Jump to content

Malwarebytes (software)

From Wikipedia, the free encyclopedia

Malwarebytes
Developer(s)Malwarebytes Inc.
Initial releaseJanuary 2006; 18 years ago (2006-01) (as Malwarebytes Anti-Malware)
Stable release
Windows5.2.2 / November 18, 2024; 1 day ago (2024-11-18)[1]
macOS5.7.1 / October 21, 2024; 29 days ago (2024-10-21)[2]
Android & ChromeOS5.12.1 /
November 4, 2024; 15 days ago (2024-11-04)[3]
iOS5.12.1 /
October 23, 2024; 27 days ago (2024-10-23)[4]
Operating systemWindows 7 and later,
macOS 10.12 and later, Android 9.0 and up, iOS 16 and later, ChromeOS[5]
PlatformIA-32, x86-64
SizeWindows: 287 MB
Android: 38.22 MB
Available in30 languages
List of languages
Bulgarian, Catalan, Chinese (Traditional), Czech, Danish, Dutch, English, Estonian, Finnish, French, German, Greek, Hebrew, Hungarian, Indonesian, Italian, Japanese, Korean, Norwegian, Polish, Portuguese (Brazil), Portuguese (Portugal), Romanian, Russian, Slovak, Slovene, Spanish, Swedish, Turkish and Vietnamese
TypeAnti-malware
LicenseProprietary (Freemium)
Websitemalwarebytes.com

Malwarebytes (formerly Malwarebytes Anti-Malware, abbreviated as MBAM) is anti-malware software for Microsoft Windows,[6] macOS, ChromeOS, Android, and iOS that finds and removes malware.[7] Made by Malwarebytes Corporation, it was first released in January 2006. This is available in a free version, which scans for and removes malware when started manually, and a paid version, which additionally provides scheduled scans, real-time protection and a flash-memory scanner.

Overview

[edit]

Malwarebytes is primarily a scanner that scans and removes malicious software, including rogue security software, adware, and spyware. Malwarebytes scans in batch mode, rather than scanning all files opened, reducing interference if another on-demand anti-malware software is also running on the computer.[8][9]

Malwarebytes is available in both a free[needs update] and a paid version.[7] The free version can be run manually by the user when desired, whereas the paid version can perform scheduled scans, automatically scan files when opened, block IP addresses of malicious web sites, and scan only those services, programs and device drivers that are currently in use.

Security vulnerabilities

[edit]

On February 2, 2016, Project Zero discovered four vulnerabilities in the Malwarebytes flagship product, including lack of server-side encryption for update files and lack of proper payload signing within encrypted data; the combination of which allowed an attacker to recompile the encrypted payload with exploits.[10] Malwarebytes responded one day before disclosure in a blog article detailing the extreme difficulty in executing these attacks, as well as revealing that the announced server-side and encryption issues were resolved within days of private disclosure and were not outstanding at the time Project Zero published their research.[11] Malwarebytes also published information on how to protect current users until a patch was released. This event also resulted in the establishment of a formal bug bounty program by Malwarebytes, which offers up to $1000 per disclosure as of 2018, depending on severity and exploitability.[12]

Dispute with IObit

[edit]

On November 2, 2009, Malwarebytes accused IObit, a Chinese company that offers similar products, of incorporating the database of Malwarebytes Anti-Malware (and several products from other vendors, which were not named) into its security software IObit Security 360.[13][14] IObit denied the accusation and stated that the database is based on user submissions, and sometimes the same signature names that are in Malwarebytes get placed into the results. They said that they did not have time to filter out the signature names that are similar to Malwarebytes. IObit also stated that Malwarebytes did not have convincing proof, and declared that the databases were not stolen. After the declaration from IObit, Malwarebytes replied that they are not convinced of the argument from IObit. Malwarebytes claims to have served DMCA infringement notices against CNET, Download.com and Majorgeeks in order to have the download sites remove the IObit software. IObit said that as of version 1.3, their database has been updated to address those accusations of intellectual property theft made earlier by Malwarebytes.

See also

[edit]

References

[edit]
  1. ^ "Malwarebytes for Windows – Release History & News". support.malwarebytes.com.
  2. ^ "Malwarebytes for Mac – Release History & News". support.malwarebytes.com.
  3. ^ "Malwarebytes for Android & Chrome OS – Release History & News". support.malwarebytes.com.
  4. ^ "Malwarebytes for Malwarebytes for iOS – Release History & News". support.malwarebytes.com.
  5. ^ "Antivirus for Windows 11 | Windows Antivirus | Malwarebytes Windows 11". Malwarebytes. Retrieved November 26, 2022.
  6. ^ "10 Best Malware Removal Tools for Windows 10 - Windows Able". windowsable.com. December 18, 2015. Retrieved August 24, 2016.
  7. ^ a b Malwarebytes Anti-Malware review at PCworld.com, December 21, 2010, retrieved July 22, 2014
  8. ^ "Malwarebytes Corporation". MalwareBytes. Retrieved August 18, 2009.
  9. ^ Neil J. Rubenking (July 6, 2010). "Free Antivirus and Antispyware". PC Magazine. Retrieved March 2, 2014.
  10. ^ Leyden, John. "Google ninjas go public with security holes in Malwarebytes antivirus". The Register. Retrieved February 6, 2016.
  11. ^ Kleczynski, Marcin (February 1, 2016). "Malwarebytes Anti-Malware vulnerability disclosure". Malwarebytes Labs.
  12. ^ "Malwarebytes Bug Bounty". Retrieved July 6, 2018.
  13. ^ RubbeR DuckY (psudeonym) (November 2, 2009). "IOBit Steals Malwarebytes' Intellectual Property". Malwarebytes Forums. Retrieved February 23, 2022.
  14. ^ Mills, Elinor (November 3, 2009). "Malwarebytes accuses rival of software theft". CNET. Retrieved February 23, 2022.
[edit]