In the last few years, the spectre of potentially unwanted programs (PUPs) has reared its head. Myriad complaints litter tech forums, asking about this hazard, and complaining that they’ve been hacked, or infected, yet the vast majority of these ‘infections’ can be easily avoided.
“The PUP problem is a conundrum for the infosec community,” says Lutz Blaeser, MD of Intact Security. “PUPs are not traditional malware though, which is usually intended to damage the target machine or exfiltrate information.”
First coined by McAfee, the term PUP refers to a program that may be unwanted, even though the user most likely consented to its download. “PUPs include spyware, adware, and diallers, and usually downloaded at the same time as the program the user really wanted.”
In this way, Blaeser says PUPs do not exploit security holes, but have been installed by the user themselves. “However, AV providers are asked over and over by affected users to adapt their solutions to root out these annoyances.”
Unfortunately, he says, AV programs are only designed to intervene if malicious code is detected, not when a user has given permission for a program to be installed.
“There is little doubt that PUPs are a threat and a major annoyance. In many cases they change browser settings, secretly spy on the user, embed themselves in the user’s system or display unwanted ads. Even so, they are not strictly malicious by the true definition. Many users download them because they really want to use the program, which is why they are called ‘potentially unwanted’ programs.”
Blaeser says what often happens is third-party providers take free, popular programs and pack them into an new executable file, along with a PUP, and then offer it for download on a third-party site, where the popular program acts as a lure.
“While installing the software, the user is given the option to install toolbars and suchlike, the boxes of which are more often than not pre-checked. If the user doesn’t pay attention, he or she will install the PUP alongside the intended software.
“PUPs are thought to be a hazard and an irritation, and AV vendors would like to see them blacklisted. Unfortunately, they are perfectly legal, and the user can avoid them by applying a few rules, and being cautious prior to installation.”
He says there are several ways to avoid these programs. “Firstly, don’t download any software unless it is from the original provider’s Web sites, and be cautious when purported PC aids are offered in a browser window, a pop up or in an ad for money.”
In addition, he says to keep an eye out for any pre-set or unwanted options when downloading new software from the Internet, and consider, before installing a toolbar, whether you really need it or not. “Rather opt for a user-defined or advanced installation process instead of whatever is on offer in default mode, so you can select the options you really want.”
