The deluge of viruses this year means that nearly everyone knows that emails with unsolicited offers of interesting pictures or system updates need to be treated with suspicion. But what about that handy utility you want to run on your office PC -- or that file sharing software you'd rather run from work because it's faster than downloading on your modem at home?
There's a huge range of software -- from useful to dubious -- that you can download free, but some programs come with hidden extras.
Instead of asking users to pay if they like the program, some developers include extra software that tracks the Web sites you visit as a form of free market research. And some spyware tracks considerably more than that. And while spyware has been around for a couple of years, the past six months have seen it spreading.
If you find your system slowing down or your Web browser opening to the wrong search engine, you might have an unwanted visitor, but because these programs aren't viruses, standard anti-virus software usually does little to protect you.
For one thing, there are legal issues with detecting and blocking ad-sponsored software that users have agreed to install (even if they didn't bother to read the license agreement).
For another, there are a lot of programs to track, and many people see it as a trivial problem for home users rather than a serious issue for business.
But even if the spyware infesting business desktops is only ad tracking code, that can still be a huge burden on a company's network resources.
One insurance company that started using Websense to monitors its network found spyware was generating half a million outgoing messages from its desktop in three days.
The company email addresses used to send those messages are likely to end up in spam databases as well, which means more traffic and time wasted.
Having the home page in your Web browser changed can affect your productivity as well as being an inconvenience.
Tracking down and removing spyware from every desktop is going to affect the productivity of your information-technology team as well.
And you can't just assume that spyware is benign, even if it is legitimate commercial software. Keystroke loggers are useful for parents wanting to keep track of what their children do online, but the same software running in your finance department is a major security issue.
Gabe Newell, of Valve Soft-ware, believes that keystroke recording software helped hackers steal source code for the Half Life 2 game recently -- a theft that has meant postponing the release of the game for at least six months.
If customers' information is stolen from your computers, they are going to lose confidence in your business. To add insult to injury, you could find yourself liable under data protection regulations, too.
Commercial espionage may not be common and many incidents can be traced to insiders, but Pete Simpson, manager of Clearswift's ThreatLab, thinks we're going to see more gene hackers.
It is probably organized crime with some big money behind it and the motive is financial gain.
"Clearswift recorded a major rise in spam email selling spy-ware following Microsoft's decision to close MSN's public chat rooms, which could suggest that the hackers had been distributing their code in chat and are looking for new victims to replace their lost audience," Simpson said.
Few companies are protecting themselves against spyware, and most of the tools for detecting and removing it are designed for home users -- and have to be run on every desktop individually.
Anti-virus vendors are starting to take an interest and there may soon be adware and surveillance spyware available.
But rather than tackling spy-ware as a separate security prob-lem, you should look at the implications for your security policy more generally, such as who is entitled to install which software on their PC.
While some spyware is downloaded through Web sites, more arrives in email, so blocking or quarantining incoming executable files will protect you.
It is hard to block most spyware at the firewall because it sends messages back using email and HTTP, traffic you will want to allow through.
Websense is offering a free trial of its monitoring software to see if spyware is clogging up your network.
This checks the destination of all outgoing email, blocks messages to known monitoring sites based on a list updated daily and lets you choose which users are allowed to send email, and to what addresses.
Whatever software you choose, to stop hackers spying on you, you may need to start monitoring your own systems much more closely.
NO-LIMITS PARTNERSHIP: ‘The bottom line’ is that if the US were to have a conflict with China or Russia it would likely open up a second front with the other, a US senator said Beijing and Moscow could cooperate in a conflict over Taiwan, the top US intelligence chief told the US Senate this week. “We see China and Russia, for the first time, exercising together in relation to Taiwan and recognizing that this is a place where China definitely wants Russia to be working with them, and we see no reason why they wouldn’t,” US Director of National Intelligence Avril Haines told a US Senate Committee on Armed Services hearing on Thursday. US Senator Mike Rounds asked Haines about such a potential scenario. He also asked US Defense Intelligence Agency Director Lieutenant General Jeffrey Kruse
INSPIRING: Taiwan has been a model in the Asia-Pacific region with its democratic transition, free and fair elections and open society, the vice president-elect said Taiwan can play a leadership role in the Asia-Pacific region, vice president-elect Hsiao Bi-khim (蕭美琴) told a forum in Taipei yesterday, highlighting the nation’s resilience in the face of geopolitical challenges. “Not only can Taiwan help, but Taiwan can lead ... not only can Taiwan play a leadership role, but Taiwan’s leadership is important to the world,” Hsiao told the annual forum hosted by the Center for Asia-Pacific Resilience and Innovation think tank. Hsiao thanked Taiwan’s international friends for their long-term support, citing the example of US President Joe Biden last month signing into law a bill to provide aid to Taiwan,
China’s intrusive and territorial claims in the Indo-Pacific region are “illegal, coercive, aggressive and deceptive,” new US Indo-Pacific Commander Admiral Samuel Paparo said on Friday, adding that he would continue working with allies and partners to keep the area free and open. Paparo made the remarks at a change-of-command ceremony at Joint Base Pearl Harbor-Hickam in Hawaii, where he took over the command from Admiral John Aquilino. “Our world faces a complex problem set in the troubling actions of the People’s Republic of China [PRC] and its rapid buildup of forces. We must be ready to answer the PRC’s increasingly intrusive and
STATE OF THE NATION: The legislature should invite the president to deliver an address every year, the TPP said, adding that Lai should also have to answer legislators’ questions The Chinese Nationalist Party (KMT) yesterday proposed inviting president-elect William Lai (賴清德) to make a historic first state of the nation address at the legislature following his inauguration on May 20. Lai is expected to face many domestic and international challenges, and should clarify his intended policies with the public’s representatives, KMT caucus secretary-general Hung Meng-kai (洪孟楷) said when making the proposal at a meeting of the legislature’s Procedure Committee. The committee voted to add the item to the agenda for Friday, along with another similar proposal put forward by the Taiwan People’s Party (TPP). The invitation is in line with Article 15-2