Warning message... Link to action
In MITRE's evaluation of EDR solutions, Windows Defender ATP demonstrated industry-leading optics and detection capabilities Read the blog: Insights from the MITRE evaluation
Rogue security software
Rogue security software is a type of program that pretends to detect and remove malware for a fee.
Rogues claim to scan for malware and then regularly show you fake detections and warnings. They tell you that you need to pay to register the software or remove the fake threats from your PC.
What is the purpose of a rogue?
Rogues have one purpose – to take your money. They tend to be obvious and intrusive. They rely on either:
Rogue security software often copies the look and name of real security scanners, including Microsoft software.
How do rogues work?
Rogues try to scare you into paying a fee, in the hope that the rogue will clean your PC. They need to convince you to pay a fee to be successful.
They usually target you with a lot of deceptive messages coming from their fake software, websites and messages.
Here’s what might happen if you have a rogue on your computer:
The following is an example of a fake results screen used by a rogue:
How do rogues get onto my PC?
Rogues are installed in similar ways to other malware. They can be:
Usually rogues target people who speak English. Most reports of this type of malware come from the US.
Notable rogue malware families
Some of the most prevalent malware families are rogues. The following families are some of the more notable examples:
How do I protect myself against rogues?
The best way to avoid rogues is to prevent them from being installed in the first place.
Another way you can protect yourself is to be wary. Legitimate security companies won’t try to scare you into using their scanners.
What do I do if I can’t remove a rogue?
Don’t pay the fee they ask for – this could create further problems and expose you to further fraud or identity theft.
The following article can help if you have already paid a fee, or you think you might have inadvertently given away sensitive personal information:
If you have problems getting rid of a rogue the following might help: