EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

01.18.09

Microsoft Botnets: The Chaos Continues

Posted in Microsoft, Security, Windows at 6:50 pm by Dr. Roy Schestowitz

Zombie
Fear not the Windows zombies

There are many ways to “Suck at Information Security”, but one easy way is to choose a platform that leads to entire military bases getting cracked.

The British military is one of the very few which choose this tactless route even for nuclear submarines and it costs it dearly.

Virus ‘sends RAF e-mails to Russia’

THE Ministry of Defence is investigating a major breach in security amid claims that all e-mail traffic from a number of RAF stations has been sent to a Russian internet server.

The e-mails were allegedly diverted to the Russian sender by a worm virus that entered the MoD systems 12 days ago bringing down computers and blocking e-mail communications across the military.

The world is already filled with about 320 million Windows PCs that are zombies, so what’s another massive botnet anyway?

New Botnets Replace Vanquished Pests

Although the shutdown of a California Web hosting company eradicated several prominent botnets last year, others have stepped up to fill the gaps, a security researcher says.

Gone from the landscape, said Joe Stewart, director of research at Atlanta-based SecureWorks Inc., are “Srizbi” and “Storm,” the botnets Stewart ranked as No. 1 and No. 5, respectively, in an April 2008 botnet census.

How can anyone combat Windows worms that appear all the time in new forms?

A variant of a malicious worm that targeted Microsoft Windows now is spreading via USB sticks, researchers say.

Security company BitDefender Labs, based in Bucharest, Romania, detected the Windows worm variant in late December. The original worm known as Win32.Worm.Downadup, first made its appearance in late November, exploiting a Microsoft vulnerability in the Windows RPC Server Service. Since then, it has rapidly spread across numerous corporate networks with the aim of distributing malicious software on susceptible computers.

Even an Instant Messaging (IM) program is no longer safe because Microsoft turned simple communication protocols into something that can invoke unknown executables.

Internet MSN users are warned. Some programme writers are now using IM to spread malicious programs such as viruses and worms. These viruses can spread when a person opens an infected file, such as pictures of pornographic nature, that is sent through IM by someone who appears to be a contact.

Why is a program for exchange of text leading to the running of untrusted code? This is an architectural deficiency that would prove costly. Outlook and ActiveX are almost perfect examples and they requires no social engineering to lead to a raft of menaces.

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

3 Comments

  1. Needs Sunlight said,

    January 19, 2009 at 9:15 am

    Gravatar

    The recurrence of MSN worms ought to be a warning that it’s past time to switch IM protocols and networks, for those still in the stoneage.

    MSN, live.com, and any other worm site ought to be blocked at the firewall. Same for ports used by MS Messenger.

    XMPP and Jabber are the next-generation chat/messenging protocols. Use them or lose out.

  2. The Mad Hatter said,

    January 19, 2009 at 9:09 pm

    Gravatar

    And of course whenever a worm/virus/security hole is mentioned in the news, they never mention that it’s a Microsoft only problem, and if you point this out to the news media, they don’t take any action. The fact that Microsoft is often one of their major advertisers has nothing to do with this of course.

  3. Roy Schestowitz said,

    January 19, 2009 at 10:07 pm

    Gravatar

    Here’s an E-mail that I received this morning (for sharing):


    Hi, Roy,

    Here’s an example of pro-MSFT spin on headlines. All it takes is one
    bad member on the editorial team and an entire publication can be
    compromised, like here:

    http://www.cnn.com/2009/TECH/ptech/01/16/virus.downadup/index.html?eref=rss_tech” title=”Downadup virus exposes millions of PCs to hijack

    The title is “Downadup virus exposes millions of PCs to hijack”. If we
    stick with the standard usage of the verb “expose” then the correct
    title is “Windows exposes millions of PCs to hijack”


    Had it been a Linux worm, there would probably be a different headline, no? The mythology of Microsoft is that “all computers” are not secure and “Windows is the standard”.

What Else is New


  1. Links 17/11/2019: Slax Beta and Arch Conf 2019 Report





  2. Understanding Thierry Breton: The “Cost-Killer” Tries to Tame the National Debt

    The oligarchic policy of Thierry Breton at Bercy



  3. Reactions to Last Week's Thierry Breton Hearing

    Nobody is particularly impressed by Thierry Breton except those who know little about him (and he contributes to this lack of knowledge by obstructing, omitting, and misleading)



  4. The Open Invention Network Has Become a Guard Dog of (Some) Patent Trolls and It Misrepresents Us Under the Guise of 'Open Source'

    The Open Invention Network (OIN), in collaboration with Fraunhöfer, is promoting software patents and all sorts of other nonsense as part of ‘open’ standards in a new paper sponsored by the EU and edited by the former EPO Chief Economist Nikolaus Thumm (not Battistelli's choice); this is another reminder of the fact that OIN misrepresents Free/Open Source software (FOSS) developers and their interests



  5. IRC Proceedings: Saturday, November 16, 2019

    IRC logs for Saturday, November 16, 2019



  6. Unitary Patent is Dead Partly Because the EPO Demonstrated That EPC is Being Routinely Violated, Illegal Patents Granted

    Some elements of Team UPC have given up, whereas others try to push the lie that Unitary Patent/Unified Patent Court (UPC) is not an EU thing and that therefore everything is fine



  7. USPTO Rewards Microsoft for Corruption at ISO by Teaching People Proprietary OOXML and Promoting Its Use

    The world's most important patent office promotes Microsoft lock-in, revealing not only corporate bias but also highlighting ways in which Microsoft crimes continue to pay off



