October 13, 2016 By Larry Loeb 2 min read

Manufacturers have long used and abused bundling software to collect placement fees from software marketers. Implicit in the bundling is the belief that the software will be beneficial to the user in some way — or at least cause them no obvious harm. But there have always been potentially unwanted programs (PUPs) in the mix.

These days, this practice is under critical review by security experts who are concerned that it may provide a vector for attackers. If a bundle includes software that eschews security best practices, cybercriminals might be able to exploit the weak spots.

A Full-Barrelled Assault

Things have gotten out of hand. According to Bleeping Computer, this type of mutant adware/malware installs backdoors and rootkits. It then employs persistence techniques to make the programs very difficult to remove.

Even Microsoft wants to zap some of these PUPs. Softpedia reported that the tech giant decided to add the SupTab, Sasquor and Ghokswa PUPs to its Malicious Software Removal Tool (MSRT) recently.

PUPs can amount to full-barrelled assaults on a user. Combine this with the security implications of using unaudited and untrusted software, and you have a real problem.

Redefining Potentially Unwanted Programs

Malwarebytes has had enough. The cybersecurity research firm is changing its internal definition of PUPs, extending the parameters in functional and far more exclusionary ways. It is sure to meet vendor resistance.

That resistance can even take legal form. Let’s say a PUP vendor crams a useless program into a bundler. The end-user license agreement (EULA) might allow the vendor to sue anyone who calls the software malicious or identifies it as PUP-related malware. Producers have bitten the ankles of past security product creators this way.

According to the Malwarebytes blog, the firm received “a mountain of letters with legal letterheads demanding that we stop. Now some people might think of this as something that would slow us down, but we see it as proof that we are making a dent in the development and distribution of PUPs.” Sounds like the experts aren’t giving up so easily.

Unfortunately, it seems that PUP pushers are only shut down when victims come forward and sue the vendors themselves.

More from

Unpacking the NIST cybersecurity framework 2.0

4 min read - The NIST cybersecurity framework (CSF) helps organizations improve risk management using common language that focuses on business drivers to enhance cybersecurity.NIST CSF 1.0 was released in February 2014, and version 1.1 in April 2018. In February 2024, NIST released its newest CSF iteration: 2.0. The journey to CSF 2.0 began with a request for information (RFI) in February 2022. Over the next two years, NIST engaged the cybersecurity community through analysis, workshops, comments and draft revision to refine existing standards…

What should Security Operations teams take away from the IBM X-Force 2024 Threat Intelligence Index?

3 min read - The IBM X-Force 2024 Threat Intelligence Index has been released. The headlines are in and among them are the fact that a global identity crisis is emerging. X-Force noted a 71% increase year-to-year in attacks using valid credentials.In this blog post, I’ll explore three cybersecurity recommendations from the Threat Intelligence Index, and define a checklist your Security Operations Center (SOC) should consider as you help your organization manage identity risk.The report identified six action items:Remove identity silosReduce the risk of…

Obtaining security clearance: Hurdles and requirements

3 min read - As security moves closer to the top of the operational priority list for private and public organizations, needing to obtain a security clearance for jobs is more commonplace. Security clearance is a prerequisite for a wide range of roles, especially those related to national security and defense.Obtaining that clearance, however, is far from simple. The process often involves scrutinizing one’s background, financial history and even personal character. Let’s briefly explore some of the hurdles, expectations and requirements of obtaining a…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today