks like they are investigating how much, not if.

      --
      If you are one in a million, then there are six thousand people who are just like you.
    5. Re:Typical Microsoft by MinutiaeMan · · Score: 2, Insightful

      It seems to me that the basic act of having a free beta testing period for new software, after which fee is charged, is an acceptable, though not entirely aboveboard practice. (After all, you get free use of their software for a time, and they get lots of extra beta testers. Of course, it also could be considered as getting lots of free QA work...)

      Of course, in Microsoft's case, the extortion would be forcing customers to buy into their Windows monopoly, and then charging those customers extra money so that their system isn't a buggy piece of sh*t any longer.

      And that doesn't even consider the fact that Microsoft distributing an anti-software program will likely put an enormous hurt on every other anti-spyware company out there right now...

    6. Re:Typical Microsoft by bob+beta · · Score: 2, Interesting

      Don't be silly. From a profit taking point of view, why on earth would they want to fix the problem, when it's the potential source of extra revenue?

      You just described the 'give the software away for free, make your money providing support' business plan, as championed by some of the Open Source advocates.

      --
      "What's the frequency Kenneth?"
    7. Re:Typical Microsoft by spectre_240sx · · Score: 4, Insightful

      Did anyone else notice that EVERYONE seems to profit here? Besides the end user of course. Microsoft makes bad software and saves money on fixing security holes because they've basically got a captive audience. Advertising companies figure out how to exploit these security holes and generate revenue by throwing computers down the toilet. Anti-Spyware companies profit from getting rid of software exploiting said security holes. Microsoft turns it around fully and purchases Anti-Spyware company for... even more profit!!!

      This is why I'm saving up for a PowerMac.

    8. Re:Typical Microsoft by afidel · · Score: 4, Interesting

      Actually I have come up with an almost perfect solution for most people. I have a pair of scripts that use the Microsoft command line ACL tool from the 2000 server resource kit. The first one sets the downloaded program files directory to read only for everyone, and the other sets it to read for everyone and full controll for the person running the script (they obviously must have permissions on the parent container in order to be able to change the ACL's on the downloaded program files directory). Basically you normally run with read only permissions and only change to full permission to allow trusted ActiveX controlls to install. This gets you most of the protection of disabling ActiveX without breaking things like the Adobe Reader plugin. I expect Microsoft might include something like this in the next major revision of IE, there is precidense with the run as restricted user feature in XP.

      --
      There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
    9. Re:Typical Microsoft by raddan · · Score: 4, Interesting
      What percentage of spyware comes in through IE and ActiveX? Seems like they would just fix that. Stop it at the door, don't wait for it to get in and then Try to kill it.

      This is exactly the point I've been trying to make within our corporation for the last year. Relatively unsuccessfully, I might add.

      Naturally, our office, which I admin and which has about 100 PC users, is almost completely a Firefox shop. Malware was a serious problem when I arrived, and after implementing a centralized antivirus setup and switching everyone to Firefox, support calls have dwindled to nearly nothing, and the few calls I have gotten were those few sneaky users who thought that they could get away with using IE behind my back.

      I was in a corporation-wide IT meeting last month, and I brought up using Firefox. Apparently the help desks for other offices are totally swamped. So the head IT guy asks me if switching has affected malware infection rate, so I told him the same thing I mentioned above. The room was totally silent; these guys were shocked. The meeting ended with a decision to start "testing" Firefox, but a few people were outright hostile to the idea at all. As far as I'm aware, they still haven't even given the "testing" idea a second thought, even though their malware problem continues to grow.

      But the big thing stopping us from going to Firefox completely is our damn intranet apps. We've poured millions into these half-assed ActiveX programs that require IE. I mean, WTF? Why on Earth would you write a web-based application that requires a specific OS (Windows), a specific browser (IE), and a specific processor (i386)? It's madness! Sure, you could argue that application updates can still be done centrally, but even this they've fucked up-- every time an update comes out, we have to remove the program manually from "C:\windows\downloaded program files". Talk about living in the dark ages!

      Anyhow... I'm guessing that this is the big reason why Microsoft doesn't just axe the whole ActiveX thing-- this would be a nightmare for many an IT manager. Not to mention-- look at where ActiveX came from: it started as OLE, became COM, and is now becoming .NET. MS has dumped tons of cash into a flawed piece of software, and thousands of programmers know how to write software for it.

    10. Re:Typical Microsoft by malfunct · · Score: 2, Interesting

      I don't know about you but on my SP2 box activeX controls are stopped at the door unless I click the yellow bar. Now there may be ways around that but I have not seen any spyware on my machine since I installed sp2.

      --

      "You can now flame me, I am full of love,"

    11. Re:Typical Microsoft by bogie · · Score: 2, Insightful

      Unfucking believable. And when they run every other anti-spyware company out of business then what? We are stuck with the same company that makes the flaws and then sells us software to protect us from those flaws. Can you say fucking conflict of interest? Design better software, don't sell me a bandaid I have to pay a subscription for.

      --
      If you wanna get rich, you know that payback is a bitch
    12. Re:Typical Microsoft by ozmanjusri · · Score: 3, Interesting

      I have to administer mac's at my college, and every one of them has anti spyware anti virus on them. Why would this be?

      Shouldn't you be asking the administrator this question? Hang on....

      Admittedly Linux machines dont have the infections yet but they are ones I've used online for a total of 15 minutes so not long enough to be infected.

      Maybe you should have waited an hour or two before posting then.

      Or you could just ask someone who's used Linux online for a little longer than you. They might be able to tell you how likely it is that you'll pick up an infestation of spyware (Hint: It's somewhere between Buckley's and none).

      --
      "I've got more toys than Teruhisa Kitahara."
    13. Re:Typical Microsoft by Ibanez · · Score: 4, Insightful

      Well, until the average person realizes how crooked this is, its one hell of a business plan. You have to give it to them, they're pretty close to mastering the art of screwing your customers.

      Its almost like a drug dealer who also owns the rehab center.

    14. Re:Typical Microsoft by gad_zuki! · · Score: 2, Insightful

      >Or you could just ask someone who's used Linux online for a little longer than you.

      I dont care what OS you are using, if the software you are installing is bundled with spyware then you're "infected."

      The problem isn't really technical, although getting rid of the abused and proprietary activeX system would help. Even then the spyware people would just partner up with some free app like they have done with bearshare, limewire, etc.

      The problem, as usual is between the keyboard and the chair. Not to mention shady marketing practices and unreadable EULA's.

    15. Re:Typical Microsoft by obeythefist · · Score: 4, Funny

      In a fit of bizarre insight, it occurs to me that perhaps until Linux does have problems with spyware, it hasn't proven itself ready for the desktop.

      More as an indicator really, if ad companies think there's money in exploiting linux, then linux has obviously made the grade!

      I think it's probably only a matter of time before linux viruses and spyware become more prevalent. This is a testament to the success of linux and the evil bastartude of the advertising industry.

      --
      I am government man, come from the government. The government has sent me. -- G.I.R.
    16. Re:Typical Microsoft by Keeper · · Score: 2, Informative

      You can get this same set of functionality by adding 'trusted' sites (ie: sites you are willing to run ActiveX controls on) to the trusted sites zone. Modify the internet zone activex setting which turns on/off activex controls to "administrator approved". If there is an ActiveX control you know is safe and want to be viewable in the "internet zone", add the control to the list of administrator approved controls.

      Wish SP2 you also have the ability to disable specific ActiveX controls so that they'll never run.

  3. Buying a company... by Eggplant62 · · Score: 4, Insightful

    Does not a turn-around make. Just because MS sees a possible investment opportunity doesn't mean that this is them taking steps to fix their broken software. Ever think this might just be an attempt to cash in on their problems??

  4. SpyBot still better by astebbin · · Score: 5, Insightful

    Even so, I still prefer my (free) SpyBot S&D which runs on Windows and Linux.

    1. Re:SpyBot still better by ticktockticktock · · Score: 2, Insightful

      Maybe some spyware can run in wine?

    2. Re:SpyBot still better by Chairboy · · Score: 5, Insightful

      I ran Giant anti-spyware a few weeks ago on a system I had just used Ad-Aware and Spybot on, and it found more stuff. Real stuff too, not just cookies from doubleclick. The system was really deeply infested, and Giant got lots of stuff the others didn't.

      Have you tried it? Or was your generalization based on assumption?

    3. Re:SpyBot still better by JeremyALogan · · Score: 2, Interesting

      You are wrong in so many ways.

      Viruses are exclusive (almost) to Windows because it's possible for them to spread. Linux enforces user permissions so (unless you, stupidly, run as root) there's not too much havok the can wreck. Sure you may loose the stuff in your home directory (~) or other files you own, but that's not that big of a problem (most viruses try and damage systems, not files). Viruses also, traditionally speaking, make use of security holes, or other such things. If these don't exist then there's no real threat.

      Antivirus software IS useless under Linux. There are no (to my knowelege) viruses for the platform, so there's nothing to detect. The only advantage I can see to there being scanning software is to clean up Windows partitions. As soon as the first Linux virus manifests then it will make sense to have it, but if there's nothing to detect then why have software to detect "it".

      To touch on your cross-platform email virus. I don't know about you, but what mail clients do you know of that automatically run code from email attachments? Not only that, but they'd also have to recognize the format and call up the interpreter for that specific format. I know, for a fact, that none of the email clients I've ever used (at all... under any platform), save Outlook, DO execute untrusted code. Your version of a cross-platform virus would have to be built in either a scripting language (which can even be quite powerful. eg Python) or an interpreted language (eg Java or .Net). Name one (for any platform) email client that will recognize an attachment as Java, locate the executable, and automate the execution of the untrusted code. Also, just for good measure, name one cross-platform virus (doesn't have to be email-borne) of ANY type.

      Either you don't know enough about the subject matter or your logic is that "you never know... someone might be able to figure out how to code a virus for a system that's proven resistant." That's kind of like wearing a little white surgical mask all the time because "you never know... them terrorists might figure out how to dust my city with anthrax." Possibility does not equal probability.

      --
      Jeremy Logan's Website.
  5. Discussion @ BBR/DSLR's security forum... by antdude · · Score: 3, Informative

    There is a discussion in Broadband Reports/DSL Reports' security forum about this.

    --
    Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
  6. No way by AdamTheBastard · · Score: 4, Insightful

    You have got to be kidding me. Rather than make their OS and apps secure and PREVENT spyware... they would rather make money selling another product to CURE the spyware.

    How can this be a good thing?

    Prevention is always better than cure.

    1. Re:No way by PocketPick · · Score: 2, Insightful

      Having secure software does prevent spyware (though it goes a long way towards helping it). No doubt, Microsoft will tout this as an application that removes spyware that became present "due to human error" (or at least they would like you to believe that).

    2. Re:No way by the+pickle · · Score: 4, Insightful

      they would rather make money...How can this be a good thing?

      I think you just answered your own question.

      p

      --
      In Korea, long hair is for old people!
    3. Re:No way by aldoman · · Score: 4, Insightful

      You might want to see how most spyware gets onto the system.

      The vast majority is either installed via 'yes' on spyware dialogs (XP SP2 declines this automatically so they are trying to prevent it) or via apps like Kazaa and 'Weather in your system tray!!!' programs. I suspect the majority will comes from the latter in future.

      Please explain to me how you prevent spyware like this getting onto the system via an-administrator authorized account pressing 'next' and installing a bunch of spyware via an installer?

      The only way I can see to prevent this is either not running as administrator, which is clumsy as most people want to install software, printers, games without having to log in and out, or by digitally signing every file that is allowed to be transfered onto the filesystem and executed. Gee, that sounds like Trusted Computing which the Slashdot crowd hated (rightly so, it is a horrible idea).

      The fact remains that getting rid of spyware is very, very hard. It's like a car maker trying to prevent people flooring it and driving off a cliff - they are telling the machine to basically, jump off a cliff in terms of performance and security. There is very little that you can do without being very extreme in stopping people doing things that you want to do on the computer.

      --
      IntechHosting - Free domain, 2GB, PHP, £4.95/$8.95
    4. Re:No way by Hatechall · · Score: 2, Insightful

      Prevention is always better than cure.

      True. But telling this to somewone who already has AIDS doesn't help alot, either.

      And although I am a minority voice here on Slashdot, I seriously think that they are looking to prevent future security breaches. Of course they are not doing it to feel all warm and fuzzy or whatever, but I do believe it is being done. Call me an unreasonable optimist if you must.
      And yes, this isn't an easy issue to deal with. Maybe it should have been delt with better by now, but that is a seperate issue.

    5. Re:No way by IchBinEinPenguin · · Score: 2, Interesting

      The fact remains that getting rid of spyware is very, very hard.

      Agreed. However, installing spyware in the first place shouldn't be as ridiculously easy as it is!

      The design tradeoffs between security/usability have in IE have created a wonderful inTRAnet explorer. It's great for filling in the company timesheet using some custom ActiveX applet, but it should _NEVER_ be allowed on the inTERnet.

      To follow your analogy, a dune-buggy is fantastic at messing around on dunes, but you wouldn't want to be driving one on the highway.

