Microsoft now taking on Man in the Middle ad injection and browser hijacking

Microsoft is adding another criteria to their adware objectives to battle browser hijackers.

Richard Hay, Senior Content Producer

December 22, 2015

3 Min Read
Microsoft now taking on Man in the Middle ad injection and browser hijacking

I once worked helpdesk tech support for a security software company and my main job was to assist customers in dealing with malware/adware infections on their systems.

Some of those sessions required that I remote connect to the customers desktop in order to help begin clearing things up but these adware/ad injection infections would not even allow the user to browse to the right website to download a small remote connection tool. Instead, the infection would redirect them to a screen that looked a lot like the destination I was sending them to but in reality it was not.

Instead they would land on a page with fake downloads, likely including malware infected payloads, and ads plastered everywhere.

Well Microsoft has decided that enough is enough and they are now focused on giving users back full control over their system.

The way they will do this is through their Adware objective criteria and the way their anti malware products identify and remove unwanted and malicious software.

It was in April of 2014 that Microsoft began this process in earnest by establishing their criteria for identifying undesired software programs and their activities in a set of evaluation criteria that included:

  • Displays unwanted behaviors; does not get explicit consent; prevents user from controlling actions of the program

  • Out of context advertising

  • Misleading advertisements

  • Collects user information without explicit permission

  • Consumer opinion/user input is key factor to also identifying unwanted behavior

There is a similar list of criteria for what Microsoft considers malicious software on the same page.

Yesterday, Microsoft added a new criteria that will be used to identify these man in the middle attacks and any software violating this criteria will be added to their malware definitions with settings to detect and remove the offending software.

To address these and to keep the intent of our policy, we’re updating our Adware objective criteria to require that programs that create advertisements in browsers must only use the browsers’ supported extensibility model for installation, execution, disabling, and removal.

Microsoft will begin removing any software programs that violate the above criteria on 31 March 2016.

This announcement follows news last week about the improvements Microsoft has made to their SmartScreen technology that helps to protect users on the web from drive by attacks. This feature is available in Internet Explorer, Microsoft Edge and Windows. It has used URL and Application reputation protection over the last 8 years to block users from billions of web based attacks according to Microsoft. Recent additions include protections against phishing, deceptive advertisements and technical support scams.

I have always believed that being secure on the Internet is a good mix of smart computing habits and software.  For me that means no clicking on unknown or questionable links from emails or websites and having Windows Defender active and updated on all of the systems in my home.

These practices have been the norm in my home for a few years now and do you know how many infections or hijackings I have experienced? Zero, Zilch, Nada.

How do you best protect yourself from malicious or unwanted software?

But, wait...there's probably more so be sure to follow me on Twitter and Google+.

Read more about:

Microsoft

About the Author

Richard Hay

Senior Content Producer, IT Pro Today (Informa Tech)

I served for 29 plus years in the U.S. Navy and retired as a Master Chief Petty Officer in November 2011. My work background in the Navy was telecommunications related so my hobby of computers fit well with what I did for the Navy. I consider myself a tech geek and enjoy most things in that arena.

My first website – AnotherWin95.com – came online in 1995. Back then I used GeoCities Web Hosting for it and WindowsObserver.com is the result of the work I have done on that site since 1995.

In January 2010 my community contributions were recognized by Microsoft when I received my first Most Valuable Professional (MVP) Award for the Windows Operating System. Since then I have been renewed as a Microsoft MVP each subsequent year since that initial award. I am also a member of the inaugural group of Windows Insider MVPs which began in 2016.

I previously hosted the Observed Tech PODCAST for 10 years and 317 episodes and now host a new podcast called Faith, Tech, and Space. 

I began contributing to Penton Technology websites in January 2015 and in April 2017 I was hired as the Senior Content Producer for Penton Technology which is now Informa Tech. In that role, I contribute to ITPro Today and cover operating systems, enterprise technology, and productivity.

https://twitter.com/winobs

Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like