Hello, welcome to the Tuesday, June 26, 2018 edition of the Sansand-Storm Center's Stormcast.

My name is Johannes Ulrich, and the time, recording, from Jacksonville, Florida.

Well, today we start out with a couple of possible false positives from antivirus.

The first case is BitMessage. That's a piece of software

that a reader submitted to us after it was flagged as Ransomware. As far as DDA is able to tell

this copy of BitMessage is genuine and does not include Ransomware.

But BitMessage has been included in a number of ransomware cases to allow the victim to communicate

with the author of the ransomware.

So what possibly happened is that anavirus companies saw bit

message as part of infected systems and then categorized it as a ransomware. And a

file Cilla, a GUI program that's often used for FTP on Windows and Linux is in hot water about possibly adding

adware to its download package. Now this all again just like the prior case came to light

when antivirus all of a sudden started flagging this particular piece of software.

Now the tricky part here is that all the software downloaded and the part that's being flagged by virus total or by various antivirus engines is a legitimate part of FileSilla.

However, like so often with free software, the creator does try to make a little bit of money,

so in this case, FileSilla includes some ads and some additional offers that allow people

to download additional software.

None of this looks outright malicious. You may consider

it ad bear, but that's really sort of one of the gray areas when it comes to a virus

scanners and malicious software. Usually it's really just called unwanted software instead of calling it outright malicious.

But one thing that really is illustrated by both cases, ultimately it's really impossible

to prove that software is not malicious. So in the end, you have to do your tests, you do some

...