MS Adds Security Suite To Update Service, Antivirus Rival Objects

CWmike writes "Microsoft has started adding Security Essentials to the optional download list seen by US Windows users when they fire up the operating system's update service, and antivirus rivals are crying foul. 'Commercializing Windows Update to distribute other software applications raises significant questions about unfair competition,' Carol Carpenter, a GM at Trend Micro, said on Thursday. 'Windows Update is a de facto extension of Windows, so to begin delivering software tied to updates has us concerned,' she added. 'Windows Update is not a choice for users, and we believe it should not be used this way.' If Windows doesn't detect working security software on the PC, Microsoft adds Security Essentials to the Optional section of Microsoft Update, a superset of the better-known Windows Update, or to Windows Update if it has been configured to also draw downloads from Microsoft Update. Microsoft made a point to say that it was not offering the software via Windows Update, but only through the Microsoft Update service, which also offers patches for new versions of non-operating system software, notably Office and Windows Media Player. But most users won't understand the distinction."

No need to fuss

[alphatel]

Any good Windows administrator knows that you can't rely on a Microsoft product alone to solve your virus/trojan/keylogger/spyware/whatever problems.

Re:No need to fuss

[Monkeedude1212]

And Any good Linux administrator knows that you can rely on a Microsoft Product alone to acquire virus/trojan/keylogger/spyware/whatever problems.

Re:No need to fuss

[MightyMartian]

As much as I can't stand a lot of what Microsoft does, Security Essentials is not a bad program all in all. It's certainly more lightweight that than travesty from Norton and more reliable than the other "free" or "semi-free" AV programs. I still prefer F-Prot because it's the king of small footprint AV, but I have no problem with Security Essentials, and if it's part of Windows Update, I'm assuming that soon enough we'll be seeing in WSUS, which, when combined with the GPO software installation facilities in AD, will replicate the high-end corporate AV.

Re:No need to fuss

[IB4Student]

Windows Firewall and MSE is better than most other solutions for home users.

Re:No need to fuss

[JonySuede]

I'm assuming that soon enough we'll be seeing in WSUS, which, when combined with the GPO software installation facilities in AD, will replicate the high-end corporate AV.

No you wont, the product you are talking about is named forefront and it is not free it cost about 2000$ per server and 15$ per client

Re:No need to fuss

[Enderandrew]

This is only being suggested to people with no anti-virus solution on Windows. Those people likely don't know what they're doing.

And actually, I'd recommend Microsoft Security Essentials over Symantec, McAffee, etc.

Re:No need to fuss

[FatdogHaiku]

IIRC, in some ads MS ran a few years back, they touted Forefront as one of the only security solutions which offered guaranteed protection against zombies.

I still want a shotgun...

Re:No need to fuss

[PRMan]

For the Friends and Family crowd, I now always uninstall what they have and replace it with MSE. Not only is it free, but it's been rated as the best and the updates happen automatically. It's so much lighter weight than Symantec and Norton that people tell me it's like a brand new computer.

I have not had a single callback about any problems.

Re:No need to fuss

[NatasRevol]

Same here. It's better, faster, and less ad free than AVG, Avast, etc.

Re:No need to fuss

[MightyMartian]

I've seen Norton's recent offerings in person. They're still a dog. Sorry, Norton sucks. But what do I need to tell you, a goddamned shill.

Re:No need to fuss

[bmk67]

There are at least two things I can think of that suck worse than Microsoft.

Norton is one of them.

Re:No need to fuss

[EdIII]

... any good Linux administrator has handled customer boxes that have been thoroughly rooted, tossing your argument out the nearest window.

Is that really true though?

There is the argument that Microsoft is a larger target due to their market share and this is why there exists more 0-day exploits against their platform. To be more fair, Adobe shares a pretty large portion of that responsibility too.

However, all things being equal, I think Linux does have a greater level of security out of the box than any Microsoft product. I am not going to present a reality distortion field, like there is often around Apple, and say that there exists no 0-day exploits against Linux as a platform, but to say Linux and Microsoft are equal in this regard is just not true.

Most of the Linux boxes that I have seen that are rooted are due to poor management (open SSH with very weak passwords, failing to review logs, etc.), and not actual exploits. Once again, I am not saying that they don't exist, but there are fewer of them.

