McAfee Exaggerated Cost of Hacking, Perhaps For Profit

coolnumbr12 writes "A 2009 study (PDF) by the McAfee estimated that hacking costs the global economy $1 trillion. It turns out that number was a massive exaggeration by McAfee, a software security branch of Intel that works closely with the U.S. government at the local, state and federal level. A new estimate by the Center for Strategic and International Studies (and underwritten by McAfee) suggests the number is closer to closer to $300 billion (PDF), but even that much is uncertain. One of McAfee's clients, the Department of Defense, has used the $1 trillion estimate to argue for an expansion of cybersecurity, including 13 new teams dedicated to cyberwarfare. Despite the new data, Reuters said McAfee is still trying to exaggerate the numbers." The $1 trillion study has seen other criticism as well, so the new data is a step in the right direction.

News at 11?

[Mitreya]

McAfee Exaggerated Cost of Hacking, Perhaps For Profit

... perhaps?

Re:News at 11?

[Pharoah_69]

perhaps, Indeed.

Re:News at 11?

[Mr0bvious]

Perhaps if you include the amount paid to virus protection rackets (McAfee et al) it may just reach or exceed that $1 trillion...

 

Re:News at 11?

[jayhawk88]

It might have been trolling?

Re:News at 11?

[hairyfeet]

Well I got to say most of us little shop guys certainly profit from McCrappy, we get paid to remove that shit because its fricking worse than the malware! You want to see a laptop grind to a fricking halt use McCrappy or Norton and just watch the cycles get wasted.

So TFA really doesn't surprise me that they are pulling shady shit as their products are frankly more of a PITA than a lot of the infections I've seen of late. You want to know which AVs to avoid? Norton, McCrappy, and I'll get hate for saying this but I'd add MSE to that list. what I've found is that MSE is really more of a placebo, you give it to those that already follow best practices and it'll make them feel more comfortable but it really doesn't do much and usually scores at the bottom of most tests. Honestly that shouldn't be a surprise to anybody as it was originally called Giant AntiSpy and was made to keep spyware and toolbars off, NOT worms and rootkits and viruses.

If you want a good AV that doesn't cost a dime? Here in the shop I've both tested the AVs myself as well as seen how well they work based on my customers and I'd say Comodo Internet Security and Avast Free are both REALLY good. Comodo is for your geeks as it has really REALLY fine grained controls and you can customize the hell out of it, although frankly you don't have to as for the past few years the defaults have been sane and well thought out. For your non geeks, your average Joes and Janes? Avast Free works really well, it holds their hand with info bubbles in English instead of geek speak, has a built in software updater that will warn you when your third party stuff is out of date, and its UI is REALLY simple and straightforward.

So do us all a favor and don't reward bad behavior by buying McCrappy, not only are they pulling numbers out their behinds but their AV ties a boat anchor on the system.

Re:News at 11?

Next, they'll break the shocking story that record labels have been exaggerating the "cost" of "piracy" for years.

Re:News at 11?

Nope .. the article says its a Trillion .. not trolling !

Re:News at 11?

[davester666]

Next up...losses by big media due to copyright infringement...

Re:News at 11?

So do us all a favor and don't reward bad behavior by buying McCrappy,

Yet you endlessly promote Microsoft products here.

What price credibility?

Re:News at 11?

[AlphaWolf_HK]

AV-comparatives puts MSE a little lower down the list of detection rates, but far from placebo.

I myself have had good results with removing a rootkit on an XP box that had no AV on it before.

Re:News at 11?

[hairyfeet]

If you are gonna lie at least try to make your lies believable, okay Miss Coward? So far I've slammed MSE, Windows 8 and 8.1, Zune, Kin, Sidekick, XBL, the Windows Appstore, and Vista.

So if you consider saying a whole THREE products out of a dozen released in the past decade are good is "promoting" a company I'd say get your head out of your behind, because i call it as I see it and if a company puts out a good product, even if most of their products are shit? I'll be happy to give them props when they do something right, because unlike you Miss Coward I stand by my positions and always have.

As for the other guy that points out MSE doesn't score dead last but kinda in the middle...and? If there are FREE products that score BETTER than MSE why on earth would you want the inferior product? Don't get me wrong, just because its not a great AV doesn't mean it doesn't have its uses, since my gaming system is really only used for gaming and movies i have MSE on it and for just scanning the occasional game patch or downloaded video? It works just fine for that. But on my netbox I have Avast Free because it consistently scores higher than MSE and since i surf on that box I want the better protection that Avast Free gives me over MSE. the only positive MSE really has is how low resource it is but I'd argue that its so low resource because frankly it don't do much. When all the stink about MSE flunking the AV tests came out I fired up a box at the shop and decided to do some tests of my own and went to known infected sites like topsites...know how many pages MSE stopped from loading? NONE, zip zero zilch, in fact i never got MSE to block a single infected webpage from loading. After restoring from a disc image I ran the same test with both Comodo IS and Avast Free and they stopped the web pages from loading and warned that malware had been detected on them.

