Language Selection

English French German Italian Portuguese Spanish

Fear of spyware changing online habits

Filed under
Security

Internet users worried about spyware and adware are shunning specific Web sites, avoiding file-sharing networks, even switching browsers.

Many have also stopped opening e-mail attachments without first making sure they are safe, the Pew Internet and American Life Project said in a study issued Wednesday.

"People are scaling back on some Internet activities," said Susannah Fox, the study's main author. "People are feeling less adventurous, less free to do whatever they want to do online."

Like no other Internet threat before it, spyware is getting people's attention, she said. "It maybe will bring more awareness of all kinds of security issues."

Linda Parra, a technology usability consultant at an insurance firm in Madison, Wis., is typical of the once-burned, now-vigilant crowd.

Hit twice by spyware, after which all her Internet searches went to a rogue search engine rather than Google, she bought the safer Mac computer, installed two layers of firewalls and began switching off her broadband-connected machine when she's out.

"I've become a lot more security conscious," she said, adding that she had to learn much more about how computers and the Internet work.

Parra also banned her daughters, ages 12 and 14, from game sites.

"All it takes is one click ... and you can end up going somewhere you don't want to go and getting a little bonus pack (spyware) with your freebie," she said. "I believe that's what happened."

Spyware generally refers to unwanted programs that often sneak onto computers without their owners' full knowledge. A subset called adware covers software designed to display targeted ads to subsidize another program's development.

While some computer users knowingly install spyware and adware, they often hitch rides with games, screensavers and other freebies, or exploit security flaws in Microsoft Corp.'s Windows operating systems and Internet Explorer browsers.

According to Pew, 48 percent of adult Internet users in the United States have stopped visiting specific Web sites that they fear might be harboring unwanted programs.

Twenty-five percent stopped using file-sharing software, which often comes bundled with adware. Rogue programs can also disguise themselves as songs or movie files awaiting download on file-sharing networks.

Eighteen percent of U.S. adult Internet users have started using Mozilla Firefox or another alternative to Internet Explorer.

In addition, 81 percent have become more cautious about e-mail attachments, a common way for spreading viruses, though rare for spyware or adware.

All told, 91 percent have made at least one behavioral change.

Users hit by spyware or adware were more likely than others to change their habits.

Avi Naider, president of adware company WhenU.com Inc., said he's not surprised.

Although in theory, adware is about exchanging value for value -- free software for ads -- in practice, some in the industry engage in deceptive practices and alienate consumers such that they "just stop visiting Web sites," Naider said.

Although many users have changed their online habits, they haven't necessarily fixed their machines, even as infected computers slow, often to a crawl.

Twenty percent of users who had computer problems did not attempt a fix. Among those who did, 29 percent waited a month or longer.

Two in five who tried to fix their machines did so on their own while others needed help from a friend, family member or a professional repair shop. In 20 percent of cases, the problem couldn't be fixed.

The survey also found that 43 percent of Internet users say they've been hit with spyware, adware or both. Those who report spyware were more likely to have previously engaged in "risky" behavior such as playing online games and visiting adult sites. Broadband users tend to be at greater risk.

Pew also found that three-quarters of Internet users do not always read user agreements and other disclaimers where spyware and adware are sometimes disclosed. The study was based on random telephone-based interviews with 2,001 adult Americans conducted May 4 to June 7. It has a margin of sampling error of plus or minus 2 percentage points.

By Anick Jesdanun
Associated Press

More in Tux Machines

today's leftovers

  • CRI: The Second Boom of Container Runtimes
    Harry (Lei) Zhang, together with the CTO of HyperHQ, Xu Wang, will present “CRI: The Second Boom of Container Runtimes” at KubeCon + CloudNativeCon EU 2018, May 2-4 in Copenhagen, Denmark. The presentation will clarify about more about CRI, container runtimes, KataContainers and where they are going. Please join them if you are interested in learning more.
  • Meet Gloo, the ‘Function Gateway’ That Unifies Legacy APIs, Microservices, and Serverless
    Gloo, a single binary file written in Go, can be deployed as a Kubernetes pod, in a Docker container, and now also on Cloud Foundry. The setup also requires a copy of Envoy, though the installation process can be greatly simplified through additional software developed by the company, TheTool. The user then writes configuration objects to capture the workflow logic.
  • Why is the kernel community replacing iptables with BPF?

    The Linux kernel community recently announced bpfilter, which will replace the long-standing in-kernel implementation of iptables with high-performance network filtering powered by Linux BPF, all while guaranteeing a non-disruptive transition for Linux users.

