Benedelman spyware on blogspot Malicious websites may attempt to install spyware on readers' computers. In this screenshot a spamblog has triggered a pop-up that offers spyware in the guise of a security upgrade.

In the field of computing, the term spyware refers to a broad category of malicious software designed to intercept or take partial control of a computer's operation without the informed consent of that machine's owner or legitimate user. While the term taken literally suggests software that surreptitiously monitors the user, it has come to refer more broadly to software that subverts the computer's operation for the benefit of a third party.

Spyware differs from viruses and worms in that it does not usually self-replicate. Like many recent viruses, however, spyware – by design – exploits infected computers for commercial gain. Typical tactics furthering this goal include delivery of unsolicited pop-up advertisements; theft of personal information (including financial information such as credit card numbers); monitoring of Web-browsing activity for marketing purposes; or routing of HTTP requests to advertising sites.

As of 2005, spyware has become one of the pre-eminent security threats to computer-systems running Microsoft Windows operating-systems (and especially to users of Internet Explorer because of that browser's collaboration with the Windows operating system). Some malware on the Linux and Mac OS X platforms has behavior similar to Windows spyware, but to date has not become anywhere near as widespread.

Notable programs distributed with spyware

  • Bearshare
  • Bonzi Buddy
  • DAEMON Tools (only if you agree to install their "sponsor" program)
  • DivX (except for the paid version, and the "standard" version without the encoder). DivX announced removal of GAIN software from version 5.2. 
  • Dope Wars 
  • ErrorGuard 
  • FlashGet (free version) 
  • Grokster 
  • Kazaa 
  • Morpheus 
  • RadLight 
  • WeatherBug 

Sony's Extended Copy Protection involved the installation of spyware from audio compact discs through autorun. This practice sparked considerable controversy when it was discovered.

Notable programs formerly distributed with spyware

  • AOL Instant Messenger  (AOL Instant Messenger still packages Viewpoint Media Player)
  • EDonkey2000 
  • LimeWire (all free Windows versions up to 3.9.3) 
  • WildTangent 

References

  1. Wienbar, Sharon. "The Spyware Inferno". News.com. August 13, 2004.
  2. "Spyware Certification". International Charter. Retrieved July 10, 2005.
  3. "AOL/NCSA Online Safety Study". America Online & The National Cyber Security Alliance. October 2004.
  4. Bonzi.com. http://www.bonzi.com/bonzibuddy/bonzimail.asp. Retrieved July 10, 2005.
  5. Edelman, Ben (2005). "WhenU Violates Own Privacy Policy", Retrieved July 14, 2005.
  6. "Security Response: W32.Spybot.Worm". Symantec.com. Retrieved July 10, 2005.
  7. Ecker, Clint (2005). Massive spyware-based identity theft ring uncovered. August 5, 2005.
  8. "Parasite information database". Doxdesk.com. Retrieved July 10, 2005.
  9. "State Sues Major "Spyware" Distributor". Office of New York State Attorney General. April 28, 2005.
  10. Gormley, Michael. "Intermix Media Inc. says it is settling spyware lawsuit with N.Y. attorney general". Yahoo! News. June 15, 2005.
  11. Gormley, Michael. "Major advertisers caught in spyware net". Business Week. June 24, 2005.
  12. Festa, Paul. "See you later, anti-Gators?". News.com. October 22, 2003.
  13. Roberts, Paul F. "Spyware-Removal Program Tagged as a Trap". eWeek. May 26, 2005.
  14. Howes, Eric L. "The Spyware Warrior List of Rogue/Suspect Anti-Spyware Products & Web Sites". Retrieved July 10, 2005.
  15. Schuster, Steve. "Blocking Marketscore: Why Cornell Did It". Cornell University, Office of Information Technologies. March 31, 2005.
  16. "WhenU Awareness, One Year Later". PC Pitstop. Retrieved July 27, 2005.
  17. "Symantec Security Response - Adware.Bonzi". Symantec. Retrieved July 27, 2005.
  18. "WhenU Daemon Tools SearchBar License Agreement". WhenU.com, Inc. Retrieved February 27, 2006.
  19. "How Did I Get Gator?". PC Pitstop. Retrieved July 27, 2005.
  20. Edelman, Ben (2005). "Claria's Misleading Installation Methods - Dope Wars". Retrieved July 27, 2005
  21. "eTrust Spyware Encyclopedia - ErrorGuard". Computer Associates. Retrieved July 27, 2005.
  22. "eTrust Spyware Encyclopedia - FlashGet". Computer Associates. Retrieved July 27, 2005
  23. Edelman, Ben (2004). "Grokster and Claria Take Licenses to New Lows, and Congress Lets Them Do It". Retrieved July 27, 2005
  24. Edelman, Ben (2004). "Claria License Agreement Is Fifty Six Pages Long". Retrieved July 27, 2005.
  25. Edelman, Ben (2005). "Comparison of Unwanted Software Installed by P2P Programs". Retrieved July 27, 2005.
  26. "eTrust Spyware Encyclopedia - Radlight 3 PRO". Computer Associates. Retrieved July 27, 2005
  27. "doxdesk.com: database: WeatherBug". Doxdesk.com. Retrieved July 27, 2005.
  28. "WildTangent". Sunbelt Software. Retrieved July 27, 2005.

Links

Guides

Prevention

Organizations

  • Anti-Spyware Coalition — A group developing formal definitions and best-practices
  • StopBadware.org - A non-profit group (sponsored by Google, Lenovo, and Sun) that aims to provide "reliable, objective information about downloadable applications".

Software

This guide is licensed under the GNU Free Documentation License. It uses material from the Wikipedia.

Video: Spyware attack

Technorati Tags:Technorati Tags:
Vote
33