Micro Bill Systems

Last updated

Micro Bill Systems, also known as MicroBillSys, MBS and Platte Media, is an online collection service with offices in Leeds, England, [1] considered to be malware. [2] The company states that it is a professional billing company offering "software management solutions that can aid your business in reducing uncollectable payments." [3] The company's best-known clients are online gambling and pornography sites offering three-day free trials of their subscription-based services. [2] [4] If users do not cancel during the trial period, the MBS software begins a repeating cycle of full-screen pop-up windows warning users that their account is overdue and demanding payment.

Contents

The eleven-page MBS end-user license agreement contains a clause stating that unless the bill is paid, the software will disrupt computer use longer each day, [5] with up to four daily periods of 10 minutes when the pop-up payment demand is locked and cannot be closed or minimized. [2] Users have complained about the unexpected bills, feel victimized, and deny ever accessing the video sites they are being billed for. [2] MBS denies installing its software by stealthy means and says that the software is downloaded by consent. [2] Many consumers are unaware that they have agreed to the download. [6]

Security software company Symantec describes MicroBillSys as a potentially unwanted application that uses aggressive billing and collection techniques to demand payment after a three-day trial period, and says that there are reports of these techniques leaving the computer unable to browse the Internet. [7]

Operation

When a user first accesses an online service whose collections are managed by MBS, the sign-up software creates a unique identifier based on the user's computer configuration and IP address. This identifier permits MBS to maintain a history of user access to supported sites and to send billing notices directly to the user's computer without the consumer ever having entered a name, credit card number, or other personal information. [3]

The billing notices take the form of repeating pop-up windows warning users that their account is overdue and demanding payment for a 30-day subscription. Typical amounts are £19.95 (US$35.00) or £29.95 (US$52.50). [8] The pop-ups cover a substantial area of the screen and often cannot be closed, effectively preventing use of the computer for up to ten minutes. Their number and frequency increases over time, and to stop them consumers must pay. [6] According to the company's terms and conditions, the agreement can be canceled and the software uninstalled only when no balance is outstanding. [9]

For some who don't pay, Platte sends letters addressed to "the computer owner" threatening legal action in small claims court. The letters, described by one recipient as a "sham county court notice", include a "pre submission" information form which could mislead the unwary into thinking it comes from "Issuing Court Northampton County Court". It is unclear how Platte derives street addresses from IP addresses for these mailings, as ISPs interviewed deny providing such information. By filling out the information form and returning it, users provide Platte with their full name in addition to their correct mailing address. [10] Similarly, users who complain to Platte by email or telephone are asked for their names and addresses so that uninstall codes can be mailed out. Payment demands follow. [11] Later Platte began using a debt collection agency to try to pressurise people into making payments. In these cases, a charge is added to the 'subscription'.

MBS clients

MBS's initial clients were two adult content web sites. [6] After being acquired by Platte Media (Platte International) in early 2008, the company expanded to include the promise of access to Hollywood movies from Getfilmsnow. Film studios Warner Bros. and 20th Century Fox have sent Getfilmsnow a cease and desist order, and say they have not licensed the films Platte is advertising. [8]

While Platte's website presents the company as a mainstream media distribution company, an interview on the Radio Four programme You and Yours with ex-managing director of MBS, Ashley Bateup, indicates that the bulk of the full videos on the site are either black and white, or of a pornographic nature. [12] [13]

Consumer complaints

The UK's Office of Fair Trading (OFT), charged with promoting and protecting consumer interests in the UK, received numerous complaints about the pop-up payment demands from consumers who said they had not realized they were agreeing to be billed. [8] A number of them stated that the pop-up software had been downloaded without the computer having been used to access an MBS client site. The OFT said it was acting in the interests of those consumers whose access to MBS sites was confirmed, but it had no legal jurisdiction to deal with the issue of software being downloaded without consent. [6]

MBS position

MBS denies installing its software by stealthy means, and says that the software is downloaded by consent when users visit an MBS client site. [2] A malware researcher at computer security company Prevx found no evidence of surreptitious installations. [2] A journalist investigating the complaints called the installation process "unmistakable", with "a download, clicking through screens, and entering a four-digit number." [8] Among the required steps is acceptance of an eleven-page end-user license agreement that includes the clause: [5]

If You choose to ignore the payment reminders and do not pay the Membership Fee, You hereby understand and acknowledge that the prompt reminders may become more frequent and that You may lose the ability to use Your computer until You have submitted payment. The payment reminders will be active while your computer is online or offline.

The company says that when it looks into complaints, usually a member of the household has downloaded the software without reading the terms and conditions, and once the billing pop-ups begin they refuse to admit their use to the computer owner. The owner then assumes that the computer is somehow infected. The company says "Our customer service team's experience is that people seem to move into denial with their spouses or partners when pornography use is at question." [2]

The software is difficult for non-technical users to remove, due in part to its use of mutually protective executable files. The company says that if the software were easy to remove, many people would not pay for the services already consumed. [2]

Undertakings

In response to the complaints, the Office of Fair Trading reviewed the MBS sign-up process and the fairness of its terms and conditions. On 27 March 2008, the OFT announced MBS/Platte Media "undertakings", or pledges, to make the sign-up process more fair and setting limits on the amount of disruption the pop-up payment demands could cause. [6]

The company promised to make clear in the sign-up process that the customer is entering into a contract, and that billing pop-ups will appear after the trial period ends. They also promised "to provide information about how consumers can have the 'pop-up' generating software uninstalled at any time". [6]

The company promised to not cause more than 20 pop-ups, to not cause more than one pop-up in any 24-hour period, and to not cause pop-ups "beyond the expiry of six weeks after payment has become due". They also promised to not cause more than ten locked-open pop-ups, and to not cause locked-open pop-ups to remain locked for more than 60 seconds. Payment demands delivered as other than pop-up windows are not restricted. [6]

Statements by authorities

In announcing the MBS undertakings, the Office of Fair Trading's Head of Consumer Protection said "We believe that [the undertakings] achieve the right balance between protecting consumer interests without stifling innovation in the 'on-line' market place." [6]

A local authority in the locale of the MBS Leeds office charged with preventing exploitation of vulnerable consumers, the West Yorkshire Trading Standards, has received hundreds of complaints about the pop-ups. A spokesman for the authority said "It is our opinion at this time that the company is operating within the bounds of existing legislation and as such it would be difficult to take any formal legal action against them." [14]

One woman whose family computer was caught up in the pop-up cycle was interviewed in The Guardian . She wonders, if the company's activities are indeed legitimate as maintained by West Yorkshire Trading Standards, why hasn't pressure been put on the Office of Fair Trading to tighten up the law? [14]

Shutdown in the UK

On 9 March 2009, and following a protracted letterwriting campaign conducted by the Platte/MBS Victims Forum Martin Horwood MP raised a question in the House of Commons about the activities of Platte and specifically about the number of complaints that had been received by the OFT and Trading Standards about its activities. In response, he was informed that Platte had ceased trading in the UK with effect from 25 February 2009. [15] No specific reason was given for this withdrawal, but it is fair to assume that the continued resistance by British consumers to what they regarded as an unfair business model must have played a part in its decision, along with the threat of action by HM Revenue concerning possible non-payment of VAT. [15] In an email to Michael Pollitt, the company said it had stopped operating in the UK, and that "Our reasons for this decision and our further intentions are simply related to our original marketing and business model", adding: "Obviously, and just like any other business should and would do, I am making sure that stopping our marketing to the UK Market, is done in such a sensible and orderly manner, that will best preserve the interests of our customers and of our own." [16]

See also

Related Research Articles

Spyware is any software with malicious behavior that aims to gather information about a person or organization and send it to another entity in a way that harms the user by violating their privacy, endangering their device's security, or other means. This behavior may be present in malware and in legitimate software. Websites may engage in spyware behaviors like web tracking. Hardware devices may also be affected.

<span class="mw-page-title-main">Source Mage</span> Linux distribution

Source Mage is a source-based Linux distribution descended from Sorcerer. Components of this operating system are downloaded as source code and compiled locally on the user's computer.

<i>Which?</i> Brand name of Consumers Association, a UK organisation promoting informed consumer choice

Which? is a United Kingdom brand name that promotes informed consumer choice in the purchase of goods and services by testing products, highlighting inferior products or services, raising awareness of consumer rights, and offering independent advice. The brand name is used by the Consumers' Association, a registered charity and company limited by guarantee that owns several businesses, including Which? Financial Services Limited, Which? Legal Limited and Which? Limited, which publishes the Which? Papers.

Pop-up ads or pop-ups are forms of online advertising on the World Wide Web. A pop-up is a graphical user interface (GUI) display area, usually a small window, that suddenly appears in the foreground of the visual interface. The pop-up window containing an advertisement is usually generated by JavaScript that uses cross-site scripting (XSS), sometimes with a secondary payload that uses Adobe Flash. They can also be generated by other vulnerabilities/security holes in browser security.

