Download our in-depth report: The Ultimate Guide to IT Security VendorsReporter's Notebook: It was ironic timing. Microsoft released a report on how splendid a job its Windows Malicious Software Removal Tool had done at removing malware from computers.
This was just days after news broke that the Windows Genuine Advantage program, something it forced on every single Windows user, was sending data back to Microsoft every night.
WGA doesn't do anything other than verify that your copy of Windows XP is not pirated. The logic behind it is sound: one of the biggest offenders when it comes to Windows piracy isn't Torrent traders, it's mom-and-pop computer shops that build no-name PCs and just slap a copy of Windows on the computer from the same CD each time they build a computer.
Now, I can believe this. In Los Angeles, which I called home up until two months ago, we had these screwdriver shops everywhere (curiously, they are virtually non-existent in San Francisco), I knew a few people at those places, and yes, they were bad about it. They had one or two Windows 2000 CDs in the place and used the same discs to install Windows on every computer they built.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=iMicrosoft attempted to solve the problem with Windows Activation in Windows XP, but of course hackers found a way around that. The solution, then was WGA, quietly launched in September, 2004. If it found your copy of Windows to be pirated, pop-up windows would nag you to get a legitimate copy.
The problem is that WGA was mandatory. You had no option to not install it. At first, you did, but you couldn't get anything other than critical updates if WGA was not installed on your computer. Then, starting last year, WGA was a mandatory download that you could not uncheck from the Windows update list.
It all hit the fan in late May when it was discovered that WGA connects to Microsoft every night, something Microsoft failed to disclose to its users. David Lazar, who directs the Windows Genuine Advantage program at Microsoft program, told the Seattle Post-Intelligencer that the program was a "pilot program" and that the company was worried about some unforeseen emergency that would require the program to terminate quickly.
True enough, it is beta software, and there have been reports of false positives.
Since then, Microsoft said it would cut back and have WGA phone home every two weeks rather than daily, but made it clear it's not removing WGA.
In an attempt at damage control, Microsoft posted an FAQ on the WGA that casts it in a positive light. The company addressed the issue of why it didn't tell us Windows was phoning home every night as follows:
Not specifically including information on the periodic check was an oversight.
Right. So they didn't notice the millions of reports coming in every day.
When addressing the accusation that WGA is spyware, (define)Microsoft replied:
Broadly speaking, spyware is deceptive software that is installed on a users computer without the users consent and has some malicious purpose. WGA is installed with the consent of the user and seeks only to notify the user if a proper license is not in place. WGA is not spyware.
But plenty of labs, both independent and at tech publications, have documented that WGA is not optional. It passes itself off as a critical update. Protecting ones intellectual property may not be malicious, but the fact is, WGA is forced onto the user's system with no option to bypass it and it is engaged in monitoring your computer.
That's spyware, period. It may not be malicious but it's certainly not welcome nor is its present by consent.