Microsoft Officially Announces Anti-Virus Product

Harry Maugans writes "Microsoft has officially announced their entrance into the anti-virus market. By combining anti-virus scans, anti-spyware scans, and firewall protection into a single package, Microsoft thinks they've created something fresh. So fresh they're charging an annual fee of $49.99 per year." From the article: "Microsoft's Windows OneCare Live program will be launched in June and made available online and via retailers for an annual fee of $49.95 on up to three machines. Customers who beta test Windows OneCare Live between April 1 and April 30 get to take advantage of a special $19.95 promotional price. Microsoft's pricing means Windows OneCare subscribers are likely to pay less up front than if they bought traditional anti-virus software like Symantec, for example, whose Norton AntiVirus 2006 protection pack for three PCs lists at $89.99."

Extortion

[duerra]

Is it wrong for me to feel used and abused at the idea that Microsoft wants to charge for this service? I have seen arguments both ways, but I can't help but feel that charging for such a service amounts to little more than extortion. I mean, it's their operating system, and problems with their code that *often* (but not always) allows for these problems in the first place, so why should I have to pay extra for protection from malware that should have been stopped to begin with?

Now, I know that often times it is the fault of stupid users when spyware, viruses, etc. get loaded onto a system, but for any reasonably computer savvy individual, these things blindside you when you least expect them.

I'm sorry, but anti-trust issues, in my opinion, are nothing more than a mask to use as an excuse for what this really is - extortion intended to nickle and dime consumers that rely on Windows because they can't/won't/don't know how to use anything else. Am I supposed to believe now that Microsoft won't intentionally keep open holes in their systems in order to "persuade" their users into purchasing this service? Somehow, I don't put such evil past them.

Re:Extortion

[duerra]

The answer is simple: don't buy Windows

For every complex problem, there is a solution that is simple, neat, and wrong.
H. L. Mencken

Surely you can understand that such a simple answer doesn't cover all scenarios and possibilities, and even if it may work for you and me, that answer isn't going to work out quite so well with 90% of the rest of the world.

Re:Extortion

[tsa]

You know what's the worst part? People will go and think: Hey, this is a Microsoft anti virus program. They know their software best, so it must be the best anti virus program out there. Let's buy it!

Re:Extortion

[hey!]

Well, you have to pay for it before hand or afterwards. Businesses don't do anything unless there's a revenue stream for it. If you want better software, you have to pay for it one way or another.

I don't see extortion as the issue; it's not like they have to work to put security holes into their software. All they have to do is follow normal business practices.

The reason Windows is so insecure is that there is no complete competing Win32 implementation. Customers perceive the cost of not using Windows greater than the costs of using Windows with its faults. Customers do have a choice, but MS is not obligated to give them the choice they might wish for. The choice now is take it or leave it, and they only have to make software good enough so nearly everyone just takes it. MS is not a charity; any executive who spent more money on security than is needed to achieve this would, and probably should be fired.

We rely on competition to improve products, and there is not sufficient competition to force MS to improve their operating system in this way. Alternatively we'd have to use regulation, which in the current political climate is practically considered evil.

If Microsoft can leverage it's monopoloy position in desktop operating systems into a monopoloy on security products, then we'll really be screwed, because the same logic will apply. Once they succeed in killing of the competition, they can let the quality of their product slide just to the point where it's not quite worthwhile for somebody to try to launch a competing product. And they might be able to to do this. They can use their unique access to internal APIs and their unique ability to alter the operating system to suit their products to give their products a leg up. They can fund the overhead for their security products out of their monopolistic profits; if they do anything more than break even at the outset, nobody's going to bat an eyebrow, least of all the regulators.

The likely end scenario is that the world economy will spend untold billions of dollars annually for problems that probably could be fixed for a fracion of a percent of that cost. But that's not MS's concern, if they can make a nickle more that way. They're not a charity, nor should they be expected to act like one.

