Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
×
Security Piracy Software

Malwarebytes Offers Pirates Its Premium Antimalware Product For Free 111

An anonymous reader writes: If you have a cracked or pirated version of Malwarebytes Anti-Malware (MBAM) product the company has debuted an Amnesty program for you. Venturebeat reports: "If you pirated Malwarebytes Anti-Malware, purchased a counterfeit version of the software, or are having problems with your key in general, the company is offering a free replacement key." CEO Marcin Kleczynski explained the program and his statement reads in part: "When I started Malwarebytes, I absolutely had no idea how successful we would be today. I am extremely grateful for all of the support from everyone and how fast we’ve grown. That being said, I picked a very insecure license key algorithm and as such, generating a pirated key was, and is, very simple.

The problem with pirated keys is that they may collide with a legitimate key just by the sheer numbers. For example, Larry may generate a pirated key that matches the exact key that I already bought. Yes, this is silly, and yes, this is literally the first thing a professional software company thinks of when building license key generation, but when you think you’re building a product for just a few people you don’t hash out these details.

Now we’ve grown up, and we’ve got a new licensing system that we’ve rolled out in stages. The only problem is that we have millions of users that we’ve sold keys to, or a reseller has sold keys to, or we’ve given out keys to without keeping track. It is a mess, and you as a consumer have every right to be upset.
This discussion has been archived. No new comments can be posted.

Malwarebytes Offers Pirates Its Premium Antimalware Product For Free

Comments Filter:
  • It's pretty easy to lock down these things via hardware. In fact, I have a working model that's (theoretically) infinitely scale-able on any given server, ignoring file number restraints from the hosting provider. http://www.tot-ltd.org/WMSDK.h... [tot-ltd.org]
    • by mwvdlee ( 775178 )

      Can I move my license over to new hardware without having to rely on the software vendor's cooperation?

    • by Anonymous Coward

      It's pretty easy to lock down these things via hardware.

      NOP
      NOP
      NOP

      In fact,

      cough (me think he protest overly so) "to be frank", "to be honest" (trust me, that warm feeling is not me pissing in your pocket, in fact...)

      I have a working model that's (theoretically) infinitely scale-able

      So much for the fact. The "theoretically" taketh away the impossible "infinitely"....

      on any given server, ignoring file number restraints from the hosting provider.

      tl;dr? rhetoric + sophism + bullshit = pure_weasel

      FTFY

      Now stop spamming and fuck off back to Intertubes Worriers where you belong. Surely they need more of your fake malware products more than /. readers? (Erick - that is you isn't it? Your self-promotion is almost as good

  • >> cracked or pirated version of Malwarebytes Anti-Malware

    Really? Could anyone on SlashDot really be this dumb?

    • On second thought, it looks like the AV company is staffed with idiots.

      >> keys is that they may collide with a legitimate key just by the sheer numbers...when you think you’re building a product for just a few people you don’t hash out these details...

      C'mon guys. Your wrote your own clue in the summary. (Starts with "h" rhymes with "trash"...)

      • Hash collisions happen.
        The real solution is to NOT use a generation algorithm for keys. Generate strings, then approve only those you actually sell and distribute.
        Software installation/runtime checks locally against the generation algorithm, allowing for offline installations, bundled installers, old version installs, use in 50 years after all the servers are gone, etc.
        Updates ask for your key and the server decides if it's valid (an approved string that hasn't been used by thousands of PCs across the net

        • To expand on this... you should also generate an "Installation ID" upon validation, stored server and client side along with the key.

          This prevents users from trying to activate the key on more than one system, and allows you to offer controlled multi-system installs if you so choose.

          On update you validate both the key, and the installation ID.

          In the event a user needs to move the software to another install, you can contact the licensing dept and revoke the previous installation ID.

          • To further expand on this... keep talking, meanwhile as a client I'll be looking for software with none of that crap.

          • by AmiMoJo ( 196126 )

            Please don't try to limit the number of installs. It breaks horribly when you try to do a re-install, or move to a new PC, or run in a VM. The nature of this software is that techs will often install it on customer's PCs, clean them and then remove it.

            Install counters are evil.

            • Really depends on the nature of the software, I guess. For Malwarebytes it probably isn't the best idea, but at the same time it could easily de-reg the install ID upon uninstall.

              There are various ways to do it. My example was one such way, that is all. There is no one-size-fits-all.

        • by tlhIngan ( 30335 )

          The real solution is to NOT use a generation algorithm for keys. Generate strings, then approve only those you actually sell and distribute.

          Hash collisions will eventually happen. I believe Windows XP suffered from it where the sheer number of installations has meant that there was a good chance a keygen will also make a valid key that's already been issued. Sure you are blocking a good chunk of them at the beginning, but eventually a keygen will stumble upon a valid key that you DID issue.

          I believe it also

        • by mwvdlee ( 775178 )

          Generation algorithms for software license keys is fine.
          Simple generated keys stop casual sharing of licenses. Nothing stops dedicated hackers.
          Why invest time and money in a very expensive license key system when all you're doing is providing the hackers with a more interresting challenge.
          The problem here isn't generating keys, it's the relatively high chance of colission; it's badly generating keys.

      • by Mashiki ( 184564 )

        On second thought, it looks like the AV company is staffed with idiots.

        Yeah that pretty much sums it up. I have a legit copy through work and it gave me the 'blahblahblah ur a pr8' bit the other day.

    • by Anonymous Coward

      Have you read slashdot commentary lately?

  • It's a good marketing move - most people just download the free version and scan. Problems fixed so they won't buy it for the bells and whistles - now they'll get lots of people to try the bells and whistles and might retain future revenue.

    It's better than them canceling the free version and make it pay only for revenue.

  • So let's see if I have this right. With this initiative pirates get free product while customers are charged for the same product? Score: Pirates 1 / Customers 0 I say they expand the initiative to include providing existing customers with a free 1 year license extension and 1 year free to new customers. In that way, everyone can fairly enjoy the same benefits while being properly exposed to the premium product.
    • by nhat11 ( 1608159 )

      Pretty much, I have almost no incentive to buy the product if I can pirate it then get it for free

  • Several months ago after one of the Internet large password breaches the company offered several "forever" codes on Reddit as a gesture of goodwill. Amazingly enough those are now coming up as these suspicious licenses now. I suppose you can't complain about something you got for free, even if it wasn't pirated. I have another year of the license now before it expires instead of lifetime.
  • offer free license key. Colour me impressed and dully excited. (disclaimer nothing against the particular vendor)
  • Damned if this isn't a first. I've never needed a licensed version of their software, but the transparency, respect, and benefit of the doubt they are giving users of their software, both paid and otherwise, truly impresses me. As such, I will be happy to purchase a license the next time I need their software.

  • ..would people shit on someone for acknowledging a problem, admitting fault, and then moving to fix it in a way that benefits not just the consumer, but everyone else too.

  • I just have a feeling this "free" version will do things like Superfish on Lenovo... stealing info, or gathering non-private data to boost their advertising campaign....

"An idealist is one who, on noticing that a rose smells better than a cabbage, concludes that it will also make better soup." - H.L. Mencken

Working...