Print This Page

Spyware / Adware

Definition

Spyware and adware are closely related threats. Spyware is any piece of software, installed or employed without a user’s knowledge, that watches, logs, and reports on that user’s electronic movements. Spyware can track personal information (e.g., name and address), demographic information (e.g., age and gender), and psychosocial information (e.g., stance on current issues). It comprises the following subset of technologies:

Keyloggers – software that tracks keyboard strokes for the purposes of logging visited Web sites or recording
Screen–capture technologies – software that periodically takes desktop screen shots and can record information such as login name(s).
Event loggers – nefarious software that reports on visited Web sites, or any other similar effort to collect demographic intelligence (generally for adware targeting).

Commercial spyware sells the information it collects to marketing entities; criminal spyware uses it for intellectual property and identity theft—the most powerful threats facing businesses and consumers today.

Adware is software that generates electronic advertisements—such as pop-ups or Web links—without a user’s consent. In many instances, adware employs information gathered via spyware to display highly targeted messaging based on a user’s personal preferences and habits—a subset Trend Micro calls grayware.

Spyware and adware usually are installed surreptitiously via back-door Trojans, or as part of a desired program (such as a free email client or file-sharing program) that users willingly download. Both can expose PCs and the network to other vulnerabilities.

How to protect your network, servers, pcs and mobile devices from spyware/adware

Implement a comprehensive Internet security solution that includes anti-spyware and anti-adware components, as well as a network and endpoint firewall. Trend Micro offers a variety of anti-spyware and anti-adware products to suit various enterprise needs. Anti - Spyware product
Consider blocking user access to Web sites that are known or suspected spyware distributors.
Keep all browser and IM security patches up to date.
Educate employees about the latest threats, symptoms of infection, and how to protect servers, PCs, and mobile devices:
Adhere to corporate policies regarding the download and installation of approved software.
Read all end-user license agreements (EULAs) carefully to be sure you are not agreeing to install unwanted components that may introduce spyware and adware.
Limit Web browsing to business-related activities only. Free gaming, music download, and pornography sites are notorious distributers of spyware and adware.
Do not disable enterprise antivirus, anti-spyware, or firewall protections.
Seek IT support if you notice:
General system slowdown.
Unusual presence of pop-up ads on your desktop, or within your browser.

What may happen if you don't adequately protect your technology assets from spyware and adware

Exposure of the corporate network to other malware threats.
Loss of employee productivity due to network and system slowdowns.
Diversion of IT staff from strategic initiatives due to disinfection and repair of affected systems.
Potential loss of corporate and personal information.

Other resources

Major Offender Grayware