      [ shameless plug ]
      See "Examination of PC security: How we got where we are and how to fix it"
      [ /shameless plug ]

  7. Stop using IE! by CypherXero · · Score: 5, Funny

    Firefox. That's how you stop spyware from getting on your machine. Good god, Microsoft just spent a shit load of money, when they could have just downloaded Firefox. Tsk tsk.

    1. Re:Stop using IE! by freitasm · · Score: 5, Informative

      Spyware and adware infections will not stop by simply using Firefox... How many users are still going to download the cute p2p program full of dialers, spyware and adware, regardless of using Firefox, Mozilla, Internet Explorer or even Mosaic?

      A lot of people still download and install programs manually...

    2. Re:Stop using IE! by sploo22 · · Score: 5, Funny
      A lot of people still download and install programs manually...

      *gasp* Those poor people! They really ought to switch to Linux and find out how much simpler everything is!
      $ apt-get install bonzi-buddy gator smileycentral
      --
      Karma: Segmentation fault (tried to dereference a null post)
  8. forward thinkers by fearanddread · · Score: 5, Funny

    It's good they are looking ahead before this kind of stuff really becomes a problem!

  9. Bad track record by confusion · · Score: 5, Interesting
    At first, I thought this was going to spell the end of a lot of anti-spyware companies, but then I realized that MS has bought a lot of companies and done next to nothing with them (what was the name of the A/V company they bought again?)

    On the upside, if they are serious about it, I think this is going to be a huge boon for corporate IT. Spyware has become one of the biggest headaches for IT these days. I believe about 50% of our support tickets are related to spyware.

    Jerry
    http://www.syslog.org/

    1. Re:Bad track record by LiquidCoooled · · Score: 2, Insightful

      I believe about 50% of our support tickets are related to spyware.

      Redundencies?

      Don't need to worry about outsourcing if there no job to do in the first place.

      --
      liqbase :: faster than paper
    2. Re:Bad track record by aardwolf204 · · Score: 2, Interesting

      From the article:

      "Microsoft plans to make available to Windows customers a beta version of a spyware protection, detection and removal tool, based on the GIANT AntiSpyware product, within one month"

      "This announcement and the release of the free beta will help consumers regain control over their PCs."

      (emphasis mine)

      I think that spells it out pretty clearly, at least for the beta. As others have pointed out, yes its a conflict of interests. However considering how bad the spyware problem is, FTA:"A November 2004 IDC study estimated that 67 percent of consumer PCs are infected with some form of spyware.", I believe Microsoft will continue to make security improvements to the operating system, the problem in the first place.

      No matter how much you want to blame the "stupid (l)users", Microsoft is still responsible for the insecure code that let some of the spyware install in the first place. I read over the Microsoft spyware website and I think its great that they're trying to get people aware of the dangers and even suggesting solutions like limited user accounts, and ad-aware and spybot S&D.

      I'm hoping that the anti-spyware program Microsoft releases will:

      1. continue to be free after beta
      2. be free for corporate use
      3. prevent spyware installations through blacklists or other means
      4. evolve into a more manageable solution like Microsoft's Software Update Service which is a must for any Windows network.

      --
      Im dreaming ofa big bndwdth, That can resist the /.crowd.May ur days b merry & bright & may al
    3. Re:Bad track record by bushidocoder · · Score: 2, Interesting
      They bought at least two - GeCad and Pelican.

      That said, Microsoft hasn't released an antivirus product yet for legal reasons. Although they purchased antivirus resources (in fact, they purchased full applications, which Microsoft historically can rebrand and turn around in months) in 2003, they elected to delay releasing a product until 2006 soas to give the existing antivirus companies a reasonable amount of time to respond to the change in their market. A Microsoft antivirus suite would have an incredible edge over existing systems, particularly in the home market.

      Don't be mistake - they didn't do it out of the kindness of their hearts. They're just trying to limit the number of concurrent anticompetitive lawsuits they're involved in to double digit numbers.

  10. Conflict of interest by Mr.Zuka · · Score: 2, Interesting

    Isnt this a conflict of interest making the software that has the bugs and also selling the software that covers over those bugs. (I know Microsoft...)
    I think this really shows how Micky Mouse the code is that they are taking this route instead of getting the protocols right from the start.

  11. Irony by theycallmerenda · · Score: 5, Interesting

    The first post after the spoofing vulnerabilitiy in IE is MSFT buying their way out of their own self-created problems...

  12. Something brewing? by bigbigbison · · Score: 2, Insightful

    In 2003, they bought GeCAD , makers of RAV-AntiVirus . So is Microsoft going to release their own anti-virus too?

    --
    http://www.popularculturegaming.com -- my blog about the culture of videogame players
    1. Re:Something brewing? by robyannetta · · Score: 2, Interesting
      In 2003, they bought GeCAD, makers of RAV-AntiVirus.

      What I always thought was interesting was the RAV guys were very pro-Linux and sunk a lot of money into AV for Linux. The next day when every heard this (After advertising it Ad Nauseum in Linux Journal), M$ bought them out almost immediately. I was always suspicious that RAV was a "prime buy-out material" just for that reason.

      As always, add your own conspiracy theory below by clicking on the [reply to this] button.

      --
      - Just my $0.02, take with a grain of salt, your mileage may vary.
  13. Thanks again, Microsoft! by goon+america · · Score: 4, Funny

    Thank you Microsoft, for valiently saving us from the dangers you created!

    Microsoft: Acting more and more like a government every day.

  14. Embedded Windows spyware by astebbin · · Score: 2, Interesting

    If created, would this Microsoft anit-spyware tool remove all of the spyware and adware that comes pre-loaded with Windows? A friend of mine ran Spybot S&D on a clean, out-of-the-box Windows machine, and SpyBot picked up several insatnces of propreitary malware before the machine even hooked up to the web... And if this tool doesn't remove all of the aforementiond preloaded spyware, how can it possbily be effective at removing the non-Microsoft versions accquired over the course of normal Internet travel? I go to MSN Groups and SpyBot tells me it has blocked the download of Adware Inc... Just my thoughts on this as it develops.

    1. Re:Embedded Windows spyware by Exatron · · Score: 2, Insightful

      It has potential to be worse than that. For the right price Microsoft will probably have their anti-spyware program "miss" a company's spyware and adware.

      --
      "I think so, Brain, but 'instant karma' always gets so lumpy." - Pinky
      "Decepticons FOREVER!!!" - Ravage
    2. Re:Embedded Windows spyware by BCW2 · · Score: 2, Informative

      Not quite. A fresh install of Win XP will have between 11 and 13 instances of Alexa on Ad-Aware, followed by one more and 5 DSO exploits on SpyBot. Installing and running Ad-Aware and SpyBot is the next thing I do at the whitebox store I work at, for a format re-install or a brand new machine. No they are never hooked into the network for the first boot.

      --
      Professional Politicians are not the solution, they ARE the problem.
  15. Whoa, misread that... by powerlinekid · · Score: 5, Funny

    I thought that said "Microsoft acquires spyware company" at which point my coworker responded "Makes sense, they try to integrate everything else".

    --

    can't sleep slashdot will eat me
  16. Can't wait for the bad precident by QuantumG · · Score: 4, Interesting

    Ya know, as soon as they release a Microsoft branded spyware removal tool will be the day they draw the line in the sand defining exactly what apps are welcome on the Microsoft platform and what apps are not. If Microsoft gets the final say of what runs on your machine, what makes you think they're only going to be removing spyware?

    --
    How we know is more important than what we know.
  17. its funny cuz its true by viva_fourier · · Score: 4, Insightful

    Irregardless of the quality of the anti-spyware, isn't it just damned *ironic* when a company can make a huge profit on a product, and then make *another* goatload of cash by fixing it.

    So I ask you, why would Microsoft *ever* wish to produce flawless software???

    --
    and now back to the fallout shelter...
    1. Re:its funny cuz its true by Chemical · · Score: 2, Interesting

      What makes you think they're going to charge for it? Microsoft has taken a hit on OS utilities before. They spent millions developing IE, which they then gave away. IIS is included with Windows for free. Tools like SFU can be downloaded for free. They included a disk defragmenter in W2K and newer. My guess is they'll include it in the next release of the OS, or maybe next XP service pack.

  18. Re:Why? by MmmDee · · Score: 2, Interesting

    You know, it could be that MS purchased Giant so they don't have to do their own research into the intricacies of how some spyware is installed, avoids detection, and re-inserts itself after "removal". Sometimes an hour with the book beats a week in the lab. If they'd only hired the expertise (who probably currently work for A/V companies), they might have been sued for IP theft.

    --
    No man's an island, unless he's had too much to drink and wets the bed.
  19. Hope it doesn't affect Giant's service by Mordak_Foo · · Score: 2, Interesting

    I've just recently started Giant's AntiSpyware program and found it to be excellent at cleaning up the VX2 remanents and anything else left over after running Spybot S&D and Lavasoft's Ad-Aware. I sure hope that M$'s take-over doesn't make a worth-while antispyware tool worthless.

