Free Essay

Spyware

In:

Submitted By trishastoff
Words 5182
Pages 21
-------------------------------------------------
Spyware
From Wikipedia, the free encyclopedia
Spyware is software that aims to gather information about a person or organization without their knowledge and that may send such information to another entity without the consumer's consent, or that asserts control over a computer without the consumer's knowledge.[1]
"Spyware" is mostly classified into four types: system monitors, trojans, adware, and tracking cookies.[2] Spyware is mostly used for the purposes of tracking and storing Internet users' movements on the Web and serving up pop-up ads to Internet users.
Whenever spyware is used for malicious purposes, its presence is typically hidden from the user and can be difficult to detect. Some spyware, such askeyloggers, may be installed by the owner of a shared, corporate, or public computer intentionally in order to monitor users.
While the term spyware suggests software that monitors a user's computing, the functions of spyware can extend beyond simple monitoring. Spyware can collect almost any type of data, including personal information like Internet surfing habits, user logins, and bank or credit account information. Spyware can also interfere with user control of a computer by installing additional software or redirecting Web browsers. Some spyware can change computer settings, which can result in slow Internet connection speeds, un-authorized changes in browser settings, or changes to software settings.
Sometimes, spyware is included along with genuine software, and may come from a malicious website. In response to the emergence of spyware, a small industry has sprung up dealing in anti-spyware software. Running anti-spyware software has become a widely recognized element of computer security practices, especially for computers running Microsoft Windows. A number of jurisdictions have passed anti-spyware laws, which usually target any software that is surreptitiously installed to control a user's computer.
In German-speaking countries, spyware used or made by the government is sometimes called govware. Govware is typically a trojan horse software used to intercept communications from the target computer. Some countries like Switzerland and Germany have a legal framework governing the use of such software.[3][4] In the US, the term policeware has been used for similar purposes.[5]
Contents
* 1 Routes of infection * 2 Effects and behaviors * 3 Remedies and prevention * 4 Comparison of spyware, adware, and viruses * 5 Applications * 6 Examples * 7 History and development * 8 Programs distributed with spyware * 9 Rogue anti-spyware programs * 10 Legal issues * 11 See also * 12 References * 13 External links * 14 Categories
-------------------------------------------------
Routes of infection[edit]

