SYDNEY, Australia — March 7, 2013 — Although some computer users may actively seek pirated software in hopes of saving money, the chances of infection by unexpected malware are one in three for consumers and three in 10 for businesses, according to a new study commissioned by Microsoft Corp. and conducted by IDC. As a result of these infections, the research shows that consumers will spend 1.5 billion hours and $22 billion identifying, repairing and recovering from the impact of malware, while global enterprises will spend $114 billion to deal with the impact of a malware-induced cyberattack.
The global study analysed 270 websites and peer-to-peer (P2P) networks, 108 software downloads, and 155 CDs or DVDs, and it interviewed 2,077 consumers and 258 IT managers or chief information officers in Brazil, China, Germany, India, Mexico, Poland, Russia, Thailand, the United Kingdom and the United States. Researchers found that of counterfeit software that does not come with the computer, 45 per cent comes from the Internet, and 78 per cent of this software downloaded from websites or P2P networks included some type of spyware, while 36 per cent contained Trojans and adware.
“The cybercrime reality is that counterfeiters are tampering with the software code and lacing it with malware,” said David Finn, associate general counsel in the Microsoft Cybercrime Centre. “Some of this malware records a person’s every keystroke -- allowing cybercriminals to steal a victim’s personal and financial information -- or remotely switches on an infected computer’s microphone and video camera, giving cybercriminals eyes and ears in boardrooms and living rooms. The best way to secure yourself and your property from these malware threats when you buy a computer is to demand genuine software.”
The IDC study, titled “The Dangerous World of Counterfeit and Pirated Software,” was released today as part of Microsoft’s “Play It Safe” campaign, a global initiative to bring awareness to issues related to software piracy.
“Our research is unequivocal: Inherent dangers lurk for consumers and businesses that take a chance on counterfeit software,” said John Gantz, chief researcher at IDC. “Some people choose counterfeit to save money, but this ‘ride-along’ malware ends up putting a financial and emotional strain on both the enterprise and casual computer users alike.”
The following are among the highlights from the consumer survey:
- Sixty-four per cent of the people respondents knew who had used counterfeit software experienced security issues.
- Forty-five per cent of the time, counterfeit software slowed their PCs, and the software had to be uninstalled.
- Forty-eight per cent of respondents noted that their greatest concern with using counterfeit software was data loss.
- Twenty-nine per cent were most concerned with identity theft.
Embedding counterfeit software with dangerous malware is a new method for criminals to prey on computer users who are unaware of the potential danger.
The IDC white paper also explored the surprising level of end-user software installations made on corporate computers, exposing another method for the introduction of unsecure software into the workplace ecosystem. Although 38 per cent of IT managers acknowledge that it happens, 57 per cent of workers admit they install personal software onto employer-owned computers. What is alarming is that respondents told IDC that only 30 per cent of the software they installed on their work computers was problem-free. Sixty-five per cent of IT managers agree that user-installed software increases an organization’s security risks. For many in the enterprise, user-installed software may be a blind spot in ensuring a secure network.
Customers are encouraged to visit www.microsoft.com/security to learn about malware and ensure their machine is not infected; if malware is present, the site offers tools to remove the infection. Customers shopping for a new computer are encouraged to buy from a reputable source to ensure they are receiving genuine Microsoft software.
More information about the IDC study is available at the Microsoft Play It Safe website, http://www.play-it-safe.net, and newsroom, http://www.microsoft.com/news/ipcrimes.
– Ends –
Founded in 1975, Microsoft (Nasdaq “MSFT”) is the worldwide leader in software, services and solutions that help people and businesses realize their full potential.
For more information, press only:
+ 61 2 8281 3244
Note to editors: For more information, news and perspectives from Microsoft, please visit the Microsoft News Center at http://www.microsoft.com/news. Web links, telephone numbers and titles were correct at time of publication, but may have changed. For additional assistance, journalists and analysts may contact Microsoft’s Rapid Response Team or other appropriate contacts listed at http://www.microsoft.com/news/contactpr.mspx.