Microsoft: One In 14 Downloads Is Malicious

alphadogg writes "About one out of every 14 programs downloaded by Windows users turns out to be malicious, Microsoft said Tuesday. And even though Microsoft has a feature in its Internet Explorer browser designed to steer users away from unknown and potentially untrustworthy software, about 5% of users ignore the warnings and download malicious Trojan horse programs anyway. IE also warns users when they're being tricked into visiting malicious websites, another way that social-engineering hackers can infect computer users. In the past two years, IE's SmartScreen has blocked more than 1.5 billion Web and download attacks, according to Jeb Haber, program manager lead for SmartScreen."

NEWSFLASH: Some People are Terminally Ignorant

[h4rr4r]

These are the same folks that only change the oil in their cars when the warning light comes on.

Re:

[Chrisq]

These are the same folks that only change the oil in their cars when the warning light comes on.

Or in the case of my brother-in-law when my sister said the light was on, covered the warning light with a bit of tape so it wouldn't annoy her. She carried on driving until the engine seized up.

Re:

[mellon]

This is why security solutions based on users making correct decisions can't work. It's bizarre how many of the programs on our computers still depend on this.

Re:

[h4rr4r]

Drop out the "security" part and you will be closer to the truth.

Windows needs repositories/appstore now, it does not need a new ribbon interface, more shiny crap or anything else as bad. When they get that done, give me the ability to delete/replace open files like you can on a real multi-user OS.

Re:

[petermgreen]

The problem is for a home/SMB user (who can't/won't pay for proffessional IT to make the descisions) the only real alternative would be to have those descisions made for you by a coporate overlord like sony, MS or apple.

Experiance from smartphones and games consoles shows that when corportate overlords make those kind of descisions they don't always have their users best interests at heart.

Re:

[cdrguru]

The problem is for a home/SMB user (who can't/won't pay for proffessional IT to make the descisions) the only real alternative would be to have those descisions made for you by a coporate overlord like sony, MS or apple.

Experiance from smartphones and games consoles shows that when corportate overlords make those kind of descisions they don't always have their users best interests at heart.

Yes, except there is no other real solution. What is needed is to get the hundreds of thousands of general-purpose computers with "open" operating systems and replace them with something like an iPad. Sure, you can add "approved" applications to your computer, but you cannot "administer" it in any meaningful way - that is done remotely, by someone else. Best of such "administration" is not needed, but whatever it is the user isn't qualified or capable of doing it right.

OK, there are a few people that nee

Re:

[ColdWetDog]

Oh, and I would have zero problems with a requirement - worldwide - that says to connect a "general-purpose" computer to the Internet you have to have a license of some sort. Something you have to prove your qualifications to get.

This works so well for roadways. In general, Jersey barriers [wikipedia.org] are the only things between you and the afterlife. Thank God for concrete.

Re:

[mangu]

These are the same folks that only change the oil in their cars when the warning light comes on.

When the warning light comes on it's a sign to add oil, not change it.

Although it's a car analogy, this one is not good. Compared to downloading malware, not changing oils is pretty harmless. Most car owners would be able to drive a new car without changing oil at all for ten times the manufacturer recommended mileage.

I myself once used a Geo Prizm for fifty thousand miles without an oil change. It was a company car with a long-term rental. When the time for the first change came, I phone the rental company

Re:

[tom17]

Except old grubby oil can leave residue. Not a big deal except for the hydraulic lifters. When the little oilways in them get clogged up, they can no longer self adjust. This can lead to large clearances, resulting in excessive valvetrain wear.

I'm not one to talk, but please, change your oil :)

Re:

[mlts]

Depends on vehicle. If the light is a maintenance minder like most Hondas and other cars have, that is one thing.

If the light is a low oil pressure warning, that is completely different... I know people who have done this, and end up buying new cars every 2-3 years while bitching how cars don't have as good engines as they used to.

Re:

[h4rr4r]

Vastly experienced?
Not even been driving two decades.

