Webroot Enlists Bots To Fight Spyware

InformationWeek ^ | Jan. 11, 2005 | Thomas Claburn

[Ernest_at_the_Beach]

Webroot Enlists Bots To Fight Spyware

Webroot will use its bots-based system to develop anti-spyware products that can better address new threats.

By

Thomas

Claburn, 

InformationWeek

Jan. 11, 2005

URL: http://www.informationweek.com/story/showArticle.jhtml?articleID=57700343

Anti-spyware company Webroot Software Inc. Monday announced what it claims is the industry's first automated spyware research system. Called Phileas, the system relies on bots--computer programs that perform tasks in lieu of a person--that continually crawl the Web, looking for spyware, adware, and the sites that host such software.

Webroot plans to use the information gathered by Phileas to develop anti-spyware products that can better address new threats.

Like the antivirus industry, anti-spyware companies have traditionally developed signatures to block spyware. These are created by comparing the files on spam-infested machines against those on clean machines.

"That's very labor intensive," explains Richard Stiennon, VP of threat research at Webroot. "The name of the game in the anti-spyware business is to somehow have as close to 100% of all spyware identified and signatures written for it as we can get. And that's an unachievable task because the spyware writers are extremely active. They show up for work in the morning and write new versions of their spyware every day. So you have to find it as soon as it's out in the wild."

Automation, he contends, is the answer. He estimates that one hour of automated research equals 10 work-days of manual research. When first tested in October of last year, the company identified more than 20,000 sites that made spyware available. By February, Webroot plans to have more than 100 bots active, scouring up to 10 sites a second.

Microsoft also has included a measure of automation in its new anti-spyware product, which appeared in beta form last week. Windows AntiSpyware includes a community reporting function called SpyNet that shares information about newly discovered threats to better immunize other members of the network.

Stiennon observes that automation is a necessity, given the proliferation of spyware.

"The spyware industry is only going to grow because it's so tremendously profitable for the spyware writers and distributors," he says. "So we have to try to find it as quickly as we can."

[Ernest_at_the_Beach]

ping

[ShadowAce]

Spyware security ping!

[ShadowAce]

When first tested in October of last year, the company identified more than 20,000 sites that made spyware available.

We oughta just shut 'em down. If we can't do it legally (they're overseas), then DDOS their sorry butts.

[Born Conservative]

Has anyone here ever used Webroot? I use Pest Patrol, and have had good results with it.

[Born Conservative]

Spyware ping

[KoRn]

Hehe if they're in a country we don't have agreements with, we can DOS til the cows come home LOL!

[JoJo Gunn]

The thought of us doing a DDoS gives me a knot in the gut. sigh

But who else is going to protect us? Things should never have gotten this far.

It's time for total WAR against the cybersewage.

[b4its2late]

Thanks.

[backhoe]

The thought of us doing a DDoS gives me a knot in the gut. sigh But who else is going to protect us? Things should never have gotten this far. It's time for total WAR against the cybersewage.

I agree, and normally I am opposed to looking to the government for help, or making examples of violators-- but this cybervandalism needs to be ground to a halt.

Money is one key-- I read here recently that one spammer was making about $70,000 per month, just running spam lists from his home PC. Obviously, there needs to be serious fines levied, to take away that incentive.

Violators need to be jailed, too, with much public fanfare, and perhaps made to make restitution.

This stuff is not funny anymore- I've lost time and data getting rid of their unsolicited garbage, and that does not even factor in the frustration of having your machine hijacked and hacked up inside.

Enough is enough.

[Vinnie]

I read here recently that one spammer was making about $70,000 per month, just running spam lists from his home PC. Obviously, there needs to be serious fines levied, to take away that incentive.

Spammers are selling their services aren't they?

Why don't they go after the Co.s or people that enlist the spammers?

[backhoe]

Why don't they go after the Co.s or people that enlist the spammers?

I can't see why not- RICO, if nothing else, but I suspect other laws would also apply.

[JoJo Gunn]

I'd like to see examples made out of them because, except for politicans and the IRS and Muslim fanatics, I can't think of any kind of criminal who can instantly violate the lives of so many millions at once.

Then again, we ought to go after the real dangers in our midst, our neighbors, the horrific idiots who buy from spammers, the same kind of brain dead who gave life and sit transfixed to the countless Cubic Zirconia channels.

I swear, I'd just soon shoot someone as look at them if I knew they bought something from a spammer.

[backhoe]

I swear, I'd just soon shoot someone as look at them if I knew they bought something from a spammer.

Well, that would certainly cure the habit, but in light of the legal problems that would follow, maybe flogging with a Cat-O-Ninetails would suffice?

Seriously, you are right about it impacting badly on so many different people. The politician who actually does something to reduce and punish spam and malware could write his own ticket, he'd be so popular.

I will mention that the national No-Call list has actually helped us at home. I know many derided it when it was proposed, but we have seen nuisance calls fall from 5-10 a day to only a couple a month.

[JoJo Gunn]

Oh man, is the phone ever quieter here as well.

But just how many telemarketers went underground with spam?