So I'd say if all you really need is a file scanner like ClamAV? Then MSE works great in that role, if you need real time protection? Stick with Avast Free and Comodo IS, hell of a lot better at stopping the nasties and like MSE both are free so why take worse protection when you don't have to?

Re:News at 11?

[Full+of+shit]

Between them the 2 studies show that the cost is about $300bn, the more reliable figure, with a margin of error of about 700bn. In that range is 400bn profit. What do mcafee and the anti-virus mafia bring to the US economy per year?

Re:News at 11?

[dingen]

What do mcafee and the anti-virus mafia bring to the US economy per year?

I wouldn't be surprised if the combined time a virus scanner takes away by using system resources and asking users for updates and other stuff is more than the time it saves by blocking malware and viruses.

Re:News at 11?

[Seumas]

Don't worry. None of these industry people are ever in a government position responsible for anything related to their business or anything, at least!

Oh wait...

Re:News at 11?

[TeresaBriscoe]

Hey, what's new in the world today?

Re:News at 11?

[poofmeisterp]

Perhaps if you include the amount paid to virus protection rackets (McAfee et al) it may just reach or exceed that $1 trillion...

Don't forget the fake antivirus software that has you remove antivirus software, only to pull malware in, encouraging purchase of fake anti-malware software, which pulls viruses onto your machine, which lands most non-experts into a tech shop, where antivirus software is installed.

*breathe*

Re:News at 11?

I never could figure out why people give McAfee and Norton money any more. There are plenty of free AV products that are as good as or better than the commercial packages, inclusing one from Microsoft. Why would you pay for something when you can get it legally and ethically for free??

Re:News at 11?

[erp_consultant]

* This *

I've been using Microsoft Security Essentials for several years now without a hitch. It's free and it doesn't seem to slow the machine down. If it weren't for preinstalled bloatware McAfee, Norton, NOD32, Kaspersky, etc. (well, mostly McAfee and Norton) would all be out of business. I'm sure that a lot of unsophisticated users believe that McAfee is the ONLY way to protect their PC from viruses and they simply must purchase it. Heaven knows, the scare tactics they employ are surely helping. Completely unethical in my view...they'll never see a nickel of my money.

Re:News at 11?

[erp_consultant]

Yeah, kinda like how the cops put a "street value" on drug busts. As if some dude that just got busted with 10 kilos is going to be standing on a street corner selling dime bags.

Re:News at 11?

I think the real news of this is that he was less than a decimal place off. I was expecting at least two 0's of error, but it looks like his (probably evidence free) number is less than quadruple the findings of the study.
That puts him as significantly more reliable than weathermen, journalists, and politicians, but I still won't pay for his software.

Re:News at 11?

[danomac]

You mean the Avast Free that continually nags users to buy a subscription?

I used to recommend it to people, but I don't now.

Re:News at 11?

You have only managed to use security essentials without a hitch because of your browsing habits. Techie people get a bit blinded by the "well, it keeps me safe, so I'll recommend it to others!" mindset. I run my home system with no scanner at all (with bi-weekly full on demand scan from Bitdefender and Trendmicro, with once a month rootkit scans, run before I head to bed. If something looks weird, scan it first). Never had anything turn up. Doesn't mean I should go around suggesting that the average user not use virus scanners.

Easily 2/3 of the computers I get into my shop are running MSE, and they are brought in with problems that any other virus scanner (Avast, Avira, Bitdefender, Kapersky, Nod32, etc) would have caught and killed. The other third are Norton or McAfee, but they are always expired.

Usually installing a better virus scanner and running a full scan is enough to fix their problems. Security essentials is dog crap, stop suggesting it to people. It is every bit as bad as Norton or McAfee, it just sucks faster than those two do..

If you are worried about it, Avast Free, Avira Free (popups), or BitDefender Free are all excellent products. AVG and MSE are trash, and should be treated as such.

"Perhaps"...?

"Perhaps"...?

Re:"Perhaps"...?

[viperidaenz]

Perhaps for profit, perhaps from incompetence.

Re:"Perhaps"...?

[desdinova+216]

why not both?

Cyberwarfare?

[Mitreya]

Department of Defense, has used the $1 trillion estimate to argue for an expansion of cybersecurity, including 13 new teams dedicated to cyberwarfare.

What exactly is this "cyberwarfare" that I keep hearing about?
Who are we fighting? What are the objectives? When will it end?

Re:Cyberwarfare?

I don't know the answers to those questions, but I can say that this cyberwarfare" is probably expensive. And apparently because its expensive, we should spend more money on it. Seems like a positive feedback loop in the hacking budget to me.

Re:Cyberwarfare?

What exactly is this "cyberwarfare" that I keep hearing about?

An undeclared war on everyone (including ourselves) to collect information, and damage property, intellectual and otherwise.

Who are we fighting?

Its a war on intelligence. I know that sounds stupid. (pun intended. If you think the pun is stupid, consider that a extra self referential aspect of the joke. I can't lose!)

What are the objectives?

Some mixed combination of spending money, and collecting cool secrets to share in some agency somewhere.

When will it end?

After the war on drugs, the war on terror (be afraid!), the upcoming war on congress, and the corresponding war on progress.

Re:Cyberwarfare?

What exactly is this "cyberwarfare" that I keep hearing about?

"I put on my robe and wizard hat"...

Re:Cyberwarfare?

[sjames]

We're fighting the Cybermen, of course. They want to 'upgrade' us and we don't want them to.

Re:Cyberwarfare?

What exactly is this "cyberwarfare" that I keep hearing about?

"I put on my robe and wizard hat"...

I take off your robe and wizard hat...

That was suppose to undo putting them on, but I just made it worse didn't I?

Re:Cyberwarfare?

[H0p313ss]

We're fighting the Cybermen, of course. They want to 'upgrade' us and we don't want them to.

Dammit! Where's the Doctor when we need him?

Someone fetch the Brigadier quickly!

Re:Cyberwarfare?

[sandytaru]

Other countries and organizations are trying to hack into the US (so they say.)

We are fighting them on our own electronic turf - "they" being primarily North Korea, China, and Russia (so they say.)

The objectives are to protect the personal data of the citizens of the United States (the NSA is doing quite enough spying already, after all) and state secrets (which is why they're so pissed at Snowden since they spent all that money trying to stop China from getting shit and he just handed them a laptop. Doh!)

It will never end.

Re:Cyberwarfare?

[viperidaenz]

long budget = 0;
do {
    budget++;
} while (budget > 0 && budget

Re:Cyberwarfare?

[viperidaenz]

<= Long.MAX_VALUE);

Re:Cyberwarfare?

[mrbester]

Sorry bro, he dead.

Re:Cyberwarfare?

It's where governments spend massively to scoop up (and/or perhaps train) "white hat", "black hat", "green hat", "government hat", "ethical", and other people who call themselves "hackers" but who really are skiddies or maybe rote crackers at best.

Then they "go to war" against each other.

It's the new shtick in government funding. The terrist gambit was a good one and brought in large bunches of money, but not so much for the military, and they, like anybody else, like money too.

Re:Cyberwarfare?

[kermidge]

"....and the corresponding war on progress."

It's no accident that the idea comes up repeatedly in sci-fi over many decades of an elite under whose aegis all pure and applied research, all technological and medical developments, are reserved for themselves, shared somewhat with The Accepted, and meted out parsimoniously to The Acceptable at least whilst in the performance of their duties. I think it not so far-fetched to see we're in the midst of that happening.

While wealth has long, if not always, had its own virtue and its own power, it now has under fairly good control an increasing lock on technology and with it communication (thus eventual lock on research - if you can't tell it you can't share it, etc.) and with it their own little forever vision of the future of the species.

To take just the narrow yet furthest reaching realm of research, given the breadth, depth, and pace of experimentation, discovery, publication, collaboration in the vital areas of gene, nano-, and neuro-, along with computational studies and modeling viz. AI, robotic vision systems, and various developments in movement and power systems, there's absolutely no way that sneaker-net can be of any effective use apart from as a curiosity to be squashed whenever needful.

It's game over, folks. The only larger laws still operating are those of, say, thermodynamics. Those of you with brains, talent, and the capacity for obsequious loyalty will have some kind of at least somewhat congenial future. For the rest of us, not so much.

"That a few (90-99+%) might suffer that the worthy shall prosper is the nature of Life, is it not?" Well of course it is, and every self-congratulatory sanctimonious fuck on this site will be slurping this up with a spoon. Until, also of course, they discover just how much their masters truly value them. Turtles all the way down, so take comfort in your zone.

Hmm. Upon reflection this is nothing new; it's as it was, is, and will be. Vagaries of law, constitution, politics, the drama of war and boredom of peace, are shadow plays for the underlying reality, and are but amusements for the masses. So, sorry for long post; I wanted to say it anyway, for the exercise, perhaps. Philo 102, maybe; takes me a long time to learn stuff.

