uTorrent bundles bitcoin malware (Windows, OS X, Wine on Linux)

uTorrent’s latest update may be hijacking computers to turn a profit. According to a report from Trusted Reviews, the latest update to the popular torrent management software comes bundled with a program called Epic Scale, a Windows program that uses the computer’s processor to mine a bitcoin variant called Litecoin in the background. Many users were unaware that their computers were being used to mine the currency, and only discovered the program was running after noticing the significant increase in processor load.

In a statement to The Verge, uTorrent’s parent company BitTorrent confirmed that the program was bundled, but disputed that it was happening without user consent. “We have reviewed the issue closely and can confirm there is no silent install happening… Most likely these users accepted the offer during install,” a representative wrote. “Like many software companies, we have partner offers in our install path and our policy is that they are strictly optional.”

Bitcoin miners are a common way for botnet owners to make a profit off of compromised machines, leaving users to bear the cost of the excess computing power, which has left a lot of mining software with a less than savory reputation. Users that don’t notice the program may find significantly decreased performance as a result. In a forum thread, uTorrent recommended that dissatisfied users uninstall Epic Scale and remove the associated folder.
Source: uTorrent's latest update installs a cryptocurrency miner - The Verge

Another assault on user privacy and their control over their software - the uTorrent client now defaults to installing a bitcoin miner in the background unless you do a specific “Custom” installation - whilst this is again Windows and Mac mainly, you might run into this if you run uTorrent-on-Wine.

This needs to stop and companies need to get nailed to the wall for these practices, just like they do when they bundle spyware with computers.

Ooh ounch, uTorrent was one of the better bit torrent clients on windows too.

But who used it after they started bundling toolbars via creative installers?

Apparently many many millions.

Same with Java, Flash, **** starts at the top and trickles down :slight_smile:

I see a twist with bitmining but if it goes like it always does uTorrent is not a dead product.

If some user groups are permanently annoyed uTorrent can do what others have done before. Release a “lite” or “clean” version, or add some half hidden toggles. Brand loyalty is easily bought and most like the sense of being catered to.

Normal users do not care I guess.

Doomed :slight_smile:

Hi
This is another one that contains a miner…
https://forums.opensuse.org/showthread.php/502825-Ultracopier-supercopier-build-request?highlight=bitcoin

Can be difficult but would be nice if people simply cut relationship with product. Is only actions that really counts.

Is also tricky because plain logic will suggest if you get something for free there will be other ways to pay. Motherships of most products are not charity organizations. Is accepted by many, like ads are in general. And products MUST be free in order to make money off them, lol. Is how much of Windows eco-system runs, at least some of the stuff that used to be “freeware”. Is some hybrid with “extras”, including bitmining for some people!

Anyway, Java for Windows has actually improved. Cant test right now but took a screenshot.

In Java Control Panel go to “Advanced”, then scroll down to “Miscellaneous” and there should be a new option “Suppress sponsor offers when installing or updating Java”.

I read Oracle recently started to bundle toolbars with Mac version so they are not done yet!

On Mon 09 Mar 2015 04:56:06 AM CDT, malcolmlewis wrote:

Hi
This is another one that contains a miner…
http://tinyurl.com/mbaazpm

Interesting firefox blocked the download of the ultra software source
code… saying it contained malware… nice :wink:


Cheers Malcolm °¿° LFCS, SUSE Knowledge Partner (Linux Counter #276890)
SUSE Linux Enterprise Desktop 12 GNOME 3.10.1 Kernel 3.12.36-38-default
If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below… Thanks!

They caved in and have ‘suspended’ the distribution of the software: http://forum.utorrent.com/topic/95069-epic-scale-offer-on-hold-uninstall-instructions/

Still, incredibly stupid considering what’s been going on in the last few months.

Hmmm… Something is wrong in the “kingdom of Sweden” (Kingdom of Denmark, Shakespeare’s Hamlet).

-utorrent was developed in Sweden, now Bittorrent Inc owns the code
-Skype was developed in Sweden, now MS…
-Mysql was developed in Sweden(and one Fin), now Oracle… (thanks for Mariadb by the way)
-Minecraft was developed in Sweden, now MS…

Greedy people, -why not? The example of mysql/mariadb is refreshing. I hope that Nokia(Finland) will raise again after their sale of Nokia mobile(cell)phones to MS and they can use The Nokia name on gadgets soon again.

I found it a much larger problem in Win with malware/unwanted software. On the other hand I feel sometimes that I’m sitting in the knees of developers for Linux. A lot of unwanted changes and problems in new dist’s.

Ok. I made my choice. Run Linux. Accept developers choice. But that doesn’t mean that I have to agree with them. Rant, whining :P.

regards

Good :slight_smile: But given their history I am still in doomsday mode. “I cannot trust a company which blah blah”. Person already actively support a company making full use of all tricks in the book, including in-program advertising. “Informative” post comes after, not before - because transparency is work of the devil for these people.

Is the old battle of personal convenience and preferences/habits that is going on. But apparently there are limits and so uTorrent do not stop but “evaluate”. Last words not spoken but program is already bad example so may be they will just settle for that? May be they forgot they also sell a “Pro” version. Should perhaps focus on improving business there. I would not be surprised if they make more money off “free” than “Pro” version.

Cant remember who it was but years ago a dev with a fairly popular Windows freeware program started doing bundle trick. He did communicate it out though and when someone suggested he put price tag on he said the truth is only few will buy and he will get more money via 3rd party help. Today it is probably not even a question for many.

Not sure they still do it but SourceForge used to offer a middleman position with devs. Would supply them with funny installer http://www.ghacks.net/2013/07/17/sourceforges-new-installer-bundles-program-downloads-with-adware/

So no point in getting all upset really, just normal. “How to make money” is not easy to answer so when someone offer solution I guess tempting to roll with it. Ubuntu did that with their Amazon deal :slight_smile:

Except its not really malware in Ubuntu, there is no proof it is other then Stallman crying about it just because he thinks we all should be using command line all the time.

Think Stallman called it spyware not malware against users.

Cannonical went with a “great searching experience” for consumers.