Network World
Saturday, November 22, 2008
DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Mitchell Ashley: Converging on Microsoft

Microsoft Subnet
NetworkWorld.com > Community > Mitchell Ashley: Converging on Microsoft

Navigation

Crapware Just As Susceptible To Security Vulnerabilities

By Mitchell Ashley on Wed, 12/26/2007 - 12:53pm.

Pre-installed software on new laptops and desktops, dubbed "crapware" by many, can just as easily be the entre point for malware as any other software. Most crapware is just that, crap software you don't likely use or want, and will need to be removed to get back some of that valuable system performance, clean up your file system, desktop and installed programs. But some of it can actually be useful, like update software or additional utilities, CD burning software, etc.

Useful or not, crapware can have it's own vulnerabilities too. If the distribution is widespread enough, crapware is a target rich environment for malware creators.

HP has now experienced their third software vulnerability in 2007, now in the HP Update software that keeps much of the HP added software to laptops up to date. HP Update keeps drivers (like video and sound cards), recovery software and other HP tools update with new fixes, patches and updates. It is a useful tool to have one your system, though I'm not sure how much additional value it brings than Windows Update already does on Vista systems.

The lesson here is, any software can be an entre point for attacks. The more software installed, the more opportunity for it to be exploited and hacked. Every software creator, including HP, must take the security of their software seriously. And no matter how good the processes, there will be security holes.

Bottom line, if you don't need the added crapware, get it off your system. It's one less piece of software that could get hacked and your computer performance will be the better for it.

Like this? Here are more recent posts.
Who Is An Interesting Person As A Podcast Guest?
An Electronic Christmas
Patch Tuesday In A Virtual Environment
Samba's Nose Allowed Under Microsoft Tent
How Come Google spell checks better than Microsoft Office?

Visit Microsoft Subnet for more news, blogs, opinion from around the Web.

Sign up for the bi-weekly Microsoft newsletter. (Click on News/Microsoft News Alert.)

Also check out Mitchell's personal blog The Converging Network and SSAATY Podcast.

 

Permalink
Tags:

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <i> <b> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <blockquote> <br /> <br> <p>
  • Lines and paragraphs break automatically.
  • You can use BBCode tags in the text.
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.

About Mitchell Ashley

Mitchell Ashley is principal consultant at Converging Network LLC where he provides product, technology and social media consulting to emerging technology companies. A successful CTO and product innovator, Mitchell has created many successful, award winning products in the networking, security, convergence, Internet and IT industries. In addition to blogging for NetworkWorld, Mitchell regularly blogs at TheConvergingNetwork and co-hosts the widely popular StillSecure After All These Years podcast.

RSS feed Subscribe to Mitchell Ashley's Converging on Microsoft feed

Mitchell Ashley's archive.

Microsoft Subnet

RSS feed Microsoft news RSS feed

The opinions expressed in this Weblog are those of the writer and may not represent the opinions of Network World.

Advertisement: