Recommended + Security & Privacy

Why BitTorrent Sites Are a Malware Cesspool

Posted on July 20th, 2017 by

Why BitTorrent Sites are a Malware Cesspool

BitTorrent is synonymous with "illegal" and "dangerous" for many people, yet it is a great system for sharing files, syncing files, and messaging; in fact, I use it myself every day. Still, BitTorrent sites in general have a bad rap, but why is that? One word: Malware.

When software is downloaded from a BitTorrent website, typically said software is a paid product that has been cracked or comes with a crack that turns it into a fully functional application, without having to pay a penny. When a product is "cracked," it means that the person who cracked the program has hacked into it — figured out a way to bypass the registration key — and modified it, so they can use it for free. In many cases, demo or trial periods are cracked, so they are extended indefinitely, and the licensing process is cracked to accept any details as valid and/or the software comes with a key generator that spits out a name and password that can be used to unlock it.

These cracks, patches and key generators are also more often than not the source of malware and, in some cases, the software itself has been modified to deliver malware.

Is BitTorrent safe to use?

The short answer is that the BitTorrent program itself is relatively safe, but like any software that connects to the Internet, it is susceptible to attacks. However, do not confuse the safety of peer-to-peer programs like BitTorrent with the files that are shared through those programs. These files are the real threat. But are some of them safe?

How safe are files shared through BitTorrent?

To find out the risks of BitTorrent and whether or not files shared through the program are as bad as its reputation is made out to be, I browsed a few BitTorrent sites and downloaded the popular software they had available (strictly for testing purposes, all of which I promptly deleted after testing).

If every piece of software from BitTorrent programs are malware laden, why would it still be around? Do vast numbers of ordinary people risk malware attacks, possible fines and jail time (downloading these kinds of files is illegal in most countries) by downloading cracked software from BitTorrent? Surely it can't be that bad.

Malware like SilverInstaller, and ransomware like KeyRanger and Patcher must be the rare exception. So I took it upon myself to find out, and here's what I discovered.

After pulling in several gigabytes of software shared through BitTorrent, I fired up Intego VirusBarrier and let it loose on the Downloads folder. The results were shocking.

Every crack, patch and key generator included in these downloads was flagged!

Here is a screenshot showing just a small part of the results:

VirusBarrier antivirus scan of BitTorrent files

And it's not just the downloaded software from BitTorrent that poses a risk, the torrent websites themselves try very hard to get extra stuff installed on your system as well. Most time spent on those websites is spent fighting off pop-ups and redirects, each presenting you with tons of fake Flash Player update alerts, scare tactics and more.

Just a few examples of the things that popped up can be seen in the graphic below:

BitTorrent malware cesspool

Merely two minutes torrenting lands you in a malware cesspool.

This is just what popped up after merely two minutes of browsing torrent sites, not including duplicates! It's exhausting, and it certainly makes you wonder how people get around to downloading anything at all from these sites. Seriously.

Each and every cracked software shared on BitTorrent will download malware to your Mac, if clicked. A quick sampling showed several Bundlore, Genieo, AMC installers, and even the recently covered SilverInstaller popped up. Quite a few PUA's also popping up. Each of these sites also asked me to activate Flash Player in my browser, no doubt looking for vulnerabilities to exploit.

BitTorrent malware
Some of these fake warnings and messages look better than others. All it takes is one to successfully trick a user into installing it, and malware will be brought onto the system.

The good, bad, and ugly of BitTorrent downloads

There are good reasons for using BitTorrent, as mentioned at the beginning of this article, but the bad news is it is by far mostly used for the downloading of illegal software, TV shows and games. Both the websites that offer up this content and the content itself are a major risk to the security of your Mac and your data.

Furthermore, your Internet service provider may also disconnect you if they see you're downloading illegal software. The ugly truth is you could even get sued by the developer of the software or producer of the show/movie/music. Trust me, they keep a close eye on these downloads to see exactly who is infringing on their copyright.

So is it worth the risk? You decide. But take heed: Every user should take extra precautions when using BitTorrent sites. Do you have a different opinion or perhaps a BitTorrent horror story of your own? Drop us a comment below!

As for the test software I downloaded from BitTorrent: 

About Jay Vrijenhoek

Jay Vrijenhoek is an IT consultant with a passion for Mac security research. He conducts independent malware protection tests, and also writes about privacy and security related matters on his blog Security Spread. Follow him on Twitter at @SecuritySpread. View all posts by Jay Vrijenhoek →

Sign up For Our Newsletter

Get the latest Mac security news direct to your inbox.

{"url":"\/marketo\/json\/add-to-newsletter","data":"list_name=Blog Roadblock"}