Feeds

'Catastrophic' Avira antivirus update bricks Windows PCs

rundll32.exe? cmd.exe? You clearly don't need those

Internet Security Threat Report 2014

Security software biz Avira has apologised after its antivirus suites went haywire and disabled customers' Windows machines.

A service pack issued in Monday caused its ProActiv monitoring software to think vital operating system processes were riddled with malware and blocked them from running.

Users of the affected products - Avira Professional Security, Avira Internet Security 2012 and Avira Antivirus Premium 2012 - were left with malfunctioning or inoperable systems after they applied the dodgy update. A fix has since been issued.

Components reportedly blocked included iexplore.exe, notepad.exe and regedit.exe, plus applications including Microsoft Office and Google Updater were also sin-binned.

Unsurprisingly Avira's support forums quickly filled up with posts by frustrated punters. "This update has been pretty catastrophic," one small business user complained. "The whole company ground to a standstill."

Avira responded by withdrawing the malfunctioning update, Service Pack 0 (SP0) for Avira Version 2012, and issuing a replacement upgrade. In an advisory, Avira said it "deeply regrets" the inconvenience customers have experienced as the result of the snafu. It goes on to explain how users can disable its ProActiv behavioural monitoring technology in case it goes nuts again.

From time to time antivirus signatures, used to identify malware inside files, cause headaches for vendors when they report false positive matches. Things get really messy in cases where core Windows components, rather than just third-party apps, are wrongly labelled as potentially malign. Screwing up a signature pack is one thing, but Avira's mixup involves a major software update, raising questions over why the blunder was not caught during pre-release testing.

Avira is best known as a supplier of freebie Windows antivirus scanners to consumers in competition with the likes of AVG and Avast. The German firm uses its presence in this market to help it sell paid-for products to consumers and small businesses. ®

Internet Security Threat Report 2014

More from The Register

next story
George Clooney, WikiLeaks' lawyer wife hand out burner phones to wedding guests
Day 4: 'News'-papers STILL rammed with Clooney nuptials
Shellshock: 'Larger scale attack' on its way, warn securo-bods
Not just web servers under threat - though TENS of THOUSANDS have been hit
Apple's new iPhone 6 vulnerable to last year's TouchID fingerprint hack
But unsophisticated thieves need not attempt this trick
PEAK IPV4? Global IPv6 traffic is growing, DDoS dying, says Akamai
First time the cache network has seen drop in use of 32-bit-wide IP addresses
Oracle SHELLSHOCKER - data titan lists unpatchables
Database kingpin lists 32 products that can't be patched (yet) as GNU fixes second vuln
Researchers tell black hats: 'YOU'RE SOOO PREDICTABLE'
Want to register that domain? We're way ahead of you.
Stunned by Shellshock Bash bug? Patch all you can – or be punished
UK data watchdog rolls up its sleeves, polishes truncheon
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.