Suspected PayPal Hackers Seek Deal To Stay Out Of Prison
2 Men Arrested After Teen Was Run Over For His iPad
Malwarebytes definition database stolen, misused by IOBit
Now, for the past few weeks I've been reading numerous blog posts about how IOBit is giving away their security software for free. The offer was timed to coincide with the launch of Windows 7, and has popped up in my Google Reader several times since.
How do the two relate?
A few weeks ago, Malwarebytes staffers came across an interesting post on the IOBit forums. The post detailed a keygen for Malwarebytes and reported it using the same name MBAM reports. The crew dug further and found more evidence of copycat detections.
To confirm their suspicions, a fake signature implanted in the Malwarebytes database.
"The final confirmation of IOBit's theft occurred when we added fake definitions to our database for a fake rogue application we called Rogue.AVCleanSweepPro. This "malware" does not actually exist: we made it up. We even manufactured fake files to match the fake definitions. Within two weeks IOBit was detecting these fake files under almost exactly these fake names."If this is proven to be true, I certainly hope that Malwarebytes is successful in prosecuting IOBit. For another company to use a tactic as underhanded as this - let's face it, it's outright theft - to build a product and label it as their own is appalling.
IOBit are, of course, defending themselves in their forums. They respond:
"We have never used the database of any other companies. And hope Malwarebytes stop spreading malicious rumors for hyping itself[...]A legal letter will be released later, which will prove that there is no problem with Intellectual Property Rights.Nevertheless, IOBit's reputation is taking a beating now on WebOfTrust - Malwarebytes supporters have been all too happy to head over and vote down IOBit's trust, privacy, and vendor reliability ratings.
For the sake of avoiding dispute and possible problems, we have deleted all disputed items in our database temporarily, and have updated IObit Security 360's database."
Comments
14
Subscribe to commentsKris120890Nov 3rd 2009 5:12PM
I hope they go down. Anybody notice it says Recommended by professionals. How when it supposed to be new.
Drew GreenNov 3rd 2009 5:25PM
MBAM is recommended, right?
SpankyNov 3rd 2009 7:19PM
The trouble with definition files is that in order to provide the greatest level of protection, things get added willy nilly. Doesn't matter if the program doesn't exist. Doesn't matter if it's a legitimate program.
There is an anti-virus arms race going on in the PC world and in order to be protected people are going to get hurt. That's just the way it is.
IObit should explain how they screwed up, apologize, and keep on rocking. The definition files are NOT the key to a good AV program - the light footprint, richness of features, and ability to protect end users without soul destroying false positives are what this war is all about.
Malwarebytes has inflicted a wound. There is no reason for them to go for a headshot right now. Compete on the product and smack their hand when they "borrow" your definition database.
reconNov 3rd 2009 7:31PM
I use IObits free Advanced System Care, that along with AVG and other free software to keep my system up to date and running smoothly......so now what should i use instead?
(smh @ IObits)
SpankyNov 3rd 2009 7:45PM
Don't stop using it. It's a solid product. Just send them a message that you don't want to be part of any corporate thievery and that you are watching them.
That should do it.
reconNov 3rd 2009 7:58PM
good advice
mxxconNov 3rd 2009 8:33PM
Look at comment #4 in http://www.downloadsquad.com/2008/09/25/defragment-multiple-drives-simultaneously-with-smart-defrag/
they are still doing that.
woohNov 3rd 2009 11:26PM
WOW. it's the biggest news these days. I think both IOBIT & MBAM become "famous" these days. We can see a lot of news regarding the stealing issue. I will keep my mind just as spanky said. whatever, IOBIT is free and provide me a good job. It really finds items which my avira may miss. We are users, we only want some program which can provide us full security. If there is a program which can collect all databases of all security programs. I am sure all of us will favor it most. I am waiting for it. hahha
Werren LeeNov 4th 2009 3:46AM
I am a happy user of IObit for few years since its previous program, Advanced WindowsCare, It’s a greatly company, constantly improving their products during these years.
Recently, I get a free license code of its newly program, IObit Security 360. It’s great and useful.
I doubt about the truth of this news and I’m wodering how IObit steal Malwarebyte’s data?
mxxconNov 4th 2009 9:27AM
And even with "Advanced WindowsCare" those scumbags are trying to ride on MS Windows Live OneCare's coattails.
And now they have "Advanced System Essential", very similar name to recently released Windows Security Essentials.
They couldn't even come up with their own original product names, they have to confuse users with a pretty similar product names to get accidental google hits.
And why would this "trustworthy" security company have pages like http://www.iobit.com/naruto-hentai.html and http://www.iobit.com/mugen-characters.html
furthermore, if they have their own awesome antivirus product, why would they be reselling AVG? http://www.iobit.com/avg-com.html
IOBITS ARE NOTHING MORE THAN SCAMMERS!
Even ignoring this malwarebytes deal, their previous history as a known SPYWARE distributors is very clear and well known.
Money MikeNov 4th 2009 3:34PM
This company is very suspect. Thank you, Lee, for spotlighting this shady company and thank you, mxxcon, for warning us with that detailed information.
With that said, Lee, can I ask why you and DLS would use the word "stolen" in the title? That's a shady move in itself and you know it. The word "stolen" implies that Malwarebytes no longer has possession of their definition database. "Stealing" and "infringing" are NOT the same thing (I'm sure I don't need to explain further).
That's RIAA and MPAA type of wording and I thought you guys were better than that.
Lee MathewsNov 4th 2009 3:38PM
Well, Mike, I obviously didn't mean to imply that Malwarebytes was now -1 database.
Some times in the interest of keeping a title simple and straightforward you (I) use a word that might not be semantically correct. Was going for layman's terms, sorry if it put you off - the intent certainly wasn't to deceive.
FrankNov 5th 2009 5:20PM
It's also important to note that this is nothing more than an accusation at this stage. There has been no "day in court" for IObit. Forums, bloggers, and the internet in general have already tried and convicted IObit based on nothing more than an accusation from Malwarebytes. It's frightening to think that someone would steal your intellectual property, but it's just as frightening to think that anyone, any time can accused someone of that type of theft and the presumption is guilt.
I'll await my personal judgement until someone credible confirms that IObit did, in fact, infringe on Malwarebytes. Until then, this is nothing more than a school yard name-calling shouting match.
daromeNov 8th 2009 10:42AM
Funny, I use both program Iobit 360 and Malwarebytes and they seem to detect different sets of Malware. After running Malwarebyes program three times or so to clean one of my computers if never detected anything again (about three months now) . Iobit 360 database seems to detect only adware. What makes me angry is that after using all these different anti spyware or "malware" program I notice that each program is focused on a different section of the spectrum and after seven or eight years of existence if this type of program not one stand out as the best, you always have to use two or three to make sure you got it all?? Sometimes I get the feeling that some of these programs are making up the malware so that they can say they erased it? In any case I just don't understand why we can have relative uniformity in antivirus program but not anti malware? Any thought?? I would be very happy to open this can of worms as it seems to me an Industry wide problem.