Slashdot Mirror

← Back to Stories (view on slashdot.org)

ESET Spreading FUD About Torrent Files, Clients (welivesecurity.com)

Posted by msmash on from the fearmongering dept.

An anonymous reader writes: ESET has taken fear mongering, something that some security firms continue to do, to a new level by issuing a blanket warning to users to view torrent files and clients as a threat. The warning came from the company's so-called security evangelist Ondrej Kubovic, (who used extremely patchy data to try and scare the bejesus out of computer users (Google cache). Like all such attempts at FUD, his treatise ended with a claim that ESET was the one true source whereby users could obtain "knowledge" to protect themselves. "If you want to stay informed and protect yourself by building up your knowledge, read the latest pieces by ESET researchers on WeLiveSecurity," he wrote. Kubovic used the case of Transmission -- a BitTorrent client that was breached in March and August 2016 with malware implanted and aimed at macOS users -- to push his barrow. But to use this one instance to dissuade people from downloading BitTorrent clients en masse is nothing short of scaremongering. There are dozens, if not more, BitTorrent clients which enjoy much wider usage, with uTorrent being one good example. Kubovic then used the old furphy which is resorted to by those who lobby on behalf of the copyright industry -- torrents are mostly illegal files and downloading them is Not The Right Thing To Do. But then he failed to mention that hundreds of thousands of perfectly legitimate files are also offered as torrents -- for instance, this writer regularly downloads images of various GNU/Linux distributions using a BitTorrent client because it is the more community-friendly thing to do, rather than using a direct HTTP link and hogging all the bandwidth available.

60 comments

  1. Betteridge's Law of Headlines by Anonymous Coward · · Score: 0, Troll

    Betteridge's Law of Headlines clearly states that any headline containing a question should be answered with no. This headline contains a question, therefore Betteridge's Law of Headlines proves that the answer is no. Nothing to see here, move along now. Thank you Ian Betteridge for bringing some logic and insight to the dolts on this site.

    1. Re:Betteridge's Law of Headlines by Anonymous Coward · · Score: 3, Informative

      Betteridge's law only applies if the headline ends in a question mark. If you're going to troll, at least do it properly.

    2. Re:Betteridge's Law of Headlines by Anonymous Coward · · Score: 0

      A troll who makes a valid argument. Isn't that a bit of a contradiction in terms?

    3. Re: Betteridge's Law of Headlines by Anonymous Coward · · Score: 0

      Whats the law that covers edited headlines that invalidates critical posts about it?

    4. Re: Betteridge's Law of Headlines by Anonymous Coward · · Score: 0

      If there is no law, then make one up.

    5. Re:Betteridge's Law of Headlines by Anonymous Coward · · Score: 0

      No

  2. An "evangelist"... by Frosty+Piss · · Score: 3, Insightful

    ESET... Not a clue. But The Google tells me it's some anti-virus solution from Slovakia... So right off the bat, I'm not trusting them as an unbiased source. But really I stopped reading when that the guy pontificating is and "evangelist", which are usuanlly some sort of über zealot which, again, is not the way to aquire unbiased information...

    --
    If you want news from today, you have to come back tomorrow.
    1. Re:An "evangelist"... by Anonymous Coward · · Score: 0

      People still use 3rd party anti-virus software? How quaint.

    2. Re:An "evangelist"... by Anonymous Coward · · Score: 0

      But all of those are evil countries as well. Kaspersky is from the commies, Avira from the Nazis and BitDefender also from other commies. Can't trust them, ever. So it doesn't really matter what they say or do either so there's no point in investigating any statement on its own merits.

      The statements are kind of bullshit to be honest. Like the article says, there are other, way more popular torrent clients. Torrents aren't exclusively used for copyright infringement. Hell, even gaming companies like Blizzard have used torrent based distribution for their game clients. Also ESET's products also aren't the most secure 3rd party anti-virus tools there are according to various tests. If those statements were really made as the article suggests, then that guy is full of crap because he made those statements. And I say that even as I've used ESET NOD32 for years and still use it.

    3. Re:An "evangelist"... by Billly+Gates · · Score: 1

      ESET has a strong American presence in San Diego and their NOD32 anti virus is commonly shipped with Cisco secure link or whatever the heck their VPN solution is called now (my university 8 years ago used it where I used NOD32 from eset as requirement for their wifi network).