Re:Extortion

[earlshaw03]

Why is Microsoft considered evil when they introduce an anti-virus, anti-spyware, and firewall for a fee. This is purely a business decision to protect Microsoft from lawsuits. Lets see her if Microsoft was to include this service for free or intergrate it into Windows Vista, then companies like Symantec, Mcafee, etc would sue the shit out of Microsoft, just like other companies sued Microsoft over intergrating a office suite in Windows. If you want to talk about something evil why don't we talk about the people who write these viruses, spyware, malware, etc. They are the reason we have to have so many security solutions in the first place. Its amazing how much hate there is for Microsoft on /. If you don't like it then quit using it. There are other solutions out there, so if you feel that Microsoft is so evil then quit supporting there products.

Re:Extortion

[supabeast!]

"Is it wrong for me to feel used and abused at the idea that Microsoft wants to charge for this service?"

Not really - after all, if you just install Microsoft's free updates and secure your computer using methods available online for free, you shouldn't need Microsoft's antivirus services to begin with.

The big purchasers of this product will be corporate and government IT departments looking to save money by buying bulk quantities of Microsoft antivirus as opposed to other products that cost more. It's unlikely that the sleazy side of Microsoft selling antivirus software for its own OS will defer customers, as sleazy business practices have already tainted Symantec and McAffee. Microsoft can afford to undercut every other vendor's pricing and watch them all go under, and as long as the new software isn't bundled with the OS, the DOJ and EU will probably let it be.

Re:Extortion

And what proof do you have that MS intentionally writes "buggy" code? Is it because you hate Microsoft and therefor anything that comes out of them should be shunned?

Does some MS software have problems? Yes. Do they do it intentionally? I highly doubt that. The fact of the matter is there ARE people out there who are writing viruses and hacking computers and this seems to bother the Slashdot community very little for some reason. All probably because of some irrational hatred of MS. Should MS fix flaws? Of course. But I think everyone here would likely agree that it is impossible to write any code which is 100% secure. Look at your precious Firefox and all those unfixed reports in Bugzilla etc. MS isn't the only group whose software has issues that need to be fixed and they should be fixed, but don't place all the blame on them when the real assholes are out there writing the viruses and exploits that make everyone's lives harder.

Re:Extortion

[duerra]

Damn right it is purely business - and that's the problem. Suing for bundling everything under the sun with the intention of abusing monopolies is one thing, but bundling (for free), security software to protect the operating system that should be secured in the first place, does not strike me as monopolistic abuse. Using that excuse sure is convenient though, isn't it?

Being afraid of getting sued hasn't really slowed Microsoft down in the past, so why should they start when it comes to the security of their OS? Oh, right - because they can make money on it this time around. What makes you think that Microsoft isn't using tricks and internal-only API's to make their AV product that much better than the competition? Isn't that abusing their monopoly just as well as if they were to provide it for free? What happens when a security hole goes unfixed for a month because Microsoft has gotten lazy, and it's in their best interest not to fix it to begin with anyway, because they stand to profit from OneCare sales if they "test" a patch just a bit longer? Sure, for high-profile exploits they'll fix them right away to save the PR backlash, but they still are ahead in the end.

I don't hate Microsoft. I really don't. I think they have contributed a fuckton to the industry. But this is just plain wrong, and does nothing more than cast doubt into their userbase regarding their credibility.

Re:Extortion

[thePowerOfGrayskull]

I think you're right, but here's what I think the problem is from MS perspective. There's an entire industry built around antivirus/protection rackets. Billions of dollars. If they start to include this product for free (never mind fix the root cause of the issue, that ain't gonna happen) as they really SHOULD do, even though most consumers would not cry "monopoly", the competitors would. And loudly.

They've stuck themselves between a rock and a hard place.