  20. Finally, a REAL "Profit!" plan.... by flinxmeister · · Score: 4, Funny

    1. Write buggy OS with no security model
    2. Acquire company that bolts on a bandaid
    3. Profit!

    What next?

    "Microsoft to buy Large antivirus firm."

    "Microsoft announces acquisition of blue-screen-B-gone Inc."

    "Microsoft acquires company that removes the freakin' paperclip"

    1. Re:Finally, a REAL "Profit!" plan.... by Osty · · Score: 2, Insightful

      God I wish that last one could one day be real

      It has been real since Office 97 (which also coincides with the introduction of the paperclip in Office -- I believe he existed before in Bob, like the dog and cat). Don't want the paperclip? Don't install the paperclip (Office Assistant) when you install Office. Simple. Done. Oh, yeah, and IIRC Office XP Office Assistants do not install by default (they're marked as "install on 1st use" or something like that, though if you don't even want that you can change it to "Not Available" -- see below).

      If the paperclip is already installed and you want it gone, follow these simple steps (targetted to Office 2003, since that's what I have installed here, but the approach is similar for all recent versions of Office):

      1. Open Add/Remove Programs from the Control Panel
      2. Find the Microsoft Office entry in the list, and click the "Change" button
      3. Select "Add or Remove Features" if it's not already selected and click Next
      4. Check "Choose advanced customization of applications" and click Next
      5. Expand "Office Shared Features" in the tree view
      6. Find "Office Assistant" in the newly expanded portion of the tree
      7. Click the down-arrow, and select Not Available
      8. Click Update and finish out the wizard
      Voila (not "viola"), no more paperclip.
  21. Re:Why Ask ? Linux+ClamAV is safe. by xtermin8 · · Score: 3, Insightful

    Spybot doesn't really run on linux, and I doubt spyware runs on linux desktops, either. There are cookies you may want to be aware of, but most linux web-browsers make this easy. There are some linux viruses, but also cross-platform antivirus programs. Clam Anti-Virus is a free, open-source app which runs on Windows, Linux and Mac OS X.

  22. And in other news by aardwolf204 · · Score: 4, Funny

    In other news, Philip Morris acquires Pfizer's Nicotrol divison.

    Story at eleven.

    --
    Im dreaming ofa big bndwdth, That can resist the /.crowd.May ur days b merry & bright & may al
  23. missing the point by Dipster · · Score: 4, Interesting
    Why would Microsoft fix their bugs? It doesnt matter how many holes Windows/IE have, people will still buy it. You can see that every day as new windows exploits come out and yet we dont have a mass migration to Linux and/or Unix.

    Microsoft makes money based on upgrades. New versions of Windows, new versions of Office, new versions of whatever. People blindly upgrade in the hopes that the new version will fix the bugs of the old one. But all these new versions are just as buggy as the first. Not the same bugs, but all new ones...

    Now if Microsoft were to make a product that performed wonderfully the first time around, why would you have any incentive to upgrade? They can tout new features and bells and whistles, but if the product you have is working fine for you, then why spend the money?

    As long as they hold a monopoly, they can continue to create buggy software with no real risk of losing customers.

    Now what if they could sweeten the deal even more. What if they "forced" people to buy software that had a giant problem, and they also sold the cure. Then they get to charge you twice. They could fix the problem, but then they would lose money. That doesn't make much sense. As long as there are no real alternatives to the average user, Microsoft has free reign to run their stratagy.

    Microsoft isn't dumb. There's a reason they are where they are today. They've found a damn good buisness stratagy that works.

  24. Windows98 clean install results in 8 spyware... by 3seas · · Score: 2, Insightful

    ...items....

    Now think again why MS would want such a anti-spyware product.

  25. Good move. Just not the whole solution by Timbotronic · · Score: 2, Insightful
    All the posts about prevention being better than cure miss the point. There are already millions of compromised systems out there. Sorry to break the /. code of compulsory MS bashing, but any initiative that could help reduce the number of spam bots out there is a good thing.

    MS needs to fix and upgrade IE as part of any attempt to fix the problem. No question. But the need for spyware removal tools is still there.

    --

    One of these days I'm moving to Theory - everything works there

  26. SpamInspector by delus10n0 · · Score: 2, Informative

    GIANT Software makes a product called Spam Inspector, and up until about 6 months ago, it was one of the best anti-spam products for Outlook. Then they started to demand yearly fees to use the program (when they originally sold it as a one-time payment.)

