Microsoft's Antivirus Briefly Flags Google.com As Malicious

tsu doh nimh writes "Computers running Microsoft's antivirus and security software may be flagging google.com — the world's most-visited Web site — as malicious, apparently due to a faulty Valentine's Day security update shipped by Microsoft. For several hours on Tuesday, PC users browsing with Internet Explorer on a machine equipped with Microsoft Security Essentials or Forefront saw warnings that Google.com was serving up a 'severe' threat – Exploit:JS/Blacole.BW — basically that google.com was supposedly infected with a Blackhole exploit kit. The warning prompted users to 'delete' the threat, although accepting the default action appeared to cause no ill result. The episode is more embarrassing than harmful, given that Microsoft is expected to ship antivirus technology with the next version of Windows."

And here I thought Windows was the real virus...

Isn't the real virus actually windows?

They may know...

...something the world does not know !

Aww!

[Cyphase]

Dear Google,

          Happy Valentine's Day!

                    Your valentine,
                              Microsoft

Re:Aww!

[gnapster]

Do you like me? Check one:

• o - Yes
  o - No

Re:And here I thought Windows was the real virus..

Fan boys really don't know how to spot a joke...

Well, Google did that already to MS..

[Giloo]

Google already flagged MS France as malicious 2 years ago: http://gilouweb.com/bordel/google_truth.png (Ce site risque d'endommager votre ordinateur meaning: this website might harm your computer) So I guess it's only revenge ;)

Re:Well, Google did that already to MS..

[Bogtha]

this website might harm your computer

To be fair, it does host Microsoft software ;)

Re:Well, Google did that already to MS..

AhahahahahH!HHAHAHAHAHAHAhahahahahahahahahAHAHAHA you're SOOOO FUNNY!!!!11!!

Re:Well, Google did that already to MS..

[cdrudge]

To be equally fair, so does Google.

Everything's dangerous!

Since anti-malware programs largely work by looking for known patterns and fingerprints, and the databases of these patterns and fingerprints keep growing steadily, when will we have reached the point where basically every software ever written will fit one of the patterns? :)

Re:Everything's dangerous!

[wmac1]

The feature space which these software look into is astronomically huge. Pattern classifiers just need to look into small areas of the feature space.

It is similar to saying, with trillions of existing stars, will we reach a time where space is filled with stars?

Needs sanity checks.

[Dwedit]

Does this mean that all antivirus makers must start doing sanity checks before releasing definition updates to the public? For example, there was once a definition update for an antivirus program that deleted some critical system file in Windows. Running a scan against a set of known clean Windows files and other popular programs should always be done before a release. Same idea for popular websites.

Re:Needs sanity checks.

> For example, there was once a definition update for an antivirus program that deleted some critical system file in Windows.

That was AVG, which is a persistent offender at this.

Re:Needs sanity checks.

[cc1984_]

Actually, I'm pretty sure it was McAfee

http://tech.slashdot.org/story/10/04/21/1735211/mcafee-kills-svchostexe-sets-off-reboot-loops-for-win-xp-win-2000

Re:Needs sanity checks.

[Sancho]

You act like this has only happened once.

Antivirus has detected system files as viruses since the DOS days.

Re:Needs sanity checks.

Which is why I uninstall all anti-virus, Defender, etc. because in the end all it does is slow the machine down and cause more harm than good. At a previous job the anti-virus didn't even catch a variant so all machines were infected anyway, and it took the vendor over a week to do anything about it even with our priority support we paid for. Despite contacting them and sending a sample the same day it was useless.

I've never gotten a virus because of safe habits. Not all users have enough knowledge to avoid it but anti-virus just isn't good enough anymore to be of real help.

Re:Needs sanity checks.

[danomac]

Yes, but AVG also shipped a x32 binary in a x64 release, causing computers to crash.

Otherwise their antivirus was better than what we were using, and was a better price.

Dropped them like a hot rock after that happened... it appears they can't even do basic QC.

To be fair

[Reed+Solomon]

in Microsoft's eyes, they are the most malicious threat in existence right now.

Re:To be fair

[Coisiche]

Indeed.

My first thought on reading the headline was "Well, duh".

Re:And here I thought Windows was the real virus..

Same as Windows don't know how to spot a threat!

Arguable

Aren't all search engines technically spyware? Especially in the case of Google where it tailors your results based on previous browsing history (if you've got that option on).

Note: Yeah, MS made a mistake. Go figure. At least they dealt with it within *hours* instead of a greater span of time and it didn't really have much, if any, negative effects other than mild annoyance on the part of the users. Still preferable to them not having any antivirus.