Re:Cyberwarfare?

Most likely never end like the war on terror never ends.

Small corruption fighting larger institutionalized corruption.

Re:Cyberwarfare?

[Tom]

Wars ending? You still from the 20th century? When is the last time the USA ended a war? Iraq, Afghanistan, drugs, terrorism - all the more recent wars are designed and intended to last forever.

Re:Cyberwarfare?

... self-congratulatory sanctimonious fuck

As those fucks point-out, everyone is smarter, richer, healthier, 'safer' in the new century. They use this fact to excuse increasing government oppression. But they ignore the fact that this better lifestyle was built by the middle-class. So taxing the middle-class more, imprisoning them more, denying their freedoms more hurts a technological society worse than anything done to the 'job-creaters', who in reality, lost that status a long time ago.

Re:Cyberwarfare?

[datavirtue]

...repeatedly in sci-fi over many decades of an elite under whose aegis..

X-Files came off as ridiculous most of the time but the main story line, which was often nestled in between stupid ad-hoc urban legend episodes, was based on an inner cell of powerful individuals (starting with the Joint Chiefs of Staff) who arranged to kill JFK (they were anti-communists who were totally pissed off after JFK cancelled the invasion of Cuba after these guys spent half their career preparing for it) and remained in power for a generation afterward operating in the shadows. Sent chills up my spine as one of the most plausible JFK assassination theories I have ever heard. It had the "ring of truth" to it. Not claiming it is true, but I found the main story line of X-files compelling with the filler episodes being totally stupid (although the main storyline ends rather far-fetched, the beginning--fleeting compared to the length of the series--was chillingly plausible).

Re:Cyberwarfare?

[H0p313ss]

Sorry bro, he dead.

Again? We're going to run out of actors at this rate.

Re:Cyberwarfare?

[desdinova+216]

I think that the he's dead remark is about the brigadier. The actor that played him died in February 2011

Re:Cyberwarfare?

[kermidge]

Yeah, I liked that - it had the ring of self-consistency from a start at least as plausible start as any of the others and lent a fine back story for the arc. Another one I came across, earlier and simpler, was as payback by the Diem family.

Re:Cyberwarfare?

[kermidge]

What's left of the middle class is becoming more irrelevant as a social class, and the loss of revenue from them will be used to further stratify the status quo whilst excusing further privation for the lowers. It's long been my impression that the ubermenschen tend to be petty, paranoid, sadistic, and not terribly bright as a class, none of which matters. Far enough along the system may possibly collapse due to widespread rot but the core families of the few brighter ones will always prosper, essentially hidden, as I surmise they have done for many centuries, since I figure they're self-pruning and remain sufficiently prudent in how they manage their affairs.

I don't consider the class to be monolithic but I think it largely irrelevant in terms of their effect on the remainder of the species. It's only the relative openness of late that calls any of this into question, but attention spans are short as are memories.

Re:Cyberwarfare?

[H0p313ss]

I think that the he's dead remark is about the brigadier. The actor that played him died in February 2011

a) The actor is dead.
b) It wouldn't exactly be the first time a different actor took over a role in the series now would it?

(Tongue planted firmly in cheek. YMMV. This comment is a work of fiction. Names, characters, places and incidents either are products of the author’s imagination or are used fictitiously. Any resemblance to actual events or locales or persons, living or dead, is entirely coincidental. Please keep off the grass.)

McAfee study challenges McAfee study?

[Trepidity]

If I get this correct, this is the original study being challenged:

A 2009 study (PDF) by the McAfee estimated that hacking costs the global economy $1 trillion.

And here is the new evidence:

A new estimate by the Center for Strategic and International Studies (and underwritten by McAfee) suggests the number is closer to closer to $300 billion

So this is two different McAfee-funded studies dueling it out?

Re:McAfee study challenges McAfee study?

[MightyMartian]

Seems confusing, until you consider the founder is a drug addled maniac who probably gets into fisticuffs with himself just trying to brush his teeth in the morning.

Re:McAfee study challenges McAfee study?

Sex, Lies and Cyber-crime surveys: http://research.microsoft.com/pubs/149886/SexLiesandCybercrimeSurveys.pdf

Re:McAfee study challenges McAfee study?

Actually the "new study" isn't even a study: they come up with the $100 bn number by analogy. They reason that car crashes cost about $100 bn a year, so maybe cybercrime costs about this also. Impressive analysis.

Re:McAfee study challenges McAfee study?

[oobayly]

To be fair, he's got nothing to do with it any more, but he's always willing to help people uninstall McAfee AV.