Re:NEWSFLASH: Some People are Terminally Ignorant

[h4rr4r]

I had a boss once drive in circles in the parking lot with the hood up, to cool an over heating engine.

Re:

[DJLuc1d]

TDSS Killer. I've seen that one dozens of times and it *almost* always works. Congrats your boss on getting a rootkit.

"Malicious"

[Anonymous Coward]

On the list of malicious files, as determined by the Microsoft Corporation:

- Google Chrome
- ubuntulinux.iso
- antivirusotherthansecurityessentials.exe
- iTunes
- *ipod*.exe
- gmail.com/index.html

Re:"Malicious"

[Missing.Matter]

antivirusotherthansecurityessentials.exe

I know you're joking, but this one is pretty close to the truth. Norton and McAffee do more to slow down computers than actual malware does.

Re:

[bugs2squash]

Not only that, but it's damned hard to tell the difference between something actually from McAfee and some (other) crap from the internet. For example, most of the services running on my computer with names starting with McAfee are listed as "Unknown" manufacturer. When popups appear they always look fake, the window decorations (like the close icon in the top right corner) are always non-standard and the warnings are overly dire and hyped-looking. They just look unprofessional. Finally, it's so damn hard t

Re:"Malicious"

[Tanktalus]

This is what I call the second Microsoft Tax. The first one is the extra ~$30-$60 you pay on your computer that goes to Microsoft for their OS (prices assume it's a new rig with the OEM version pre-installed). The second one, this one, is the extra money you spend on CPU cycles and RAM to run the anti-malware software so that you still have as much CPU power/RAM as you need for what you really bought the computer for.

Re:

[Gilmoure]

NetBSD: Full Speed Ahead!

Re:

[mr1911]

Sadly my brother is one of those and I spend a lot of time cleaning-up his computer, because he just clicks "yes" to everything. I don't think he even bothers to read the warning.

Quite cleaning his computer. Otherwise he has no incentive to change his behavior.

Here is the list of top 5 malicious Downloads.

[LWATCDR]

1. Ubuntu
2. Firefox
3. Chrome
4. OpenOffice
5. VLC

Re:

[Chrisq]

You missed Java

Re:

[DrScotsman]

The grandparent was listing jokes, not actual malicious software.

Of course I jest, but which other Windows program anywhere near as popular brings up UAC prompts out of nowhere in the way Java updater does without even being "opened"? I bet Java is partially to blame for a huge number of users blindly clicking "Yes" to all UAC prompts - in the average user's eyes it just won't stop prompting until you accept its damn update.

Re:

[kvvbassboy]

Mod parent up. I am ashamed to say that I am guilty of this. I tried uninstalling Java, but soon found that I couldn't do without it.

Re:

[thePowerOfGrayskull]

I would say that UAC is to blame, since you get promoted to install or update any software. Since you obviously want the software, of course you're going to authorize it. This has the unfortunate effect of rendering UAC useless - people get used to allowing every time it asks, because they need to in order to complete the task at hand.

Re:

[mlts]

Even without UAC priv escalation, there is a lot malicious software can do in a user context without having to get administrative rights. Just a mass file slurp of documents to an offshore blackhat site can cause a lot of damage.

Re:

[NatasRevol]

That, and the fact that the updater doesn't always remove the older java versions. Leaving the user with the security holes still intact.

How to get free software signed?

[tepples]

Your joke has a point. Any Free [gnu.org] application that isn't digitally signed with Authenticode will get flagged by IE's "SmartScreen application reputation" filter [msdn.com]. And as I understand it, existing Authenticode CAs sell certificates only to businesses, not to individuals.

[msdn.com]

[tepples]

Any Free [gnu.org] application that isn't digitally signed with Authenticode will get flagged by IE's "SmartScreen application reputation" filter [msdn.com].

What is your source for this claim?