Malicious websites attempt to install spyware on readers' computers.
Spyware does not necessarily spread in the same way as a virus or worm because infected systems generally do not attempt to transmit or copy the software to other computers. Instead, spyware installs itself on a system by deceiving the user or by exploiting software vulnerabilities.
Most spyware is installed without users' knowledge, or by using deceptive tactics. Spyware may try to deceive users by bundling itself with desirable software. Other common tactics are using a Trojan horse. Some spyware authors infect a system through security holes in the Web browser or in other software. When the user navigates to a Web page controlled by the spyware author, the page contains code which attacks the browser and forces the download and installation of spyware.
The installation of spyware frequently involves Internet Explorer. Its popularity and history of security issues have made it a frequent target. Its deep integration with the Windows environment make it susceptible to attack into the Windows operating system. Internet Explorer also serves as a point of attachment for spyware in the form ofBrowser Helper Objects, which modify the browser's behavior to add toolbars or to redirect traffic.
-------------------------------------------------
Effects and behaviors[edit]
A spyware program is rarely alone on a computer: an affected machine usually has multiple infections. Users frequently notice unwanted behavior and degradation of system performance. A spyware infestation can create significant unwanted CPU activity, disk usage, and network traffic. Stability issues, such as applications freezing, failure to boot, and system-wide crashes are also common. Spyware, which interferes with networking software, commonly causes difficulty connecting to the Internet.
In some infections, the spyware is not even evident. Users assume in those situations that the performance issues relate to faulty hardware, Windows installation problems, or another infection. Some owners of badly infected systems resort to contacting technical support experts, or even buying a new computer because the existing system "has become too slow". Badly infected systems may require a clean reinstallation of all their software in order to return to full functionality.
Moreover, some types of spyware disable software firewalls and anti-virus software, and/or reduce browser security settings, which further open the system to further opportunistic infections. Some spyware disables or even removes competing spyware programs, on the grounds that more spyware-related annoyances make it even more likely that users will take action to remove the programs.[6]
Keyloggers are sometimes part of malware packages downloaded onto computers without the owners' knowledge. Some keyloggers software is freely available on the internet while others are commercial or private applications. Most keyloggers allow not only keyboard keystrokes to be captured but also are often capable of collecting screen captures from the computer.
A typical Windows user has administrative privileges, mostly for convenience. Because of this, any program the user runs has unrestricted access to the system. As with other operating systems, Windows users are able to follow the principle of least privilege and use non-administrator accounts. Alternatively, they can also reduce the privileges of specific vulnerable Internet-facing processes such as Internet Explorer.
Since Windows Vista, by default, a computer administrator runs everything under limited user privileges. When a program requires administrative privileges, aUser Account Control pop-up will prompt the user to allow or deny the action. This improves on the design used by previous versions of Windows.
-------------------------------------------------
Remedies and prevention[edit]
See also: Virus removal
As the spyware threat has worsened, a number of techniques have emerged to counteract it. These include programs designed to remove or block spyware, as well as various user practices which reduce the chance of getting spyware on a system.
Nonetheless, spyware remains a costly problem. When a large number of pieces of spyware have infected a Windows computer, the only remedy may involve backing up user data, and fully reinstalling the operating system. For instance, some spyware cannot be completely removed by Symantec, Microsoft, PC Tools.
Anti-spyware programs[edit]
See also: Category:Spyware removal
Many programmers and some commercial firms have released products dedicated to remove or block spyware. Programs such as PC Tools' Spyware Doctor, Lavasoft's Ad-Aware SE and Patrick Kolla's Spybot - Search & Destroy rapidly gained popularity as tools to remove, and in some cases intercept, spyware programs. On December 16, 2004, Microsoft acquired the GIANT AntiSpyware software,[7] rebranding it as Windows AntiSpyware beta and releasing it as a free download for Genuine Windows XP and Windows 2003 users. (In 2006 it was renamed Windows Defender).
Major anti-virus firms such as Symantec, PC Tools, McAfee and Sophos have also added anti-spyware features to their existing anti-virus products. Early on, anti-virus firms expressed reluctance to add anti-spyware functions, citing lawsuits brought by spyware authors against the authors of web sites and programs which described their products as "spyware". However, recent versions of these major firms' home and business anti-virus products do include anti-spyware functions, albeit treated differently from viruses. Symantec Anti-Virus, for instance, categorizes spyware programs as "extended threats" and now offers real-time protectionagainst these threats.
How anti-spyware software works[edit]
Anti-spyware programs can combat spyware in two ways: 1. They can provide real-time protection in a manner similar to that of anti-virus protection: they scan all incoming network data for spyware and blocks any threats it detects. 2. Anti-spyware software programs can be used solely for detection and removal of spyware software that has already been installed into the computer. This kind of anti-spyware can often be set to scan on a regular schedule.
Such programs inspect the contents of the Windows registry, operating system files, and installed programs, and remove files and entries which match a list of known spyware. Real-time protection from spyware works identically to real-time anti-virus protection: the software scans disk files at download time, and blocks the activity of components known to represent spyware. In some cases, it may also intercept attempts to install start-up items or to modify browser settings. Earlier versions of anti-spyware programs focused chiefly on detection and removal. Javacool Software's SpywareBlaster, one of the first to offer real-time protection, blocked the installation of ActiveX-based spyware.
Like most anti-virus software, many anti-spyware/adware tools require a frequently updated database of threats. As new spyware programs are released, anti-spyware developers discover and evaluate them, adding to the list of known spyware, which allows the software to detect and remove new spyware. As a result, anti-spyware software is of limited usefulness without regular updates. Updates may be installed automatically or manually.
A popular generic spyware removal tool used by those that requires a certain degree of expertise is HijackThis, which scans certain areas of the Windows OS where spyware often resides and presents a list with items to delete manually. As most of the items are legitimate windows files/registry entries it is advised for those who are less knowledgeable on this subject to post a HijackThis log on the numerous antispyware sites and let the experts decide what to delete.
If a spyware program is not blocked and manages to get itself installed, it may resist attempts to terminate or uninstall it. Some programs work in pairs: when an anti-spyware scanner (or the user) terminates one running process, the other one respawns the killed program. Likewise, some spyware will detect attempts to remove registry keys and immediately add them again. Usually, booting the infected computer in safe mode allows an anti-spyware program a better chance of removing persistent spyware. Killing the process tree may also work.
Security practices[edit]
To detect spyware, computer users have found several practices useful in addition to installing anti-spyware programs. Many users have installed a web browserother than Internet Explorer, such as Mozilla Firefox or Google Chrome. Though no browser is completely safe, Internet Explorer is at a greater risk for spyware infection due to its large user base as well as vulnerabilities such as ActiveX.[citation needed]
Some ISPs—particularly colleges and universities—have taken a different approach to blocking spyware: they use their network firewalls and web proxies to block access to Web sites known to install spyware. On March 31, 2005, Cornell University's Information Technology department released a report detailing the behavior of one particular piece of proxy-based spyware, Marketscore, and the steps the university took to intercept it.[8] Many other educational institutions have taken similar steps.
Individual users can also install firewalls from a variety of companies. These monitor the flow of information going to and from a networked computer and provide protection against spyware and malware. Some users install a large hosts file which prevents the user's computer from connecting to known spyware-related web addresses. Spyware may get installed via certain shareware programs offered for download. Downloading programs only from reputable sources can provide some protection from this source of attack.[9]
-------------------------------------------------
Comparison of spyware, adware, and viruses[edit]
The term adware frequently refers to software that displays advertisements. An example is the Eudora email client display advertisements as an alternative toshareware registration fees. However, these are not considered spyware.
Other spyware behavior, such as reporting websites the user visits, occurs in the background. The data is used for "targeted" advertisement impressions. The prevalence of spyware has cast suspicion on other programs that track Web browsing, even for statistical or research purposes. Many of these adware-distributing companies are backed by millions of dollars of adware-generating revenues. Adware and spyware are similar to viruses in that they can be considered malicious in nature.
Unlike viruses and worms, spyware does not usually self-replicate. Like many recent viruses, however, spyware—by design—exploits infected computers for commercial gain. Typical tactics include delivery of unsolicited pop-up advertisements, theft of personal information (including financial information such as credit card numbers), monitoring of Web-browsing activity for marketing purposes, and routing of HTTP requests to advertising sites.
-------------------------------------------------
Applications[edit]
"Stealware" and affiliate fraud[edit]
A few spyware vendors, notably 180 Solutions, have written what the New York Times has dubbed "stealware", and what spyware researcher Ben Edelman termsaffiliate fraud, a form of click fraud. Stealware diverts the payment of affiliate marketing revenues from the legitimate affiliate to the spyware vendor.
Spyware which attacks affiliate networks places the spyware operator's affiliate tag on the user's activity — replacing any other tag, if there is one. The spyware operator is the only party that gains from this. The user has their choices thwarted, a legitimate affiliate loses revenue, networks' reputations are injured, and vendors are harmed by having to pay out affiliate revenues to an "affiliate" who is not party to a contract.[10] Affiliate fraud is a violation of the terms of service of most affiliate marketing networks. As a result, spyware operators such as 180 Solutions have been terminated from affiliate networks including LinkShare and ShareSale.[citation needed] Mobile devices can also be vulnerable to chargeware, which manipulates users into illegitimate mobile charges.
Identity theft and fraud[edit]
In one case, spyware has been closely associated with identity theft.[11] In August 2005, researchers from security software firm Sunbelt Software suspected the creators of the common CoolWebSearch spyware had used it to transmit "chat sessions, user names, passwords, bank information, etc.";[12] however it turned out that "it actually (was) its own sophisticated criminal little trojan that's independent of CWS."[13] This case is currently under investigation by the FBI.
The Federal Trade Commission estimates that 27.3 million Americans have been victims of identity theft, and that financial losses from identity theft totaled nearly $48 billion for businesses and financial institutions and at least $5 billion in out-of-pocket expenses for individuals.[14]
Digital rights management[edit]
Some copy-protection technologies have borrowed from spyware. In 2005, Sony BMG Music Entertainment was found to be using rootkits in its XCP digital rights management technology[15] Like spyware, not only was it difficult to detect and uninstall, it was so poorly written that most efforts to remove it could have rendered computers unable to function. Texas Attorney General Greg Abbott filed suit,[16] and three separate class-action suits were filed.[17] Sony BMG later provided a workaround on its website to help users remove it.[18]
Beginning on 25 April 2006, Microsoft's Windows Genuine Advantage Notifications application[19] was installed on most Windows PCs as a "critical security update". While the main purpose of this deliberately uninstallable application is to ensure the copy of Windows on the machine was lawfully purchased and installed, it also installs software that has been accused of "phoning home" on a daily basis, like spyware.[20][21] It can be removed with the RemoveWGA tool.
Personal relationships[edit]
Spyware has been used to monitor electronic activities of partners in intimate relationships. At least one software package, Loverspy, was specifically marketed for this purpose. Depending on local laws regarding communal/marital property, observing a partner's online activity without their consent may be illegal; the author of Loverspy and several users of the product were indicted in California in 2005 on charges of wiretapping and various computer crimes.[22]
Browser cookies[edit]
Anti-spyware programs often report Web advertisers' HTTP cookies, the small text files that track browsing activity, as spyware. While they are not always inherently malicious, many users object to third parties using space on their personal computers for their business purposes, and many anti-spyware programs offer to remove them.[23]
-------------------------------------------------
Examples[edit]
These common spyware programs illustrate the diversity of behaviors found in these attacks. Note that as with computer viruses, researchers give names to spyware programs which may not be used by their creators. Programs may be grouped into "families" based not on shared program code, but on common behaviors, or by "following the money" of apparent financial or business connections. For instance, a number of the spyware programs distributed by Claria are collectively known as "Gator". Likewise, programs that are frequently installed together may be described as parts of the same spyware package, even if they function separately. * CoolWebSearch, a group of programs, takes advantage of Internet Explorer vulnerabilities. The package directs traffic to advertisements on Web sites including coolwebsearch.com. It displays pop-up ads, rewrites search engine results, and alters the infected computer's hosts file to direct DNS lookups to these sites.[24] * FinFisher, sometimes called FinSpy is a high-end surveillance suite sold to law enforcement and intelligence agencies. Support services such as training and technology updates are part of the package.[25] * HuntBar, aka WinTools or Adware.Websearch, was installed by an ActiveX drive-by download at affiliate Web sites, or by advertisements displayed by other spyware programs—an example of how spyware can install more spyware. These programs add toolbars to IE, track aggregate browsing behavior, redirect affiliate references, and display advertisements.[26][27] * Internet Optimizer, also known as DyFuCa, redirects Internet Explorer error pages to advertising. When users follow a broken link or enter an erroneous URL, they see a page of advertisements. However, because password-protected Web sites (HTTP Basic authentication) use the same mechanism as HTTP errors, Internet Optimizer makes it impossible for the user to access password-protected sites.[28] * Spyware such as Look2Me hides inside system-critical processes and start up even in safe mode. With no process to terminate they are harder to detect and remove, which is a combination of both spyware and a rootkit. Rootkit technology is also seeing increasing use,[29] as newer spyware programs also have specific countermeasures against well known anti-malware products and may prevent them from running or being installed, or even uninstall them.[citation needed] * Movieland, also known as Moviepass.tv and Popcorn.net, is a movie download service that has been the subject of thousands of complaints to the Federal Trade Commission (FTC), the Washington State Attorney General's Office, the Better Business Bureau, and other agencies. Consumers complained they were held hostage by a cycle of oversized pop-up windows demanding payment of at least $29.95, claiming that they had signed up for a three-day free trial but had not cancelled before the trial period was over, and were thus obligated to pay.[30][31] The FTC filed a complaint, since settled, against Movieland andeleven other defendants charging them with having "engaged in a nationwide scheme to use deception and coercion to extract payments from consumers."[32] * WeatherStudio has a plugin that displays a window-panel near the bottom of a browser window. The official website notes that it is easy to remove (uninstall) WeatherStudio from a computer, using its own uninstall-program, such as under C:\Program Files\WeatherStudio. Once WeatherStudio is removed, a browser returns to the prior display appearance, without the need to modify the browser settings. * Zango (formerly 180 Solutions) transmits detailed information to advertisers about the Web sites which users visit. It also alters HTTP requests for affiliateadvertisements linked from a Web site, so that the advertisements make unearned profit for the 180 Solutions company. It opens pop-up ads that cover over the Web sites of competing companies (as seen in their [Zango End User License Agreement]).[10] * Zlob trojan, or just Zlob, downloads itself to a computer via an ActiveX codec and reports information back to Control Server[citation needed]. Some information can be the search-history, the Websites visited, and even keystrokes.[citation needed] More recently, Zlob has been known to hijack routers set to defaults.[33]
-------------------------------------------------
History and development[edit]
The first recorded use of the term spyware occurred on 16 October 1995 in a Usenet post that poked fun at Microsoft's business model.[34] Spyware at first denoted software meant for espionage purposes. However, in early 2000 the founder of Zone Labs, Gregor Freund, used the term in a press release[dead link]for the ZoneAlarm Personal Firewall.[35] Later in 2000, a parent using ZoneAlarm was alerted to the fact that "Reader Rabbit," educational software marketed to children by the Mattel toy company, was surreptitiously sending data back to Mattel.[36] Since then, "spyware" has taken on its present sense.
According to a 2005 study by AOL and the National Cyber-Security Alliance, 61 percent of surveyed users' computers were infected with form of spyware. 92 percent of surveyed users with spyware reported that they did not know of its presence, and 91 percent reported that they had not given permission for the installation of the spyware.[37] As of 2006, spyware has become one of the preeminent security threats to computer systems running Microsoft Windows operating systems. Computers on which Internet Explorer (IE) is the primary browser are particularly vulnerable to such attacks, not only because IE is the most widely used,[38] but because its tight integration with Windows allows spyware access to crucial parts of the operating system.[38][39]
Before Internet Explorer 6 SP2 was released as part of Windows XP Service Pack 2, the browser would automatically display an installation window for anyActiveX component that a website wanted to install. The combination of user ignorance about these changes, and the assumption by Internet Explorer that allActiveX components are benign, helped to spread spyware significantly. Many spyware components would also make use of exploits in JavaScript, Internet Explorer and Windows to install without user knowledge or permission.
The Windows Registry contains multiple sections where modification of key values allows software to be executed automatically when the operating system boots. Spyware can exploit this design to circumvent attempts at removal. The spyware typically will link itself from each location in the registry that allows execution. Once running, the spyware will periodically check if any of these links are removed. If so, they will be automatically restored. This ensures that the spyware will execute when the operating system is booted, even if some (or most) of the registry links are removed.
-------------------------------------------------
Programs distributed with spyware[edit] * Kazaa[40] * Morpheus[41] * WeatherBug[42] * WildTangent[43][44]
Programs formerly distributed with spyware[edit] * AOL Instant Messenger[43] (AOL Instant Messenger still packages Viewpoint Media Player, and WildTangent) * DivX[45] * FlashGet[46][47][48][49][50][51] * magicJack[52]
-------------------------------------------------
Rogue anti-spyware programs[edit]
See also: List of rogue security software, List of fake anti-spyware programs and Rogue software
Malicious programmers have released a large number of rogue (fake) anti-spyware programs, and widely distributed Web banner ads can warn users that their computers have been infected with spyware, directing them to purchase programs which do not actually remove spyware—or else, may add more spyware of their own.[53][54]
The recent proliferation of fake or spoofed antivirus products that bill themselves as antispyware can be troublesome. Users may receive popups prompting them to install them to protect their computer, when it will in fact add spyware. This software is called rogue software. It is recommended that users do not install any freeware claiming to be anti-spyware unless it is verified to be legitimate. Some known offenders include: * AntiVirus 360 * Antivirus 2009 * AntiVirus Gold * ContraVirus * MacSweeper * Pest Trap * PSGuard * Spy Wiper * Spydawn * Spylocked * Spysheriff * SpyShredder * Spyware Quake * SpywareStrike * UltimateCleaner * WinAntiVirus Pro 2006 * Windows Police Pro * WinFixer[55] * WorldAntiSpy
Fake antivirus products constitute 15 percent of all malware.[56]
On January 26, 2006, Microsoft and the Washington state attorney general filed suit against Secure Computer for its Spyware Cleaner product.[57]
-------------------------------------------------
Legal issues[edit]
Criminal law[edit]
Unauthorized access to a computer is illegal under computer crime laws, such as the U.S. Computer Fraud and Abuse Act, the U.K.'s Computer Misuse Act, and similar laws in other countries. Since owners of computers infected with spyware generally claim that they never authorized the installation, a prima facie reading would suggest that the promulgation of spyware would count as a criminal act. Law enforcement has often pursued the authors of other malware, particularly viruses. However, few spyware developers have been prosecuted, and many operate openly as strictly legitimate businesses, though some have faced lawsuits.[58][59]
Spyware producers argue that, contrary to the users' claims, users do in fact give consent to installations. Spyware that comes bundled with sharewareapplications may be described in the legalese text of an end-user license agreement (EULA). Many users habitually ignore these purported contracts, but spyware companies such as Claria say these demonstrate that users have consented.
Despite the ubiquity of EULAs agreements, under which a single click can be taken as consent to the entire text, relatively little caselaw has resulted from their use. It has been established in most common law jurisdictions that this type of agreement can be a binding contract in certain circumstances.[60] This does not, however, mean that every such agreement is a contract, or that every term in one is enforceable.
Some jurisdictions, including the U.S. states of Iowa[61] and Washington,[62] have passed laws criminalizing some forms of spyware. Such laws make it illegal for anyone other than the owner or operator of a computer to install software that alters Web-browser settings, monitors keystrokes, or disables computer-security software.
In the United States, lawmakers introduced a bill in 2005 entitled the Internet Spyware Prevention Act, which would imprison creators of spyware.[63]
Administrative sanctions[edit]
US FTC actions[edit]
The US Federal Trade Commission has sued Internet marketing organizations under the "unfairness doctrine" [64] to make them stop infecting consumers’ PCs with spyware. In one case, that against Seismic Entertainment Productions, the FTC accused the defendants of developing a program that seized control of PCs nationwide, infected them with spyware and other malicious software, bombarded them with a barrage of pop-up advertising for Seismic’s clients, exposed the PCs to security risks, and caused them to malfunction. Seismic then offered to sell the victims an “antispyware” program to fix the computers, and stop the popups and other problems that Seismic had caused. On November 21, 2006, a settlement was entered in federal court under which a $1.75 million judgment was imposed in one case and $1.86 million in another, but the defendants were insolvent[65]
In a second case, brought against CyberSpy Software LLC, the FTC charged that CyberSpy marketed and sold "RemoteSpy" keylogger spyware to clients who would then secretly monitor unsuspecting consumers’ computers. According to the FTC, Cyberspy touted RemoteSpy as a “100% undetectable” way to “Spy on Anyone. From Anywhere.” The FTC has obtained a temporary order prohibiting the defendants from selling the software and disconnecting from the Internet any of their servers that collect, store, or provide access to information that this software has gathered. The case is still in its preliminary stages. A complaint filed by the Electronic Privacy Information Center (EPIC) brought the RemoteSpy software to the FTC’s attention.[66]
Netherlands OPTA[edit]
An administrative fine, the first of its kind in Europe, has been issued by the Independent Authority of Posts and Telecommunications (OPTA) from the Netherlands. It applied fines in total value of Euro 1,000,000 for infecting 22 million computers. The spyware concerned is called DollarRevenue. The law articles that have been violated are art. 4.1 of the Decision on universal service providers and on the interests of end users; the fines have been issued based on art. 15.4 taken together with art. 15.10 of the Dutch telecommunications law.[67]
Civil law[edit]
Former New York State Attorney General and former Governor of New York Eliot Spitzer has pursued spyware companies for fraudulent installation of software.[68] In a suit brought in 2005 by Spitzer, the California firm Intermix Media, Inc. ended up settling, by agreeing to pay US$7.5 million and to stop distributing spyware.[69]
The hijacking of Web advertisements has also led to litigation. In June 2002, a number of large Web publishers sued Claria for replacing advertisements, but settled out of court.
Courts have not yet had to decide whether advertisers can be held liable for spyware that displays their ads. In many cases, the companies whose advertisements appear in spyware pop-ups do not directly do business with the spyware firm. Rather, they have contracted with an advertising agency, which in turn contracts with an online subcontractor who gets paid by the number of "impressions" or appearances of the advertisement. Some major firms such as Dell Computer and Mercedes-Benz have sacked advertising agencies that have run their ads in spyware.[70]
Libel suits by spyware developers[edit]
Litigation has gone both ways. Since "spyware" has become a common pejorative, some makers have filed libel and defamation actions when their products have been so described. In 2003, Gator (now known as Claria) filed suit against the website PC Pitstop for describing its program as "spyware".[71] PC Pitstop settled, agreeing not to use the word "spyware", but continues to describe harm caused by the Gator/Claria software.[72] As a result, other anti-spyware and anti-virus companies have also used other terms such as "potentially unwanted programs" or greyware to denote these products.
WebcamGate[edit]
Main article: Robbins v. Lower Merion School District
In the 2010 WebcamGate case, plaintiffs charged two suburban Philadelphia high schools secretly spied on students by surreptitiously and remotely activating webcams embedded in school-issued laptops the students were using at home, and therefore infringed on their privacy rights. The school loaded each student's computer with LANrev's remote activation tracking software. This included the now-discontinued "TheftTrack". While TheftTrack was not enabled by default on the software, the program allowed the school district to elect to activate it, and to choose which of the TheftTrack surveillance options the school wanted to enable.[73]
TheftTrack allowed school district employees to secretly remotely activate a tiny webcam embedded in the student's laptop, above the laptop's screen. That allowed school officials to secretly take photos through the webcam, of whatever was in front of it and in its line of sight, and send the photos to the school's server. The LANrev software disabled the webcams for all other uses (e.g., students were unable to use Photo Booth or video chat), so most students mistakenly believed their webcams did not work at all. In addition to webcam surveillance, TheftTrack allowed school officials to take screenshots, and send them to the school's server. In addition, LANrev allowed school officials to take snapshots of instant messages, web browsing, music playlists, and written compositions. The schools admitted to secretly snapping over 66,000 webshots and screenshots, including webcam shots of students in their bedrooms.

Similar Documents

Free Essay

Spyware - What on Earth Is That?

...SPYWARE – WHAT ON EARTH IS THAT? Today’s technology has advanced from a time where the government used spyware for espionage purposes to the average American gaining information from another person’s personal computer, mobile phone, or technology device. Knowing how to prevent routes of infection and ways of removing spyware is information that Americans should be well aware of to ensure the best security for their technology devices. If not, they might become a victim like I was. “Spyware is software that monitors a user's computing; the functions of spyware can extend beyond simple monitoring. Spyware can collect almost any type of data, including personal information like Internet surfing habits, user logins, and bank or credit account information.” (From Wikipedia - The Free Encyclopedia, 2012) The spyware software performs these actions without appropriately obtaining a person’s consent first. The most common ways a computer can become infected are through advertising (software that displays advertisements is called adware), pop-ups, downloading shared music and software torrents, visiting a website with malicious ActiveX or JavaScript scripts, opening email attachments, downloading anything from crack sites, and watching certain videos. “ According to some estimates, more than 80 percent of all personal computers are infected with some kind of spyware.” (Close-Up Media, 2009) Some people mistake spyware for viruses which damage the user’s personal files...

Words: 1264 - Pages: 6

Free Essay

Proposed Law Limiting Adware and Spyware

...Recommendation for Law Proposal: Limiting Adware and Spyware James S. Dunmire Management 520 Professor Michael Carr June 11, 2015 The Law that I am Proposing The law that I would propose for e-commerce is to severely restrict unsolicited adware. Adware that is often bundled on an e-commerce site gets downloaded on the consumer’s computer without their knowledge or consent. “Internet companies, whose apparent "business model" is the exploitation of consumer trust and ignorance, are sneaking their spyware systems into our machines for their own purposes”(GRC, n.d). This is not only extremely annoying to the user; it can compromise the user’s security and corrupt the software. This Adware can also contain or be classified as spyware, a type of malware that is considered by many to be privacy-invasive. Spyware can steal a user’s information or corrupt the user’s system files (pc tools, n..d.). Spyware is also difficult to remove once it has been downloaded onto the PC. Many users inadvertently download spyware or adware when downloading other programs. Many popular peer to peer applications and other software packages include adware or spyware packages. Even seemingly innocuous programs such as special cursors can contain spyware. In addition, many websites and advertising banners set cookies on the user’s system that track their web usage without their knowledge or consent (Secure Perdue, n.d.). Spyware is not an illegal type of software in any way. However...

Words: 645 - Pages: 3

Free Essay

Spyware

...Casa 2-4 Spyware can be good but also bad so we are going to compare the good vs. the bad. The definition of spyware is a program that is install into your computer and gathers information wether for good or bad reasons. Lets talk about legitimate spyware and there are many. For example, Cookies: computers automaticly have cookies to track were you been and it records its. For business side it a good idea to have cookies because it can tell you whether the person is on or how many times and if your in shopping kind of business that helps out a lot. Cookies also authenticate your site. There are other good perpuses of spyware but I would have to look longer. Now for the bad spyware, and there are a lot of bad stuff about spyware. For example, Spyware can never go away one click away from hackers having your information can not be seen collact data such as valueble information popup keyloggers And the list just goes on and on, over all its a bad idea to have spyware but we need it too because it helps us identify if we got hacked through cookies and yet cookies are bad too. Technology is growing and some stuff we can not control but we can prevent from it getting out of hand. Referrence http://www.vbmb.org/Resources/Technology-Help/SpyWare-Facts.cfm http://www.pcsndreams.com/Pages/Articles/spyware_facts.htm http://lockergnome.net/questions/72264/what-are-cookies-are-they-a-good-thing-or-do-they-take-up-space-and-slow-down-your-web-browser http://exids...

Words: 723 - Pages: 3

Premium Essay

Spyware

...Parent” (2008) suggests that parents should monitor their children closely online. Coben supports his suggestion by listing the many dangers on the internet. Coben suggests that parents should install spyware on their child’s internet in order to keep them safe. The author writes in an informal tone for parents. Indeed, parents should monitor children closely online by using spyware because they can see if their child is in danger and they can help prevent their child getting in danger. Parents should monitor their children online because they can see if their child is in any kind of danger. For example, Coben states in his article “The Undercover Parent”, “One friend of mine, using spyware to monitor his college bound, straight-A daughter, found out that not only was she using drugs but she was sleeping with her dealer…. He decided to come clean, to let her know how he had found out, to speak with her about the dangers inherent in her behavior” (Coben, Paragraph 13). The example shows how a father used spyware to find out if his daughter was in danger, which she was in, the father then had a conversation with his daughter to tell her that the things she was doing online was very dangerous. The father prevented his daughter from getting into even more danger on the internet by using spyware. Since the father talked to his daughter, she wasn’t in any danger any more. Furthermore, Ellen Goodman in her article “Big Brother meets Big Mother” states, “but even if kids aren’t wandering in...

Words: 629 - Pages: 3

Premium Essay

Spyware

...Spyware? Harlan Coben’s article, “The Undercover Parent” , March 16,(2008), is about the advantages of having spyware on your children’s computer. Coben believes that the internet in a dangerous place. Therefore, a parent has the right to monitor you kid. She states that as a parent you have the responsibility to monitor your children and keeping them safe.”Trust is one thing, but surrendering parental responsibility to a machine that allows the entire world access to your home borders on negligence” this quote implies that parents who believe that the internet is a safe place they are neglecting their parental duties. In addition a agree with Coben’s argument that spyware is a way to protect your children. I believe that parents should use spyware on their children’s computer only for the sole purpose of keeping their children safe. There are many disadvantages that the internet can have on your children’s life. Also, there is no reason for your child to hide anything from you. Parents have the right to monitor their kids if they feel like they are in danger. If the parents action is in the right state of mind then they are doing what a responsible parent would do. For example, ”One friend of mine, using spyware to monitor his college-bound straight -A daughter, found out that not only was she using drugs but she was sleeping with her dealer.” The dad was aware of the situation his daughter has been in and confronted her to talk out the situation. The first reason why...

Words: 759 - Pages: 4

Premium Essay

Malware

...MALWARE PROJECT ROOT KIT A root kit refers to a specialized set of programs normally used by crackers in order to subvert control of an operating system of a computer system. A rootkit enables breaking in security of a computer system and gaining root access for various operating systems such as Unix, Linux, Solaris, Microsoft Windows, Mac OS etc. A root kit is a set of tools used by a hacker to infiltrate a computer system without the knowledge or consent of the system's owner. These tools help the intruder gain access to the system in order to perform malicious activities at a later date without being detected. WHAT MAKES IT DIFFERENT FROM A VIRUS? Most often, rootkits are used to control and not to destroy. Of course, this control could be used to delete data files, but it can also be used for more nefarious purposes. More importantly, rootkits run at the same privilege levels as most antivirus programs. This makes them that much harder to remove as the computer cannot decide on which program has a greater authority to shut down the other. DETECTING AND PREVENTING ROOTKITS One issue with rootkits is that they are constantly updated; even with all sorts of computer security protocols programmed every day to specifically eliminate rootkits, people who program them continue to develop and update the rootkit, or make new ones. It doesn’t mean, though, that they cannot be prevented. Methods through which RootKits can be prevented are: * Anti-virus software. While...

Words: 1362 - Pages: 6

Premium Essay

Fdess

...Hands-On Ethical Hacking and Network Defense Second Edition Chapter 3 Network and Computer Attacks Objectives • After this lecture and completing the exercises, you will be able to : – Describe the different types of malicious software and what damage they can do – Describe methods of protecting against malware attacks – Describe the types of network attacks – Identify physical security attacks and vulnerabilities Hands-On Ethical Hacking and Network Defense, Second Edition 2 Malicious Software (Malware) • Network attacks prevent a business from operating – Malicious software (malware) • Virus • Worm • Trojan program – Goals • • • • Destroy data Corrupt data Shutdown a network or system Make money 3 Hands-On Ethical Hacking and Network Defense, Second Edition Viruses • Virus attaches itself to a file or program – Needs host to replicate – Does not stand on its own – No foolproof prevention method • Antivirus programs – Detection based on virus signatures • Signatures are kept in virus signature file • Must update periodically • Some offer automatic update feature Hands-On Ethical Hacking and Network Defense, Second Edition 4 Table 3-1 Common computer viruses Hands-On Ethical Hacking and Network Defense, Second Edition 5 Viruses (cont’d.) • Encoding using base 64 – – – – – – – – Typically used to reduce size of e-mail attachments Also, used to encrypt (hide) suspicious code. Represents zero to 63 using six bits A is 000000… Z is 011001 Create groups of four characters...

Words: 1394 - Pages: 6

Premium Essay

Security Threats

...to a system. It’s up to the personnel or team that’s in charge of protecting the system from threats and vulnerabilities. The personnel that secure information technology systems are known as (ISO) Information Security Officer, (IASO) Information Assurance Security Officer, (ISM) Information Security Manager ect. No matter what name the personnel there job is the same to protect information systems. Security Officers will have to set policies that govern the system and create plan on how to handle security threat and vulnerabilities. Security threats can consist of any number issues ranging from physical attack, spoofing, password attacks, identity theft, virus attacks, and Denial of Service attacks, Social Threats, Espionage, malware, spyware, Careless Employees, and hackers. We will disuse all of these threats and ways to prevent them later in the report. In 2010 Kevin Prince, CTO, Perimeter E-Security "As these security threats are becoming more serious and difficult to detect, it is vital for companies to understand what they can do to best protect their systems and information” he also was implying that Information Security Office stay update with changes in Information Technology community. (Prince 2010) Vulnerabilities in computer system are weakness in software. These vulnerabilities are the resole of oversight of developers...

Words: 2408 - Pages: 10

Premium Essay

Malware

...A Brief History “In 1949, Von Neumann established the Theory of Self-Reproducing Automata, where he presented for the first time the possibility of developing small replicating programs able to control other programs with a similar structure In 1959, in Bell Computer’s laboratories, three young programmers: Robert Thomas Morris, Douglas Mcllroy and Victor Vysottsky created a game called CoreWar, based on the theory of Von Neumann and in which programs fought between each other, trying to occupy as much memory as possible and eliminating opposing programs. This game is considered the precursor to computer viruses. In 1972, Robert Thomas Morris created the first virus as such: Creeper, which could infect IBM 360 on the ARPANET (the predecessor of the Internet) and show an on-screen message saying “I’m the creeper, catch me if you can”. To eliminate it, a virus called Reaper was created to search for it and destroy it”…………………...PANDA SECURITY ( 2011) Malware Overview Retrieved from http://www.google.com/images?rlz=1T4ADFA_enUS391US392&q=virus+clipart&um=1&ie=UTF-8&source=univ&sa=X&ei=nOx7TfqZEoXorAGvu5zCBQ&ved=0CDMQsAQ&biw=1174&bih=463 Malicious software, better known as Malware, is the most sophisticated type of threat to a computer system. Malware is simply code that is designed with purpose and intent to destroy, steal, disrupt or damage someone’s data, computer system or network. Malware is software that is written...

Words: 3874 - Pages: 16

Free Essay

How to Delete Virus

...block cookies, or even just delete one particular one. But cookies are part of the Internet. In reality, it is better to just recognize that one is not as anonymous as they think they are when surfing the Internet. Sorry to burst that bubble folks. Whether or not you remove Ad.yieldmanager.com, dozens of other cookies are watching what you do. A note of caution. If you are receiving a warning about the Ad.yieldmanger cookie (an apparent security notice) then you have a bigger problem. The problem isn’t the cookie. It is a trojan that is using the Ad.yieldmanager cookie as a scapegoat. These trojans are money stealing devices that convince you something is wrong with your computer and then try to get you to buy a program to get rid of the spyware, virus, or...