BTW McAfee != McAfee

Along with $1 trillion != $1 trillion and Cost to the economy != Cost to the economy.

Got it?

Drake's equation

These numbers are like those from the Drake's equation but plugging data for commercial profit of both, AV companies and defence contractors.

mcafee is POS software anways

[Joe_Dragon]

mcafee is POS software anways

Re:mcafee is POS software anways

mcafee is POS software anways

Sorry, did you say: mcafee is POS software anways?

I missed the body of your post because I was so busy reading the subject!

Lucky for me this time: the body of your post was redundant.

Just like most of your other posts.

Re:mcafee is POS software anways

Point of sale software needs mcaffee! Teh hackz0rz!

Re:mcafee is POS software anways

Even McAfee's founder John McAfee confirms it's PoS:

http://www.guardian.co.uk/world/2013/jun/20/john-mcafee-uninstalling-software-video

It actually is a trillion dollars

[symbolset]

Further on they say global losses are "probably" in the "range" of $300 billion.

These are the losses - data loss, the costs of identity theft and notification. If you want to count the cost of the Windows malware ecosystem you have to include both the losses and the cost of defense. That's all the costs of data losses, the entire revenues of all antivirus, firewall, next-gen endpoint sofware companies including the (now Intel) McAffee. These things cost money, and without the Windows monoculture they could not persist.

I have long said that the cost of the Windows malware ecosystem far exceeds Microsoft's own revenues. This is proof. The cure is easy: Don't run Windows. You can choose to not have this problem. You can opt out. Google did. If someday your choice of other OS becomes also so infested because it has become too popular and its developers lose track of security you can choose another. The OS isn't really that important anyway.

Re:It actually is a trillion dollars

Nice try John.

Re:It actually is a trillion dollars

[MightyMartian]

Now add in the various costs, from lost productivity to tech support costs, of shitty AV software like McAfee.

Re:It actually is a trillion dollars

[sandytaru]

The OS is damn well important if you're trying to play a current gen video game. *sigh*

Re:It actually is a trillion dollars

[symbolset]

That's being resolved. Apparently by revenue 90% of games are on Steam, and Steam is cross-platform now because W8 App store doesn't allow Steam, and GabeN is not a moron.

Re:It actually is a trillion dollars

[symbolset]

If you're running AV then the fraction of expense committed to defense has to be at least 50% of your desktop IT spend because that's how much of a PC's capacity modern AV takes - even though it doesn't work.

Re:It actually is a trillion dollars

This is why redmond maintains they are great innovators and ecosystem enablers. Yes, that's right, they're spinning their own incompetence and marketeering tactics creating a monoculture of vulnerable software as good for everyone.

Re:It actually is a trillion dollars

[kermidge]

True, but with increasing use of for instance CL, GL, emulators, vm, library lookup (a la Wine), cross-platform languages then the underlying OS will become of lesser importance. I expect the trend to continue until OS is either a matter of user preference for specific usage or be transparent altogether, but it's gonna take a while to get there. Meanwhile, as you say.

Re:It actually is a trillion dollars

That's being resolved. Apparently by revenue 90% of games are on Steam, and Steam is cross-platform now because W8 App store doesn't allow Steam, and GabeN is not a moron.

That's all well and good, but it hasn't done much to encourage developers to build for Linux as well as Windows. Don't get me wrong, having Steam on Linux is a Good Thing, but porting a glorified download manager is a long way away from bringing games to the platform. In fairness, since Steam arrived on OSX the selection has improved, but not to the point where you could pick 5 titles and find more than one that is cross-platform.

Re:It actually is a trillion dollars

[funkify]

If you're running AV then the fraction of expense committed to defense has to be at least 50% of your desktop IT spend because that's how much of a PC's capacity modern AV takes - even though it doesn't work.

Modern? If your antivirus software uses 50% of your PC's system resources, then I'm going out on a limb to guess that either your antivirus software or your PC (or both) are not exactly modern.

Re:It actually is a trillion dollars

[gman003]

Valve also ported pretty much all of their games to Linux. And quite a few other games have followed - 247 as of this moment.

Sure, that's not many compared to the number on Steam (can't find a total right now, but I recall it being above 2500 a few years ago). And most of them are small, indie games - the only big, AAA titles on there are Valve games.

But these things take time. It's a step - several steps - in the right direction, but it's a long journey.

Re:It actually is a trillion dollars

[cusco]

What kind of piece of junk PC are you running? My four year old laptop is sitting here idling at 3-6% CPU usage, almost all of that Firefox. If yours is sitting there over 50% then you've got something seriously wrong with your machine.

Re:It actually is a trillion dollars

[Impy+the+Impiuos+Imp]

Sorry, any massive shift to another OS will just focus the attention of thousands of pirate hackers instead of Windows. I maintain the security of Linux is largely still security thru obscurity -- nobody cares to hack at it, the way they do Windows.

A few dozen guys are not thousands from poor, corrupt countries who are on a mission from god to make an illicit buck.

Black projects and classified losses

The real number might be closer to the $1T if we allow for the cost of losses that have not been released due to the very existence of the project being secret. They never would have admitted it at the time if a spy had compromised the Manhattan project. Do you think it is any different today?

Re:Black projects and classified losses

... if a spy had compromised the Manhattan project ...

Apparently, the Kremlin was aware of the Manhattan project. Robert Oppenheimer suspected some colleagues of being communist sympathizers but said nothing. A decision that would later bite him on the arse.

Re:Black projects and classified losses

[david_thornley]

if a spy had compromised the Manhattan project

I believe you're looking for Klaus Fuchs. The Soviets did spy on the Manhattan Project, and Stalin had to look surprised when Truman told him about it at the Potsdam conference.

About $2.5 billion

Cyber war needs cyber casualties, $300 billion is hugely inflated too.

Take out the cost of basic security, which should already be part of business, you don't count the cost of the locks on your doors as losses due to theft, yet these inflated numbers always count the cost of basic security as a loss due to hacking.

The reason this number is hugely inflated is because it's part of the cyber-war justification. If you want a big budget (NSA gets $10 billion? $20 billion? 30?) then you need to be able to inflict casualties. They need to exaggerate a threat from script kiddies to justify that.

Credit card and bank fraud is about 1% of online sales, so it won't be much bigger than that. So 1% of 250 is $2.5 billion:

http://techcrunch.com/2010/03/08/forrester-forecast-online-retail-sales-will-grow-to-250-billion-by-2014/

Better alternative.

[fahrbot-bot]

Submit the problem to the what-if blog and Randall will have it figured out - probably more accurately - by next Tuesday.

NEWSFLASH!!!

[interval1066]

Peanut vendor caims peanuts can cure cancer! News at 11!

No different than...

[msauve]

Law enforcement's take on drugs which often (always?) values things based on the sale of minimal quantities. Busted a couple of tons of pot? Value it based on the highest value of selling joints on the street.

It's all lies, meant to justify their existence.

Re: No different than...

[nbritton]

I've oftened wondered how the price of a drug is decided, does it follow free market economics? You would assume that most of the money is profit, yet we don't see sellers undercutting sellers to reach a natural economic equilibrium. Is this exactly what gang turf wars are about? It would seem the gang leaders have a firm grasp on capitalism and business management. Maybe in prison we should offer an MBA program, on second thought... we have enough criminals at the top already.

Re: No different than...

[oobayly]

Street value.

UPDATE:

[techsimian]

New study proves peanuts cause cancer...

Re:UPDATE:

[MightyMartian]

New study proves only more peanuts can cure peanut cancer!

Their figures are shit

Which is to be expected since McAfee pulled them out of their ass.

This is the entire history of the antivirus crowd

The big virus scares in the 80s were media frenzies partly promoted by the big antivirus producers.... including one John McAfee, who, if you study his history will realize is a very good huckster.

Its also the entire history of the govt, where every bureaucracy studies itself to say that it needs more money and is of utmost importance.

Funny how there is no branch of govt that is in charge of making sure the govt doesnt go bankrupt.

But nobody can exaggerate how crappy

[EmperorOfCanada]

But nobody can exaggerate how crappy their bloated, pile of dung, machine slowing, worst-possible-time pop-up, fear mongering, computer newb fooling, circle of garbage really is.

In the future when people are writing case studies about the PC industry they are going to point a huge finger at the bloated trialware business model that has ruined the experience of buying a new computer. Basically consumer PCs are sold profitless. Then the companies hope that a certain percentage of the fools buy one of these piles of snot software packages of which the manufacturer gets a significant cut. Profit.

But the end result is that non-tech people unwrap their shiny new machine only to find all kinds of confusing icons for music services, media services, a trial for MS Office, and the worst... some AV pile of vomit. The AV vomitus will then tell them that they need to subscribe to their service otherwise the machine will be more infested than a street-walking Bangkok lady-boy.

Some defenders will scream, "If they don't want it then they can uninstall it." But the simple reality is that your average computer buyer from Staples is 100% unable to uninstall it thus will have this software threatening them every time they look at the screen.

I don't know how many giant screens or kiosks that I have seen screaming about the subscription running out.