Did not see the behavior on a Win8 VM

[AndGodSed]

Incidentally I was doing a google search from a Win8 VM and did not see this behavior. I _did_ get a notification to update my spyware/malware definitions for Windows Defender as well, so maybe my definitions did not yet include this snafu.

Of course I have updated post Vday, so cannot confirm this behavior now, even with an older snapshot.

Re:Did not see the behavior on a Win8 VM

It's a bit hit and miss depending on update policies. In my office I was affected, as well as at least one of my colleagues - and we're in tech support.

One of my other colleagues who has just logged on has update definitions (1.119.1924.0) from before the issue - so isn't affected, and when they next update he still won't be affected.

Long story short: It only affects users who happened to have the affected definition update. Amazing, really.

Re:Did not see the behavior on a Win8 VM

[TheGoodNamesWereGone]

I booted up Win7-64 yesterday so it could run Patch Tuesday and got the Blacole.BW false positive, so I can confirm this.

Re:And here I thought Windows was the real virus..

[mr_gorkajuice]

It might have been kinda funny some 5+ years ago when someone first told it. Maybe if I came across it less than once per week, I'd eventually find it kind of amusing again.

Apple's fault

This is Slashdot, remember? Obviously, it's Apple's fault.

Re:Apple's fault

This is slashdot, remember? Obviously, Google deserved it.

AV is not really mature yet

[gweihir]

I like MS bashing just as much as the next slashdot-poster, but I think here the blame is minimal. AV software based on signatures has a very high probability of doing things like that and testing all common possibilities is very hard or impossible, while at the same time new signatures need to be pushed fast in order for them to be effective.

That also shows that AV software is, at best, a temporary measure. IMO the future is better OS security (and here MS is to blame), better application security (which is a budgetary and an education/knowledge problem).

Re:AV is not really mature yet

[nzac]

AV software based on signatures has a very high probability of doing things like that and testing all common possibilities is very hard or impossible

No basic automated testing of say the top 500 websites and 100 applications to see if they get a false positive is too hard or time consuming. Say they managed to block some local news site that uses some site that uses shitty java-script with adds is a mistake.

That also shows that AV software is, at best, a temporary measure. IMO the future is better OS security (and here MS is to blame), better application security

No this incident is does not prove anything like this, just that software needs decent quality testing.

Re:AV is not really mature yet

[rtb61]

All this really point too, is corporations are really lax when penalties are not applied for damaging mistakes. It seems whoops tee hee, it's just a boo boo is always enough. I bet the whole system would tighten up if they were charged for the costs generated by each and everyone of their mistakes, just like the real brick and mortar world. Ever since it went digital (supposedly to reduce errors) errors are treated like a lame joke and laughed off.

Warranties, we ain't got no warranties, we don need no warranties, I don't have to show you any stinkin warranties http://www.youtube.com/watch?v=nsdZKCh6RsU (it's all in the EULA, now why does that Mexican remind me of a typical proprietary software company).

Re:AV is not really mature yet

[oakgrove]

Nice apology, dude. From my perspective if Microsoft doesn't have sense enough not to flag the number one web site on the net, why would I want to run their software?

Re:AV is not really mature yet

Personally I think the entire concept of AV software is flawed (and I work in the industry). Ultimately there are only two infection vectors: security vulnerabilities and user actions. Security vulnerabilities can be fixed as discovered, but it's going to be an ongoing struggle as software vendors' track records have proven. The other problem is user education. People want to think of computers as appliances, but they're just not. As long as you can execute arbitrary code then you're going to be susceptible to trojans. Obviously you can be smarter about it (e.g. don't run things like BritneySpearsHot.jpg.exe), but most average people just don't understand the risk. AV software can help you vet some of these things, but there is always a delay between the time a new variant is first discovered to the time it makes it into the AV definitions where you will be vulnerable. Even locked down platforms like iOS have problems with rogue applications, so the walled garden approach is only going to help so much. Linux mostly avoids this due to the culture of trusted repositories and building almost everything from source; those concepts just don't exist on Windows.

Re:AV is not really mature yet

[realityimpaired]

That also shows that AV software is, at best, a temporary measure. IMO the future is better OS security (and here MS is to blame), better application security (which is a budgetary and an education/knowledge problem).

So.... you're suggesting that the iOS method is the way to go?

