Genieo Innovation is an
Israeli company, specializing in unwanted software which includes advertising and user tracking software, commonly referred to as a ''
potentially unwanted program
A potentially unwanted program (PUP) or potentially unwanted application (PUA) is software that a user may perceive as unwanted or unnecessary. It is used as a subjective tagging criterion by security and parental control products. Such software ma ...
'', ''
adware
Adware, often called advertising-supported software by its developers, is software that generates revenue for its developer by automatically generating online advertisements in the user interface of the software or on a screen presented to the ...
'',
[Apple Cracks Down on Adware](_blank)
/ref> ''privacy-invasive software
Privacy-invasive software is software that violates the user's privacy, ranging from legitimate software to malware.
Background
In a digital setting, such as the Internet, there are a wide variety of privacy threats. These vary from the tra ...
'', ''grayware Greyware may refer to:
* Grey ware, a type of pottery made of a grey paste
* Grayware, unwanted applications or files that are not classified as malware, but can worsen the performance of computers and cause security risks
* Greyware Automation Pro ...
'', or ''malware
Malware (a portmanteau for ''malicious software'') is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, depri ...
''. They are best known for Genieo, an application of this type. They also own and operate InstallMac which distributes additional 'optional' search modifying software with other applications. In 2014, Genieo Innovation was acquired for $34 million by Somoto,[Somoto Acquires Genieo for 34M](_blank)
/ref> another company which "bundles legitimate applications with offers for additional third party applications that may be unwanted by the user".[Sophos Threat Center — Somoto](_blank)
/ref> This sector of the Israeli software industry is frequently referred to as Download Valley
Download Valley is a cluster of software companies in Israel, producing and delivering adware to be installed alongside downloads of other software. The primary purpose is to monetize shareware and downloads. These software items are commonly brow ...
.[Hate Pop-Up Ads? Microsoft tries drawing line in the sand](_blank)
Wall Street Journal, Orr Hirschauge, June 4, 2014
History
Genieo Innovation was founded in April 2008 by Sol Tzvi and Jacob Tenenboem.
The first version of Genieo was released in September 2009, and the beta version was launched at the Demo2010 conference in March 2010.
Genieo's website has been down and it is suspected that it has changed its name to InKeepr.
Overview
The software installs itself onto computers and makes it almost impossible for users to remove it. It hijacks the user's browser and tracks browser usage with the intention of mining information. Users complain that it acts like a virus and they need to run special programs to remove it.
Malware issues
Genieo is listed as malware
Malware (a portmanteau for ''malicious software'') is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, depri ...
in Apple Inc.
Apple Inc. is an American multinational technology company headquartered in Cupertino, California, United States. Apple is the largest technology company by revenue (totaling in 2021) and, as of June 2022, is the world's biggest company b ...
's XProtect anti-malware service, which built in to all Macintosh
The Mac (known as Macintosh until 1999) is a family of personal computers designed and marketed by Apple Inc., Apple Inc. Macs are known for their ease of use and minimalist designs, and are popular among students, creative professionals, and ...
computers running Mac OS X Snow Leopard or later.
In May 2013, a malicious installer, distributed by Genieo partner Softonic
Softonic.com is a web portal based in Barcelona, Catalonia, Spain. It was founded in June 1997 and is owned by Softonic International.
History
Softonic started in 1996 as a file-oriented download service called Shareware Intercom, at Intercom ...
, was found by security software company Intego. The installer masquerades as a necessary update to Adobe Flash Player and attempts to install Genieo.app without user interaction. Dynamic libraries are added to the Safari browser, which intercept searches intended for Bing and Google.
Other versions of Genieo for Mac have also been offered as 'codecs' required for video playback. Testing carried out on Genieo for Mac in June 2013 found that it left active software behind even after using the supplied uninstaller, which required detailed manual removal.
In November 2013, another fake application installer was reported to include Genieo adware.
In January 2014, Sophos
Sophos Group plc is a British based security software and hardware company. Sophos develops products for communication endpoint, encryption, network security, email security, mobile security and unified threat management. Sophos is primarily ...
added Genieo for Mac to their threat list; in the category Viruses and Spyware
Spyware (a portmanteau for spying software) is software with malicious behaviour that aims to gather information about a person or organization and send it to another entity in a way that harms the user—for example, by violating their privac ...
: Trojan horse (computing)
In computing, a Trojan horse is any malware that misleads users of its true intent. The term is derived from the Ancient Greek story of the deceptive Trojan Horse that led to the fall of the city of Troy.
Trojans generally spread by some form ...
: Adware
Adware, often called advertising-supported software by its developers, is software that generates revenue for its developer by automatically generating online advertisements in the user interface of the software or on a screen presented to the ...
.
As of November 2014, Genieo for Mac is flagged by Intego (mentioned above) and, according to an analysis at VirusTotal
VirusTotal is a website created by the Spanish security company Hispasec Sistemas. Launched in June 2004, it was acquired by Google in September 2012. The company's ownership switched in January 2018 to Chronicle, a subsidiary of Google.
Viru ...
, by 25 (out of 55 surveyed) anti-malware solutions, including Ad-Aware
Adaware, formerly known as Lavasoft, is a software development company that produces spyware and malware detection software, including Adaware. It operates as a subsidiary of Avanquest a division of Claranova.
The company offers Adaware in ...
, Avast!, Bitdefender, Comodo, Dr. Web
Dr.Web is a software suite developed by Russian anti-malware company Doctor Web. First released in 1992, it became the first anti-virus service in Russia.
The company also offers anti-spam solutions and is used by Yandex to scan e-mail attachment ...
, ESET, Fortinet, F-Secure, Kaspersky
Kaspersky Lab (; Russian: Лаборатория Касперского, tr. ''Laboratoriya Kasperskogo'') is a Russian multinational cybersecurity and anti-virus provider headquartered in Moscow, Russia, and operated by a holding company in th ...
, Trend Micro Housecall, Sophos
Sophos Group plc is a British based security software and hardware company. Sophos develops products for communication endpoint, encryption, network security, email security, mobile security and unified threat management. Sophos is primarily ...
and Symantec Symantec may refer to:
*An American consumer software company now known as Gen Digital Inc.
*A brand of enterprise security software purchased by Broadcom Inc.
Broadcom Inc. is an American designer, developer, manufacturer and global supplier ...
In July 2014, Genieo was acquired for $34 million by Somoto, another company which "bundles legitimate applications with offers for additional third party applications that may be unwanted by the user."
In August 2015, malware researchers discovered a Genieo installer which acquired access to the Mac keychain, by an automated click on "allow", when the permission dialog for the keychain was displayed.
Genieo installer tricks keychain - Malwarebytes The code was in a Safari browser extension added by Genieo, and was also contained, but not immediately used, in earlier versions of the installer.
Genieo case became the impetus for the rapid emergence of similar adware: Only Search, MacShop Ads, MacVX, etc.
See also
*Spyware
Spyware (a portmanteau for spying software) is software with malicious behaviour that aims to gather information about a person or organization and send it to another entity in a way that harms the user—for example, by violating their privac ...
*Personalization
Personalization (broadly known as customization) consists of tailoring a service or a product to accommodate specific individuals, sometimes tied to groups or segments of individuals. A wide variety of organizations use personalization to improv ...
* Adaptive hypermedia
*Behavioral targeting
Targeted advertising is a form of advertising, including online advertising, that is directed towards an audience with certain traits, based on the product or person the advertiser is promoting. These traits can either be demographic with a focus ...
References
{{Reflist, 30em
Software companies of Israel
Adware
Online advertising
MacOS malware
Spyware companies