Re:Extortion

[Deathlizard]

I'm sorry, but anti-trust issues, in my opinion, are nothing more than a mask to use as an excuse for what this really is - extortion intended to nickle and dime consumers that rely on Windows because they can't/won't/don't know how to use anything else. Am I supposed to believe now that Microsoft won't intentionally keep open holes in their systems in order to "persuade" their users into purchasing this service? Somehow, I don't put such evil past them.

Do you really believe that Symantec/Mcafee/ETC would just sit back and watch their Primary Cash Cow dissolve if Microsoft decided to incorporate Anti virus natively in Vista? Microsoft would be sued for antitrust before Vista was even released.

Microsoft has only three options here:
- Let the third party handle it (Sarcasm)Since that's worked so well(/Sarcasm)
- bundle it into Vista, which would be the final solution to the problem for good, and then say hello to the judge.
- Sell it as a product, which avoids the Courtroom tour and may or may not be better than the third party and can at least possibly advertise it in vista. But get accused to intentionally allowing holes in your product to sell it in the process.

And No. Fixing the OS is not the final solution (or the problem for that matter). I can guarantee that Vista even with all of it's user restrictions, protections and the like will still have a virus problem, because you can patch the OS until the cows come home, but you can never patch the idiot in front of the keyboard. That idiot will run something bad, which will infect his user account (Which doesn't need Admin/Root/Privs to access and infect BTW. Same goes for you linux and OSX people who think your so safe.), and proceed to DOS everything it sees online and off with SPAM and their's nothing that the idiot is going to do about it until he can't use the computer anymore because it's spamming and DOSsing all day instead of looking at the pretty girls on the interweb.

As for Microsoft adding intentional backdoors to sell Onecare, it's highly unlikely, especially when you could easily go to Mcafee or Symantec for all of your security needs let alone the free apps out there.

Solution for lazy people

[teslar]

I predict a lot of comments along the lines of

1. Produce crap OS
2. Wait for exploits
3. Make people pay for fixes to the exploits
4. There is no step 4
5. Profit!!!!

But at the end of the day, the exploits are real, regardless of what may cause them and what you're paying for really, is the comfort of hassle-free self-updating protection. Sure, you could get it all for cheaper (as TFA notes, Norton may be more expensive in initial acquisition, but subscription renewals are cheaper - $49.95 for Microsoft vs $29.99 for Norton) or even for free (linux, free AV/Firewall software), but that involves more effort and people tend to be lazy. You are merely paying for the right to be lazy and that's got to be fair enough.

Assuming of course, that the product is worth it :) I still remember the last AV from Microsoft years ago... that offered less protection from Viri than a xxl-condom stripped over the hard disk.

Re:Solution for lazy people

[Malor]

The biggest thing I see is that there is now a fundamental disincentive to ever really 'fix' Windows.

When the AV products aren't from your own company, there's pressure to remove them as competitors. When the AV division is part of your own company, there's not much incentive to put your coworkers out of jobs. And management is unlikely to want to squash an ongoing revenue stream.

Microsoft has desperately wanted the subscription model for many years. This, essentially, is it. They get to charge you fifty bucks a year. If they get a significant chunk of the userbase signed up, that is a HUGE amount of money. They're NOT going to jeopardize this new revenue stream by making the platform fundamentally virus-resistant in any meaningful way.

In fact, they now have a big incentive to make the OS less secure.

Fair enough

[spge]

This is probably the best thing that could happen. The alternative is that Microsoft includes competent anti-virus software for free, which will damage other anti-virus companies, or at least create potential conflicts between the anti-virus software included in Windows and the stuff you will prefer to install.
Of course, the other alternative where Microsoft creates an operating system resistant to the vulnerabilities used by virus writers, belongs to an alternate reality.

Not a bargain

[richwiss]

Symantec rebates make the annual upgrade cost of these products almost (if not exactly) $0.

$49.95 per year for this product doesn't sound like a bargain to me.

Shady used-Car salesman..

