![[ Lomin Security ]](http://images.lomin.com/whitelogo.jpg "Lomin Security")
Scanning pirated software before installation does not protect a computer from viruses. In fact, using pirated software tremendously increases the risk of computer infection. There are many reasons why this is the case; not the least of which is hacker motivation, mechanics of pirate software, and the AV signature lifecycle. The issue is deep and could be the basis for a good doctorate thesis.
Money motivates hackers as of late. They earn money through various revenue generating schemes related to advertising (e.g. pop-up ads, spam, etc.) and stealing personal information (e.g. bank accounts, credit cards, etc.). Thorsten Holz recently made a great presentation to the ICSI on the subject (http://honeyblog.org/archives/48-Studying-Aspects-of-the-Underground-Economy.html). The accessible revenue to hackers is astounding. The easiest way to get that money is to ask people to install a program.
Typically, people think of hackers working the late hours of night to break into computers. Hackers do not typically do that. Images built by Hollywood and news media outlets would have us believe that hackers sit in front of their computers with a can of Jolt Cola and breezing through the security of our computers. Realistically, hackers are sitting there waiting for idiots to install their malicious software. How many people do you know that clicked on the link in their email and whispered, “OOhhh, look at the pretty fireworks.” Those idiots just hacked themselves, but just think of the sophisticated idiot. This idiot runs his pirated software through the AV scanner and still installs it on their computer.
Sure, maybe it is a reasonable expectation not to be hacked. AV Software protects us, right? It is the first line of defense for our computers. It does have its weakness (see The Contemporary antivirus industry and its problems: http://www.viruslist.com/en/analysis?pubid=174405517), but it is our best host based defense. So why does this article sound argumentative? Because AV Scanners will never protect you from a virus they don’t know about.
The lifecycle of an AV signature begins with malicious software. A signature cannot be built without malicious software. Downloading a 0-day warez does not give enough time for anti-virus writers to create, distribute, and install a signature. Some companies have trouble putting out signatures once a month (see AV.Test’s AV Signature Update Statistics: http://www.av-test.org/numbers.php). This does not take into account the ever-changing state of malicious software due to bug fixes and new features that change how the identifying signature.
Be smart; just buy your games instead of using pirated software. There are plenty of venues where games may be purchased these days. You can buy games online if you are lazy and do not want to go to Target. I highly recommend it. Steam (http://store.steampowered.com/news/) revolutionized the video game distribution world and many have followed their example. You can watch videos, screenshots, and play demos of the games before you buy. There is no reason to use pirated software – and if you are broke, why not get a job in network security to earn some money. We need all the help we can get.
Related posts:
![[ Finial ]](http://images.lomin.com/finial.png)
Pings & Trackbacks ¬