      ESET is far from a questionable source as I had a job interview with them to work with a managed service provider.

      Needless to say most AV software including ESET blocks all bitcoin mining software by default as well. It is annoying as even Chrome won't let me download cgminer where I used to use IE to access it (oh the irony).

      It's just what security software does.

      --
      http://saveie6.com/
    4. Re:An "evangelist"... by Anonymous Coward · · Score: 0

      Defender will delete my monero cpu-miner. ESET does not.

  3. Can't Tell... by Hylandr · · Score: 3, Insightful

    Not sure if this is a clever slashvertisement for eset or a new push by the mpaa riaa anti-piracy mafia...

    --
    ~ People that think they are better than anyone else for any reason are the cause of all the strife in the world.
  4. To be fair, hosting torrents is... by xxxJonBoyxxx · · Score: 4, Funny

    To be fair, hosting torrents of popular TV shows and movies is about the only way to get your cable provider to cut the cord to you.

  5. Torrent Linux by Major_Disorder · · Score: 1

    for instance, this writer regularly downloads images of various GNU/Linux distributions using a BitTorrent client because it is the more community-friendly thing to do, rather than using a direct HTTP link and hogging all the bandwidth available.

    It is also usually a lot faster to torrent your Linus ISOs.

    --
    First law of people: People are generally stupid.
    1. Re:Torrent Linux by Major_Disorder · · Score: 4, Funny

      Linux, Not Linus. Although, who knows, in the future it might be possible to torrent people.
      Dibs on Lucy Liu

      --
      First law of people: People are generally stupid.
    2. Re:Torrent Linux by Anonymous Coward · · Score: 0

      Kubovic then used the old furphy which is resorted to by those who lobby on behalf of the copyright industry -- torrents are mostly illegal files ..... ... this writer regularly downloads images of various GNU/Linux distributions using a BitTorrent client

      Yes, that's true. People do use bittorent to download legitimate ("non-infringing") materials. But it doesn't change the fact that ~90% of bittorrent traffic involves copyright infringement.

    3. Re:Torrent Linux by Anonymous Coward · · Score: 0

      But it doesn't change the fact that ~90% of bittorrent traffic involves copyright infringement.

      Saying something is a fact doesn't make it a fact.

    4. Re:Torrent Linux by Anonymous Coward · · Score: 0

      Some bastards have been scanning the swarms to guide their attacks accordingly for years. Keep your firewalls up.

    5. Re:Torrent Linux by Rakarra · · Score: 2

      But it doesn't change the fact that ~90% of bittorrent traffic involves copyright infringement.

      Saying something is a fact doesn't make it a fact.

      That's true, but it's a better number than other people have been able to give. How much non-copyright-infringement torrents do you think their are? You think all that torrent traffic is people sharing their Linux ISOs?

    6. Re: Torrent Linux by Anonymous Coward · · Score: 0

      Take two copies please. One for "backup" if you know what I mean.

    7. Re:Torrent Linux by Antique+Geekmeister · · Score: 1

      I do that myself. The content is also generally verifiable via GPG checksums. The Linux or open source built bittorrent clients are far safer than the many clickable "download this client" tools that are linked to specific sites for warez and pirated clients. These are not only often poorly written and fragile, but they also installs lot of adware and 'seb speedup' tools that monitor your system and that you were not informed of when installing the client.

      Bittorrent has its uses. but many of its clients are quite dangerous and can even be destructive to your systems. If a site requires a customized client, then both the site and the client should be considered unsafe.

    8. Re:Torrent Linux by cheesybagel · · Score: 1

      Not just Linux ISOs. A lot of Internet games download updates via Torrent. You can usually find this out by looking at their update client's network settings.

  6. Quick Somebody tell the LoC!!! by laurencetux · · Score: 4, Insightful

    https://archive.org/details/di...

    like EVERYTHING that can be downloaded from the Library of Congress has a torrent available

    https://archive.org/download/d...

  7. Re:Sounds like APK by Anonymous Coward · · Score: 0

    I'm sure he will be along shortly to prove this point.

  8. "furphy" by Anonymous Coward · · Score: 0

    Is somebody trying to give a catchy name to describe 'fake news'?

    (Yeah, I looked it up)

  9. Re:LOL it's like that time creimer by Anonymous Coward · · Score: 1

    You'd WannaCry if you saw a jpeg of APK or creimer and you would likely catch a disease

    So he wasn't laying.

