Attention: Anti-spyware Coalition and to All Security Scanner software vendors
I’m not happy to see that the list of security company who bundle or partner their product or services to ASK is growing.
Why I’m calling the attention of Anti-Spyware Coalition?
Simple. It’s because some members of the said coalition is partnering with ASK. You will see the list of members at http://www.antispywarecoalition.org/about/index.htm
NOTE: CastleCops is still listed as member. The site has been stopped for months now. Not sure if their membership is still OK.
I’m not a lawyer but there are so many papers in the ASC website where the current members should use as guideline or at least basis on what they need to do to help detect a spyware or unacceptable programs or what they call also as “Other Potentially Unwanted Technologies”
- Anti-Spyware Coalition Risk Model Description - Behavior that may impact users / Relative Impact: Program downloads, is bundled with or installs software that has potentially unwanted behavior, Installs without user’s explicit permission or knowledge etc.
- Best Practices: Guidelines to Consider in the Evaluation of Potentially Unwanted Technologies - outline the best practices for publishers of potentially unwanted technologies: Value to the User; Consent and Control; Security
If we have to review all those areas that ASC and its members should be FOLLOWING to help protect the CONSUMERS from spyware and potentially unwanted technologies and whatever type of users using their products and services.. then we already know the answer if ASK should be detected or not by anti-spyware, anti-malware and anti-virus programs.
Now, if the product that bundles with ASK is not to detect... then do something to make the other company wake up. Remove them. De-list them from your group! Tell your contacts that the said company is doing lousy business with stupid ideas.
If Ben Edelman says he got another or new evidence then why don’t any member of the coalition sit down with him and request a presentation?
What about the users' report where ASK was installed by another product in a sneaky way? This is not old trick and it’s happening until now.
I am really disappointed to see the numbers of security products bundling ASK search service and toolbar.
I understand that there’s such “each of his own” rating system by malware scanners but what is so hard to ‘get’ is why security companies have to use a crap service, why suddenly a toolbar or search service by ASK is essential to help protect their customers? Or does ASK is now the one to protect users? If they don’t want to detect it anymore, fine (users will use another application to detect it) but adding it in your program? That’s a trash. We know it's about $. Not the service. You can pay developers or ask your team/engineers to have your own toolbar. You can agree with other search service that do NOT have questionable status as long as NOT the company you ONCED detect as spyware.
Whether ASC will take action on this is I don’t know. All I know is we are not trusting products that is MISLEADING their customers by saying “safesearch, safe search, safe web etc” will protect their customers. And I’m afraid I will not trust any coalition that will not take action. I think ASC should remove them in the member listing if you think they are not following your guidelines.
I salute those vendors who will not only detect what it should detect but also by saying NO to ASK Toolbar and ASK search.
Edit to add: Steven Burn share the same thoughts: http://hphosts.blogspot.com/2009/02/security-vendors-partnering-with-ask.html