StopBadware.org

StopBadware.org is a partnership among academic institutions, technology industry leaders, and volunteers, all of whom are committed to protecting Internet and computer users from the threats to privacy and security that are caused by bad software. We are a leading independent authority on trends in badware and its distribution, and a focal point for the development of collaborative, community-minded approaches to stopping badware. We invite you to join our community, to help reduce the impact of badware and to regain control of our computers.

We find that RealPlayer 10.5 is badware because it fails to accurately and completely disclose the fact that it installs advertising software on the user's computer. We additionally find that RealPlayer 11 is badware because it does not disclose the fact that it installs Rhapsody Player Engine software, and fails to remove this software when RealPlayer is uninstalled.

We currently recommend that users do not install the versions of RealPlayer software that we tested, unless the user is comfortable with the software behaviors we identify or until the application is updated to be consistent with the recommendations contained in this report. RealPlayer 11 is currently promoted by RealNetworks at www.real.com. RealPlayer 10.5 is distributed through channels such as Mozilla Firefox's 'Missing Plug-in' feature and the BBC Radio website.

Google glitch causes confusion

Posted by Maxim Weinstein 9 hours ago

This morning, an apparent glitch at Google caused nearly every search listing to carry the "Warning! This site may harm your computer" message. Users who attempted to click through the results saw the "interstitial" warning page that mentions the possibility of badware and refers people to StopBadware.org for more information. This led to a denial of service of our website, as millions of Google users attempted to visit our site for more information. We are working now to bring the site back up. We are also awaiting word from Google about what happened to cause the false warnings.

Google has posted an update on their official blog that erroneously states that Google gets its list of URLs from us. This is not accurate. Google generates its own list of badware URLs, and no data that we generate is supposed to affect the warnings in Google’s search listings. We are attempting to work with Google to clarify their statement.

Google is working on an updated statement. Meanwhile, to clarify some false press reports, it does not appear to be the case that Google has taken down the warnings for legitimately bad sites. We have spot checked a couple known bad sites, and Google is still flagging those sites as bad. i.e., the problem appears to be corrected on their end.

For more information about how the process works and the relative role that Google and StopBadware.org play, please see our Clearinghouse page or this question in our FAQ.