  8. No, Startpage is Not Dutch Anymore

    Startpage is still clinging onto perceptions rather than truths; it means that Startpage isn't just betraying privacy but it's also dishonest and untrustworthy



  9. Understanding Thierry Breton: Chirac's Entrepreneurial “Joker”

    Minister in charge of the public treasury was not a career politician but an “entrepreneur” with a proven track-record as a financial wizard and “cost-killer”



  10. Links 16/11/2019: New Debian Release, Wine staging 4.20

    Links for the day



  11. IRC Proceedings: Friday, November 15, 2019

    IRC logs for Friday, November 15, 2019



  12. Microsoft Doesn't Love Linux, It Just Buys Linux

    Microsoft's takeover or abduction of its opposition's voice isn't an act of love but an act of occupation, a hostile colonisation that enables digital pillage and plunder



  13. Koch's Reply to EPO Through ILO and Techrights' Interpretation of Koch v EPO Documents Help Show That ILO-AT is Played by EPO Management

    Sending cases back and forth, without the complainant being involved, means that justice is in eternal ‘limbo’ and thus the abusive management of the European Patent Office (EPO) — first Team Battistelli and now Team Campinos — can get away with anything the bullies do (no judgment of substance being delivered)



  14. EPO Running ILO's Tribunal (ILO-AT) 'in a Loop' to Perpetually Delay and Drain the EPO's Complainants (Aggrieved Staff) Out of Money

    ILO’s Administrative Tribunal — a court for aggrieved EPO staff and other international organisations’ staff (usually known as ILO-AT for short) — is a major farce; when “time is money” and lawyers charge as much as 400 euros an hour the EPO’s management can exploit/misuse its cash reserves to also game justice and buy legal outcomes



  15. ILO is Not Functioning and ILO-AT Helps the Abusive Management of the European Patent Office

    It is becoming increasingly clear, based for example on Koch v EPO, that ILO-AT is where a lot of money will be spent on lawyers and rarely will that result in real justice (but it certainly helps EPO management pretend that staff has safeguards)



  16. Links 16/11/2019: Wine 4.20, Picolibc 1.1

    Links for the day



  17. Understanding Thierry Breton: Moral Responsibility for “a Capitalism That Kills”?

    "...France Télécom which had previously been defined by an ethos of public service, by egalitarian working conditions and by a sense of universal mission, had now been transformed into a "cash machine” whose sole purpose was to generate shareholder value on international financial markets."



  18. FOSSPatents Conference is Against FOSS, Promoting the FOSS-Hostile Construct Known as RAND or FRAND

    Do not be misled by the term Free/Open Source software (FOSS) in the name FOSSPatents and whatever relates to it (e.g. FOSSPatents Conference); it's not about FOSS but against FOSS, or pro-FRAND



  19. Europe is Under Attack

    European politicians or political candidates pretend to be 'candid'; but they're agents of Power, or put another way, they're there to make the rich and powerful class even richer and more powerful by passing new, ruinous laws in the name of 'the people' or 'for SMEs'



  20. Links 15/11/2019: New Opera and Brave, GNU/Linux Flatpa(c)ked

    Links for the day



  21. IRC Proceedings: Thursday, November 14, 2019

    IRC logs for Thursday, November 14, 2019



  22. Understanding Thierry Breton: Toxic Management Goes on Trial in France

    "In each of these cases, the suicide served as a symbolic act of protest to denounce workplace conditions at France Télécom and attract public attention to its practices."



  23. Thierry Breton's Video/Live Grilling is Over, But the Grilling Continues Online

    Elite politicians aren't reluctant to give Thierry Breton the high seat (or throne); but everyone else realises that this resembles a corporate takeover more than anything



  24. The EPO's Low Patent Quality is Not Just Suicidal; It is Illegal

    With help from the besieged Boards of Appeal (BoAs), which complain that they can no longer judge cases (appeals/referrals) autonomously and independently, the Office in Munich continues to grossly violate the EPC and mimic China's ridiculously low patent bar, which even formally permits patents on algorithms



  25. Links 14/11/2019: Mesa 19.2.4 and GCC 7.5 Released

    Links for the day



  26. Microsoft is Not an Open Source Company But Microsoft Bribed and Took Over Many Open Source Authorities (Rivals' Voice Hijacked)

    Free/Open Source software (FOSS) and GNU/Linux are being taken over by Microsoft moles, bought by Microsoft Corporation, and the collective voice of the alternative to Microsoft and Windows is being muzzled (they tell us they "love" us while they're attacking us and sometimes suing us)



  27. Techrights' Interpretation of Koch v EPO: The EPO's Management Still Attacks Staff Representatives

    The EPO hopes to get its victims (of EPO abuse) to not only foot their own bills but also the EPO's



  28. Understanding Thierry Breton: “Mister Cash” Arrives at France Télécom

    The psychological harassment of the France Télécom workforce led the "suicide wave" after Breton had left France Télécom



  29. The Breton-Battistelli Relationship and Breton Hiding His Employment Record at Rothschild & Cie Banque

    EPO scoundrels such as Battistelli are closer to Breton than most people care to realise; Breton is hiding part of his career ahead of today's grilling



  30. A Lot of EPO Staff on Dutch Land Protested (Despite Abusive Threats From Management) and a Strike is Reportedly Next

    EPO management in Rijswijk tried hard to prevent workers from protesting on their free time (lunch break), reaffirming that same old belief that nothing is changing at the EPO and nothing will change without truly disruptive action


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts