At the dawn of computer viruses evolution, there used to be hardly any ambiguity in flagging arbitrary code as malicious. Malware would have its distinct, clearly fraudulent attributes such as absolutely imperceptible infiltration via trojanized techniques as well as easy-to-detect activity when on a PC – even if it’s going on behind the scenes for the user. Nowadays, however, unwanted software often takes the guise of the regular applications and thus looks normal to the naked eye. Adware apps are particularly skillful in playing this imitation game, the one called Dregol being very exemplary in this context.
Breaking the above-mentioned program down into features and operational patterns reveals its controversial essence. The installation is hard to stigmatize as malicious; on the contrary, it’s close to irreproachable from the formal viewpoint. The tactic known as “bundling” is leveraged to deliver the app to computers, where perfectly safe open source tools have the respective payload incorporated in their installation wizards’ structure. Even though the indication of Dregol on this phase is made inconspicuous – probably on purpose – it’s still there and users can read the terms and opt out if they are attentive enough. In fact, a lot of legit applications are being distributed this way, so peculiarities of the installation are obviously not enough for the adware to pop up some red flags.
Moving on the symptoms inside the compromised computer, things are just about as blurred as with the setup. The bug gets a technical objectification as a web service enhancement tool. In other words, a new extension or plugin gets added to the browser, which is an event followed by the adverse consequences proper: browser redirecting, annoying ads popping up, in-text links being generated, etc.
Basically, it’s hard to find fault with adware entities like that: the users let them inside of their own accord, automatically accepting the Terms of Service and thus granting high privileges. Virus signatures of some security suites don’t even have the respective records, so the corrupt code stays up and running. In the meanwhile, these apps badly affect one’s web browsing experience and deteriorate various aspects of system performance. At the end of the day, prevention narrows down to one’s caution when installing software on the Internet, and troubleshooting after the fact is much more complex than the commonplace removal techniques.
via Examiner National Edition Gadgets & Tech Channel Articles http://ift.tt/1FajDft