Words: 458 - Pages: 2

Premium Essay

8 Common Types of Computer Viruses

...examine 8 of the most common types. These types are virus, worms, trojans, adware/pop-up ads, spyware, keyloggers, rootkits, and scareware. * Virus- as defined above, a virus is self-replicating code planted in a computer program. This malware’s sole purpose is to destroy or shut down systems and networks. (“Virus,” 2012). * Worms- These are standalone programs whose sole purpose is to replicate and spread themselves to other computers. Their main use is to search for and delete certain files from computers. * Trojans- This malware is designed to look like a useful program while giving control of the computer to another computer. It can be used for several malicious things: * As part of a botnet to use automated spamming or distribute denial-of-service attacks. * Electronic money theft * Data theft * Downloading or uploading of files to the computer * Deletion or modification of files * Crashing the computer * Watching the viewer’s screen * Anonymous internet viewing * Adware/pop-up ads- “The definition of adware is a software package which displays or downloads advertisements to a computer. These ads are usually in the form of pop-ups, and the goal of adware is to generate revenue for its author. In itself, adware is harmless, however, some of it may come integrated with spyware (What is the definition of adware? 2012).” * Spyware-...

Words: 642 - Pages: 3

Premium Essay

Assignments

...Week Four Assignment Renee’ R0binson INF 220: IS Principles (BQE1351aA Melvin Lee May 8, 2014 Security Products are needed for all business and will help with any company that has technology involved. Most company are dealing with technology on a daily basis like the World Wide Web that takes on a whole new level and is important in every type of way. There are many software products that are out there such as virus protections, spyware, and firewalls. Spyware have many different types of products that has the same purpose of securing technical devices. Norton Security and MacAfee Security are two of the most popular spyware products that are used by most companies and independent users as well. Norton security spyware is a program that will protect computers and stop hackers from accessing any information that is on that computer. It is a program software that will keep a computer clean of virus, scan for spyware and clean them up it also keep your computer free of all unwanted monitoring software, backs up cd, and setup is easy to complete. This software also has parental control, it keeps your files in order including music and photos. There is always free tech support if needed through phone, email, and chat. Thus program would be better used for business as well as individuals because it offers all that is needed to protect your computer or other technical devices. This particular program have a special for a year it is $49.99 for one household and for...

Words: 590 - Pages: 3

Premium Essay

Computer Viruses

...A computer virus is a computer program that can copy itself and infect a computer. The term "virus" is also used to refer to other types of malicious software, including: adware and spyware programs. A virus can spread from one computer to another. Viruses can increase their chances of spreading to other computers by infecting files on a network file system or a file system that is accessed by another computer. As stated above, the term "computer virus" is sometimes used as a catch-all phrase to include all types of malware (malicious software). Malware includes computer viruses, computer worms, Trojan horses, most rootkits, spyware, dishonest adware and other malicious and unwanted software, including true viruses. Viruses are sometimes confused with worms and Trojan horses, which are technically different. A worm can exploit security vulnerabilities to spread itself automatically to other computers through networks, while a Trojan horse is a program that appears harmless but hides malicious functions. A Trojan horse, or Trojan, is malicious software designed to secretly access a computer system without the owner's permission or approval. It appears to perform a desirable function for the user prior to run or install but instead, it facilitates unauthorized access of the user's computer system. On the other hand, a computer worm is a self-reproductive malware computer program. It uses a computer network to send copies of itself to other computers on the network and it may...

Words: 341 - Pages: 2

Premium Essay

Lab 4

...Sandra Guzman 01/22/2015 Lab 4 Deliverables Note: Screenshots will be provided at the end. Q: From your local computer, use your favorite Internet browser to research the threat identified on this screen and the possible remediation steps and document your findings in your Lab Report file. Viruses found: 1. Win32/DH{eR4UTxVzG3U} 2. Win32/DH{eR4UTxVzG3U} 3. Win32/DH{HhMXFE8Vcxt1} 4. Trojan horse Dropper.Generic4.BVMA 5. Trojan horse Hider.BNG 6. Trojan horse PSW.Generic11.NYJ 7. Potentially harmful program Logger.IAC 8. Potentially harmful program RemoteAdmin.IH 9. Potentially harmful program Tool.IT Assessment: 1. It seems that the first three are all the same type of virus. A “Win/DH is a malicious software that once it is executed has the capability of replicating itself and infect other files and programs”( Win/DH). They “can steal hard disk space and memory that slows down or completely halts your PC, corrupt or delete data, erase your hard drive, steal personal information, hijack your screen and spam your contacts to spread itself to other users” (Win/DH). To avoid the possibility of one, you should be careful of e-mail attachments especially if they are from an outside source, as well as download links on websites. Having a virus removing application such as AVG is essential to being able to remove these viruses before they spread. AVG is capable of detecting this virus while surfing the web and...

Words: 1494 - Pages: 6

Free Essay

Lemon

...Informative Speech Topic : Problems and Solutions associated with Spyware Specific Purpose : To inform our audience members of the dangers of spyware so that they may take appropriate steps to prevent infection Introduction I. Do you worry about identity theft online? Have you ever wonder what it means? Are you anxious about security of your passwords and credit card numbers? (Attention Getter) II. Based on our class discussion last week, many of you are aware of software known as spyware that can install itself on your computer and smartphone without your knowledge and harvest sensitive information, and many of you have taken steps to protect yourself. III. Spyware is constantly evolving, however, and to stay safe, we need to learn about and arm ourselves against the treats it poses. Twenty three years of experience in the industry including research and employment experiences has helped me develop an eye for detecting Spyware problems. IV. Today, we will talk about what forms spyware takes, how it gets into your computer, the harm it causes, and how your computer and smartphone can be kept from being infected. Transition: So, what is the state of spyware today? Body I. Spyware is a type of privacy invasion software known as malware. a. According to a history of spyware published on the Federal Trade Commission’s Web site, until the year 2000, spyware referred to monitoring devices on cameras (FTC, OnGaurdOnline.gov) ...

Words: 962 - Pages: 4