    If it was a naked picture you'd want to burn your eyes out with a flame thrower.

  10. Controversial subject by Anonymous Coward · · Score: 1

    Torrents are controversial. The reason is that the technology vendors that built torrent technology, couldn't build the technology in such way that it wouldn't be widely used for piracy operations. While improving technology performance is good goal, it's not the only criteria for technology vendors. Avoiding areas where there's high risk of illegal operations is one important aspect of any technology development. If you think you're being innovative, and other "vendors" just couldn't figure out your groundbreaking ideas, you need to consider again. Usually the reason why other vendors are not implementing the technology, is because it's risky or too near illegal areas. Innovation shouldn't mean stretching the legal limits every time you want to have groundbreaking technology.

    Every technology vendor needs to consider the consiquences, if piracy groups start to use their technology. Torrent and P2P technology has bad reputation because these checks are not being done in the technology development.

    These articles that try to combine GNU/Linux and torrent technology together to buy legimacy for the torrent files, is completely wrong about it. Combiining two technologies using some far-fetched link about how the bits are being transferred, does not make torrent technology any more legal. The tech developers just missed the boat completely, and now these articles are trying to buy more legimacy for the activity they're doing.

    1. Re:Controversial subject by Anonymous Coward · · Score: 0

      This is called wisdom. Humans don't have it regarding technology. Never have. Never will. And fuck torrent, its Communist, and I mean in the Red sense.

    2. Re: Controversial subject by Anonymous Coward · · Score: 0

      What a ton of BS. You know HTTP is used to do a lot of crime as well, right?

      There's nothing illegal about BitTorrent. It's just a network protocol.

    3. Re:Controversial subject by cheesybagel · · Score: 1

      Remind me of that next time you buy a safe knife or the like.

    4. Re:Controversial subject by Zontar+The+Mindless · · Score: 1

      Found the RIAA/MPAA shill.

      --
      Il n'y a pas de Planet B.
  11. So many strong words from the poster by jellomizer · · Score: 0

    FUD, fear mongering, so-called security evangelist...

    This sounds like the poster on Slashdot doesn't want to read opposing ideas. Having used torrents they are good way to get dangerous data if you are not paying full attention. Looking for a movie, and it is in an exe format...

    Now I don't approve vilify the transfer protocol as torrents actual have a lot of safety features in them, more then normal http or FTP. However the torrent sites a full of shady files, that needs to be checked carefully. However the same is true, if you go onto the darkweb, or just click a couple links off some gamer sites.

    --
    If something is so important that you feel the need to post it on the internet... It probably isn't that important.
  12. Mixed messages on 'sharing' by Anonymous Coward · · Score: 1

    On the one hand, we have so-called 'social media' telling us "You should SHARE everything about your life with everyone, it's NORMAL and NATURAL and only BAD PEOPLE want privacy and hide things!".. but if you want to 'share' a movie, or a song? "Oh, no, you shouldn't SHARE those, that's BAD and WRONG and you're a BAD PERSON!". The message works out to this: "We want you to SHARE things that MAKE US MONEY, but you can't SHARE things that COST us money, because we want YOUR money, too!". Them, them, FUCK THEM. I'm going to go home and share a shitload of stuff on Bittorrent just to be an asshole and SCREW THEM.

  13. Re:LOL it's like that time creimer by Anonymous Coward · · Score: 0

    Hi, creimer. Shut up, creimer.

  14. oink oink by Anonymous Coward · · Score: 0

    http hogging all the bandwidth? hahahaha

  15. ESET.... by Zurkeyon3733 · · Score: 0

    Consider yourselves FIRED... We will no longer deploy or recommend your software. Broadcasting a false message to the public earns you a BOYCOTT... BuhBye!

  16. Re:LOL it's like that time creimer by Anonymous Coward · · Score: 0

    it was me APK you silly bunt!

  17. Re:LOL it's like that time creimer by Anonymous Coward · · Score: 0

    I don't even know who the fuck that is, you stupid faggot. STFU and KYS.