    So yeah, I ditched the program and found Spambayes, and I haven't had a complaint. I'm bummed I wasted money on SpamInspector, though.

    --
    Not All Who Wander Are Lost
  27. My personal opinion.... by hawkes · · Score: 3, Funny

    ...is that it was a move to generate the worlds most ironic headline :

    "Microsoft acquires Giant Company"

  28. RE: this is a good thing? by King_TJ · · Score: 4, Insightful

    IMHO, it's only a "good thing" from a relative standpoint. Sure, it's "good" that MS realizes spyware is enough of a problem that they decide to buy out someone who has already been working hard to solve the problem. (From a few recent comments I read over on ArsTechnica after they posted a spyware-testing article, Giant's product is supposedly quite good. In fact, arguably the best available right now, of the non-freeware spyware removers.)

    As the parent poster pointed out though, this stuff isn't even an issue for non-Windows users. I'm using my PowerMac G5 tower right now, and it's rather nice not to have to wait while my anti-virus package loads up (further cluttering up a crowded system tray), and then having to wait while the thing does its automatic updates every day or two. No spyware/malware worries either. Just boot up and go....

    I do PC on-site service calls for a living (Mac too, on the odd occasion we get them), and I can honestly say that virus/spyware issues generate the vast majority of my income right now. From that angle, I guess I should be happy there's such a big problem. But somehow I'm not... I often tell my customers about the Macintosh alternative (both the good and the bad), and at least 40% of the time or so, they decide it really sounds like it's "right up their alley" and they consider one for their next system purchase.

    Call me crazy or whatever... but after 14 years of working with computers, I just feel like it should be as enjoyable an experience for people as possible. Using as much as 30% of your CPU time running background tasks like firewalls, virus scanners and anti-spyware packages seems so unnecessary....

  29. Same old Microsoft by OmegaBlac · · Score: 2, Insightful

    1. Develop crappy exploitable browser and distribute browser for free.
    2. Refuse to seriously fix free browser.
    3. Buy anti-virus and anti-spyware companies.
    4. Sell anti-virus product to clean up after your free crappy exploitable brower.
    5. Use monopoly desktop OS position to drive-out the competition.
    6. Profit.

    Typical Microsoft.

  30. Why would they have to do this? by Game+Genie · · Score: 2, Insightful

    Microsoft bought a company that produces software designed to uninstall malware from it's operating system. Shouldn't Microsoft have enough mastery of it's own OS to do this internally? Sad, sad, sad.

  31. Re: I like using Windows and developing for it by Trepalium · · Score: 2, Interesting

    Many of Microsoft's security flaws are self imposed. ActiveX and security zones in IE, for example. Eager to make the web another Windows application zone, they introduced ActiveX. Wanting to crush Netscape because they could possibly make Microsoft Windows irrelavent in the future, they integrated IE into Windows, and that required security zones. I won't lay the blame entirely on Microsoft for the viruses and worms, but I will lay it on them for the drive-by install of spyware that every IE user has to beware of. In their efforts to destroy competition, they opened their customers up to this.

    --
    I used up all my sick days, so I'm calling in dead.
  32. False dichotomy alert! by khasim · · Score: 5, Interesting
    As far as I'm concerned, Microsoft makes good products.
    I'm sure that's true. For suitably broad definitions of "good".
    Sure there are security holes, but you hypocrites fail to remember (when its convenient) that no large scale software application is 100% bug free.
    #1. Learn what "hypocrites" actually means.

    #2. There are far more options than
    a. "riddled with spyware"
    and
    b. "100% bug free"

    Linux is not "100% bug free" but its security model is far better than Microsoft's and, as a result, it is far less likely to be infected.
    Knowledgeable users know this and make use of hardware and software firewalls, antivirus apps and spyware detection apps.
    I'm sure they do, for a suitable definition of "Knowledgeable".

    Or, to put it another way, there are lots and Lots and LOTS of infected Windows machines out there so maybe the requirements to be considered "Knowledgeable" are a little too extreme?
    Security will always be a problem.
    But there is a continuum there, not a binary state.

    Sure, security might be a "problem", right below hard drive crashes and CPU fan failures.

    The idea is to remove/reduce the potential threats so that your system is not cracked within 10 minutes of going online.
    There is no single magic bullet solution and Microsoft realizes this.
    That is correct. But there are LOTS of bullets available that Microsoft is ignoring.

