Tuesday, January 22, 2008

Ads Masquerading as Security Warnings


Popup windows are always disturbing, but if you get a warning out of the blue that you might have a security problem it's doubly disturbing. Vendors of what purports to be security software are taking advantage of nervous users to trick them into downloading their software, or at least visiting their Web site.

Ever see a window pop up while you were Web surfing that was filled with dire warnings and big, red exclamation points? It may look like a warning from Windows, but it's just an ad. The ad company may have put a faint "advertisement" notice in the bottom of the box, but the point of the design is to mislead the user into thinking that there is a problem and that clicking "Yes" will help with it.

It turns out that clicking anywhere in this ad, whether on the phony "Yes" or "No" buttons or anywhere else, takes you to the vendor Web site where you can download their product. I am not going to get into whether these products are worth the time of day. The interesting thing is that you can design a popup Web page to resemble a dialog box that a user might encounter if they actually have a Windows problem.

How do you recognize that a window is a popup Web ad and not a message of doom from Windows? This can be difficult. First, even if a window presents a dire message, don't panic. Note that if you look at the title bar and status bar, the top and bottom of the window, you can tell that it is a window created within your browser. This is a clue, but not conclusive proof that the window is not a security warning. It is possible that Windows, or a third party product like your antivirus software, could use such a window for legitimate purposes, but I'd call it a long shot. At this point you can look on the window presumptively as an advertisement.

If you are still curious, right-click on the window and select properties (In Netscape, choose "View Page Info"). You should be able to see the site from which it came. A real dialog box from Windows would have a non-standard address starting with something like 'res:.' A Web ad will have a real web address.

If you maintain and update your antivirus, antispam, and antispyware software, you should not be getting warnings about these programs. If you get warnings about your computer that appear to be real, jot down the information contained in the warning, along with the programs running at the time of the warning. Then, ask someone, who knows computers, about the message or search the Internet.

The important thing for you to do is not to react quickly to messages that come up out of nowhere, but to stop and scrutinize them. At this point you're already ahead of the game.


No comments: