"Malware in legitamate software?"

hardware, software, tips and tricks
Forum rules
By using this "Production" sub-forum, you acknowledge that you have read, understood and agreed with our terms of use for this site. Click HERE to read them. If you do not agree to our terms of use, you must exit this site immediately. We do not accept any responsibility for the content, submissions, information or links contained herein. Users posting content here, do so completely at their own risk.

Quick Link to Feedback Forum

Postby Fbac » Thu Feb 10, 2011 4:32 pm

In 2009 a warez team released there crack on a Vst instrument. I tried it and what i read in the readme file alarmed me. here is said file (censored).

It's not everyday (crack team) feels the need to comment on a
release but we believe some issues about (Vst programmer) Û
Û need to be addressed for both legitimate users and Û
Û the warez community. Û
Û Û
Û In our opinion ******* ****** plugins are the Û
Û equivilent to MALWARE, it is with disgust we find the Û
Û elaborate (and futile!) measures he has taken within Û
Û his code. Û
Û Û
Û When a developer starts dropping files and creating Û
Û empty BOGUS registry keys, writing to a users host Û
Û file etc. then they have crossed a line of ethics Û
Û that is inexcusable. Û
Û Û
Û One could argue that warez users get what they Û
Û deserve, however... warez uses ALWAYS choose to take Û
Û a risk when they use warez. The legitimate user Û
Û however gets exactly the SAME codebase and IF things Û
Û go wrong they are subjected to the same MALWARE crap Û
Û undeservedly. Û



- Im not trying to scare anyone by suggesting malware is in legitimate programs and im definatly not advocating that we all use warez.
What im asking is has anyone else come across anything like this? Since then i havent come across anything of the like(2009-now). And strangly enouth i do see why the programmer did what he did but dont fully agree with it. The malware appeared to mainly stop users using cracked versions of his other software.


Just wonderd what people thought about this?
hurlingdervish wrote:The true test of an overly specific, pretentious, genre name, is how many sycophants line up to defend its bullshit when the copy-cats arrive on the scene, imitating the styles of people who had no conscience for the styles they were innovating.
User avatar
Fbac
 
Posts:
1069
Joined:
Sun Jan 23, 2011 1:45 am
Has Bigged up!:
0 time
Been Bigged up!:
0 time

Postby cloak and dagger » Thu Feb 10, 2011 5:00 pm

Is that talking about Tone2? On KVR there was a lot of controversy over their software making registry changes, sending private information to them over the internet without your knowledge, and a ton of other supposedly horrible things that I didn't understand because I don't know that much about computers...but more than a few people have come out on there and said they found their products doing shady stuff. Tone2 have a horrible reputation even without this stuff, so I just stay away from them; there's more than enough good plugins out there (although hypocritically, the old free version of Bifilter is my filter of choice).
cloak and dagger
 
Posts:
1146
Joined:
Fri Jun 02, 2006 1:09 pm
Location:
Sittin' on the curb debatin' how to get it percolatin'
Has Bigged up!:
0 time
Been Bigged up!:
0 time

Postby legend4ry » Thu Feb 10, 2011 6:06 pm

Theres lots of alternatives to not getting people stealing your software like the Ilok and that other thing whats similar... They're a pain in the arse but people still buy ilok-needed software.


Can't help but feel a bit scared about installing software what injects malware on my computer.
Soulstep wrote: My point is i just wanna hear more vibes


https://soundcloud.com/legend4ry/passover
User avatar
legend4ry
 
Posts:
10138
Joined:
Sun Oct 08, 2006 4:56 am
Location:
Plumstead SE18, London
Has Bigged up!:
5 times
Been Bigged up!:
21 times

Postby +3 » Thu Feb 10, 2011 6:36 pm

This is why I only buy software from big name company’s like Native Instruments. As soon as somebody sends me a link to some random plug-in on a badly put together website, I close the window, clear cache and reset Safari, let alone download that junk...
+3
 
Posts:
451
Joined:
Sun Nov 16, 2008 6:37 am
Has Bigged up!:
0 time
Been Bigged up!:
0 time

Postby gnome » Thu Feb 10, 2011 6:50 pm

This is why I only ownload warex :cornlol:
User avatar
gnome
 
Posts:
4415
Joined:
Fri Aug 21, 2009 4:54 pm
Location:
Northern Ireland
Has Bigged up!:
0 time
Been Bigged up!:
0 time

Postby Fbac » Fri Feb 11, 2011 1:06 am

+3 wrote:This is why I only buy software from big name company’s like Native Instruments. As soon as somebody sends me a link to some random plug-in on a badly put together website, I close the window, clear cache and reset Safari, let alone download that junk...


Random freeware im equally dubious about unless ive read up on it. Usually with the google ("(synth name) + fix") search.
But what about small time developers, if everyone bought only big name stuff companys like Audio Damadge wouldnt be around today.

But how do you become a reputable company if your just starting out?
hurlingdervish wrote:The true test of an overly specific, pretentious, genre name, is how many sycophants line up to defend its bullshit when the copy-cats arrive on the scene, imitating the styles of people who had no conscience for the styles they were innovating.
User avatar
Fbac
 
Posts:
1069
Joined:
Sun Jan 23, 2011 1:45 am
Has Bigged up!:
0 time
Been Bigged up!:
0 time

Postby cloak and dagger » Fri Feb 11, 2011 1:31 am

also Tone2 is a somewhat "big name company"
cloak and dagger
 
Posts:
1146
Joined:
Fri Jun 02, 2006 1:09 pm
Location:
Sittin' on the curb debatin' how to get it percolatin'
Has Bigged up!:
0 time
Been Bigged up!:
0 time

Postby nowaysj » Fri Feb 11, 2011 8:04 am

tone2, indeed, pretty gnarly. There is a legal structure out there to protect developers, but it can be argued that that structure is failing them in practical application given the effects of technology. And it further stands to reason that if the lesson for everyone to learn is that we are in lawless environment where enforcement of intellectual property law is a practical impossibility given the magnitude of the supposed sharing, it is up to the individual developers to protect themselves. But it also stands to reason that consumer's knowledge of certain protective choices by developers will be seen as odious, and their products will therefore be avoided for that reason. It really is a difficult balancing act for everybody involved.

I heard about this when it went down, I haven't read tone2's eula, but it may be that they did not sufficiently cover their asses for some of the things that they did. They could be liable for damages to legitimate purchasers of their software. That would be ironic, wouldn't it?

In the history of war there have been shifts between defensive and offensive technology where each has held temporary supremacy. There was a time when the suit of armor as defensive measure was impenetrable, only later was offensive technology developed that rendered it useless as a defense. Same with tanks, etc etc. I think we are heading into a time where dev's defensive measures will gain dominance, and we will see much less hacking and cracking of consumer based software. I can only hope that there are sufficient freeware alternatives that this trend won't be a barrier to young, enthusiastic musicians and producers.

To your original point, op, I think other mid level developers have employed a few tricks up their sleeves that have gone undetected, or at least, unameliorated by the crackers. But I'm unaware of anything as downright slimey as tone2's tactics. I'd be interested to hear about it, if there were.
User avatar
nowaysj
 
Posts:
18829
Joined:
Fri Sep 18, 2009 5:11 am
Location:
San Jose
Has Bigged up!:
1741 times
Been Bigged up!:
665 times

Postby Fbac » Fri Feb 11, 2011 2:02 pm

Seems like this is an old heated debate, that i missed
after reading some Kvr and Ableton forums on the matter.

I have learnt that the company in question released a statement stating there as no malware and that it was a lie. (a compnay making a statment like that would be in legal problems should it not be true)

That it could not be from the original cracking team but an impersonater, impersonating the cracking team.

and my conspiracy theory is that Ni hired the tream to slander them thus allowing them to conquer the wavetable synth market. Then turned back into lizard people and went off to there sex caves under london/washington which is the same place but youve tricked into beliving is in two diffrent countries.

Official Tone2 release
http://www.kvraudio.com/forum/viewtopic.php?t=264647

Same thread as this but goes on for 13 pages... i got to page 3
http://forum.ableton.com/viewtopic.php? ... 9&start=30


p.s So much for the censoring part :confused:
hurlingdervish wrote:The true test of an overly specific, pretentious, genre name, is how many sycophants line up to defend its bullshit when the copy-cats arrive on the scene, imitating the styles of people who had no conscience for the styles they were innovating.
User avatar
Fbac
 
Posts:
1069
Joined:
Sun Jan 23, 2011 1:45 am
Has Bigged up!:
0 time
Been Bigged up!:
0 time

Postby Eridu » Fri Feb 11, 2011 3:01 pm

yeah if you google this you find threads mostly people quoting air`s statement (not sure if it is them at all) but I havent really stumbled upon a post of a legitimate buyer of their software that claims he had such issues.
User avatar
Eridu
 
Posts:
376
Joined:
Tue Dec 21, 2010 10:32 pm
Has Bigged up!:
0 time
Been Bigged up!:
1 time

Postby cloak and dagger » Fri Feb 11, 2011 4:05 pm

Eridu wrote:yeah if you google this you find threads mostly people quoting air`s statement (not sure if it is them at all) but I havent really stumbled upon a post of a legitimate buyer of their software that claims he had such issues.



There were definitely people on KVR that claimed this (and seemed to know what they were talking about). There were other people who didn't know anything of the piracy protection but were complaining how their firewall was blocking Tone2 software, and when it happened the software would crash. So I dunno, but going by the company's track record, I'm not taking any chances.
cloak and dagger
 
Posts:
1146
Joined:
Fri Jun 02, 2006 1:09 pm
Location:
Sittin' on the curb debatin' how to get it percolatin'
Has Bigged up!:
0 time
Been Bigged up!:
0 time


Return to Production, Hardware & Technical