It's popular to bash Microsoft, and the poster you replied too was rather flippant, but all things considered I think it is a fair statement to say that Microsoft has been lackadaisical in their approach to security and Linux is inherently more secure.

In my mind, this makes rooted Linux boxes an oddity and a statement against the Linux sysadmin. Lazy sysadmins can setup a Linux box to be rooted in no time at all. MS syadmins on the other hand, have a harder job to perform and even a great sysadmin can find themselves facing a nasty 0-day exploit against their systems regardless of well they update and maintain their systems.

Re:No need to fuss

[Dr.+Spork]

I've never seen a virus that's worse than Norton Antivirus.

Re:No need to fuss

[NatasRevol]

Yes, it's definitely better than AVG, especially the older (7,8&9) versions.

Re:No need to fuss

[volcan0]

95% of the PC I fix / clean have AVG installed. I think it's the program I un-install the most frequently.

Re:No need to fuss

[PhunkySchtuff]

Symantec have two levels of offerings.
Their enterprise AV (Symantec branded) is outstanding.
Their soho AV (Norton branded) on the other hand is a salty bag of balls.

Re:No need to fuss

[hairyfeet]

Well here is a nice tool that you may like..WSUS Offline Update. Don't let the name fool ya, you do NOT need a WSUS server to enjoy this puppy. It makes Autopatcher look lame by comparison. It lets you download ALL the Windows Updates for ALL the current OSes, both x86 and x64, PLUS all the Office updates, PLUS the Service Packs PLUS MSE definitions, hell if you get it this month it'll even give you the full Win2K updates for those that have old machine they want to add the final updates for.

And the best part is after it is done you can have it either burn a DVD with ALL the x86 updates, along with another for x64, or have it burn separate discs for each OS version, OR have it load itself onto a thumbstick. Basically it is like having a full WSUS server in your pocket. Great for fixing PCs. Just clean, update, and use Ninite to automate the install of the common apps like Firefox, Chrome, Flash, Java, etc. Ninite also has MSE ready to go along with Malwarebytes. All automated, just pick the apps and go. easy peasy!

As for TFA anything that will cut down on infected PCs I'm all for it. I may make my living fixing and selling them, but my Internet gets slowed down by bots and I have to deal with spam like everyone else. If this helps insure that so many boxes aren't sitting there with a horribly out of date POS Norton Trial-ware sucking space than I say great! Frankly it is the AV companies own fault if they lose share, the past few years they have all seemed to jump on the "kitchen sink" approach with a ton of apps most never need, and the bloat is just insane. MSE is fast, it doesn't suck up the RAM and bog out the machine even with the older P4s, I have NO problems with it.

Correct me if I'm wrong

[Bigjeff5]

But isn't this both optional and free?

I don't see the problem at all. It's not like IE, which was free and mandatory (it's still free and bundled).

Re:Correct me if I'm wrong

[cdrudge]

Yes. Trend Micro's beef with the issue is not that Microsoft has the security suite, but that it's including it in Windows Update. Given a choice between just "updating" your machine to install the security suite and forcing people to go search for other options, people are going to go with the update. Further, by putting it in with the updates it gives people the sense that they need it as part of a fully patched system, when it's not necessary and there are competing products that may be better.

Re:Correct me if I'm wrong

[leonardluen]

Shouldn't security be the purpose of the OS itself? Trend micro and other Antivirus software doesn't have a right to exist. the OS itself should theoretically already protect itself.

i guess i have no sympathy for them. and as much as i normally don't like MS i guess i am on MS's side for once.

Re:Correct me if I'm wrong

Except its listed in the Optional section, which is completely ignored if you just keep clicking next on Windows Update like 99% of people, and it only shows up there at all if you don't have any other AV installed. Seems fairly reasonable to me (and I truly fucking hate Microsoft and everything they do).

Re:Correct me if I'm wrong

[random+coward]

I tend to agree with the above. I intended to post basically the same. Software added to the OS to fix security flaws in the architecture has a good argument as being part of the OS. If MS hadn't tried to claim the browser was a core part of the OS I doubt many people would have an issue with this being added.