As long as it's possible for users to run things with administrative privileges, viruses will have a way in through social engineering. And as long as it's possible to install stuff from vendors other than the OS manufacturer, there will be programs which think they need to run as admin, and users who let them. And the only way to get around that problem is to run a completely closed system, where users don't need to install drivers at all, and where they don't have any rights to run anything with administrative privileges. Even then, virus writers will find a way to harm you, and while it will no longer bring down the system, most virus writers don't want to bring down the system, they want to leave you with a usable system and steal some of your resources.

The sad reality is that AV is needed. It's never going to be a perfect solution, because the virus creators will always find new ways to do what they want to do. But it will still be needed, no matter how heavily you lock down the system.

Re:AV is not really mature yet

[JasterBobaMereel]

If you trust Microsoft with AV software given their track record then you are asking for trouble ...

AV and security is all about trust, and I for one don't trust MS with security, and looking at all the add-ons to MS products to enhance security nor do many many people

MS should be trying to make AV software obsolete, not trying to write their own ..

Re:AV is not really mature yet

Trollgrove, fucking asshole, nice to see you're still at it! Look, it's not as if Microsoft purposely flagged this website, or any other websites. You know, most all virus scanners use heuristic analysis, signatures, and a vari...... you know what, forget it. I'll be honest and admit I just don't have the energy to try and teach a retard such as yourself.

Re:AV is not really mature yet

[garaged]

So, the best thing they can do is create an AV culture, and 15 years later realize that they can profit from it too?

Re:AV is not really mature yet

This comment was brought to you courtesy Waggener Edstrom, a Microsoft marketing partner.

We help clients understand who their audiences are and where they can be reached. Monitoring conversations, including those that take place with social media, is part of our daily routine; our products can be used as early warning systems, helping clients with rapid response and crisis management.

http://waggeneredstrom.com/about/approach

http://waggeneredstrom.com/clients

If your business could use professional reputation management services, please contact us at http://waggeneredstrom.com/, the digital PR firm of the year.

FTFY

Re:AV is not really mature yet

[Sloppy]

No this incident is does not prove anything like this, just that software needs decent quality testing.

Yeah, yeah, I know. It's merely the 17 billionth confirmation of the overall fundamental failure of the basic idea behind malware signature blacklisting, not proof.

Re:AV is not really mature yet

[whoever57]

If you trust Microsoft given their track record then you are asking for trouble ...

FTFY

Re:AV is not really mature yet

[flimflammer]

I disagree. MSE is actually a dependable package as far as free AV software goes, and even compares well to subscription based products. This is nothing new; AV software has been issuing false positives for ridiculous things since signature based AV has existed. This didn't even do any damage. It issued a scary warning and then went away.

As for making AV software obsolete, you should know that it's not possible to just suddenly make AV obsolete. Microsoft is better off trying to contain the potential damage as best they can while increasing security-- something that has been improving over the years. Nothing is going to be perfect when they need to maintain backward compatibility and deal with the average inept user ignoring security warnings and running anything they find on the most dangerous websites.

Re:AV is not really mature yet

[nzac]

This is a really bad example for this argument. It is not an example of good, properly tested scanner failing.

Re:AV is not really mature yet

[gweihir]

I am the last person to defend MS, but the fact of the matter is that all AV software currently used has this problem.

Re:AV is not really mature yet

[gweihir]

Good comment. Sums the overall problem up very well.

Re:AV is not really mature yet

[gweihir]

No, the "walled garden" is not the solution either (as AC has pointed out in comment #39043337). The only solution I see is software that is very hard to compromise, including on the OS layer. Of course that requires things to slow down and mature. Software like Apache, Linux, Perl, OpenSSH etc. is quite old (in the sense that only incremental development has been done for a long time), quite mature and very, very hard to attack. As long as MS reinvents their OS every few years, they will not get there (bit their business model forces them to do so). Same problem with iOS, but with a more limited scope.

Additionally, the effort spent on securing software needs to increase. This not only requires more time to mature, but also better education and awareness of developers and more money and time for the actual development. For commercial software, I do not see that happen unless laws are made that make software makers responsible for any and all damage caused by shoddy (a.k.a. "lean", "state of the art", etc.) software engineering. I also have to say that cost-driven outsourcing contributes a lot to the problem.

I agree with you that the problem will not fully go away, but I think making it hard for the attackers (instead of ridiculously easy as it is now) could drive the level of the problem down to a barely noticeable nuisance.

Re:AV is not really mature yet

If there's one thing you're not it's the last person to defend MS.

Slash dot: the best comments money can buy!

Re:AV is not really mature yet

[JasterBobaMereel]

Try and Buy anntivirus software for Linux, it is not needed, and mostly scans for Windows Viruses

Note this is antivirus, not firewall, not browser exploits, but actual antivirus ...