I already linked my source in my grandparent post. If you want title and author before you click through: "'Stranger Danger' - Introducing SmartScreen® Application Reputation" by Ryan Colvin, posted on 13 Oct 2010 3:03 PM [msdn.com]. From this page:

To help establish your application's reputation, consider doing the following:

Digitally sign your programs with an Authenticode signature

Reputation is generated and assigned to digital certificates as well as specific files. Digital certificates allow data to be aggr

How to give an app reputation without a company?

[tepples]

"Reputation" is based on more factors than "digitally signed."

But for a new application or a new version of an application, the only clear way that I can see to give it any reputation in the first place is to sign it. Otherwise, the first few dozen people who download it will be pressured to delete it immediately.

Why free software has more of a problem

[tepples]

I'd say most users would want to be alerted if they were one of the first few people to download some particular executable.

With the release early, release often [wikipedia.org] mentality common to free software, each individual application version will have far less time to build reputation. And with the narrow user bases of some free applications, each user is more likely to be "one of the first few people to download" each version. These are the problems that certificates were supposed to address by allowing reputation to propagate from a developer's other applications and from older versions, but well-known Authenticode CAs have tended to b

Re:

[Anonymous Coward]

Call an engineer. The sense of humor module on the vistapwns bot has crashed again.

Re:

[Inda]

It's funny because it's true!

Only it's not, like you say.

I've been guilty of steering threads by using all five (yes, I only get five) mod points on the first post, and the following child posts. It's gaming the system and gaming the other users with mod points - they blindly mod up if they see a post that's been modded previously. I know it's wrong but I've been here a long time and I don't care.

I have five mod points today. I promise I'll do good with them.

Funny vs. In; why a lot of free apps aren't signed

[tepples]

Certainly I don't understand an high informative mod for something that is categorically false.

It's a joke. Slashdot awards karma for "In" moderations, does nothing for Funny, and takes karma away for Overrated. If moderators fight over whether a comment is Insightful or Overrated, no damage happens to the poster's karma. But if moderators fight over Funny vs. Overrated, the poster loses some karma every time it's moderated Overrated. This has caused some moderators to try using Insightful instead of Funny.

SmartScreen doesn't throw up a warning for #2, #3, and #4 on the list because they're digita

Re:

[oakgrove]

Er, because you can't get karma for funny but you can for informative so many people mod that way? There is also the philosophical argument that anything that is particularly funny is meta-informative anyway since depending on the context of the "joke" it tells you as much about yourself and others who think it's funny as what it is actually overtly talking about.

Re:

[memojuez]

+5 Funny, yes; Informative, no.

Really?

[Random2]

I didn't realize IE was downloaded so frequently.

Surprise

[revscat]

That is a surprisingly high number, even after all these years of knowing about various rootkits, viruses, and other malware that have so persistently affected Windows. 1 in 14? That's... crazy.

And what is the economic cost of having to deal with this crap? It must be well into the billions of dollars by now.

It's also consistently depressing that inertia is such that Windows seems like it will maintain its desktop dominance for the foreseeable future. There are better OSes out there. USE ONE, PEOPLE. Please

Re:

[vistapwns]

Which general purpose OS will stop the user from DOWNLOADING a piece of malware? Pretty much none, except something like iOS but users would scream bloody murder if MS only allowed whitelisted applications to run on Windows. The DOJ would have Balmer's head before he finished the sentence declaring that was MS' new course. I think of the term 'malware chaser', it's like 'ambulance chaser' but applies to alternative OS users who see a story about malware on Windows. Always there to pimp their OS which is n

Re:

[oakgrove]

I think of the term 'malware chaser', it's like 'ambulance chaser' but applies to alternative OS users who see a story about malware on Windows. Always there to pimp their OS which is no better just less used.

Obviously you like Windows. It is unfortunate that Windows users are attacked so frequently and I really do think a solution needs to be found. It seems reasonable to me that if there were a healthy mix of desktop operating systems in the marketplace malware authors would have a much harder time spreading their trash around and Windows users would be much better off. That being the case, wouldn't you want alternative choices to be brought to people's attention whenever it is relevant? Operating system d

Re:

[oakgrove]

Interestingly enough, many people see the torrent sites almost as an ad-hoc repository. Need CD burning software [btjunkie.org]? Now, of course, you and I know that that gold doesn't really glitter. You can count on almost every single thing in that list to come complete with the trojan du jour. Now, if people had a real repository of software, they could just fire it up and look for the same thing and be virtually certain that nothing in that list would contain any malware at all. Of course with the ability to insta

Re:

[thePowerOfGrayskull]

What does this have to do with the operating system at all? People will always click to see the cute bunny. Until you find a way to stop them, malware downloads will persist.

Re:

[bmo]

>That is a surprisingly high number, even after all these years of knowing about various rootkits, viruses, and other malware that have so persistently affected Windows. 1 in 14? That's... crazy.

It's not crazy when you see the number of malware definitions in your average malware detector. There are nearly 6 *million* definitions for Bit Defender. I have it installed in Linux for scanning Windows files. And thousands of malicious applications/infections are being made every day.

Windows users have been

Repositories that don't want non-free software

[tepples]

[GNU/Linux distributors] do, however, have various practices in place to put up a barrier between the hostile network and the dumb user, and these things teach the user it's better to go to the trusted repo first

The historical problem here is that GNU/Linux distributors have historically been reluctant to allow non-free software into their repositories. Not all applications can be made free [pineight.com]. It'll take a while to see whether Ubuntu can succeed in bucking this trend.

Re:

[Rary]

It's not the OS, it's the users. My malicious download rate on Windows is approximately 0 in infinity. That's because I don't click on every random link on every website I visit, I read dialogs before clicking "OK", and I download things from trusted sites. While in theory, that still doesn't make me completely immune, in practice it's been good so far.

People need training, not a new OS.

Re:

[h4rr4r]

You try that. They don't want training and they don't care.

Over here in reality I will suggest MS follows the repository/app store model. This will not only condition people to stop downloading random crap off webpages, but also will allow updates to all software be made in a centralized way. They should like others allow users to add their own trusted repositories, which some will need and the truly ignorant will never bother with.

Re:

[tepples]

giving root access to an user is idiotic.

Without administrative access, how would "an user" (anything like "an hero"?) install an application that is useful and not malicious?

Re:

[oakgrove]

Without administrative access, how would "an user" (anything like "an hero"?) install an application that is useful and not malicious?

Millions of people do it [apple.com] daily [apple.com]. The walled garden has its benefits.

Re:

[h4rr4r]

So does giving up other freedoms. Choice means risk.

The walled garden however does not protect from malicious apps all the time. There have been stories when apps that did non-approved things made into into the apple appstore.

Re:

[bmo]

>There have been stories when apps that did non-approved things made into into the apple appstore.

False. Every app in the Appstore has been approved. Approval has been rescinded, but in order for something to make it to the App store, it must be approved in the first place.

The fact that it makes news when approval is rescinded means that it's exceedingly rare. I can only think of a few notable incidences - the "I'm Rich" icon/app, a publisher gaming the ratings system, and something more recent that e

ROM BASIC

[tepples]

The fact that it makes news when approval is rescinded means that it's exceedingly rare. I can only think of a few notable incidences - the "I'm Rich" icon/app, a publisher gaming the ratings system, and something more recent that escapes me at the moment.

It was a Commodore 64 game where the player could press some keys to reboot the emulated C64 computer into the REPL of ROM BASIC. Apple deemed the ability to enter and run BASIC programs a violation of section 3.3.2 of its iPhone Developer Program License Agreement [eff.org].

Re:

[h4rr4r]

False?
You just admitted it has happened. There was also the flash light app that provided tethering. If they can miss that, they can and will or already are missing apps that do more hostile things.

Re:

[bmo]

Name an actual malicious App from the app store.

Go ahead.

I'll wait right here.

These are all policy violations and nothing else.

Please note I have no skin in this game except laughing at the Windows idiots trying to plug their ears and blind their eyes to the biggest problem in the Windows software universe - that of untrusted repositories.

