Ever seen a warning about a "PUP" or "PUA" on your computer and panicked? Relax, it's likely not the digital equivalent of a monster under your bed. Let's demystify these terms and understand why they might show up (and why you can often breathe easy).

Understanding the term and origin

In the early days of computer protection, the Anti-Virus industry had a big debate on “should we detect trojans”, The argument was we are Anti-VIrus, we detect self-replicating code vs the end users want us to detect all forms of threats on their computers.

Fast forward, as corporations deployed antivirus software they had more stringent concerns and rules about what software could be run on corporate assets.  As anti-virus was already deployed on a majority of corporate machines, what better to manage compliance than that?  Since they were the owners of the computers as well as the largest customers of the anti-virus, they wanted a way to detect unauthorized/ “unwanted” applications on corporate machines.  

From this, the industry developed a subjective categorization of Potentially Unwanted Program (PUP) and Potentially Unwanted Application (PUA).  In the early days, this was primarily things like adware, but it extended much further to other legitimate software.  

What is a potentially unwanted program (PUP)?

Potentially Unwanted Programs are programs that security software flags because they might exhibit behaviors you wouldn't expect or want, like:

• Showing excessive ads: Imagine a browser toolbar that bombards you with pop-ups.
• Tracking your online activity and collect : This data collection can be used for targeted advertising, which can be creepy.
• Bundling with other software: You download a free app, and suddenly, you have a new "bonus" program you didn't ask for.
• Other software: Software that may not be suitable for corporate environments.  Examples are legal, legitimate coin miners,  system administration tools or other applications that consume resources or perform unwanted activities in a corporate environment.

Why are PUPs on my computer?

Potentially unwanted programs often come bundled with free software, pre-selected during installation if you don't pay close attention. They can also be downloaded through deceptive advertising or hidden within other programs. 

When you're installing a legitimate software, a prompt may pop up asking you to read the terms and conditions and to check a box to proceed with the download. During the installation process, there may also be a box prompting you to download additional, unwanted software, with the box already checked and unclear options to opt out. If you rush through this process without paying attention, you might end up agreeing to download the unwanted and potentially unwanted applications. These programs then download and install themselves while you're installing the original desired software.

Types of PUPs

PUPs include a variety of software designed to inflict varying levels of harm on the user. Numerous PUPs employ established techniques to achieve this. PUPs may include, but are not limited to:

• Adware: Adware is software that displays unwanted advertisements on your device, often through pop-up windows or banners within a program's user interface. This type of software can slow down your device and compromise your privacy and security by tracking your online activity to display targeted ads.
• Browser hijackers: These are another type of PUP that can cause unwanted behavior in your device. Browser hijackers are malicious software programs that modify web browser settings without the user's permission, redirecting users to unintended websites. These hijackers, often referred to as browser redirect viruses, aim to generate unwanted advertising revenue and frequently direct users to malicious sites.
• Spyware: Spyware is a malware that invades a device to steal sensitive data and track internet usage without the user's knowledge or consent. It can monitor keystrokes, capture passwords, and other sensitive information, which is then either sold to advertisers or used to compromise privacy and security.

Should I worry about PUPs/PUAs?

While PUPs/PUAs can be annoying, they're usually not malicious in the way viruses or ransomware are. When you encounter them, you don't always necessarily have to block potentially unwanted applications. They don't typically steal your data or harm your system directly. Some are legitimate user productivity or specialized products you want.  However, some can slow down your computer, bombard you with ads, and invade your privacy. The question is, did you want the program, and did you knowingly and willfully install it?

Corporate vs. Home User Perspective:

It's important to understand that security software often prioritizes protecting businesses from even mildly suspicious programs. So, what might trigger a warning for a corporate user focused on data security might not be a concern for a home user browsing social media.

Turning off PUA Detection:

Most security software allows you to disable PUA detection. While convenient, it might let truly unwanted programs slip through the cracks. Only consider this if you're confident understanding the risks and are comfortable with slightly less stringent protection.

How to avoid PUPs:

It's very important to be cautious when downloading software from the internet. Remember:

• Be mindful when installing free software, unchecking any pre-selected extras you don't want.
• Keep your security software updated for general protection.
• If a PUA warning pops up and you understand the risks, disabling detection is an option.
• When installing “bundled” software, check the reputation, do they follow standards such as those published by AppEsteem and the Clean Software Alliance?
• While installing free software, are the advisories, add-ons, or offers given in a way that you understand what they are offering?

So, the next time you see a PUA warning, remember, it's likely more of a nuisance than a nightmare. Stay informed, stay safe, and enjoy your digital adventures!

‍