Puneet Varma

Malwarebytes (software)

Updated on
Share on FacebookTweet on TwitterShare on LinkedIn
Development status  Active
Platform  IA-32, x86-64
Malwarebytes (software)
Developer(s)  Malwarebytes Corporation
Stable release  3.0.6 (Windows) / January 25, 2017; 52 days ago (2017-01-25) 1.2.6 (macOS) / January 31, 2017; 46 days ago (2017-01-31) 2.1.1 (Android) / November 28, 2016; 3 months ago (2016-11-28)
Written in  Visual Basic .NET, BASIC
Operating system  Microsoft Windows XP and later, macOS 10.9 and later and Android OS 4.1 and later

Malwarebytes (formerly Malwarebytes Anti-Malware, abbreviated as MBAM) is an anti-malware software for Microsoft Windows, macOS and Android OS that finds and removes malware. Made by Malwarebytes Corporation, it was first released in January 2006. It is available in a free version, which scans for and removes malware when started manually, and a paid version, which additionally provides scheduled scans, real-time protection and a flash memory scanner.

Contents

Overview

MBAM is primarily a scanner that scans and removes malicious software, including rogue security software, adware, and spyware. MBAM scans in batch mode, rather than scanning all files opened, reducing interference if another on-demand anti-malware software is also running on the computer.

MBAM is available in both a free and a premium paid version. The free version can be manually run by the user when desired, whereas the paid version can perform scheduled scans, automatically scan files when opened, block IP addresses of malicious web sites, and scan only those services, programs and device drivers that are currently in use.

On December 8th, 2016, Malwarebytes released version 3.0 to the general public. This includes malware, ransomware, exploit, and malicious website protection.

Reception

  • PC World's Preston Gralla wrote that "Using Malwarebytes Anti-Malware is simplicity itself".
  • CNET in 2008 cited Malwarebytes as being useful against the MS Antivirus malware, and also awarded it an April 2009 Editor's Choice, along with 25 other computer applications.
  • Mark Gibbs of Network World gave Malwarebytes Anti-Malware 4 stars out of 5 in January 2009 and wrote that "It does the job and only the lack of a detailed explanation of what it has found stops it from getting 5 out of 5".
  • PC Magazine gave Malwarebytes Anti-Malware 3.5 stars out of 5 in May 2010, saying that although it was good at removing malware and scareware, it fell short on removing keyloggers and rootkits. However, the free version got 4.5 stars out of 5—and an Editor's Choice award—for free removal-only antivirus software in 2013-4.
  • Dispute with IObit

    On November 2, 2009, Malwarebytes accused rival IObit of incorporating the database of Malwarebytes Anti-Malware (and several products from other vendors, which were not named) into its security software IObit Security 360. IObit denied the accusation and stated that the database is based on user submissions, and sometimes the same signature names that are in Malwarebytes get placed in the results. They said they did not have time to filter out the signature names that are similar to Malwarebytes. IObit also stated that Malwarebytes did not have convincing proof, and promised that the databases were not stolen. After the declaration from IObit, Malwarebytes replied that they are not convinced of the argument from IObit. Malwarebytes claims to have served DMCA infringement notices against CNET, Download.com and Majorgeeks in order to have the download sites remove the IObit software. IObit said that as of version 1.3, their database has been updated to address those accusations of intellectual property theft made earlier by Malwarebytes.

    Dealing with Vonteera

    Vonteera is Adware which uses stolen certificates that disables anti-malware and virus protection, such as from Malwarebytes. Malwarebytes has listed a solution for eliminating this threat. [2]

    Security vulnerabilities

    On February 2, 2016, Project Zero announced four vulnerabilities in the Malwarebytes flagship product, including lack of server side encryption for update files, and lack of proper payload signing within encrypted data; the combination of which allowed for an attacker to recompile the encrypted payload with exploits. Malwarebytes responded one day before disclosure in a blog article detailing the extreme difficulty in executing these attacks, as well as revealing that the announced server side and encryption issues were resolved within days of private disclosure, and were not outstanding at the time Project Zero published their research. Malwarebytes also published information on how to protect current users until a patch was released. This event also resulted in the establishment of a formal bug bounty program by Malwarebytes, who now offer up to $1000 per disclosure dependent on severity.

    References

    Malwarebytes (software) Wikipedia


    Similar Topics
    Alex Buzbee
    Ridan
    Aleksandar Davidov
    Topics