Your post screams so much denial it's funny.

1 in 14. Not my statistic, Microsoft's. Almost 6 billion malware definitions.

Remove the fucking tree from your eye before poi

Re:

[h4rr4r]

Just tell "make install" to put it under your $HOME.

Installing an application does not need admin access unless you need it to be available for everyone.

Not all apps can be installed in $HOME

[tepples]

Or in more general words, install the application to the user's profile, home directory, or whatever your operating system calls it. But that would require each application to be designed for installation to the home directory or to removable media; some are [wikipedia.org], but others are not. In addition, packages for Debian and Ubuntu don't come with options to install the application into the user's home directory, and building all applications from source would require the administrator to sudo apt-get install build-e

Re:

[h4rr4r]

No, it would not require applications to be designed for this.
Applications should not be installing themselves at all. Installation is the job of other system tools, not the application itself.

You are correct that you would need to do that, but that is pretty much an install task anyway.

Re:

[oakgrove]

By "application", I mean everything in the .deb, .rpm, or .msi package

Then why didn't you say that in the first place? Instead, you argued the man down by essentially saying "a package designed to be installed by root has to be installed by root". Just admit you're arguing the wrong point instead of backpedaling and you might leave with some credibility intact. He was obviously referring to software compiled from source 99 percent of which can be installed in $HOME without root powers.

Please allow me to rephrase

[tepples]

Just admit you're arguing the wrong point

I hereby apologize for having argued the wrong point. Please allow me to rephrase: Almost all existing packages are designed to be installed by root.

Only admins can write to %ProgramFiles%

[tepples]

Nearly every PC game made doesn't really need admin privs at install

I thought PC games had to write to the %ProgramFiles% folder, which requires administrative privileges, in order to install. For example, the support page for World of Warcraft [blizzard.com] states that "We cannot support the game on a non-administrator account." Or should programs be installing themselves in %APPDATA% instead?

Re:

[amliebsch]

Yes, user-mode programs should install into %LOCALAPPDATA% unless being installed for all users. Chrome, for example, does this correctly, which is why you do not need admin credentials to install it.

Re:

[geegel]

Fair point, but still giving admin rights BY DEFAULT seems pretty idiotic.

Re:

[geegel]

I call BS on this one. There were plenty of cases when legitimate websites got hacked and subsequently infected their readership. I know it's hip and cool to go all out righteous, but technology can and does play a part in this mess.

Why

[mehrotra.akash]

Why does MS even have these stats?

Re:

[thePowerOfGrayskull]

Primarily to give the paranoid something to chew on. Also to spy on us.

By Windows users, or by IE users?

[mehrotra.akash]

"About one out of every 14 programs downloaded by Windows users turns out to be malicious, "

Windows or IE?

If windows, how are they collecting these stats?

Re:

[kbielefe]

That's actually a really good question. You'd think if they could count them they could stop them.

Re:

[Rary]

IE usage is currently estimated to be below 50%, so it would be more like about 6 out of every 14 programs downloaded by Windows users are downloaded by IE.

TL;DR: Social Engineering is the Future of Malware

[Deathlizard]

I've been saying this for years. Hell. it's in my Sig.

Eventually, software would get so security conscious that it would be easier to fool the user rather than hack the software.

Re:

[tepples]

I read your journal article. So with your four rules in mind, how is an operating system supposed to distinguish between A. an intentionally malicious computer program and B. a safe program that happens to have been developed by an individual as opposed to a business?

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[Monchanger]

Interesting point and I'd like to read that professor's work, but I don't believe online services are flourishing for security reasons, but rather that it's coincidental from the average user's perspective. The whole point of this story is that people are not aware and knowledgeable enough about technology and security, so I doubt they factor it in highly enough to use it in their decision to chose an online service.

Security is rarely mentioned in the list of features of these services: nothing in Flickr [flickr.com],

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[NewWorldDan]

The problem is that Windows (and MacOS and Linux) is a "Wild West" operating system where anyone with admin access (ie., most home users) can trash the whole operating system. We're going to have to move to a model where the OS provides each application a sandbox, and nothing can modify the operating system, and no application can directly modify any other application. The band-aid security that's out there will never be adequate.

Re:

[istartedi]

I love that analogy because those of us who resist FaceBook and deal with the marauders are knights.

Re:

[mr1911]

For example, email. On a personal level many of my friends and family have stopped using it and require me to communicate via Facebook. The problem for me is that I don't have a Facebook account. The problem for them is that they don't want spam.

Huh? The vast majority of what shows up on Facebook is spam. OK, maybe not in the traditional sense given the spam is whatever inane thing someone decides to post rather than a Viagra ad. Oh, you mean the private message thing that no one seems to know how to use because they post conversations in their statuses?

How many for Apple?

[digitaldc]

We need the stats for Apple in order to make a comparison. Does anyone even know?

Re:

[Wovel]

If Apple released a stat, everyone would call them spies.

It is likely under 1/10'000 though.

Well, in fairness ...

[gstoddart]

Despite Microsoft's attempts to completely nanny people, they've almost taken it too far ... which means that people start ignoring/disabling the warnings.

The other week I launched IE on a new server install ... the very first warning message is "You are about to access the internet, and people can see what you do" -- which gets a "do not show me this again" before I dismiss.

As soon as you submit into a search engine, you get told "You are about to submit something on the internet, are you sure" -- which also gets a "do not show again".

By the time I tell it I don't want it to save passwords, autocomplete forms, and that, yes, I really do want Google as my default search ... well, I've stopped listening to anything "helpful" IE is telling me.

I rank the utility of the stuff that MS has "designed" to make IE safe right up there with the error messages that amount to "something bad has happened, contact your admin" --- oooh, that's informative. And, since I'm the admin ... give me some f'ing idea as to what went wrong so I can try to fix it.

Microsoft build in really pedantic and lame safeguards, which get turned off and/or ignored for the rest of time since they don't actually do anything useful.

Re:

[tepples]

And, since I'm the admin ... give me some f'ing idea as to what went wrong so I can try to fix it.

Under Windows XP, it was Start > Control Panel > Administrative Tools > Event Viewer. I haven't tracked where the system log viewer has moved in Windows Vista and Windows 7.

Re:

[h4rr4r]

Compare that to /var/log/messages one time. Event Viewer is a sad replacement indeed. If you are even given anything other than "error number 0, some random app failed, the dev never did put any real logging in. The whole fact that windows logging is displayed in a GUI pretty much shows the braindeadedness. Windows: a decently designed kernel held down by a joke of a userland.

Re:

[h4rr4r]

Because diff, grep and a whole host of other tools someone would want to use during the course of system administration are not something you can really do on a GUI.

Sure windows does not have those exact tools, but it has replacements and if it was a simple text file cygwin could provide them.

Re:

[gstoddart]

I haven't tracked where the system log viewer has moved in Windows Vista and Windows 7.

It's just right click on "My computer", and then "Manage" ... it's up near the top. Been there since at least W2K3, but it still works on my Vista machine.

Sometimes, I have received the "something bad, contact your admin" message when nothing useful gets put into the even log -- diagnosing network flakiness for instance sometimes gives utterly useless information.

Using their repaid "wizard" usually ends up serving no pur

This can't be right

[Riceballsan]

Seriously only 5% of people ignore warnings? I would have to say about 75% of people I have seen download regardless of if you say "warning this will completely reduce your computer into a pile of steaming dung" in exchange for a screensaver with kittens, and then if you cut it down from that to IE users... well then I'd put that number closer to 95% would ignore the warnings.

I've ignored the warnings...

[wilgibson]

and yes that means I use IE. But, when it consistently tells me things like Downloader_Diablo2_enUS.exe can harm my computer after downloading it from battle.net I tend to not believe in its ability to really determine if something is malicious or not. As always, proper instruction on internet safety will go farther than a security feature that any idiot can bypass.

