Value-added programs or Bloatware


#21

The software that many manufacturers pre-install on new computers is a bit of a mixed bag. Sometimes, there’s something useful in there, sometimes it’s just an advert. Sometimes, which of the two it is depends on the user! Bundling games is awesome for the people who like those games, but is just more junk for people who don’t. Bundling a utility app that does something fancy is awesome for the people who can use that fancy thing, but is just more junk for people who don’t.

There have been malware-infections in pre-installed software in the past, Lenovo and the Superfish debacle still very fresh in people’s minds. This is very uncommon, though. But a lot of things will start along with the computer, especially the ‘potentially useful’ utility software. Doing that, they take up memory space and slow down the computer’s start-up process. And unless you want to use them, there’s no reason for it to mess with your user experience like that!

Bundled anti-virus software has been considered by some security experts to be a security risk. You generally get a 30-day trial, and are then expected to pay for continued protection. Many people don’t and are left with outdated threat databases, but still think they are protected – it came with anti-virus after all, right? Many will simply be unaware of the software (because the initial pop-ups are clicked away without paying attention, and soon forgotten) and are left with outdated software. And having the same outdated version of the same software with system privileges installed on thousands upon thousands of computers across the world, makes for a great target if you want to write malware that infects many users with minimal effort.

I’d say that extended hardware utilities like @Jamil_Stafford mentioned are a separate category: Tools from Synaptic, Intel and other manufacturers may add additional functions to the hardware they have provided for the device like touchpads or network adapters. These programs are not critical to the operation of the machine (like the drivers themselves are), but they may be required to make the most of what you’ve got: adding gesture support to the touchpad is a great example. With Windows 10 though, a lot of these features are implemented at an OS level, and more and more, drivers are the only thing you need to make everything work. Utility software to use manufacturer-specific hardware also sort of falls into this category: think of Dell or HP utilities that let you use the media control buttons or other device-specific features like RGB lighting and such.

All in all, many more advanced users have decided (and I agree) that it’s better to just start with a clean slate: Windows 10 and the drivers needed to make the machine work. If I want to use anti-virus, I can install it myself. If I want games, I can install them myself. If I want to add additional features to my trackpad, I’ll find a utility myself. And what I don’t need, has no place on my machine.


@Jamil_Stafford: Apple’s macOS comes with Gatekeeper. It’s not promoted as ‘it has anti-virus’ and it’s not as vocal about its presence as Windows Defender is, but it does a good job securing Macs from malware.

That doesn’t mean they will not get infected. Despite what many think, the user is still in charge of security on a Mac, and like on Windows, many average users are complete idiots when it comes to device security. That said, I’ve been able to manually clean all malware of dozens of Macs over the past two years, with only one machine being beyond redemption and needing a re-install. The way Apple has compartmentalised its OS and software goes a long way to making malware recognisable, traceable and removable without the need of much more than Finder, Apple’s equivalent of Windows Explorer. If you need some tips on Mac malware removal to make your job at the university easier, shoot me a private message and I’ll share what I’ve got!

How malware gets on the Mac? Same way as Windows. Replace ‘.exe’ by ‘.pkg’ or ‘.app’, and your step-by-step guide to installing Malware on Windows works for macOS. People must actively disable Gatekeeper and give admin approval before anything even remotely serious can take root.


#22

Yes, absolutely :slight_smile: You don’t even need to force the update. Everything is 100% automatic, you make a clean install and voila you have a fully working computer. Some manufacturers don’t upload their drivers to Windows Update so sometimes you need to install 1-2 extras but that’s it.

Anyway, since we’re talking about Eve V… It doesn’t have any bloatware. It already comes with totally clean Windows, so no need to do anything :slight_smile:


#23

yippy yippyeee x20 x20


#24

Simply renaming an exe file to another file extension won’t work. The application won’t be launched, because the OS won’t recognize it and won’t know how to launch it. So the virus code won’t be executed.


#25

And to my knowledge, all hardware in the device is registered with Windows Update, so you don’t even need to look for those 1-2 extra drivers!


#26

I didn’t mean to rename the infectuous file, I meant to replace the extension as mentioned in the example story to make the example story apply to Macs…


#27

Yup, even with the prototype I had, there was no issue with installing Windows. All drivers were there, except fingerprint scanner and GPS (but GPS won’t be included anymore, and it was confirmed that fingerprint scanner will be included in WUpdate in the future)


#28

Ah, I misread it at first. Still, no one was saying that macs are more prone to viruses than Windows computers. So you don’t need to defend them. It was said that they’re just as prone to viruses, just like you said: to get a virus you need to actively disable the security measures. This applies to both operating systems, so I don’t see a disagreement here.


#29

We’ve reached a point where all operating systems - macOS, Windows, iOS, Android, and others, are pretty damn secure. Yes, there are still vulnerabilities, and yes, ‘bad actors’ can go out of their way to exploit them. But in 2017, it’s so much easier to go after the real weak spot: the uninformed, uninterested user.

“Don’t know, don’t care, just want to watch this movie right now.” click!

Social engineering is so much easier than hacking nowadays…


#30

Lack of knowledge gives peace :joy:


#31

Thank you all realy useful topic discussion ! :grinning: