Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Y’all know that I hate spyware….

January 28th 2006 in Uncategorized

The Title of my Blog says it all.

A big area of concern for me recently has been Google Ads.  Far too many people are being directed to sponsored advertisements, and far too often these sponsored advertisements are for malware.

Let’s look at the recent complaint laid by the State of Washington against “Secure Computer LLC” (what a misleading name *that* is).

A PDF of the complaint for injunctive relief is available online at http://seattlepi.nwsource.com/dayart/20060125/spywaresuit.pdf.  On page 28 that complaint shows a screenshot of a Google web search.  The sponsored links include a link to “Microsoft Antispyware”, but the link does not take users to the *real* Microsoft Antispyware product.  Instead it directed users to the fake antispyware product described in the complaint.

I do not believe for a moment that Google were not aware that there was a legitimate product called “Microsoft Antispyware”.  I also do not believe, for a moment, that Google do not have the technical ability to cross check “sponsored advertisements” to ensure that they are not deliberately misleading and deceptive.

So, what do we do?  For some reason the world loves Google.  This is a company that is gathering more and more and more data about the Web and how we use it every day.  Will we, one day, suddenly wake up and wonder whether it was a good idea to let one company be so pervasive?

Anyway, I digress.  Ben Edelman in his latest blog entry (http://www.benedelman.org/news/012606-1.html) refers to a product called “SiteAdvisor“.  What SiteAdvisor apparently does is vet sponsored links with the intention of warning users about “dangerous” links (dangerous being my description). 

I have not tested this product, but it looks like a good idea (assuming that SiteAdvisor themselves prove to be trustworthy as time goes on).

If I get the chance to download and test SiteAdvisor I’ll publicise the results.  It would be wonderful to be able to protect users from the crooksters on the Internet, especially considering Google seems to be willing to take their money, but not willing to check their bona fides *before* complaints are received and users are harmed.

2 comments to...
“Y’all know that I hate spyware….”


quote : “Will we, one day, suddenly wake up and wonder whether it was a good idea to let one company be so pervasive?”

ahem. ahem. Microsoft. ahem.

Microsoft controls the operating system, the office suite, the web browser, the media player, the Windows development software of a majority of the Internet community. Microsoft has its MSN (Search, News, Entertainment), Windows Live (Mail, Favorites, Maps, Messenger) and Passport services used by hunderds of millions of people. Microsoft also controls an important share of the server market.

Then you dare call Google a pervasive company?

Sorry, but there are much more pervasive companies and it turns out that you are an MVP for it.


Typical knee-jerk reaction. Why focus on one sentence out of an entire article? Do *you* believe it is acceptable for Google to accept a sponsored advertisement for “Microsoft Antispyware” that doesn’t even point at the real site, and when the URL had nothing to do with the legimimate product?

I said “Will we” as a question, not “they are” as a statement.. therefore don’t you accuse me of calling them anything.

An argument can be made that Google is more pervasive and dangerous than MS in the data that they collect. Yet, although rumblings of concern are starting, most people are still stuck at the ‘stick up for the little guy’ stage. Guess what. Google ain’t little anymore.

…here it is… Saturday morning…and the transformer for my HP nx6120’s power cable dies without warning.  Not a good thing when there is a *lot* of work to be done and my battery is flat :o(
HP (of course) are closed.  All HP Resellers are closed.  All the open repair shops do not have a replacement transformer in […]

Previous Entry

Yes, I know I’ve said it before….
Back in April 2005 I attended a very private session in Singapore about Rootkits and their potential for harm.  Way back then the guy giving the presentation mentioned the possibility of infecting a computer’s BIOS.
I remember those of us in that session left with a global sense of “we’re […]

Next Entry