Computer Security Software » security software

The Profitable World of Fake Antivirus Software

LouiseG — Thu, 07 Jul 2011 11:03:50 +0000

The fake antivirus software industry makes underhand firms hundreds of millions of dollars in revenues. Researchers at the University of California at Santa Barbara (UCSB) studied back-end servers containing fake software samples, databases of installations, purchases, refunds and technical support conversations dating from March 2008 through to August 2010.

The research performed by UCSB, which is probably the first study of its kind, discovered less than 10% of victims who fall for fake antivirus software try to get their money refunded, what’s more surprising may be that some firms do refund money to victims.

The Cost of Fake Antivirus Software

Fake antivirus software costs victims between $49.95 to $69.95 for six-month licenses, and $79.95 to $89.95 for lifetime licenses. Three operations were investigated as part of the research with revenues generated by firm 1 (AV1) of $11 million, firm 2 (AV2) $5 million and firm 3 (AV3) a massive $116.9 million.

The conversion rates of purchases of the fake software varied between 2.1 and 2.4 per cent. For AV1 they installed around 8.4 million trial versions of fake software and this generated 189,342 sales to the “full version” within 3 months. A 2% conversion rate is high and it’s worrying so many people fall for this scam.

Refunds of Fake Antivirus Software

The study showed AV1 granted 5,660 refunds, or 3% of its sales; AV2 granted 11,681 refunds, or 8.5% of its sales; and AV3 granted 151,553 refunds, or 7.1% of its sales. Most victims even got their refund within seven days.

The AV firms in the study would monitor the amount of refunds requested from victims’ credit card companies. When chargebacks increased over a short period of time the fake virus firms would grant more refunds, as this lowers the rate of chargebacks and allows for the firms to operate their business for a longer time period.

However, refunds are kept to a minimum in order to keep their relationships with the credit card payment processors good. An unusually high number of refunds would alert payment processors to the fraudulent activity.

Sometimes payment processors are in on the fake software operations. One email conversation discovered during the research warned an AV firm to change its product name so as not to end up on Google as a fake antivirus product. The reason behind this loyalty could be attributed to the payment processing firms charging 8-20% per transaction to “high risk merchants” with high volumes of chargebacks.

Fake AV firms are typically run by organised criminals who rely on affiliates to act as sales people to infect as many computers as possible. Affiliates for fake antivirus software can earn a lot of money with commissions of anything up to 80% per sale, one affiliate earned a whopping $1.8million in only two months.

How to Prevent the Purchase of Fake Antivirus Software

Fake antivirus software firms can be very sophisticated even offering technical support via call centres in India, which makes it very hard for people to spot they are not using authentic antivirus software. To prevent yourself from purchasing fake software you should always research the product you intend to purchase by reading antivirus reviews.

Guest Article by Louise Goldstein

Many Clueless About Online Security

LouiseG — Wed, 29 Jun 2011 16:41:18 +0000

Research shows Brits spend a massive 143 million hours of leisure time online each day, that’s 173 minutes per person. We use the internet for shopping, communication, socialising, banking and business. However a study by G Data Software shows computer users are still pretty clueless when it comes to internet security. With Internet banking services as some of the most used sites on the web online security should be practised by all.

The research questioned over 15 thousand internet users, between the ages of 18 and 65, from 11 countries. The conclusion of the study revealed Internet users had mythical ideas about cyber security which left them vulnerable to threats.

Out of those surveyed only 89% had internet security software installed, with the remaining 9% using their computer free from protection or unsure whether they had security software installed.

The research questioned people about paid versus free antivirus software programs. 82% of the 5,500 Americans from the survey believed free antivirus provided as much protection as paid for software. The reality is paid for software provides a wider spectrum of virus protection as they are normally bundled with firewalls and other protection features which users were not aware of.

When questioned about how a virus may affect their computer 93% thought malware had an identifiable effect on PC performance, which is not always the case, and 45% believed their computer would crash if they were infected.

People were also confused about how their computer could be infected with malware. Around 50% of respondents believed the majority of malware was spread through email attachments and peer-to-peer file sharing. Although the actual reality is most malware infections are caught by visiting a website which has been injected with malicious code. Another worrying fact is 48% of people believed they would not get infected if all they did was visit a site with malicious code.

The research also attempted to uncover who was the most informed age group about internet security. Although you may assume it would be the 18 to 24’s, as they have more online experience, it was actually the 55-64 age group which took more precautions when it came to securing their computer.

Guest Article by Louise Goldstein

Security Software Makes for Nervous Businesses

Neil Camp — Wed, 06 Apr 2011 09:37:40 +0000

When it comes to software internet security, one company is warning that social networking sites which include YouTube, MySpace and Facebook could present a real hazard to businesses which are rightly fearful of being penetrated by cybercriminals.

Software internet security is a nightmare for businesses and with the rise of social networking at work (via such business sites as Xing, Plaxo and LinkedIn), especially amongst the younger generation, things are getting worse, not better.

There is also a blurring of the message in this area, because although companies are paranoid about problems of being hacked, they still support their workers in promoting their companies on the very same sites which they take issue with.

But businesses are being warned that they have to weigh up the benefits of increased online sales via social media networking, as against the chance of having their systems compromised by hackers, or indeed, putting the company into an invidious position.

There are a number of things for companies to look out for, including using social media for employment vetting purposes, but then falling into the trap of asking ‘illegal’ questions, such as those directed about age, race, or religion.

You should also be aware of giving away too much information about the company and its working practices, which could be used in similar ways that personal ID fraud is exploited.

Be careful also not to damage the company’s reputation, or standing via an inappropriate message on a social media website, or message thread.

A spokesman for the company which gave the warning, Commissum, said:
“The risks of using social media encompass all aspects of the business; legal, employment, technical, operational and reputation. The decision to use social media should therefore be taken after careful consideration of the business reasons and benefits, an assessment of all risks and the implementation of comprehensive controls to mitigate the risks which must include policies and appropriate user training and awareness measures.”

In short, sometimes, software internet security issues should become before fancy social media strategies.

Guest Article by Neil Camp

Spam Leaves an Ugly Taste

Neil Camp — Wed, 30 Mar 2011 16:39:07 +0000

News that a number of the world’s spammers have taken a recent hit and had their servers brought down is good news, but worst could be to follow as the cybercriminals have too much invested to walk away.

One huge Botnet was recently reduced to a trickle as one set of anti-spammer guardians fought hard to bring them down. The figures are truly amazing, with some issuing billions of individual spam emails each year, meaning that millions are being sent on a daily basis.

But although these successes are worth a collective round of applause, the sheer size of the spam operations has worrying implications for all to see. Spam started as a mischievous trick on friends – it’s innocent beginnings belong to a different time now.

But once the crooks saw the advantage in sending out emails to a somewhat gullible database of email enthusiasts who appeared to park their brains elsewhere when items dropped into their inboxes, the flood gates opened. Some weren’t completely fictitious of course and no doubt many men have benefitted from under the counter Viagra, but offers of millions from dead kings, or pictures of curvy tennis stars which actually had dirtier things attached than a picture of a raised skirt, soon alerted most to the spammers deadly armoury.

Now the defences are more sophisticated and the computer security industry has woken up to the fact that it’s far better to stop the spam reaching its destination in the first place, than to rely on someone saying no to an offer of a forty million pound fortune from an African chief.

The various internet platforms and mail servers are now far more effective in stopping spam than they used to be, so there’s almost a desperation in the spammers actions now, as though they continually have to up the number of spam in order to get the one profitable hit.

But the crooks face a double whammy. Spam filters continually get better and people get more cynical. Therefore, the numbers have to ever increase, meaning that the servers which push through this rubbish will be easier to spot and bring down.

It sounds like a win win situation; unfortunately, it isn’t.

Spammers are not ‘geeks’ sat in their bedrooms romantically fighting the system to earn a loaf of bread. Nowadays they are geeks sat in huge offices fighting the system to earn their organised crime bosses far more than a loaf of bread (in fact, millions of loaves).

And organised crime bosses always have an eye on the takings. If profits begin to drop, it won’t be a prosaic shrug and a bringing down of the shutters for a while, Make no mistake, the crime bosses (and some Governments), will have invested a fair bit of their ill-earned gains to set up their spam operations and walking away from that, and the potential rewards, means that the focus will switch elsewhere.

Spam will maybe last another five years as a profitable, albeit mostly illegal, road to riches. But as it starts to die, the real danger is where the crime bosses will direct their geeks attention then.

One battle might go to the computer security industry, but the cyber war is far from over.

Guest article by Neil Camp

Internet Security Google Style

Neil Camp — Sun, 06 Mar 2011 09:44:45 +0000

When it comes to internet security, Google, like other huge portals, are sitting targets for cyber criminals and hackers, but shortly after news of yet another hitch with their email system (thousands having ‘disappeared’), comes an announcement that the search engine giant has acquired a company called Zynamics.

German based Zynamics, an internet security company which focuses on software analytics, was founded in 2004 by Thomas Dullien, the current Chief Executive Officer.

Zynamics researches the automation of reverse engineering and code analysis. In terms of its product line up, it produces four reverse-engineering tools: BinDiff, VxClass, BinNavi and BinCrowd. These four products are used by thousands of researchers in the internet security community.

Google was tight lipped about price it paid for the company and exactly where it fits, but experts believe that it will be used to enhance the protection already used by them to protect their users.

The latest incident to hit Google concerns a number of missing Gmails, although they have since announced that the problem was not a virus, but a software bug. There’s a big difference between the two. Viruses are ‘man made’ bits of code that are developed and inserted into applications for nefarious reasons. A software bug is usually a faulty line of code (say a missing instruction) which can cause a shutdown, or a wrong action. The problem is, that many bugs are in effect holes in the wall through which barbarians can exploit and deliver viruses.

So although bugs are innocent, they are often the precursor to a cyber attack as they represent weak parts of the application’s defences.

In this case, Google have admitted that a number of emails went ‘missing’ (accounts were accidentally wiped) but, as they put it, were never lost. And because they are backed up on tape, they were replaced in a matter of days. They confirmed that just 0.02% of 170 million odd customers were affected.

Google handles such matters in their official Gmail blog and this is what it said:
"I know what some of you are thinking: how could this happen if we have multiple copies of your data, in multiple data centres? Well, in some rare instances software bugs can affect several copies of the data. That’s what happened here. But restoring data from them takes longer than transferring your requests to another data centre, which is why it’s taken us hours to get the e-mail back instead of milliseconds. Thanks for bearing with us as we fix this, and sorry again for the scare.”

Google will be hoping, when it comes to internet security, for not too many scares in the future.

Guest Article by Neil Camp