But then the next layer of pain is that nobody hardly trusts these popups. With people like myself saying, "For the love of all that is good don't buy that crap." So now how can they distinguish between some AV crap trying to scam them and just their OS telling them that they should install the update.

Then people like myself come along and see that they are about 3 years behind on their updates because they were to scared to ever OK the updates. Their Adobe Flash is 4 versions out of date and their browser is running a beta of this new Javascript thing. So the fear caused by the bloatware AV has now caused them to allow their machine to become woefully insecure.

The alternative is that they blindly trust everything that seems helpful resulting in so many toolbars that they are left with around 1 inch of working browser and their machine takes 5 minutes and 8 casino ads to boot up.

So to me these AV types are not just the scum they obviously are but an insidious destroyer of the PC industry.

The best part is how people have been leaping to smart-phones to get away from desktops that scare them only to find many of the Telcos have installed "Helpful" software that points to obscure music/ringtone services, custom search engines, and other things that no doubt send a kickback their way.

Re:But nobody can exaggerate how crappy

[sandytaru]

The sad thing is, those same folks who are unable to uninstall their AV and finally give up and pay $60 for the subscription are the ones who are going to open up that attachment that seems to be from Aunt Sally that says "omg you have to see this so funny!!!" which will probably brick their machine when they don't head the warnings from the AV that the file is unsafe.

Re:But nobody can exaggerate how crappy

Infact AV trial crap can not be completely uninstalled.
The only way is to buy a fresh copy of Windows 8 (yes, my new computer is unable to run Windows 7, there are no drivers for the hardware anymore).

There was so much crap installed, that to create a factory install disk it asked me to get 8 DVDs. And it would take about 2 days to create this set of DVDs. WTF.

Re:But nobody can exaggerate how crappy

[EmperorOfCanada]

I don't know why you got voted down as I can even top that. I tried reinstalling Windows 7(HD died) using the disks that came with the machine and it wouldn't because the install said it was the wrong machine. The disks came with the machine and had the exact model on the packaging. I am about as technically savvy (short of a MSDN certification) that you could hope for. If I can't install it then less than 1% of the population could (assuming there was a way) and MS wonders why PC sales are in the toilet. If I didn't have many other tricks up my sleeve then my machine was now dead without professional help.

I have reinstalled Mac OS and it is just about as brain dead easy as possible. If you were using a time capsule then you may very well be looking at an exact replica of your original machine post install (right down to the desktop icon placement). I am not saying this can't be done in Windows it is just that computer illiterates might just manage it on the mac.

I am also not saying woo hoo the mac is so much better. It just highlights that the Windows PC experience could be so much less miserable.

The Best Defense is a Good Offense

[10101001+10101001]

One of McAfee's clients, the Department of Defense, has used the $1 trillion estimate to argue for an expansion of cybersecurity, including 13 new teams dedicated to cyberwarfare.

Clearly the DoD, when its job would clearly seen to be Defense, should march first towards cyberwarfare. I mean, who cares that the US Government's handling of cybersecurity is a joke? Nah, we need to attack those Chinese hackers now and hard. Because surely we can use highly paid, low in number hackers in the US--but only those that can hold onto a security clearance, not do drugs, and stomach actually working for "the man"--against a population 3x the size and with salaries a fraction of the cost per hacker with clearly a regime more interested in getting things done and looking the other way than simply finding yet another excuse to bloat the departments budget--presumably because that's handle different in China (ie, political and personal maneuvering to get funds with little focus on "reports"--although on second thought, that sounds awfully familiar).

But, then, I guess maybe the DoD is just really stupid? They think they can defend US computers with cyber-soldiers and cyber-tanks? They don't understand that a well constructed computer [fire]wall or access [panel] is basically indestructible (although there's always DDoS attacks)?Nah, it's hard to believe they're that stupid.

Re:The Best Defense is a Good Offense

[lightknight]

Well, you have to hand it to them...a cyber-war sounds a lot more juicy than a regular war -> less casualties (on your side), comfier seating and schedules, less risk, and better pay.

Of course, the reality is that a cyber-war is just the latest is the long series of handouts for defense contractors...more of an invention, really, than something substantial, and definitely not the way to go liberty-wise if you want to have any kids in the future and not regret it. But such is life.

The DoD, perhaps, is suffering from an inability, like many government agencies, of either hiring the right talent, or actually taking said advice one the talent is hired. Their network admins probably know several dozen ways until next Tuesday how to tighten security on their networks without impacting ease of use or efficiency, but are, in all likelihood, told to leave it to the security guys, or to do the plain minimal (because of policy). Going a step further, the network admins could even be so out of touch with control of their own networks, that they don't even get to decide what firewalls / switches / whatever are run on it (someone else, with purchasing authority, makes less than optimal purchases here, possibly).