  18. Re:LOL it's like that time creimer by Anonymous Coward · · Score: 0

    Okay faggot, listen up: So I go check out this 'creimer' faggot you keep going ON and ON and ON about like some sort of fucking autist -- and he's also a gigantic faggot, admittedly -- but all you're doing is FEEDING the TROLL when you keep shitposting constantly. Let the little faggot be, he seems to incriminate himself constantly, isn't that enough? Faggots like that will get bored and go away eventually if you just IGNORE them. Or you can kill yourself. Either way nobody has to be bothered anymore. Your choice, slick.

  19. Here's a legit warning by Anonymous Coward · · Score: 0

    mac version of Azureus /Vuze does in fact install malware, from the legitimate download of the program. If you use that client on OSX you may have noticed that your firefox browser defaults to yahoo search. The program puts a couple of .plist files in your system library that runs at startup and won't shut off, and one in your apps/firefox/library. It tracks your web browsing and who knows what else. It defaults all your searches to yahoo like a tool bar setup that must give them click money or whatever. It can be uninstalled easily by deleting 3 files in your library folder and restarting.

    I was like wtf torrent program , how dare ye mess with my stuff. Just putting that out there. look at your processes via terminal | top command and look for "AppBox" nobody uses the actual Appbox app anymore and I bet you never even heard of or actually installed it. That was an old app for like 10.5 and earlier. You can search for files created at the same day/time as your azureus/Vuze install and delete them. a quick google for it will have instructions to find all 3 files that need to go.

  20. Re:"And." Just use the word "and." by Anonymous Coward · · Score: 0

    This is one of the worst things about Slashdot. Not only does this nonsense make the titles hard to read, but sometimes they're completely incomprehensible, like when particular words can be a noun or a verb (e.g. Talks, Runs, etc.) and depending on which you assume the title parses completely differently. FFS, all of those stupid little words like "and" exist for a reason: They make the meaning more obvious.

  21. B*llsh*t by Anonymous Coward · · Score: 0

    Your full of shit dude. I think u misunderstood the argument.

  22. Re:Sounds like APK by Anonymous Coward · · Score: 0

    Successful with good products people use and like unlike you.

  23. Re:Sounds like APK by Anonymous Coward · · Score: 1

    That's too cryptic, even Yoda will have difficulty with your syntax.

  24. Re:"And." Just use the word "and." by Anonymous Coward · · Score: 0

    The word "Clients" is ambiguous and should be replaced. Maybe the word "Interface" or "Torrent GUI" is a better replacement.

  25. How much legitimate content? by VikingNation · · Score: 1

    I know torrents are used to share ISOs for Linux distributions which is legitimate. How much of the torrent traffic is to share copyright content?

  26. 3 cases of Torrent client malware ,not 1 by Antique+Geekmeister · · Score: 1

    The article cited three well documented cases of torrent client published malware, not merely one, and all within the same calendar year. That seems a good foundation to mistrust them.

  27. Sweet by dohzer · · Score: 1

    Sweet. What's ESET?

    1. Re:Sweet by Anonymous Coward · · Score: 0

      'sweet' without the 'w'?

  28. Re:"And." Just use the word "and." by Zontar+The+Mindless · · Score: 1

    Let me get this straight--you're complaining because at least one Slashdot editor knows how to compose headlines correctly, is that right?

    --
    Il n'y a pas de Planet B.
  29. Re:"And." Just use the word "and." by wonkey_monkey · · Score: 1

    Who says it's correct? Title case is utterly pointless. At best is does nothing, at worst it introduces ambiguity. Replacing "and" with a comma always makes a headline harder to read, if not also ambiguous in some cases.

    Just because an arbitrary rule is in one of many different style guides doesn't mean it's a good idea. Some papers used to write headlines all caps; why not go back to that?

    Write it like you'd say it; capitalise it like you'd write it.

    --
    systemd is Roko's Basilisk.
  30. More copies? by Anonymous Coward · · Score: 0

    Great now we need a Neo.

  31. I Must Agree With ESET by Toad-san · · Score: 2

    I haven't bothered to download a torrent in years. Almost invariably the torrent site was either wanting me to download an .EXE (which was often malware or virus-infected .. yes, I checked) or a torrent which itself was misleading, misidentified, or itself containing infected executables.

    It just wasn't worth the hassle.

    1. Re: I Must Agree With ESET by Anonymous Coward · · Score: 1

      You can use the same argument against downloading nearly any filetype from a non vetted site linked through a search engine.

      The situation you highlight is not representative of torrents alone, but of the internet as a whole for the last 20+ years!