Summary
Blaming users for spyware is fruitless since users are just that- users, not mechanics. Consider the number of protective measures required for safe computing, annual subscription costs and the inherent flaws in the numerous and vulnerable undocumented Microsoft Application Programming Interfaces (APIs).
Analysis
Microsoft manufactures vulnerable software. Microsoft hasn't built a better mousetrap and Vista has users considering and moving to other computing platforms such as Apples OS X, Linux and Unix.
Complexity defeats users out of box experiences in understanding how to safely use their computers connected to the web. PCs new out of box must first go through the patch and change process and again many users fail do to update the OS and application updates, and have no or inadequate home firewall and or misconfigured firewall/routers. Some think having multiple antivirus or anti-spam protection tools will do a better job at guarding their computers. Newer and sophisticated attacks such a rootkits provide new challenges to the software industry.
Clearly- if the ducks aren't lined up from the start, a users propensity of failure increases significantly. Then, when the PC fails or slows down to a point of being an unbearable experience, does the user have the skills to troubleshoot and resolve the problems or do they make their way through as best they can and still end up with an infected machine not quite right?
The Windows desktop consists of Windows firewall, an antivirus client that maybe integrated with anti-spam and an OEM firewall, Site Advisor tool from McAfee warning users of malicious sites when searching for FREE screen savers, backgrounds and other PC tools that come with a hidden price of malware. Some PCs may even have some form of rootkit protection or discovery tool. Windows Internet Explorer has too many options for most users to manage and understand completely the ramifications of making the adjustments.
PCs aren't shipped with automatic updates properly configured or even turned on. Instead, many are loaded with worthless software that goes unused and if for business purposes they are removed before being placed in service for the intended user.
Microsoft has built vulnerable software and isn't too likely to change anytime soon. Their software also needs a diet. Instead of trying to fix Microsoft, the user side of software for protecting computers must converge into one solution. Multiple tools, licenses and fees to protect against virus, spyware, rootkits, or to advise users of what's a safe site or not only add to the problem.
McAfee continues to lead by acquisition of good solutions that is landing them as a bundled solution provider. ISPs complain that their backend costs will rise if they are forced to provide better security. MX Logic is a small company that McAfee just acquired that proved that by stopping the attack upfront that bandwidth is preserved and other benefits follow using offsite email protection.
There are three weak links. Microsoft, the manufacturer of the PC and the ISP providing service to the user. All three play a role that end up not helping the user. Instead of having one common bond to serve and protect the users, there are three and each contributes to a varying degree that do not benefit users.
Building better mousetraps in this scenario is evolutionary and will proceed down the usual path. Software needs to converge in the sense of bundling from the gate what users need and it shouldn't be a convoluted road map of exercises, and for the Microsoft users their experience needs to radically change. Companies avail themselves to scores of IT people supporting Microsoft. Home users and even the SMBs can't afford this model. Cloud computing will help shift sensible solutions. The other shift isn't a mass exodus but it is notable that users are buying more MACS. Apple does have bragging rights to the total user experience which is pretty sweet.
This author consults with leading institutions through GLG
Analyses are solely the work of the authors and have not been edited or endorsed by GLG.