If a virus tries to get itself run, and can do so without your permission, then your OS has failed, AV is just a stopgap to plug a hole the OS should not have .

Oh my god

[SmallFurryCreature]

I just had an image of Steve Ballmer and Bill Gates going down on Larry Page and Sergey Brin (which by the way, google had to guess at being the right answer for being the founder of google) in a nerd love fest...

My eyes! What has been seen cannot be unseen.

...

...

...

Oh who am I kidding. Fap fap fap fap fap

Re:Oh my god

The above are all businessmen, not nerds.

Ballmer's a used car salesman in every sense of the term.

Brin's an old Soviet politician, babbling about freeing the people but ensuring that he's more equal than you.

Page is intellectually little more than a conduit from his parents to Schmidt.

Gates takes with his left hand and sells it to you from his right.

As individuals, Ballmer and Brin deserve the greatest respect, because they got where they are primarily on their own effort. They were first class salesmen, and while Ballmer is well beyond his prime, Brin surely has quite a while left in him in this brave new world.

Re:Oh my god

my mind hates you to an extent rivaled only by my first ex.

Re:Oh my god

[Greyfox]

MMO Quests are like orgasms: You may solo them, I prefer them in a group.

Sounds like you're soloing this one...

You can tell it was a mistake

It didn't flag apple.com

Re:You can tell it was a mistake

Slashdot: Where Anonymous Cowards strut around being smug and hip by blaming the users of Apple products of being smug and hip

Re:You can tell it was a mistake

But, you're AC.
Oh, god, so am I. Could I be an insensitive clod?

Re:You can tell it was a mistake

Slashdot: where Appledrones can't even read before defending their beloved cult.

There is nothing incompetence cannot achieve!

[coder111]

Let's just wait until they block microsoft.com due to some related screwup.

Exploit:JS/Idiots.ASS detected

Re:There is nothing incompetence cannot achieve!

[VortexCortex]

WARNING
The website you are about to visit, update.microsoft.com , may harm your computer.
Find out more
Get me out of here

Proceed to to update.microsoft.com

I didn't see it

I run the full Microsoft stack, visited Google today and never had an issue...

I think

[maroberts]

Microsoft simply confused Valentines Day with April Fools Day

Icing on the cake

[high_rolla]

Would have been absolute gold if the message that came up was something along the lines of:

"We're sorry but Google.com has been identified as a threat to Microsoft *cough* *cough*, I mean your computer. We suggest you fix this by going to Bing.com. Would you like us to make Bing your homepage and redirect all future request for Google to Bing instead?"
[Yes] [OK]

Woah! That's BOTH feet hit with the BFG!

[phonewebcam]

Since everyone knows Microsoft's Bing uses Google search results - and denies it this means users of their own "search engine" are hit too. Spock: "Fascinating".

Re:Woah! That's BOTH feet hit with the BFG!

Since everyone knows Microsoft's Bing toolbar has an opt-in monitoring feature that will monitor web browsing habits up to and including Google search results this means I didn't even read my whole link fully before posting snarky comments. Spock: "Fascinating".

FTFY

Re:Woah! That's BOTH feet hit with the BFG!

Yea I'd take "m$ astroturf" comments seriously from a guy whos homepage link is his pro-Android site. Bloody corporate cheerleaders on all sides.

Re:And here I thought Windows was the real virus..

I find it amusing. Probably because all I use is linux :)

Delete the threat

[inpher]

So, did anyone manage to delete the threat? Google.com is still running.

Meh, I guess nobody really reads the warning dialogues anymore.

where is the old slashdot?

the old slashdot would not include the word "briefly" in the title.

I come here for a reality distortion field.

Re:And here I thought Windows was the real virus..

5+ years ago? Somebody first told it the day the first windows AV software shipped.

These things can happen

[MrManny]

To be honest, I don't think this is really *that* big of a deal. This can happen. Worse has happened, not only at Microsoft but by other AV products as well. I recall Avast crying out loud over Steam less than a month ago, moving its service into containment. And if I recall correctly, Avast even flagged notepad.exe as a virus once. I specifically mention Avast, because a.) I use it, and b.) it actually scored rather well last time I bothered to look it up in comparative studies.

As long as there are probabilities involved, false positives and false negatives are bound to happen. When it comes to AV, I don't mind if it errs on the side of caution as long as it doesn't happen too often.

Mod me down or call me fanboy as much as you want, but I really don't consider this too problematic, regardless of Microsoft being the "aggressor" here.