  • The developer of Helium Rain gave an update on their sales, low overall sales but a high Linux percentage
    Helium Rain [Steam, Official Site], the gorgeous space sim from Deimos Games is really quite good so it's a shame they've seen such low overall sales. In total, they've had around 14,000€ (~$17,000) in sales which is not a lot for a game at all. The good news, is that out of the two thousand copies they say they've sold, a huge 14% of them have come from Linux. It's worth noting, that number has actually gone up since we last spoke to them, where they gave us a figure of 11% sales on Linux.
  • Want to try Wild Terra Online? We have another load of keys to give away (update: all gone)
    Wild Terra Online [Steam], the MMO from Juvty Worlds has a small but dedicated following, now is your chance to see if it's for you.
  • Arch Linux Finally Rolling Out Glibc 2.27
    Arch Linux is finally transitioning to glibc 2.27, which may make for a faster system. Glibc 2.27 was released at the start of February. This updated GNU C Library shipped with many performance optimizations particularly for Intel/x86_64 but also some ARM tuning and more. Glibc 2.27 also has memory protection keys support and other feature additions, but the performance potential has been most interesting to us.
  • Installed nvidia driver
  • Stephen Smoogen: Fedora Infrastructure Hackathon (day 1-5)
  • Design and Web team summary – 20 April 2018
    The team manages all web projects across Canonical. From www.ubuntu.com to the Juju GUI we help to bring beauty and consistency to all the web projects.
  • Costales: UbuCon Europe 2018 | 1 Week to go!!
    We'll have an awesome weekend of conferences (with 4 parallel talks), podcasts, stands, social events... Most of them are in English, but there will be in Spanish & Asturian too.
  • Tough, modular embedded PCs start at $875
    Advantech has launched two rugged, Linux-ready embedded DIN-rail computers with Intel Bay Trail SoCs and iDoor expansion: an “UNO-1372G-E” with 3x GbE ports and a smaller UNO-1372G-J with only 2x GbE, but with more serial and USB ports.

OSS Leftovers

  • IRS Website Crash Reminder of HealthCare.gov Debacle as OMB Pushes Open Source
    OMB is increasingly pushing agencies to adopt open source solutions, and in 2016 launched a pilot project requiring at least 20 percent of custom developed code to be released as open source – partly to strengthen and help maintain it by tapping a community of developers. OMB memo M-16-21 further asks agencies to make any code they develop available throughout the federal government in order to encourage its reuse. “Open source solutions give agencies access to a broad community of developers and the latest advancements in technology, which can help alleviate the issues of stagnated or out-dated systems while increasing flexibility as agency missions evolve over time,” says Henry Sowell, chief information security officer at Hortonworks Federal. “Enterprise open source also allows government agencies to reduce the risk of vendor lock-in and the vulnerabilities of un-supported software,” he adds.
  • Migrations: the sole scalable fix to tech debt.

    Migrations are both essential and frustratingly frequent as your codebase ages and your business grows: most tools and processes only support about one order of magnitude of growth before becoming ineffective, so rapid growth makes them a way of life. This isn't because they're bad processes or poor tools, quite the opposite: the fact that something stops working at significantly increased scale is a sign that it was designed appropriately to the previous constraints rather than being over designed.

  • Gui development is broken

    Why is this so hard? I just want low-level access to write a simple graphical interface in a somewhat obscure language.

OpenBSD and NetBSD

Security: Twitter and Facebook

  • Twitter banned Kaspersky Lab from advertising in Jan
     

    Twitter has banned advertising from Russian security vendor Kaspersky Lab since January, the head of the firm, Eugene Kaspersky, has disclosed.  

  • When you go to a security conference, and its mobile app leaks your data
     

    A mobile application built by a third party for the RSA security conference in San Francisco this week was found to have a few security issues of its own—including hard-coded security keys and passwords that allowed a researcher to extract the conference's attendee list. The conference organizers acknowledged the vulnerability on Twitter, but they say that only the first and last names of 114 attendees were exposed.

  • The Security Risks of Logging in With Facebook
     

    In a yet-to-be peer-reviewed study published on Freedom To Tinker, a site hosted by Princeton's Center for Information Technology Policy, three researchers document how third-party tracking scripts have the capability to scoop up information from Facebook's login API without users knowing. The tracking scripts documented by Steven Englehardt, Gunes Acar, and Arvind Narayanan represent a small slice of the invisible tracking ecosystem that follows users around the web largely without their knowledge.

  • Facebook Login data hijacked by hidden JavaScript trackers
     

    If you login to websites through Facebook, we've got some bad news: hidden trackers can suck up more of your data than you'd intended to give away, potentially opening it up to abuse.