Lying for profit?

[dvaldenaire]

You must be kidding.

Simple

[TentativeFate]

We're cyberfighting cyberterrorists to cyberkill them before they cyberkill us. More seriously: Think of the spygames of the cold war, with the punch that you don't need to physically be in the location you're attacking. The objectives are as diverse as they ever were: gather intel, sabotage, manipulate data and the public. So we're targeting any device worth spying on (that is, all of them, prioritized), any infrastructure, any database, any public (foreign or otherwise). And we (our devices, infrastructure, database and public) are being targeted by any half-assed hacker with a laptop, and several armies of fully-assed ones. It ends when the cyberwarring governments sign a non-proliferation treaty, or at least a non-aggression pact, so that their interests shift from offense to defense. Then you'll see companies suddenly becoming liable for their vulnerabilities, and soon after the net will be much more secure. A warning, though: a side effect may well be a much less free net, in the same sense that The West is not as free as when it was Wild.

They're a SCAM

[longk]

I used their PCI compliance program once. My server did not comply, but complaining to my account manager with McAfee got rid of all the warnings and errors. They care about the money only.

(Note: I never did store any customer information on this server. The goal of the PCI certificate was simply to see if it would benefit sales.)

of which McAfee constitutes 50%

[__aaltlg1547]

The price people pay for McAfee and its competitors as well as the lost productivity and power consumption of McAfee and its competitors needs to be figured into that total.

3x or MASSIVE?

[minstrelmike]

Seems to me being off by a factor of 3 is not a "massive" mistake in calculating economic _estimates_.
There's a lot of guesswork involved.

The fact that everybody guesses in the best direction for their employer is not strange.
How many of the top 500 economists predicted the 2007 recession?. Many of them even said we weren't in a recession when we actually were.

btw, if you haven't disabled advertising, this particular thread on slashdot sends you wonderful offers from McAfee ;-)

Another hideously obtuse comment gets voted up....

[Kodack]

Thinking McAfee's security products are consumer virus scan is like thinking all Dells products are Best Buy laptops.

The simple fact is the majority of the product line up are non consumer and invisible to you. I'm not just talking about enterprise malware, I'm talking about IDS, IPS, SIEM, Solidifiers, Risk and Compliance, Encryption, etc.

The majority of the product line up and business model is corporate and government customers monitoring and blocking threats on the wire. Little or nothing to do with some rinky dinky bloatware on your walmart laptop.

is this new?

[beefoot]

Have you read a news article that says police busted a weed house and got rid of $30 millions weed? Usually that $30 millions is the price of all grown up weeds selling at the top street price. They may only confiscated a few baby plants.

Never Underestimate Stupid

For the informed, and most IT minded individuals, AV is one of the most useless pieces of crap that most on here have clearly pointed out. However, for the average "dumb" user that is more than happy to click those links that come from people they don't know, it is absolutely one of those pieces of protection that is required. It certainly will never been a full proof system, but something is going to be exponentially better than nothing.

In the enterprise, McAfee does do a lot of things beyond just AV protections, many use it for their forensic investigations because of it's ability to get to a lot of the data that others don't have access to. When you talk about the usefulness of the product as well, we have to remember that it is very difficult to show how many "attacks" have been stopped simply by having AV there. At the end of the day, each line of defense that you put in place means that the adversary has to change their attack and look for another way in. AV is going to at least cause them to change their attack, that doesn't mean that AV is useless.

Take AV off, an most end users are going to popped within a few hours because they do everything they shouldn't.

It is an *estimate*

[home-electro.com]

Intel's one is also estimate. There is no way to validate either one of them. And, they of the same order of magnitude, so it really is unfair to stipulate that McAfee exaggerated theirs.

Extremely difficult to quantify

[GodfatherofSoul]

Say my home network gets hacked and all my data gets released into the wild. There's a tangible cost in time it would take me to change passwords, but how do you quantify costs of embarrassment or damage to your reputation? Say I've got some scathing criticisms of a family member or reprehensible views on some issue.

Can you put a price tag on the damage to Anthony Weiner from the leaked sexting conversations?

Re:Another hideously obtuse comment gets voted up.

[EmperorOfCanada]

After ripping McAfee's infestations from the guts of many a PC, and watching even the wingnut McAfee trash talking his own old company, I think I'll pass on anything not only from that company but anything that even were to rhyme with McAfee. To me there is never just one cockroach.

This is not really news

Micrsoft research has debunked Mcafee's work of fiction a while ago.

http://research.microsoft.com/pubs/149886/sexliesandcybercrimesurveys.pdf