[B5_geek]

I think this is funny.
Like a Mafia hitman offering "Protection Insurance".
Or a car-salesman offering a car dirt-cheap, but if you want a seat-belt and bumpers, well those are "Extras".

To be fair to Microsoft

[rsilvergun]

There's plenty of customers who are furious Microsoft isn't providing antivirus software. For them this is the fix. They think mechanically, and don't understand that computers shouldn't need fixing unless the hardware takes a dive. To them, this is maintence that ought to be provided by the manufacture. And besides, there's plenty of viruses that can't be stoped by good security (iloveyou.jpg.exe).

That said, Norton, McCafee, AVG, et. al. can kiss their collective butts good by. It's one thing if they had products Microsoft couldnt' compete with (ala Quicken), but last I check Microsoft Antispyware was one of the beter ones out there.

Re:To be fair to Microsoft

[Antifuse]

Even better - do what my girlfriend's company does, and put "I love you" in the "bad words" filter for your mail server, rejecting every single email containing the phrase "I love you" (except if the "I love you" is in the subject, those can go through. Even though the iloveyou virus specifically put "I love you" in the subject). Took us a while to figure out why my messages kept bouncing, it's not like I was calling her a filthy c-word. Best. Security. Evar.

Re:To be fair to Microsoft

[jonfelder]

Right, because the user is going to make informed decisions and choose not to run the thing after clicking through a million of these popups everytime they've installed something in the past.

I agree extensions should be shown, and I agree users should by default have non privileged accounts.

However, forcing the user to click through popups and having them add specific permissions to each executable is not the solution. I don't claim to know what the solution is, but I do know that popups and security warnings simply do not work. Only people who know what they are doing know what they mean. Unfortunately this is the same group of people who do not need them.

Maybe we could start with hardware/software that doesn't permit exploitable buffer overflows (we've got that now, we should be using it). In addition Microsoft should not allow untrusted data to be available to the inner workings of the OS via Internet Explorer.

Nothing is going to keep people from running stuff they shouldn't run. However, we can at least attempt to cut down on the things that run as a result of crappy code. Stupid things like the WMF vulnerability and buffer overflows should not even be problems anymore.

Re:To be fair to Microsoft

[Tony+Hoyle]

$149? For the educational edition maybe... you have to be a teacher or student to get that.

Amazon are selling the proper version of office for £311.97 ($499).

Re:Cars

[Se7enLC]

Yeah, they do that. When something was wrong with the car at the time of manufacture, when they find out about it they send you a little card in the mail to get you to come in to get "Warranty Work" done, they charge a fortune!

Oh wait, what's that you say? Warranty repairs are free of charge? Huh, well I'll be damned, you're right! Defective products ARE fixed/replaced free of charge. And it's REQUIRED by state Lemon Laws!

Can we have a Lemon Law for software?

Re:Charges for bug fixing

[amliebsch]

Afterall, viruses are nothing but exploits which take advantage of the windows bugs.

Everyone so far keeps saying that, but I don't think that's true at all. A virus is executable code that does something malicious. Unless your OS has so little functionality that it is impossible to do something malicious or to run executable code, people will get tricked into running malicious code. In slashdot tradition, the car analogy: whether your car is a BMW (OSX), a Ford (Windows), or an M1 Abrams main battle tank (*ix), it is possible to drive it off a cliff. That's not the manufacturer's fault because it's a subset of the activity that a car is expected to be able to do. It's not reasonable to expect them to clean up the mess if you do so. If you want anti-cliff-off-driving protection (in the automotive world, called "insurance") - that's extra.

Re:Old Auto Industry quote

[amliebsch]

Bad analogy. We're talking about users running malicious code, not breakdowns or failures. More like, if you pour bleach into your gas tank because someone told you it would turbo-boost your engine, should the manufacturer fix it for free?

re: 3rd. option?

[King_TJ]

I'm not much of a fan of Microsoft products. In fact, I've switched mostly to Mac OS X over the last few years. But nonetheless, your argument is really little more than a thinly veiled attempt to "flame" Microsoft.

Your "3rd. option" isn't realistically possible at all. The problem is, Windows started out as a layer to run on top of the MS-DOS operating system. Over the years, they kept adding to it and adding to it. Then they branched off another direction (Windows NT) when they realized building on the MS-DOS foundation was rather like constructing an office building on top of a sand pit. They already had too many "tenants" who didn't want to move though, so they kept on supporting the original effort as long as they could (Windows ME). Meanwhile, NT still had to look and feel like the "old stuff" and have a mechanism for running as much of the old code as possible.

To their credit, they did a really good job of migrating people off the the MS-DOS based code and over to a heavily upgraded Windows NT based structure (Windows XP). But they've always had to make serious compromises in the interest of "backwards compatibility".

But IMHO, they've been screwed from the start in areas like "security" - because they've incorporated FAR too much "legacy" code over the years, as they've made "backwards compatibility" their primary focus. Even their protocols (NetBIOS, etc.) were a kludgy mess that nobody seems to understand 100%. So how do you really expect their people to wade through the entire mess this late in the game, and successfully patch it up so it's just as secure as a newer OS built from scratch, with priorities like "security" in mind?

Throwing money at problems rarely ensures they're solved efficiently or completely. (Take a look at the Fed. govt. and their budget management if you don't believe this.) Microsoft, obviously, would never want to spend their "40 billion saved up in the bank" on patching Windows. But even if they did/could, I doubt it would ensure a truly secure OS. They didn't build on a Unix skeleton from the start, and the Unix skeleton has proven a better "foundation" for secure OS's so far. (BSD, Linux, Mac OSX, BeOS, etc.)

Re:Charges for bug fixing

[amliebsch]

who would you expect to fix it in this case

The manufacturer.

should they charge you for it?

No.

But Microsoft does already fix those types of problems for free (via hotfixes and service packs) and will continue to do so. That's not what anti-virus software does. Clear?

Re:Right or Wrong...

[rs79]

People should keep track of what they spend getting their windows pc unfucked. They might notice that in many cases they spend more in 1, 2 or 3 years so buy a Mac G4 dual off ebay which is more than enough for most people.

Hey Dad, you listening?

Analogy

[Rocketship+Underpant]

Heh, I think it's more like a restaurant offering to sell you their own brand of anti-acid pills or Pepto Bismol with your meal. :)

"Only $4.99, sir, and you'll probably need it considering the ingredients we use."

Re:Analogy

[Catbeller]

More like a restaurant slipping you arsenic with your meal, then selling you the antidote as an add-on dessert as you lay dying on the tiled floor. A MONTHLY antidote, no less, at an ever-increasing price.

Re: 3rd. option?

[Spinlock_1977]

I think you're taking "fix" a little too literally. One good fix would be to toss out the new stuff in Vista, leave the secure stuff, and stive for good backwardwards compatiblity. (In fact, I hear they're striving for this already). Then GIVE THE OPERATING SYSTEM AWAY to all licensed windows customers. Admit they fucked up their design decisions along the way and do something helpful for their customers.

This, in my opinion, would be a fix. It would also help fix their diminishing customer good will.

And I think it could be done for a lot less than 40 billion, athough admittedly, I haven't done the math. I hear you need a special computer for that anyway.

Why do you think ...

[LukePieStalker]

Why do you think they call it virus protection?

Isn't anybody the least bit outraged?

[AnalogDiehard]

This is reminiscient of the Bell Co's who sold their telephone listings to telemarketers and then offered their customers options to keep the telemarketers out and charged by the month for those services. They made $$$ on both ends.

M$ has "bundled" IE deep into the OS. IE is the primary channel that viruses and spyware exploit. Why can't they "bundle" the fix in the OS?

What a scam!!!