March 15, 2005
The Gator Corporation, known to serve up (cookie based) ads on infected PCs, also filed suit against several antispyware vendors in an attempt to clear its name. A popular Gator application was ‘Ewallet’. The Gator Ewallet, one of several applications that are distributed over the Internet was free, because it was ad-supported from the network, in exchange for delivering advertising. While surfing the Web, you would gather cookies and then see GAIN branded ads (pop-ups and others) selected based on your online activities. On October 30, 2003, the company changed its name to Claria Corporation, but continues to operate in the same way it did before the name change. Gator/Claria products are often delivered to end-users by being bundled with other applications or through "drive-by downloads" that pop up an ActiveX dialog and start the installation process if you click "Yes", or “I agree” and, is generally very difficult to remove. Some of the more reputable applications will offer you a choice of installation methods. Choose 'Custom', that way you can see if there any choices to be made and can sometimes avoid things you may not want to install.
Gator applications include Ewallet, DateManager, WeatherScope, and PrecisionTime. Ewallet keeps track of the data you enter on web forms (including credit cards) so it can autofill the data for you later. DateManager provides appointment alarms and date reminders. WeatherScope shows the current and forecast weather. PrecisionTime keeps your system clock up to date. GAIN Publishing (GAIN stands for Gator Advertising Information Network) is the part of Gator/Claria that distributes the applications and includes the advertising software that is a part of all Gator Corporation applications. GAIN adware is also bundled as a part of several adware applications such as DivX Pro from DivX Networks.
According to a consumer survey quoted by Jupiter Research, 38 percent said they consider cookies invasive of their security and privacy. Lawmakers and consumer lobbies have been considering the impact of cookies, and network security company Netcraft on Monday pointed out the risks to personal information posed by the theft of cookies by attackers using cross-scripting flaws. The Consortium of Anti-Spyware Technology vendors (COAST), was a group founded by PestPatrol (Computer Associates), Webroot (SpySweeper), and Aluria (Spyware Eliminator). Among its goals, the consortium attempted to standardize the meaning of spyware, and the more positive sounding "ad-supported software" aka adware. Supporting software sponsors applications, such as a free version of Opera, and a multitude of other downloadable applications available on the Internet. Another goal of COAST was to sanction software as ‘spyware-free’ with its seal of approval. However, the process of taming various advertisers seeking to expose their products to as many eyes as possible proved impossible. In 16 months of existence, COAST expanded to include newer members that tended to play fast and loose with issues of privacy and information disclosure. By the beginning of February 2005, the promise of industry self-regulation appeared to have ended without any real success.
FTC Shuts Down Spyware Web Site
Phishing Hole Discovered in Internet Explorer
Avoiding a Phishing Attack
Phishing Flaw in Alternate Browsers
Hackers, Beyond the Browser