Surfshark VPN is Malware!

Bargain4U on 22/03/2022 - 09:34
Last edited 22/03/2022 - 09:49

Is anyone else getting warnings recently on Microsoft that Surfshark is malware? I contacted Surfshark and I was berated by the support agent for being so stupid to believe Microsoft's warnings. I would believe Microsoft any day over these jokers!

PS. I should add, the support agent was well aware of the issue, immediately deflective and defensive - so it seems widespread. His argument was Microsoft "makes mistakes"! Oh and I was told no refunds since its more than 30 days from sign up! That has to be illegal - I paid for a service that is not suitable for its intended use and provided without due skill. I didn't bother arguing with the guy!

Suggestions? I have quarantined the app. Uninstall? Anything else?

Computing VPN

Related Stores

Surfshark VPN
Surfshark VPN

Comments

  • CrispyChrispy on 22/03/2022 - 09:39
    +1

    Is anyone else getting warnings recently on Microsoft that Surfshark is malware?

    Where are you getting these warnings?

    • Bargain4U on 22/03/2022 - 09:40

      Microsoft Defender

      Detected: Misleading:Win32/Lodi
      This program makes misleading or fraudulent claims about the files, registry entries, or other items on your PC.

  • yk300 on 22/03/2022 - 09:41
    +11

    In this case, I would listen to MS warnings over the support agent anytime - there is a clear conflict of interest and a lot of VPN companies are doing shady stuff these days (not that MS does not do shady stuff)

  • life is suffering on 22/03/2022 - 09:51
    +1

    That's Dodgy af

  • life is suffering on 22/03/2022 - 09:53
    +3

    I got a call from my security department in IT asking me if I'm mining crypto. I was like what ! And then he showed me the IP requests and told it could be binance APP. Who the f knows hey

  • Bid Sniper on 22/03/2022 - 10:07
    +7

    If support is being abusive, then time to uninstall

  • shaybisc on 22/03/2022 - 10:23

    Is there any other antivirus besides Defender that have spotted this Surfshark malware? I rather doubt it. Astonish me.

    • lesher on 22/03/2022 - 11:32
      +2

      I ran the file against virus total and literally no other antivirus flagged this file as virus except for Microsoft

  • Doy on 22/03/2022 - 10:55
    +1

    I guess by nature of what a VPN app is doing (you imagine it needs fairly deep hooks into the system), MS' stuff could be flagging it. Just weird that it's happening out of nowhere, and really, you'd want Surfshark to clarify what actually changed to suddenly make this occur as an issue. Whether or not it's something they changed, or just an update to Microsoft's own anti-virus, they should look into it and have an answer!

    Personally, I'm so conflicted continuing to use them. Paying like $10 for 3 years is sweet, but wonder if paying $70ish a year for Mullvad is worth it just for the peace of mind that nothing screwy will happen with my data.

  • akyeeeahdude on 22/03/2022 - 11:04

    I'm running the latest version of the Surfshark VPN client and Windows Deferender hasn't given me any warnings about malware. Perhaps your computer is infected…

  • this is us on 22/03/2022 - 11:07
    +1

    Screenshot?

  • codingNothing on 22/03/2022 - 13:36
    +2

    Here is a response from Microsoft: https://answers.microsoft.com/en-us/protect/forum/all/window…

  • freefall101 on 22/03/2022 - 13:41
    +1

    It's not malware, it just makes misleading promises. That could mean anything but it's not actually doing anything wrong right now.

    Give it 24 hours and see if Microsoft unflags it. Microsoft isn't infallible, they throw up false positives all the time because it's better to be too cautious.

  • Matwin23 on 22/03/2022 - 15:43

    Ive never got these messages from using surfshark. I suspect it is flagging it because your IP address is changing… which is what a vpn does.

  • tomate85 on 22/03/2022 - 17:24

    Got the same warning on Win10.

    Got in touch with Surfshark today (Tuesday, 5pm) and they mentioned that'd be fixed within hours. Let's see.

  • life is suffering on 22/03/2022 - 17:58

    I just realised maybe this is windows asking you to use express VPN hahha because they sponsor/ own it.

  • Geekomatic on 22/03/2022 - 19:06

    Microshaft flags it's own programs on my laptop from time to time. Gotta love that!

  • GaryG on 22/03/2022 - 19:17

    I'm running Surfshark VPN and using eSET Smart Security and getting no warnings. I really do think it is a case of false positives given the whole point of a VPN is to disguise your location.

  • ajwhi on 23/03/2022 - 07:47
    +1

    Regardless of how defensive support was, or how aggressive you were (assumed from the tone of this post) the fact of the matter is Defender picking this up as a false positive. Support person was right, Microsoft made the mistake.

  • reactor-au on 23/03/2022 - 08:53

    Is surfshark owned by that company that owns expressvpn, pia, etc etc? They are dodgy.

  • [Deactivated] on 23/03/2022 - 13:27

    I received the same warning and contacted Surfshark. The two different operators I interacted with said their tech's were working on the problem and that it was a false flag by Microsoft Defender. One of the operators said I had to reinstall the software and this meant either turning off Windows Defender totally, or ignoring the warning notifications, or making an exception for Surfshark VPN in my firewall.
    Defender also reported the threat as 'Low Level' - a PUP (Potentially Unwanted Program) sometimes used to collect information 'covertly'.
    Regardless, I find it odd that no one from Surfshark has commented since their product is created to allow a user, safety in anonymity and perhaps a modicum of protection from PUP's and Phishing.

  • CarbonTwelve on 23/03/2022 - 17:24
    +1

    That has to be illegal - I paid for a service that is not suitable for its intended use and provided without due skill.

    Nope, sorry. This is indeed a false positive. The fact that you trust Microsoft more doesn't change anything. On top of that, as mentioned by others, a PUP alert is not the same as a malware alert. Even if this weren't a false positive, it's still not flagging Surfshark as malware.

    • rogerm22 on 23/03/2022 - 18:38

      Well said. Yes it most definitely is a false positive.

  • jrvb42 on 23/03/2022 - 19:10

    Can't speak about them but NordVPN are dodgey as hell in their billing department. Charged my credit card for renewal even after my credit card expiry changed, and even though the website said I needed to update or lose service. Didn't tell me either. Then after 30+ days noticed the charge. Won't refund. Credit card dispute lodged. Avoid. Avoid. Avoid.

  • b0rnwithabeard on 23/03/2022 - 19:32
    +2

    from reddit:

    As you can clearly see is this not malware, but a potentially unwanted program. There is a huge difference. Malware causes harm, while a PUP is usually just annoying (e.g. browser addon that smuggles ads in websites)

    Win32/Lodi is a term used by Windows Defender for programs that make (potentially) misleading promises. Often these misleading promises are made by system optimizer tool that promise to speed up your computer by 500% or whatever. Those are usually not viruses or trojans, but just annoying programs that nobody needs. Why Surfshark is marked as one has maybe to do with the way how it works, that it changes network adapters or messes with system settings such as MTU (actually not sure if Surfshark fiddles with these settings).

    In 99% of the cases these Win32/Lodi alerts are false positives and just inform you that there is a potential problem, but this doesn't mean that there really is one. If you are in doubt about a file, you can upload it safely at VirusTotal to have it examined by a couple of dozen anti-virus scanners.

    Long story short, no reason to panic.

  • drmarshall on 25/03/2022 - 21:35

    Just because they are bigger doesn't mean they are better
    https://www.techradar.com/news/microsoft-office-updates-rans…

Login or Join to leave a comment
Login Join