    The biggest is to change IE from an "allow everything except what is specifically denied" security model to one such as Firefox's "deny everything except what is specifically allowed".

    Sure, a "knowledgeable user" could configure both systems to have the same, effective security, but as I've stated before, there doesn't seem to be a lot of those "knowledgeable" users around.

    The second biggest thing is to TURN OFF UN-NECESSARY SERVICES. Look at a stock Win2000 or WinXP machine and see all the services that are on by default.
    With so many millions of people running Windows there are always going to be alot of targets for the unscupulous to prey upon. -Mike
    Yep. But the least Microsoft can do is to make their system as secure as possible.

    Cracking is all about access.

    If the bad guys cannot get access to your system (no ports open), then they lose an entire avenue of attack.
  33. Re: I like using Windows and developing for it by EnronHaliburton2004 · · Score: 2, Insightful

    Knowledgeable users know this and make use of hardware and software firewalls, antivirus apps and spyware detection apps.

    "Sure, I leave the front door to my house unlocked, but I keep the bedroom door locked".

    You should stop the problem before it reaches the OS, not apply bandaid solutions after the fact.

    --
    94% of Repubs and 21% of Dems voted to renew the Patriot Act
  34. The history of ActiveX by jonwil · · Score: 2, Informative

    It started when microsoft created Visual Basic way back when.
    They invented this new thing called a VBX.
    a VBX was basicly a custom control in a DLL file and had hooks where VB could talk to the control and where the control could talk to VB.
    The VBX evolved along with Visual Basic through versions 2,3 and 4 on the 16 bit platform.
    Also, some other programs (including 16 bit versions of Visual C++) were able to embed VBX files.

    Next we have OLE. This started out with OLE 1.0 and advanced to OLE 2.0 and to COM. The OCX (as it was known) developed from a merger between the VBX and OLE. It started out as a way to embed controls into an app just like a VBX. There was a 16 bit version of the OCX (that never took off) and the 32 bit version.
    The ActiveX control is the evolution of the OCX.

    ActiveX controls are NOT bad, they are a good idea.
    What was a bad idea was implementing support into Internet Explorer for embedding ActiveX controls. And for implementing VBScript to talk to those controls.
    I have yet to see one use of ActiveX on the internet that could not be done some other way.

    Thankfully, I seem to be able to avoid ActiveX controls in my own use, the only place I have seen them lately is on some Microsoft sites.

    As for those who say that some banks and such use ActiveX, well if I found a secure site that required IE to function, I would take my business elsewhere.

  35. Re:three real steps. by Lotunggim+Ginsawat · · Score: 2, Informative

    My recipe for spyware-free computer with IE.

    IE + Spybot Search and Destroy BHO + SpywareBlaster + Proxomitron = spyware-free computer.

    Doesn't even have to switch to Firefox. And all websites works fine with this config.

  36. Was probably cheaper by gilesjuk · · Score: 2, Funny

    They probably bought the company since it was cheaper than buying licenses for all of their machines at Redmond :)

  37. Re:IE, Outlook, WMP, MSN, ... by n0dez · · Score: 2, Funny

    first, it disables IE, then Outlook Express and Outlook 2003, then Windows Media Player, then MSN Messenger, then... Windows XP! Error 0x30a8 r93x038 Windows can't boot properly due to a missing file: msspy.exe in folder system32 Please call Microsoft or re-install Windows XP.

  38. Thats a fraudualent claim by Blitzenn · · Score: 2, Insightful

    First off, Spyware didn't even exist at the time that Windows 98 was made. I would suggest that if you are being infected on a clean install, that you trash your stolen copy of the OS and go buy a real one. ISO downloads are quite often infected by spyware, trojans and such. So I wouldn't be surprised if you were having that problem.

  39. An ounce of prevention... by C_Kode · · Score: 2, Insightful

    As they say, An ounce of prevention is more valuable than a pound of cure. Why don't they fix the hole in Internet Explorer rather than implement software to remove exploits? Oh thats right! It's not a security hole, it's a feature.

  40. Same old same old by Caiwyn · · Score: 2, Insightful

    You find it "refreshing" to see Microsoft try to capitalize on a problem they themselves caused? You don't pay very much attention, do you?

  41. Conflict of interest? by spectasaurus · · Score: 2, Insightful

    Don't you think it's a little fishy that a company like Microsoft releases software with all sorts of holes, then sells you the software to fix it? I'm not sure what this business practice is called, but it's very much akin to a pharmaceutical company selling the cure for a disease they created in the first place.