Re:These things can happen

All AVs have issues, MSE is sortos the nicest at that. But the story is about MICROSOFT "mistakingly" warning about GOOGLE.

Re:These things can happen

[Tr3vin]

I'm a huge Android / Google fanboy and I have no problem with what happened. There are going to be false positives and Microsoft resolved the situation. While it is embarrassing for Microsoft, I highly doubt it was done on purpose. Google changes their home page all of the time and there was an update for Valentine's Day, so it is something that Microsoft may not have been able to catch.

Re:These things can happen

[Locutus]

but wasn't this a signature update which included a flag targeting the number one search engine used? Even if it were some automated system which somehow generated a diagnostic which flagged google.com, wouldn't you think Microsoft would run tests on this stuff before shipping it out? I think they have the resources and the money to do this.

they have done this type of thing before and landed in court a few times over it but it cost them little compared to what they gained. As they well know, claiming it's a bug and fixing it at a later date keeps them out of court but does the damage intended or damage benefiting them and harming the competitor.

yes, it could be a mistake or a bug but here's the problem: The company putting the software which controls most of the worlds desktop computers is the same company behind this "bug". Are they really not testing this stuff enough so to let these through? And if not, should they really be your desktop OS vendor?

Because of their history of doing this to their top competitors with lengthy periods due for fixing and releasing patches, I would always lean on the side of this being intentional. Incompetence runs up there in second place.

LoB

Re:These things can happen

[Kalriath]

Um, no? Can you even begin to imagine the amount of resources they'd need to test every popular website on earth with their antivirus? And then there's the expectation that if they have to test every popular website, the first time it mistakenly flags an unpopular one someone will sue because their site wasn't tested.

I mean, fuck... other antiviruses have flagged parts of the goddamned operating system as malware without being caught in testing, and you expect then (and only them, no doubt) to make sure that no "popular" websites ever get mistakenly flagged?

Seriously, your conspiracy theories make you sound like a crackpot.

Re:These things can happen

You need to read more recent studies. Avast is meh at best.

http://av-comparatives.org/en/comparativesreviews/summary-reports

Re:These things can happen

[Locutus]

I forgot, google.com is just another web site. my mistake.

LoB

Re:And here I thought Windows was the real virus..

[Saintwolf]

ZING!

Re:And here I thought Windows was the real virus..

... went the strings of my heart!

Re:first!

[flyneye]

But when you got it you forgot to mention the irony of their already having shipped useless firewall bloatware which takes up space and no one uses. Microsoft; all your harddrive are belong to us.

Re:first!

[WrongSizeGlass]

And stranger than that, you are not bonch and your post isn't a criticism of Google claiming that they deserve it and Microsoft is right to label them as malicious. What are the odds!

Perhaps Microsoft was right about the Google homepage on the 14th:
- MS Security Essentials is written by programmers/nerds.
- On the 14th, Google had an animated "Valentine's Day" logo.
- The animated logo was an animated female. Innocent and harmless, but female none the less.
- As usual, nerds (or in this case MS Security Essentials, the product of nerds) had no idea how to react to a female.
- When MS Security Essentials determined that the animated female was holding a valentine it panicked.
- MS Security Essentials protected Windows from Google's trojan horse valentine (metaphorically, of course).

MS Malicious, that bitch ....

[OldHawk777]

Most of the /. "Open" community has danced with MS Malicious at one time or another over the past 20 years. US, EU, RU ... Faux-capitalism, if you can't compete any "WhoopsFU" that may help the profit line is legally fine.

Capitalism=Meritocracy+Value: If the best cannot compete, enter the market, and/or is fettered by sector/product protectionist law, plus increases in profits, benefits, pay-packs ... are not attributable to value added, then the national economy is Faux/Pseudo-Capitalism based and must exploit the general public value for private Faux/Pseudo-Capitalist profit.

So, MS Malicious and other Faux/Pseudo-capitalist will always be pleasured by "WhoopsFU."

Note: There are still many real capitalist in the world, but most folks controlling law-writing, economic policy, a/o expounding capitalist values are in fact just Faux-capitalist with a "WhoopsFU" attitude.

Re:And here I thought Windows was the real virus..

[oakgrove]

I think poking fun at Microsoft Google Apple and the whole lot is for the most part almost always funny. Ever considered removing the giant stick from your ass?

"PC users browsing with Internet Explorer"

Nice to know nobody was effected.

Re:"PC users browsing with Internet Explorer"

[Locutus]

even with the declining market share, there are enough IE users to give BING a nice bump. It's probably time for some nice "independent" research to come out showing how MS BING is gaining market share and this bump will help that study perfectly.

