Feeds

MS hits back in Security Essentials row

It's all opt-in, so what's the beef?

Using blade systems to cut costs and sharpen efficiencies

Microsoft has said its rivals and the media have misunderstood its plans to offer its freebie anti-virus scanner to Windows users without security protection via its Microsoft Update service.

Earlier this week we reported how Panda Security and Trend Micro both viewed the offer of Security Essentials via "automatic downloads" and Microsoft update services as damaging for choice and anti-competitive.

Panda, for example, suggested that users should be offered a ballot screen listing a range of possible options for obtaining anti-virus software instead of being presented only with Microsoft's offer, an approach that fosters monoculture.

Trend Micro said Microsoft's approach of offering the updates via Microsoft Update (which offers updates for Office and other applications) rather than Windows Update is a distinction that would be lost on most ordinary consumers and small business users.

A Microsoft spokesman responded on Thursday by saying that the difference is important because Microsoft Update is an opt-in service. In a statement, Redmond's spin doctors took umbrage at the suggestion that Microsoft is pushing Security Essentials as an auto-download.

Microsoft Security Essentials’ availability over Microsoft Update is not an "auto-download" as your headline and our valued security partners suggest.

Microsoft Security Essentials will be available as an optional update to customers through the Microsoft Update Website (for XP) and through Windows Update, if the user has opted in to the MU service. Microsoft Security Essentials will only be offered to those genuine Windows customers who have no antivirus solution detectable through Action Center in Windows.

The fact is that Microsoft is always looking for the most effective and efficient ways to ensure our customers are protected against viruses, spyware and other malicious threats. Despite the broad availability of anti-malware software, we still find that many consumer and small business PCs remain unprotected.  By offering Microsoft Security Essentials as an optional download for PCs that are unprotected, we make it easy for those who want and know they need protection, but for whatever reason have not gotten around to installing it.  Now they can download the software when they perform their other system updates without having to search the web or make a special trip to the store.

Luis Corrons, technical director of PandaLabs, said its objection that Redmond was pushing Security Essentials without giving users an informed choice remains.

"The problem we see is not about using Microsoft Update and Windows Update, but about pushing only MSE and give no choices to the users, Corrons told El Reg. "Choices that in fact are better."

Redmond began offering baseline security protection to consumers through Microsoft Security Essentials more than a year ago. Reviews of the product have been largely positive.

Microsoft extended the offer of the freebie anti-virus scanner to small business in September, and it's tempting to think that this is the real focus of Trend and Panda's gripe, though neither have said as much.

None of the established freebie antivirus scanner firms - AVG, Avira and Avast - has complained about changes in how Microsoft Security Essentials is being offered. Each focuses on persuading a percentage of users of its freebie scanners to upgrade and none has reported a decrease in downloads as a result in Microsoft's entry to the market segment.

Typically the likes of AVG, when pressed, point out that they have more experience than Microsoft in developing security scanners while arguing that their products are technically superior because they include behaviour-based malware detection, for example. ®

Boost IT visibility and business value

More from The Register

next story
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.