Re:Correct me if I'm wrong

[Bigjeff5]

Most of Microsoft's anti-trust trouble, at least in the US, had nothing to do with bundling the browser anyway. It gave them more trouble in Europe, but here the problem was MS was threatening PC retailers who wanted to bundle other browsers (namely Netscape) with their systems.

That's anti-competitive behavior, and we have laws against it. Europe reacted more harshly and forced MS to not ship Windows with a default browser. It ships with IE, but you have to set it as your browser of choice first.

Re:Correct me if I'm wrong

[99BottlesOfBeerInMyF]

Shouldn't security be the purpose of the OS itself? Trend micro and other Antivirus software doesn't have a right to exist. the OS itself should theoretically already protect itself.

Correct, but Microsoft waited until a market had built up around the insecurity of Windows before they introduced a product of their own. Since they did not proactively address security, they are legally obligated to compete in the market they created on a level playing field with other companies already in that market. That means if they use Windows or products bundled with Windows to provide an advantage for their security suite, they are legally obligated to provide the same to competitors. Where do the other AV vendors sign up to be included in Windows update?

Re:Correct me if I'm wrong

[fluffy99]

While I agree that MSE is better than nothing (and possibly better than competing anti-virus software), I would much rather MS fix the problems that necessitate anti-virus in the first place. It's like having a screen door for a submarine, then offering optional window panes.

Well part of the problem is users are stupid enough to download crap that has trojans in it. No amount of OS hardening can prevent a user from deliberately installing malware.

Re:Correct me if I'm wrong

[lgw]

I would much rather MS fix the problems that necessitate anti-virus in the first place. It's like having a screen door for a submarine, then offering optional window panes.

How, exactly, would that work? In Win7 and Win2008r2 MS has basically caught the competition in terms of security. There isn't a lot of stuf running by defaut (especially in the server OS), there aren't many ports open, you need to elevate to admin rights to do most dangerous things.

There's simply no way for a consumer or "power user" OS to prevent the user from being tricked into installing malware. If you allow the user to install software at all, social engineering does the rest. Also, no one (besides SE Linux) has a good way to stop Adobe's monthly horrible security flaw from mattering, yet. An OS-provided AppArmor-style approach seems promising, but is some ways from being model that gets built into a consumer OS. Sure, MS could be working harder to make a consumer OS more secure than any before, and should be, but that's hardly what I'd describe as "fixing problems".

Re:Correct me if I'm wrong

[RightSaidFred99]

introduced a product of their own

They don't charge for it. There is no market in which SE plays because it's free.

Besides, you're..."innovating" (making up) new law here and you're full of shit as usual. They are "legally obligated" to do exactly two things: Jack and Shit.

Re:Correct me if I'm wrong

[Deathlizard]

From the article, it says that it won't pop up unless you either have no AV product, or the AV product is expired. And even then, you have to manually browse windows update to see optional updates.

It's not like you're going to turn on your PC, and all of a sudden it's on there out of the blue.

Re:Correct me if I'm wrong

[drsmithy]

While I agree that MSE is better than nothing (and possibly better than competing anti-virus software), I would much rather MS fix the problems that necessitate anti-virus in the first place.

They can't. The problems that need an AV to solve are in the user, not the software.

Re:Correct me if I'm wrong

[leonardluen]

i can see a few specialty add on products, but you still expect your house/car to have basic locks.

This is what MS has been missing the whole time, they are just now adding the deadbolts. previously the door just hung open and you relied on a separate security guard to keep people out, that security guard doesn't have a right to complain that you are now building houses more secure with deadbolts. but that also doesn't necessarily mean you can't still hire that security guard for added security.

Speaking of things that go without saying...

[Angst+Badger]

But most users won't understand the distinction.

Outside of some very specialized applications, that sentence could apply to almost any software.

This Space For Rent

[blair1q]

Why doesn't Microsoft just put a container in Windows Update for security companies to rent space to present download links?

Or is that how Security Essentials got there and the people "crying foul" are just sore that they'll have to pay, too?

Re:This Space For Rent

[geekoid]

Because anti-virus companies make software so bad, even Microsoft doesn't want the association.
I think SE got there because MS learned something from the Browser anti-competitive issues.

