"They are using both our database and our database format exactly." "We soon became convinced that this was not a mistake, it was not a coincidence, it was not an isolated event, and it persisted presently in their current database," the blog post says. Within two weeks, IObit was detecting the fake files and using "almost exactly" the fake names, Malwarebytes said. This screen shot shows IObit's product uses the same naming scheme as .Īfter finding additional evidence, Malwarebytes conducted a test and added fake definitions for a fake rogue application to its database of malware.
MALEWAREBYTES CNET GENERATOR
Malwarebytes discovered that IObit's Security 360 free anti-malware software was flagging a specific key generator piece of code for Malwarebytes' Anti-Malware software and using the same naming scheme, which includes the phrase "Don't Steal Our Software," according to a blog post on the site. Malwarebytes claims IObit stole from its database of signatures of malicious applications that its software uses for detecting malware on customer computers.
MalwareBytes replied that IOBits Denial of Theft Unconvincing.Malwarebytes is accusing China-based computer security firm IObit of intellectual property theft, but IObit denied the allegations and said there were problems with its malware submission site.
MALEWAREBYTES CNET UPDATE
Update November 15, 2009: Iobit initialy denied the charge from MalwareBytes but their denial seems to have been removed from their website. NOTE: The forum posting is duplicated on the Malwarebytes blog posting: IOBit Steals Malwarebytes Intellectual Property. Sure enough, a search for IObit at, , and came up empty at each site.Īt this point, I wouldn't touch any software from IObit with a ten foot pole. The web page for IObit Security 360 claims the software was "featured" at places that have no information about it at all. The website rating will probably fall shortly.Ī commenter at CNET pointed out something else interesting. WOT, however, does not have a central ruler, their ratings come from their customers, many of whom have started commenting on the ethical issues involving IObit. Web of Trust (WOT) currently rates the IObit website positively. Here's hoping that CNET, Majorgeeks and other software repositories remove IObit Security 360 from their systems. Ironically, they gave Malwarebytes Anti-Malware only 4.5 stars. Over at, CNET editors gave IObit Security 360 version 1.10 five stars out of five. We are in the process of contacting these vendors."
"During the course of our investigation, we uncovered additional evidence that IOBit may have stolen the proprietary databases of other security vendors as well.
Kleczynski concludes his forum posting with: You can see this in a screen shot posted by Malwarebytes. Lo and behold, IObit Security 360 also detects it as malware, even using the same phony "Don't." name. I also scanned it with MBAM and, as shown below, it was flagged it as Don't. I downloaded dummy.exe and scanned it at VirusTotal which gave it a clean bill of health. Within two weeks IOBit was detecting these fake files under almost exactly these fake names."Īs further proof Malwarebytes offers a safe, non-malicious executable program, dummy.exe, that was tweaked to match a signature in their database. We even manufactured fake files to match the fake definitions.
This "malware" does not actually exist: we made it up. Again quoting Kleczynski: "The final confirmation of IOBit's theft occurred when we added fake definitions to our database for a fake rogue application. These were not statements we made lightly." "We conducted this investigation thoroughly over a period of weeks until we were 100% sure of everything we wrote above.
0 kommentar(er)
