Exhibit A: The alarmist Zone Alarm prompt
Exhibit B: A warning from a fake antimalware product
It's really unfortunate that the designers of this prompt did not take the time to think about how their users might interpret it. Real antimalware software should never ever stoop to the level of fake antimalware software; taking marketing advice from malware writers completely undermines the advice tech-savvy users give their friends: ignore these types of messages.
ZoneAlarm's customers are enraged, calling the notification a scare tactic, and many of them have opted to uninstall the software. A thread on the company's forums has now been set as a Sticky, amassing 60 posts and over 27,000 views at the time of this writing.
"We thought we were being proactive with our virus message," a Check Point spokesperson told Ars. "After listening to consumer feedback, we realized that it was misinterpreted and have turned the pop-up message off... It was never our intent to lead customers to believe they have a virus on their computer. This was purely an informative message about a legitimate and serious virus that also included information about the differences in protection of various products, and how to get protection against it."
Let this be a lesson to all security companies: the marketing department should not be allowed to make security warning decisions.
If it is, then its a case of "double-dipping". You pay once for virus-protection and all the updates for a year. Anything from $40-$100 plus.
But this leads me to the con that is foisted on us each year:
The greater part of the work invested in the software has to be in the program. The logically right way to charge would be an up-front fee covering the program development and first years virus definitions, and then each year a maintenance fee to cover ongoing development of the virus signatures for virii found each year.
So ... why do we have to keep on paying the intitial development fee?