Windows updates?

[Bob the Super Hamste]

So does this count include windows updates?

The actual number surprises me as I would have thought that it would be higher given how many people fall for social engineering, and want free screen savers and the like.

Does Microsoft mean

[unity100]

their own patches and sneak-updates and call-home code they shove to their users ?

Just a thought

[destroygbiv]

"IE's SmartScreen has blocked more than 1.5 billion Web and download attacks" How many of these were actually factually malicious? Perhaps that is why people are ignoring the warnings? You can block (nearly?) 100% of malware by simply being Amish

1 in 14?

[VincenzoRomano]

I think they also hacked the statistics system!

The proposed solution,

[HeckRuler]

Is to block every 14th download, thus making Windows malware free!

Followup

[HeckRuler]

About one out of every 14 programs downloaded by Windows users turns out to be malicious

Although the team admitted that this is mostly due to all non-Microsoft software as being labeled as "Malicious". (to microsoft)

I am doubtful of the statistic

[aepervius]

Their anti malware program flagged some cheats I downloaded as trojan (no they were not) and heck some program I made (yes I do not program malware). I think it simply find some hook code for low level memory hook and simply mistake it for a malware.

Re:

[bmo]

>false positives

Every single warez kiddie claims this.

How do you know the difference between a false positive and a real warning?

You can't.

You're infected, son.

--
BMO

Easy pickings...

[Kamiza Ikioi]

At least 1 in 14 programs is from A) a file sharing site, B) a porn site, and C) an email link. I have no data, but my experience on fixing computers is that this is the bulk of the problem. The rest are adware sites.

I don't get them myself mainly because, I use Gmail (no spam), Chrome w/ ad blocking extension (no ads), Pandora (no file sharing)... ... I just have to be really careful about using quality porn sites.

Big Surprise!!!

[Bilbo]

Big Bloody Surprise THAT is!! Freaking Windows warns you about EVERYTHING. "If you do XYZ, your machine may be at risk." You can hardly turn around without Windows warning that it'll put your computer at risk. Tell that four or five hundred times to the average user, and then profess surprise when they start to ignore the warning????

I'm one of those...

[SharpFang]

...stupid people who download this malware.
Just last month I was warned putty.exe was found in my system. Later tinyproxy was discovered. And I went even as far as installing VNC Server!

It isn't very long since I disabled the antivirus to download actual worm to the computer. Like, the guy got a webpage infected with some nasty stuff, and it embedded links to self in headers of the PHP files. So, to remove it, I had to download the PHP, edit out the infected lines and upload it back. But no, downloading php

they taught users to ignore warnings

[a2wflc]

I still get frequent messages on microsoft's pages saying "if you see the yellow bar with a warning at the top of the page, right-click and install the control". For years they had pages that said "you will get a certificate warning when you press submit. click ok to ignore it and continue."

Most programs should run in jails

[Animats]

Most programs should run in an environment that has far fewer privileges than the user running it. Especially games. All a game really needs to talk to are its own files, the screen, the input devices when it has focus, and its own Internet server. Those are essentially the restrictions under which a web page or Flash program runs.

Anything which needs more privileges than that should either have to be signed by somebody to indicate responsibility for the program, or the entire system has to be put in

That sounds about right.

[Dcnjoe60]

The majority of downloads on our Windows computers seem to be Microsoft patches, so 1 out of 14 being malicious sounds about right.

Re:

[vistapwns]

You know, there are legal avenues a shareholder can pursue if he/she feels that MS is lying. I'm guessing you don't feel like putting your money where your mouth is however.

Re:Yes, We're Doing Great Work

[h4rr4r]

Only for very blatant lies. Otherwise I would be suing damn near every company that ever had an advertisement.

Re:

[NatasRevol]

Great work to indirectly fix the holes in IE.

Instead of directly fixing the holes in IE.

All Hail Backwards Compatibility!