National Post

When clicking ‘OK’ isn’t

Google Montreal battling sneaky software front

- Josh McConnell

Many Internet users have become familiar with the necessary steps to stay safe from malware and viruses, but hidden in plain sight beside l egitimate online products are now businesses that make money by tricking users into downloadin­g look- a- like offerings that slow down or damage computers.

Hard at work in Google’s Montreal office is a small team that’s quietly making the Internet a safer place f or more t han a billion people around the world.

Since 2008, t he t eam — 10 developers and five analysts — has been fighting back against not just viruses and malware, but also the growing problem of unwanted software that sneaks into people’s computers.

“Malware often uses tricks or a vulnerabil­ity in a user’s machine to get installed, whereas unwanted software often looks very legitimate because users are looking for something they want but it gets on user’s machines in a deceptive way,” said Nav Jagpal, a software developer on Google Montreal’s Safe Browsing team.

“Once installed, it does things to your machine that are very disruptive.”

For example, if someone is looking for a program like Adobe Flash, they might search Google and get a page full of results. Often the first result is correct, but others might look just as plausible and when clicked has a page with the software’s name and a big download button. Instead of Adobe Flash, however, it ends up being software that might permanentl­y change the default search engine or continuall­y cause pop-ups.

“This is an economic problem. This is a problem with an industry that is financiall­y motivated to get stuff on to your computer that you don’t want,” said Robert Shield, another Montreal- based developer on Google’s Safe Browsing team. “The thing that the team does here, the work we’ve been doing over these past number of years, is to make it a little bit harder for this stuff to happen.”

The Montreal group creates what is essentiall­y a database of known sites or files that are problemati­c, plus a warning system — often a big, scary- looking screen — that’s triggered when a user stumbles across them. The database is continuall­y updated and offered for other companies to use for free, and it’s already built into most popular web browsers including Google Chrome, Mozilla Firefox and Apple Safari — meaning this team of Canadians are already protecting millions globally, regardless of someone using Google’s other services or not.

“The problem is this move toward social engineerin­g, which is convincing people to click ‘ OK’ under some kind of false pretence,” said Fabrice Jaubert, the Google software developer who also heads up the Safe Browsing team. “Maybe there’s something you’re led to believe you want, or it’s something you truly want but it comes packaged with other stuff and you’re not aware you’re installing 10 other things, then those things on their own pull other things in like bloatware.”

Warning users is just a temporary solution though, as ideally Google would like unwanted software to not exist in the first place, Jagpal said. Unlike people who release malware anonymousl­y, companies who create unwanted software often have contact informatio­n or technical support, so Google has taken things a step further by reaching out to them directly or through industry groups like the Clean Software Alliance.

“All of us sit in a room together and try to understand everybody’s perspectiv­e,” said Jagpal. “We can explain our perspectiv­e about how we don’t want users to have the unpleasant surprise and the people who are creating the software will often try to explain their point of view and how they got to this point. Often it is a lot of finger-pointing.”

The companies are told they are investing a lot of money into trying to mislead people instead of creating a better product, said Jagpal, and if things continue then they’ll just continue to become more like malware.

“Some of these companies are trying to run legitimate shops and they want to compete on the value of their software rather than the deception,” he said.

Already tens of millions of people see warnings from t he Safe Browsing t eam every week, according to Google’s transparen­cy report, and by continuall­y flagging problems over the years the group has seen successes such as getting most vendors to fix security flaws or making a big dent in how malware is distribute­d, said Jaubert.

“Our goal is to make it so that the average person browsing the web is no longer accidental­ly exposed without any kind of warning,” he said. “Once people are fully informed and they make the choice they want to make, that’s fair, but at least we’ve given them a chance to be protected.”

The most important thing for people to do is heed the warnings, said Shield, because they are there to protect the user’s computers and stop the problemati­c company’s revenue.

“The Internet is great and it has wonderful tools and content, but if you can’t use it safely then it detracts from everything else,” he said. “The team here is making it possible to browse the Internet and to view all of this content while staying safe, and it makes me happy to come to work every day.”

YOU’RE NOT AWARE YOU’RE INSTALLING 10 OTHER THINGS.

?? JOHN MAHONEY / POSTMEDIA NEWS ?? Staff software developers Nav Jagpal, left, and Fabric Jaubert at Google’s office in Montreal. They are among a group of Google employees who are trying to make the Internet a safer place by tracking suspicious websites or downloads.
JOHN MAHONEY / POSTMEDIA NEWS Staff software developers Nav Jagpal, left, and Fabric Jaubert at Google’s office in Montreal. They are among a group of Google employees who are trying to make the Internet a safer place by tracking suspicious websites or downloads.

Newspapers in English

Newspapers from Canada