LoB

Interesting beacuse yesterday ...

[amcdiarmid]

I was checking the Site to Zone Assignment feature of group policy. I found this posting ( http://www.grouppolicy.biz/2010/03/how-to-use-group-policy-to-configure-internet-explorer-security-zone-sites/ ) where the example was to put google.com (and everything in it) to be the "restricted sites zone."

Re:Interesting beacuse yesterday ...

[Locutus]

most anyone who bases their profession on only Microsoft software will tote this kind of line. Microsoft targets companies and lets their fans know who are the enemy so you see tutorials like this where the enemy is trashed while Microsoft's software is advanced. Self preservation by those following Microsoft and basing their livelihood on them. Microsoft loves this and designs their partner and developer programs to promote these things.

It is also why these kinds of "bugs" tend to be looked at as intentional by those who've been in the field a while. There's usually nothing to prove it's illegal and only years and years later does illegal activity show up in court docs but usually too late for a case to be filed. IMO

LoB

Re:And here I thought Windows was the real virus..

I think poking fun at Microsoft Google Apple and the whole lot is for the most part almost always funny.

Sounds like you still have some growing up to do.

Ever considered removing the giant stick from your ass?

Such irony coming from a guy with his head up his own ass. Get bent, Trollgrove.

I'm just glad it didn't lead to further problems

[sarbonn]

This happened to me last night when I was playing a game. I used google to look up something, and that warning came up. So I had them "remove" it. I was concerned because it didn't really give me a lot of information, but when you're left with the choice of removing a virus/trojan and just leaving it there, you're generally going to go for removing it. Reading about it today, I now realize what happened last night. This reminds me of years ago when I was installing some update to Microsoft Internet Explorer, and I received a message along the lines of: "Microsoft Explorer has detected an illegal program. Would you like to remove Netscape Navigator?" Something like that is really hard to forget, even though I found myself laughing at the time it happened.

If people you disagree with are paid to do so...

Does that mean that you were paid by Google, since I, in turn, disagree with you?
You're acting really childish with these constant comments to the tune of "You can't be disagreeing with me! It must be an illegitimate opinion!". Just accept that not everyone conforms to your worldview.

Re:And here I thought Windows was the real virus..

Except that people don't rationally poke fun. They are just corporate cheerleaders for companies they don't work for, compete against, or know anybody who falls into those camps.

Re:And here I thought Windows was the real virus..

Learn how to use the tag, stupid.

Well...

...just 'cause it was faulty, doesn't necessarily make it untrue...

Re:And here I thought Windows was the real virus..

[poetmatt]

It's no different than when they "accidentally" (note the word) flagged chrome as a virus before.

Expect these accidents to become more frequent as microsoft panics about google competition.

Apparently this has to happen more than 50 times before people accept that it's not just some magic "mistake".

see http://chrome.blogspot.com/2011/09/problems-with-microsoft-security.html

Skynet

[fast+turtle]

when skynet becomes self-aware

God damn speed filter

I'm not a cowboy! Sod off you damn Whore Mongers, the damn speed filter doesn't apply to me as I'm a Fast Turtle for damn good reason,.

Re:And here I thought Windows was the real virus..

[oakgrove]

Except that people don't rationally poke fun.

Sure they do. It's a fundamental part of the human condition to make fun of things and joke around. Only on the internet when the jest is directed at $SOMEBODIES_FAVORITE_CORPORATION does this reality ever seem to come into contention.

They are just corporate cheerleaders for companies they don't work for, compete against, or know anybody who falls into those camps.

Maybe loosen the tin foil, man.

Re:first!

[LifesABeach]

I'm still working on the part where a group of convicted Liars, and Thieves are still allowed to do business. But then again, I'm amazed that Criminal Law is second to Torts.

Re:And here I thought Windows was the real virus..

[Belial6]

I would say it is more an issue of the current cultural climate that has most people believing that if you couch your very serious statements in the form of a joke it isn't OK for anyone to point out how wrong you are.

Re:And here I thought Windows was the real virus..

So we need a joke police now to protect the poor underrepresented mega-corps? This website gets stupider and stupider. I see why Taco left.

Re:first!

[hairyfeet]

What bloatware would that be? The firewall in Vista/7 that has pretty damned comprehensive rules based filtering while being easy to use, THAT bloatware? or are you still bitching about a certain 12 year old OS that is going for a record on years of support even though they've passed any legal obligation they had to keep updating the thing, could it be that? Give me a damned break! What's next, you gonna complain that XP which is already 3 generations behind (XP X64, Vista, 7) runs as admin too? Move on dude. Man the world is gonna be full of butthurt nerds when 2014 gets here and XP doesn't get another extension so they will actually have to try to find things in the modern version to bitch about. But don't worry Ballmer is gonna shoot Windows in the face because he wants to be Apple so fucking bad he sleeps with an iPad under his pillow.

As for TFA frankly if that is the WORST thing an AV does color me happy. We've seen dllhost marked as a bug thus disabling the system, we've seen core boot files flagged as bugs thus bricking the system unless you had a second machine to Google how to fix the first, frankly MSE has been so far pretty harmless. That said even though I use it on my netbook and gamer machines I do NOT use it on the machine I actually do any real surfing on because frankly in my tests it doesn't really DO anything. What I mean by that is while it has a pretty decent scanner for downloaded files that is pretty much it, you load up a webpage with malicious code MSE isn't gonna say a word or try to block that site whereas both Comodo Internet Security and Avast Free stop the page from loading. I will give them credit for being just about the lowest resource using on any AV but the flipside is it simply isn't doing much. So while I recommend it for geeks that actually practice safe computing or for machines like my gamer PC and netbook where the only surfing they are doing is checking webmail or going to well vetted sites like this for regular users I simply can't give it out.

Maybe its because it was never really intended to be an AV, it was originally Giant Antispy before being purchased by MSFT, maybe the guys at MSFT got tired of AVs slowing down the system so focused on speed above all, who knows, but for a clean computer in my own tests which involved taking an offlease and hitting every topsite and crapsite I could find then using a disc filled with offline scanners to check the system I found MSE on XP scored horribly, MSE on Vista/7 did better simply because OS protections like low rights mode did most of the work, but in no version of Windows did it stop as much as Comodo IS or Avast Free. Oh and since you seem to hate the firewall so much Comodo IS is not only free for home AND business use but also has its own quite excellent firewall built in, which for those that just want one or the other its as simple as unchecking a box during install. For business users or those that want more finer grained controls I'd go with Comodo IS, for those that want a drop and go solution Avast Free is what you want. MSE? Meh only use it if resources are the highest concern, like say on an underclocked netbook (for those that haven't tried Brazos Tweaker it does rock and added an extra hour on my E350's battery) or a gamer system where you simply aren't doing any risky behavior.

Google is a black hole though, isn't it?

[ToiletBomber]

Microsoft Security Essentials recognized that Google was sucking up all of Bing's patrons like a Blackhole, and sought to remove the threat once and for all by having users 'delete' Google en masse!

Overdue gambit

[paiute]

I am surprised that Microsoft didn't rejigger IE to just block Google altogether about the time Bing was being first promoted. By the time the lawyers got done beating each other to a bloody pulp - even if Google managed a legal victory - there would be millions of users who would have used Bing as the only alternative because they didn't know about the existence of any other browsers than the IE on their Windows desktop.

Re:Overdue gambit

[Greyfox]

Ooh and they could remove "Firefox" search results from bing! That would be brutal!

Re:And here I thought Windows was the real virus..

Indeed, all you use is linux. You definitely don't use your penis with anyone other than yourself too. That much is clear.

Re:first!

[HideyoshiJP]

If criminals and thieves weren't allowed to do business, what would happen to all the multinational corporations?

Nice

[pr0fessor]

Valentine's day is just a little to convenient. I wander if there are a couple of developers from both companies chuckling at each other. I know I have pulled pranks on friends and co-workers before. {I would not however want to answer to the boss when my prank hit the news}

SOP for competing products

[Locutus]

they took out AOL's TCP/IP stack years ago too and low and behold it happened right around the time Microsoft was getting MSN going. The default action for users clicking their AOL links and finding the dialer stopped working was to use the MSN dialer and bring MSN in. It took a court case to get them fix it and that fix was claimed to take months. It was a bug. Right, because they didn't bother to test against the most used TCP/IP stack out there. Google's a target now so stuff like this is just fun for Microsoft.

LoB

Three words: Norton Anti Virus

Since every PC you buy has crapware that WILL include that and the firewall, nobody uses the windows one.

Re:Three words: Norton Anti Virus

[hairyfeet]

Actually my new Asus EEE didn't have ANY Norton crapware and the few programs it did have I didn't want were things like Adobe Reader which I could see the majority would probably like. So maybe one should be a little more picky about which OEM one chooses? BTW if anybody here is thinking of a netbook the EEE1215B ROCKS HARD, it comes with win 7 HP X64 and holds 8Gb of RAM, and with Brazos Tweaker one can go even farther than the 6 hours watching HD video to more like 7 and a quarter, even longer for just basic web surfing. Truly an awesome little unit and it even games nicely!