Re:This Space For Rent

[Bigjeff5]

Security Essentials is free.

It's also better than Trend Micro's AV, so you can see why Trend Micro is angry.

Instead of improving their product to compete, they whine, even though Microsoft has done absolutely nothing wrong here (and frankly, a lot of good if it gets people who don't have AV to install something).

MSSE is certainly no the best AV out there, so there is plenty of room for competition.

Oh, the outrage!

[MechaShiva]

The whole anti-virus industry seems like an artificial market. I wonder if they privately throw fits every time Microsoft releases patches to close potential security holes too. I mean, extending the argument, doesn't a more secure base system minimize the need for the full time, bloated nanny programs most of these companies provide; thus eroding their market share similarly? Those dirty bastards!

Re:Oh, the outrage!

[the_humeister]

In other news Trumpet Software is suing Microsoft for including a TCP/IP stack in Windows.

i actually like this

[atarione]

forefront and MSE are actually pretty good (MSE being built from forefront).

Their foot print on a system is quite reasonable (unlike many av suites) they do a good job of doing what they should do and staying out of the way. We all pay the price of way to many totally unsecured systems connected to the internet. FTFA the update only appears when no security software is detected on the system, So this will be being offered to users that would otherwise have no av protection at all.

I can see where MSE being offered free (and now offered via windows updates) would make other av vendors unhappy ..but f*ck them far to many of the consumer orientated av offering are just terrible bloated piles of junk.

Good for Microsoft!

[bradley13]

While I'm no MS fan, this is a good thing. Note: they only add MSE if no other virus checker is present. MSE actually does a pretty decent job, and it is a lot less intrusive than version McAfee, Norton, etc. available to private users.

Microsoft has a vested interest in improving the security of Windows without disturbing the rest of the user experience. Their motivation for MSE is roughly the same as the users'.

It has always bothered me that the interests of Norton, McAfee and the rest are not aligned with the user. You want a clean, fast machine. They want to sell you AV subscriptions. Which means they want to convince you how necessary those are. False alarms are fine, as are in-the-face dialogs and interruptions to remind you what a wonderful piece of crapware you have on your machine.

Re:Good for Microsoft!

[PRMan]

With most AV solutions other than MSE, I would rather have the virus. They use less resources and pop up less dialog boxes.

GOOD!

[DIplomatic]

Good! I personally love Microsoft Security Essentials. It does exactly what you want in a Virus Protection Program: 1) Keep an icon in the system tray indicating that "You Are Protected" 2) Stay out of your way and use very few system resources.
In all seriousness, I am a corporate IT technician and I prefer MSE over any other memory-hogging, system-crippling, scaring-you-with-false-warnings virus program out there.
Plus it's FREE. FREE!

Re:GOOD!

[Dachannien]

1) Keep an icon in the system tray indicating that "You Are Protected"
2) Stay out of your way and use very few system resources.

I dunno.... seems like there's something missing from this specification.

Or better yet

[name_already_taken]

Why doesn't Microsoft just put a container in Windows Update for security companies to rent space to present download links?

How about an App Store?

/cue delusional whining about App Stores being the start of a slippery slope to concentration camps and lockdown.

Re:Or better yet

[mlts]

You mean the one in Windows 8?

From what I've read, Microsoft is planning to have a Marketplace for installing applications in the next version of Windows. This will be nice because I can either tell people to only install software from there and nowhere else. In businesses, group policies can be set to enforce this. Result: One major vector for infection gets sealed.

I'm all for application markets, provided it isn't locked down to a single vendor. The OSS market has used repositories for decades, and this has been an excellent way to ensure software downloaded is clean.

Bloatware

[Robadob]

Most of the well branded av's are just packed full of bloatware and getting worse. It's even got to the point now that alot of free software which i have installed also installs mcafee smartscan or a similar product to my desktop without allowing me to not install them. Isn't there something foul about this? Personally i use the lesser known eset's nod32 and i think it does a good job.

Re:When Apple will be forced to "unbundle"

[StuartHankins]

They don't have a monopoly and aren't a convicted monopolist. Until then they won't be forced to unbundle anything.

Re:Forget the past...

Please Read the Summary...

