Rogue Security Software
What is Rogue Security Software?
Rogue Security SoftwareFake antivirus or system-cleaning software that pretends to find threats and demands payment to fix them, while often installing real malware itself.
Rogue security software masquerades as a legitimate antivirus, anti-spyware, or PC cleaner product. After installation it runs a fake scan that always reports many "infections" and prompts the user to buy a paid license to remove them. The application typically does nothing useful, may degrade system performance, and frequently bundles real malware such as info stealers, adware, or backdoors. Distribution channels include scareware pop-ups, malvertising, software cracks, and bundled installers. Defences include using only reputable security products, blocking known rogue domains, enforcing application allow-listing, removing local admin rights, and educating users to ignore unsolicited "infection" warnings from web pages.
● Examples
- 01
"SystemDoctor" and "WinFixer" families demanding payment to remove fictitious infections.
- 02
MacSweeper and MacKeeper-style products historically using aggressive scareware advertising.
● Frequently asked questions
What is Rogue Security Software?
Fake antivirus or system-cleaning software that pretends to find threats and demands payment to fix them, while often installing real malware itself. It belongs to the Malware category of cybersecurity.
What does Rogue Security Software mean?
Fake antivirus or system-cleaning software that pretends to find threats and demands payment to fix them, while often installing real malware itself.
How do you defend against Rogue Security Software?
Defences for Rogue Security Software typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Rogue Security Software?
Common alternative names include: Fake antivirus, Rogueware.