Software copyright is the application of copyright in law to machine-readable software. While many of the legal principles and policy debates concerning software copyright have close parallels in other domains of copyright law, there are a number of distinctive issues that arise with software. This article primarily focuses on topics particular to software.

Criticism of Microsoft has followed various aspects of its products and business practices. Issues with ease of use, robustness, and security of the company's software are common targets for critics. In the 2000s, a number of malware mishaps targeted security flaws in Windows and other products. Microsoft was also accused of locking vendors and consumers in to their products, and of not following or complying with existing standards in its software. Total cost of ownership comparisons between Linux and Microsoft Windows are a continuous point of debate.

<span class="mw-page-title-main">BonziBuddy</span> Former freeware desktop assistant

BonziBuddy was a freeware desktop virtual assistant created by Joe and Jay Bonzi. Upon a user's choice, it would share jokes and facts, manage downloads, sing songs, and talk, among other functions, as it used Microsoft Agent.

<span class="mw-page-title-main">Spybot – Search & Destroy</span> Spyware removal software

Spybot – Search & Destroy (S&D) is a spyware and adware removal computer program compatible with Microsoft Windows. Dating back to the first Adwares in 2000, Spybot scans the computer hard disk and/or RAM for malicious software.

<span class="mw-page-title-main">Scareware</span> Malware designed to elicit fear, shock, or anxiety

Scareware is a form of malware which uses social engineering to cause shock, anxiety, or the perception of a threat in order to manipulate users into buying unwanted software. Scareware is part of a class of malicious software that includes rogue security software, ransomware and other scam software that tricks users into believing their computer is infected with a virus, then suggests that they download and pay for fake antivirus software to remove it. Usually the virus is fictional and the software is non-functional or malware itself. According to the Anti-Phishing Working Group, the number of scareware packages in circulation rose from 2,850 to 9,287 in the second half of 2008. In the first half of 2009, the APWG identified a 585% increase in scareware programs.

Direct Revenue was a New York City company which distributed software that displays pop-up advertising on web browsers. It was founded in 2002 and funded by Insight Venture Partners, known for creating adware programs. Direct Revenue included Soho Digital and Soho Digital International. Its competitors included Claria, When-U, Ask.com and products created by eXact Advertising. The company's major clients included Priceline, Travelocity, American Express, and Ford Motors. Direct Revenue's largest distributors were Advertising.com and 247 Media. In October 2007, Direct Revenue closed its doors.

The Office of Fair Trading (OFT) was a non-ministerial government department of the United Kingdom, established by the Fair Trading Act 1973, which enforced both consumer protection and competition law, acting as the United Kingdom's economic regulator. The intention was for the OFT to make markets work well for consumers, ensuring vigorous competition between fair-dealing businesses and prohibiting unfair practices such as rogue trading, scams, and cartels. Its role was modified and its powers changed by the Enterprise Act 2002.

<span class="mw-page-title-main">WinFixer</span> Rogue security software

WinFixer was a family of scareware rogue security programs developed by Winsoftware which claimed to repair computer system problems on Microsoft Windows computers if a user purchased the full version of the software. The software was mainly installed without the user's consent. McAfee claimed that "the primary function of the free version appears to be to alarm the user into paying for registration, at least partially based on false or erroneous detections." The program prompted the user to purchase a paid copy of the program.

<span class="mw-page-title-main">Sony BMG copy protection rootkit scandal</span> Sony BMGs implementation of copy protection measures

The Sony BMG CD copy protection rootkit scandal was a scandal focused on the implementation of copy protection measures on about 22 million CDs distributed by Sony BMG in 2005. When inserted into a computer, the CDs installed one of two pieces of software that provided a form of digital rights management (DRM) by modifying the operating system to interfere with CD copying. Neither program could easily be uninstalled, and they created vulnerabilities that were exploited by unrelated malware. One of the programs would install and "phone home" with reports on the user's private listening habits, even if the user refused its end-user license agreement (EULA), while the other was not mentioned in the EULA at all. Both programs contained code from several pieces of copylefted free software in an apparent infringement of copyright, and configured the operating system to hide the software's existence, leading to both programs being classified as rootkits.

<span class="mw-page-title-main">Zango (company)</span>

Zango,, formerly ePIPO, 180solutions and Hotbar, was a software company that provided users access to its partners' videos, games, tools and utilities in exchange for viewing targeted advertising placed on their computers. Zango software is listed as adware by Symantec, and is also labeled as a potentially unwanted program by McAfee. Zango was co-founded by two brothers: Keith Smith, who served as the CEO; and Ken Smith, who served as the CTO.