Re:first!

[Mister+Whirly]

Because they settled the case. When the Appeals Court and the Department of Justice decide it is okay for Microsoft to do business, it is ok for Microsoft to do business. I guess Microsoft is basing it's practices on the law, and not your opinion. But you can read all about it in the link you posted.

Tough Love

[Predatory+QQmber]

Heh, it's just how Ballmer expresses his repressed admiration. Akin to throwing chairs as a sigh of respect.

Hmm

Gee, no antivirus has EVER given out a false positive before huh?? You little MS-hating fruit lovers just enjoy the chance to bash MS.. Does it make you feel better?

Re:first!

Microsoft wasn't convicted. The case was settled with a consent decree.

So legally, no wrongdoing was found. Microsoft essentially agreed to let the government watchdog them for a few years in exchange for the charges going away.

Is it really that embarrassing?

[flimflammer]

Embarrassing I guess, but really? This sort of mistake happens with every single anti-virus on the market. Some will even flag and delete core system files causing the installation of the OS to get crippled. I'd say that's embarrassing. It happens. It always will happen. It's not like this is some new slip up that only Microsoft could cause.

In all fairness

In all fairness Microsoft Server does flag all Microsoft websites as "UNTRUSTED" already by default.

Also, it wasn't just Microsoft Security Essentials or Forefront that were affected by this, but Microsoft Defender and Microsoft Windows Malicious Software Removal Tool as well, so it wasn't just affecting web browsing sessions contrary to what the article stated. Our Mail Servers running on Windows 2008 were brought to their knees post-Update last night due to MRT.EXE flagging every piece of Inbound or Outbound mail connecting to GMail, causing a 99% Load on all CPUs. We had to throttle the MRT.EXE process thread in order to get things back up and running. So, it was a little worse than Microsoft making a "Opps! Our bad! That's a little embarrassing." Mission Critical Systems were adversely affected making this more than just a "faux pas".

I'm not looking forward to an Out-of-Band Update to resolve this issue if it is going to require more down-time. My biggest complaint as a SysAdmin running any MS Server products is Microsoft's incessant need to net stop Mission Critical Services while installing an Update and then still requiring a reboot afterwards (pick one or the other Microsoft, not both!).

(But since I started this "In all fairness..." I should end this on the same note. "In all fairness...as a SysAdmin I have different but equally as valid complaints about *Nix systems as well. It's not just Microsoft that has need for improvement.)

Re:first!

Convicted liars and thieves that also pay 55,000 persons worth of payroll tax?

Re:first!

[LifesABeach]

Dear AC, no one pays a fine and allows themselves to be "watched" when they've done nothing wrong, Period.

Re:first!

[LifesABeach]

There are many laws. Torts, in this case, are not a pastry. And the way that law enforcement is handling their litigation is not cute. When business comes before people, someone has been bribed.

Re:first!

[LifesABeach]

Dear AC, so what is the minimum threshold for a business to not be criminally prosecuted for Fraud? Ignoring criminal activities is in itself, criminal; especially by Wards of the Court.

Re:first!

[Kalriath]

Greece is paying through the nose and allowing themselves to be watched, so I would disagree with that.

Re:And here I thought Windows was the real virus..

[Kalriath]

You should loosen your tin foil hat. I think it's constricting blood flow to your brain.

Re:first!

[flyneye]

Wow, you're quite an advocate.

Unfortunately, my experience with MS and their range of products supersedes your sincere hyperbole.
Even without the list of aches and pains, having a firewall at the workstation,rather than the gateway is like putting mud and snow tires on roller skates.

But don't feel bad, I think ads are a bunch of crap too.

Nicely written.

Re:first!

Dear LifesABeach - the law is the law and is not defined by your opinions of the way you think things should be. Period. Just because you have a bone to pick with Microsoft for whatever irrational reason does not mean they were "convicted" or "found guilty" of anything. Sorry, but that is all in your mind. In reality MS reached a settlement, was not found guilty of any wrong doing, and was allowed to keep doing business legally. Unethical and amoral do not have the same meaning as illegal.

Re:And here I thought Windows was the real virus..

[poetmatt]

thanks for providing a useful and informative reply. I can clearly see your opinion is very useful, and should be modded somewhere between 0 and -1.

I mean it's not like they're a convicted monopolist more than twice over or anything, right?