Microsoft's Free AV App May Be a Non-Starter

CWmike writes "Microsoft is preparing to launch a public beta of Morro, the free anti-malware it announced last November, according to reports. Morro will use the same scanning engine as Windows Live OneCare, the software that the free software will replace and Microsoft's first consumer-grade antivirus package. OneCare is to get the boot as of June 30 (along with finance app Microsoft Money). John Pescatore, an analyst at Gartner, has questioned whether users would step up to Morro even if it was free. 'Consumers are hesitant to pay for a Microsoft security product that will remove problems in other Microsoft products,' he said. 'Think of it this way. What if you smelled a rotten egg odor in your water and the water company said, "Sure, we can remove that, but it will cost you $50." Would you buy it?' Not surprisingly, competitors have dismissed Morro's threat to their business. 'We like our chances,' Todd Gebhart, vice president in charge of McAfee's consumer line, said when it was announced OneCare was a goner. 'Consumers have already rejected OneCare,' added Rowan Trollope, senior vice president of consumer software at Symantec. 'Making that same substandard security technology free won't change that equation.'"

As long as..

[NervousNerd]

As long as it doesn't suck as much as Norton (slow, hard to remove), I'll take a look at it. Right now I'm running ClamWin, and I'm looking for a better (free) anti-virus.

Bad Analogy

[Colonel+Korn]

'Think of it this way. What if you smelled a rotten egg odor in your water and the water company said, "Sure, we can remove that, but it will cost you $50." Would you buy it?'

This analogy is just dumb. This is a free product. Obviously the analogy would have the water company saying, "Sure, we can remove that for free."

Not to mention 'Consumers are hesitant to pay for a Microsoft security product that will remove problems in other Microsoft products,' which is a stupid point to make about a free product.

Furthermore, MS's security "problems" are over a billion installs. As we see every year when they tie Linux as the most secure system in pwn2own, they've got nothing to be upset about on the technical side of things.

And finally, "added Rowan Trollope, senior vice president of consumer software at Symantec. 'Making that same substandard security technology free won't change that equation'" is pretty funny from a guy representing a company that actually charges for substandard security technology.

Car Analogy

I have to use a bad car analogy. If I buy a BMW and it breaks down, I take it to the BMW dealer to work on it. Some people obviously opt for third party repair, but a lot trust the manufacturer, even though it is often design problems that caused the breakdown. I understand that people have unreasonable expectations that their purchases don't have vulnerabilities and will last forever, but the other 95% of the population recognizes that complicated systems need repairs and protection.
I don't know if this will be successful, but to think that it should not be trusted or immediately dismissed is ignorant. That being said, I don't use Microsoft products, largely because I don't like AV. Linux FTW!

Re:Missing some info from the summary

[drooling-dog]

How many people want all of their traffic explicitly going through Microsoft?

On the other hand, it might be an effective way to protect users from the likes of Linux, Firefox, etc...

Re:Am I missing something?

[Deathlizard]

what bothers me most about this article is this line

'Consumers are hesitant to pay for a Microsoft security product that will remove problems in other Microsoft products,'

At this point, most malware doesn't hack Windows, it hacks your brain. It tricks you into executing it. The only vector that is even being used extensively anymore is Office, Acrobat, and Flash, MS has been phasing out older formats and patching up the holes and Adobe is finally waking up and doing something about their security issues. even in those programs, most of the time a Trojan file is involved.

On top of that, the most recent malware doesn't even need administrative privlages. It simply installs in your user account directory and starts up when you login. I see absoletly no reason why this method of execution wouldn't work in any other OS, Be it Linux, OSX, or BSD regardless of security settings.

Re:Am I missing something?

[aj50]

A huge advert window opens, minimising the fullscreen game that I'm playing to tell me to buy their product.

This must be some use of the word "non-intrusive" which I am not aware of.

Admittedly, I didn't have any problems with it as an anti-virus package, it was much better than bloated "full protection" software packages from Symantec and McAfee but I feel it's cheating somewhat to advertise your product as "free anti-virus" and then use it as a platform to advertise the pay-for versions which just have more features that I don't want.

Re:better analogy

[recoiledsnake]

"I think that analogy is broken. Very few malware use the holes in MS software these days. Most of the viruses spread by user error, email, IM, flaws in Flash/Acrobat etc" Defects in application or 'user error' shouldn't lead to the OS being compromised or the consumers having to pay the sellers more money to fix their defective product.

Name a OS where user error can't lead to the OS being compromised. Maybe only in a very locked down system like a kiosk , but a kiosk is not every useful and the user won't have any freedom. If you can install Firefox, you can install a virus. Unless there's a whitelist, but would you trust a whitelist maintained by MS? An alternative is total application virtualization, but given the fact that applications need to talk to each other and be able to access user files make it tough.