If Windows update detects you have no Anti Virus package installed, it adds the Microsoft Security Essentials as an OPTIONAL download that you can CHOOSE to have.
Just like the Browser Election ballot Europeans got (Which listed many alternatives to Internet Explorer) it's the user's Choice to install the software or to acquire Anti Virus software on your own.

I hate Microsoft, but this is a good idea

[Zero__Kelvin]

I actually hate Bill Gates, and despise Microsoft and almost all of their practices, but even I have to say that this is an excellent idea, and Trend Micro should go screw themselves. Microsoft has directly contributed to the Virus problem to the point where it is accepted and expected by most people. Now they are actually offering a free tool to clean up their mess to some degree. This isn't like the browser scenario, where they were looking to embrace and extend to own the Internet. Antivirus isn't an application like Word, or a web browser where people will need and want it regardless of OS. It is a necessary evil. If a company offered free smoke detectors to anyone who didn't already have them, would anybody seriously be arguing that said company is Antitrust?

I don't understand...

[flimflammer]

I don't really understand why Microsoft shouldn't be allowed to include their own security software. Microsoft should purposely leave end users high and dry when it comes to something as important as computer security (something that the OS should take care of) for the sole reason that they don't have even the slightest edge against the competing security software makers?

This reminds me of a year or so ago when there was opposition from security software groups against Microsoft because they closed up access to a few things that those groups used for their antivirus software. Something that no one really should have had access to in the first place. You can't cry that Microsoft software isn't secure and then cry foul when Microsoft actually works to improve security.

Re:I don't understand...

[cbhacking]

You're presumably referring to PatchGuard, the protection Microsoft implemented on the x64 version of the Vista kernel (about 4 years ago, actually). Symantec and McAfee threw hissy-fits over the inclusion of anti-rootkit protection that also happened to block their rootkit-like method of hooking into the kernel. After much whining and threatening of lawsuits, MS relaxed the protections such that the kernel could still be modified, provided the modifying code had a trusted digital signature. This is a lot weaker, but it did appease the giants of the AV world.

Interestingly, Trend Micro just went and implemented their next antivirus release to use the new kernel API that Microsoft had released specifically to allow AV to work despite Patchguard. Trend Micro's PC-Cillin was working on Vista x64 long before MS weakened PatchGuard, back when the Symantec and McAfee were running crying to their lawyers. For a couple years, I recommended PC-Cillin on the simple basis of Trend Micro apparently being able to find its ass without the use of both hands and a guiderail.

Re:Waaambulance.

[mlts]

I have tried many other products. On the consumer level, there is really no significant benefit the other guys have over MSE that makes it worth the cost per year. The only product I'd probably recommend would be Sunbelt Software's offerings because their products are good at delousing a machine when it can't be taken apart and fixed by someone with a clue. Suites [1] are a different story, but antivirus products alone, there isn't much anyone else has that MSE doesn't on the consumer level.

Enterprise-wide, different story. Products like Forefront or Symantec Endpoint Protection provides far more than just a "virus condom". As an IT guy, I can have it to stop "hacking tools" such as most serial number grabbing utilities, have it lock out USB flash drives, give me comprehensive reports from the Windows side of the house, hook with NAC to ensure that if a Windows box doesn't have AV, it doesn't get connected (for CYA reasons rather than technical), and loads of other stuff that matters in business.

So, on a personal level, I would just be content with MSE. If an acquaintance called up saying, "OMG, my computer is infected", I'd tell them to download Sunbelt Software's offering and let it attempt to clean the machine. If I were running a business, I'd spring for SEP or Forefront because of the enterprise level features.

[1]: Antivirus + firewall "suites" are pointless in any Windows version post 2000. Want a firewall? Get a hardware router, so blackhats don't have a small window of attack when a machine starts up or shuts down, and the software "firewall" isn't loaded and hooked into the IP stack.

Re:They all need to shut up

[Totenglocke]

Just an FYI regarding firewalls - if you're on Win 7, there's no need to pay for a firewall because Win 7 finally has a good built in firewall.

Re:"Raises" questions ?

[CodingHero]

it IS unfair competition itself. it was what was done with ie against netscape, and media player against others.

Not quite. Media player and IE come pre-installed on your machine but this is explicitly labeled an optional download. Being part of the "optional updates" means it will be presented to users as an option. They will not be in any way forced to download it and in fact will have to go out of their way to deliberately check the box to get it, something most people (i.e. my mom) probably won't do assuming they even realize the option exists.

Actually major media player updates (e.g. version 11 if you have version 10) are listed as optional as well if I recall correctly.

Which part of "optional" is objectionable?

[gstrickler]

From TFA: Microsoft adds Security Essentials to the Optional section of Microsoft Update

Items in the optional section aren't automatically downloaded or installed, nor does a user even see them unless he/she clicks on a separate button to view the optional updates. MS is offering an optional & free program to protect users from Malware, and a user has to go out of his/her way to see and select that program before it'll be installed, and it's only offered to users who don't already have another AV program installed.

This is almost a "hidden option". I've got concerns about numerous M$ business practices, but I can't object to this one.

BTW - I haven't seen Adobe complaining that M$ offers Silverlight in the Optional section of M$ Update, even though M$ has clearly made some statement against Flash.

Re:Which part of "optional" is objectionable?

[Bigjeff5]

And MSE is only given as an option to people who don't have AV yet.

What's the friggin problem? Trend Micro is angry that MSE is giving AV to people who haven't bought their shitty AV product yet?

Give me a break.

I suppose we should ban all free AV software too right? I mean, for heaven's sake, all you have to do is go to their website and download it! People won't know that they need to spend $50 a year on AV software! Also, it's a known fact that the more an AV slows your machine, the better it is protecting you against viruses. There should be a law against all of these lean and efficient AV's that don't slow your machine down, and therefore obviously don't provide adequate protection. They're obviously bribing people to get those better AV ratings, too!

Seriously, Trend Micro can stick it in their ear. Build a better product or die. I don't care. Quit trying to take away my options.

Re:Sounds like a move in the right direction

[fluffy99]

I don't know much about WIndows, I've heard it has improved since Windows 3.1 and that's about it. I am used to GNU/Linux distributions giving me all the latest software when I apt-get update or emerge sync;emerge -uv world or yum update or whatever. I never go to some website to get or update some piece of software, the OS has some feature which lets me do that. If Windows Update would be able to do something like that then it sounds to me as if it's a very good thing. Perhaps not so good as long as it only lets you grab Microsoft software, and it would likely be hard for them to add too much other software being that Windows typically means non-free software, but still.. this sounds to me like a step in the right direction. But as said, I don't really know that much about the Windows world.

So you haven't a clue about recent Windows or how windows update works, but you opted to chime in anyway? Go crawl back under your Linux rock. Redhat 6 sucked, so it must still suck....

You are mistaken

[lpq]

Since MS, has never offered such a product before, I can't see how *anyone* would "know that you can't rely on a Microsoft product alone to solve your virus/trojan/keylogger/spyware/whatever problems".

Considering I've run for well over a decade without ANY such product -- and doing so solved my 'problems' (non-existent) just fine, then how can adding such a product not create benefit (providing one doesn't mind the inevitable hit in performance for real-time/on-access scanning malware scanning.

It's networked, and name me one software vendor who has their software running on more computers than MS. MS collects malware reports from a large number of those running MS-software, since being able to detect 'malware' problems is a high priority issue if they want to verify the integrity of their licensing mechanisms. MS has a high interest in keeping their systems clean and has are in a better position to collect and act on information about malware infestations than any other vendor.

It's always been my opinion that the need for 3rd party apps to deal with malware is due to a flaw in the OS and that the OS is in the best position to deal with such problems. A well designed OS would have malware protection built-in. And sure, MS could screw it up -- but they do have a financial incentive to get it right -- so much so, that they *GIVE* it away for free. I'd call that a rather high motivation.

Conversely, if they charged to protect their systems from things that are essentially bugs in their system -- that would be something akin to blackmail or 'protection money'... But then that's how I see much of the for-pay malware industry -- "pay us, or your system's toast"...

Third party anti-malware companies have formed their entire existence on *flaws* in MS products.
MS providing free malware protection for their own product is ethically, the right thing to do. It's hard to argue that MS shouldn't be doing this or that it shouldn't be included as part of the OS.