<span class="mw-page-title-main">Movieland</span> Former subscription-based movie download service

Movieland, also known as Movieland.com, Moviepass.tv and Popcorn.net, was a subscription-based movie download service that has been the subject of thousands of complaints to the Federal Trade Commission, the Washington State Attorney General's Office, the Better Business Bureau, and other agencies by consumers who said they were held hostage by its repeated pop-up windows and demands for payment, triggered after a free 3-day trial period. Many said they had never even heard of Movieland until they saw their first pop-up. Movieland advertised that the service had "no spyware", and that no personal information would need to be filled out to begin the free trial.

Norton PC Checkup was a program downloaded either separately or as a bundle with updates to Adobe Flash, provided to enable users to perform a system checkup of their Microsoft Windows based personal computers. It was launched by Symantec in October 2008.

MS Antivirus is a scareware rogue anti-virus which purports to remove virus infections found on a computer running Microsoft Windows. It attempts to scam the user into purchasing a "full version" of the software. The company and the individuals behind Bakasoftware operated under other different 'company' names, including Innovagest2000, Innovative Marketing Ukraine, Pandora Software, LocusSoftware, etc.

In the middle of 2009 the Federal Trade Commission filed a complaint against Sears Holdings Management Corporation (SHMC) for unfair or deceptive acts or practices affecting commerce. SHMC operates the sears.com and kmart.com retail websites for Sears Holdings Corporation. As part of a marketing effort, some users of sears.com and kmart.com were invited to download an application developed for SHMC that ran in the background on users' computers collecting information on nearly all internet activity. The tracking aspects of the program were only disclosed in legalese in the middle of the End User License Agreement. The FTC found this was insufficient disclosure given consumers expectations and the detailed information being collected. On September 9, 2009 the FTC approved a consent decree with SHMC requiring full disclosure of its activities and destruction of previously obtained information.

<span class="mw-page-title-main">Furniture & Home Improvement Ombudsman</span>

The Furniture & Home Improvement Ombudsman (FHIO), formerly The Furniture Ombudsman (TFO) is an independent not for profit organisation based in the United Kingdom. It specialises in alternative dispute resolution for customers of its members in the retail, furniture and home improvement industries. As a membership-based scheme, it also provides training and education services to its members which aim to raise standards, improve service and inspire consumer confidence. Kevin Grix, a non-practising barrister, was appointed the Chief Ombudsman in 2008.

Device neutrality law states that the users have the right of non-discrimination of the services and apps they use, based on platform control by hardware companies.

References

  1. Arthur, Charles (2008-03-27). "What MBS did after popups for porn: films.. with popup bills". The Guardian. London. Retrieved 2010-05-12.
  2. 1 2 3 4 5 6 7 8 9 Pollitt, Michael (March 1, 2007). "My PC is being held to ransom". The Guardian . London. Retrieved 2010-05-12.
  3. 1 2 "Our Expertise". Micro Bill Systems.
  4. Schofield, Jack (February 15, 2007). "Billing attack from MBS?". The Guardian . London. Retrieved 2010-05-12.
  5. 1 2 Hines, Matt (November 26, 2007). "Porn Scammers take over PCs". InfoWorld . Archived from the original on June 18, 2008.
  6. 1 2 3 4 5 6 7 8 "OFT accepts undertakings from Micro Bill Systems Ltd". Office of Fair Trading. March 27, 2008. Archived from the original on April 17, 2008.
  7. Symantec, MicroBillSys
  8. 1 2 3 4 Pollitt, Michael (June 26, 2008). "Porn billing firm lures customers with promises of Hollywood movies". The Guardian . London.
  9. "Terms & Conditions of Service". Micro Bill Systems.
  10. Pollitt, Michael (2008-10-09). "Will Platte be beached by VAT?". The Guardian. London. Retrieved 2010-05-12.
  11. Pollitt, Michael. "Platte Media - how did it get on your system?".
  12. "Radio 4 You and Yours -Pop up bills". BBC. Retrieved 2011-11-16.
  13. "Transcript of interview with Ashley Bateup". Mbsvictims.org.uk. Archived from the original on 2011-08-20. Retrieved 2011-11-16.
  14. 1 2 Pollitt, Michael (January 24, 2008). "Porn bill firm opens new front". The Guardian . London.
  15. 1 2 Pollitt, Michael (19 March 2009). "Platte exits, leaving questions". The Guardian. London. Retrieved 23 March 2009.
  16. Arthur, Charles (2009-03-11). "Platte /MBS shuts down in UK: was it the VAT or the OFT?". Guardian. London. Retrieved 2011-11-16.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.