Bonum Certa Men Certa

Botnets and Bounties Versus Real Security

THERE ARE many reports this week about Windows security problems, but one that really stood out is this one from yesterday:

Microsoft is offering a $250,000 reward for information that leads to the arrest and conviction of the virus writers behind the infamous Conficker (Downadup) worm.


This was also covered in:



So Microsoft plays sheriff and puts money on people's heads rather than actually produce secure and robust systems. That's the equivalent of jailing many people for possession of illegal drugs rather than looking for ways to prevent the trafficking of such drugs. It completely ignores the causes and instead addresses an outcome. The outcome is not just tens of millions of hijacked computers in this case; the 'outcome' is also teenage cyber-criminal who are empowered by badly engineered systems. Will there be a bounty presented to combat each and every Windows virus that exists (there are over a million, including variants)?

In other news, 8 "critical" vulnerabilities have just surfaced in Microsoft software.

Microsoft Patches 8 Critical Vulnerabilities



Microsoft Tuesday patched eight vulnerabilities -- three of them marked "critical" -- in the company's Internet Explorer (IE), Office, Exchange and SQL Server software.


"Critical" is the highest degree of severity in Microsoft's scale, so it's only reasonable to expect larger botnets. Speaking of which, Microsoft is again addressing the wrong problem in the wrong way when it tries to take apart botnets rather consider the reasons for their creation in the first place.

Microsoft has beefed up the Malicious Software Removal Tool (MSRT) that ships with its Windows operating system so that it will detect and root out the notorious Srizbi botnet code.

"This month's MSRT takes on one of the largest botnets currently active worldwide," wrote Microsoft spokesman Vincent Tiu in a blog posting Tuesday, the day the update to the software removal tool was released. "Win32/Srizbi has been accused of being responsible for a huge chunk of spam e-mail messages sent in the years after its discovery," he added. "We hope to make a positive impact with the addition of Win32/Srizbi into MSRT."


This is also covered here.

In other security-related news:

i. Fake Infection Warnings Can Be Real Trouble

Michael Vana knew something was up when he saw the pop-up from "Antivirus 2009" in the middle of his screen. The former Northwest Airlines avionics technician guessed that the dire warning of a system infection was fake, but when he clicked on the X to close the window, it expanded to fill his screen. To get rid of it, he had to shut down his PC.


ii. Fraudsters cream opposition in cybercrime wars

The celebration of Safer Internet Day on Tuesday was marked by warnings that cybercriminals are staying ahead of defenders in their attempts to defraud or otherwise abuse internet users.


iii. Germany deploys cybersoldiers

GERMANY HAS REVEALED that it has a team of 76 soldiers who are trained to defend the country from cyber attacks and software piracy.


Once again, Windows and the Web are unable to play nice with each other:

New Windows virus attacks PHP, HTML, and ASP scripts



Researchers have identified a new strain of malware that can spread rapidly from machine to machine using a variety of infection techniques, including the poisoning of webservers, which then go on to contaminate visitors.

The malware is a variation of a rapidly mutating virus alternately known as Virut and Virux. It has long proved adept at injecting itself into executable files, which are then able to attack uninfected machines through network drives and USB sticks.


A reader has just alerted us that a man is moving from the Ministry of Finance to Microsoft, hinting at possible government connections. Microsoft has already 'pulled an EDGI/MOU' around there.

Regarding news coverage like this one, wrote the reader, "the non-cached page has some nasty tricks to wipe out non-Javascripted browsers." Further he added: "I have often wondered if the sudden push to web 2.0 is to compensate for loss of access that various interests have as people depart Microsoft Windows. The reasons for snubbing client-side javascript are still valid, perhaps more so than years past. Certainly there has been no value added. What does get added, aside from slowness and loss of functionality, is a whole slew of ways to remotely access content or activities on the client."

Those who want a secure system ought to look at GNU/Linux.

Comments

Recent Techrights' Posts

Can We Finally All Agree That UEFI 'Secure Boot' is a Sham That Harms Security and Gives Microsoft Remote Control Over All PCs and Servers (Even Those That Don't Run Any Microsoft Software)?
Cui bono?
Daniel Pocock as Independent Candidate, Now in The London Standard
"Daniel Pocock is an independent candidate."
 
This Bubble is Bursting, Piecewise
It's nice to see Wall Street getting some reality checks
It's Not About XBox, Microsoft is Already Firing Hundreds of People Who Do "Security [sic] Engineering" [sic]
The official reason/excuse/lie told is something about slop, but no sane person would buy it (not even insiders who are impacted)
Bolivian People Adopt GNU/Linux (They Have a Domestic Distro Too, PluriOS)
Notice Windows falling to an all-time low
No Technical People Write About UK Parliamentary Elections
Almost none of them work in the media, which seems to favour parrots, slop, or parrots that use slop
"But Stallman is Scaring Away Women..."
Such dishonest projections (projection tactics) needs to be called out and refuted
First Female Debian Project Leader (DPL) Affirms Low Profile and Inferior Status of Women in GAFAM
3 months ago Sruthi Chandran was elected as Debian Project Leader (DPL) for a period of 12 months
After 5 Years Vista 11 Still Adopted Less Than Its Predecessor (Orphaned, End of Life Since Last Year)
Notice Windows going down to 40%
We Don't Depend on Google (or Search Engines in General)
there's a lesson here and it extends beyond sites
Only "Torvaldos" (Linus Torvalds) Can Use the F-Word, CoC Does Not Apply to the Enforcer, and Richard Stallman Punished for Using the Other F-Word ("Freedom")
"Linus Torvalds tells AI haters to fork off"
Explaining the Culture of Bulletin Board-Style Chat
Only desperate detractors would try to present something (cherry-picked) from IRC as some sort of official statement for Techrights
Independent, But Not Fringe
"Daniel Pocock is an Independent Candidate."
In Free Software, Nobody Gets Fired
Way to own one's code and project
PIP-Styled Mass Layoffs Allegedly Coming to Microsoft by 12 August 2026
Microsoft has been doing "silent layoffs" (PIPs and more) for quite some time
Daniel Pocock's Candidacy (Election of Member of Parliament) Mentioned in BBC and Over a Dozen News Sites Since Yesterday
Funnily enough, albeit not surprisingly, the same people who attack Pocock also attack us
Links 18/07/2026: Spotify Uses Slop Song Descriptions, "San Francisco Demands Removal of Nudify Apps"
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, July 17, 2026
IRC logs for Friday, July 17, 2026
Gemini Links 18/07/2026: A Manifesto by The Dissident, Shokz Headphones, and Gemini Tinylog Reader (GTL)
Links for the day
IBM Already Tentatively Down for Next Week (Monday) After Its Worst-Ever Week
What a week for IBM!
Links 17/07/2026: Protests Erupt Throughout Ukraine and Anthropic Caught Secretly Spying on Users
Links for the day
Gemini Links 17/07/2026: "Silence Doesn't Mean Abandoned", Revisiting PalmOS in 2026
Links for the day
Andy Burnham as National Leader Would be Excellent for Techrights
Burnham has envisioned a British "centre of power" (or gravity) that moves northwards, isn't concentrated in the southeast anymore
Farage Out, Daniel Pocock in?
Can Pocock beat his previous voting record?
Layoffs at Microsoft Are Massive, Go Under the Radar for the Most Part
Microsoft is in a really bad shape
One Heck of a Week for IBM, the 'Grandpa' of 'High-Tech', International Business Machines Corporation (NYSE:IBM) Under Investigation by Bronstein, Gewirtz & Grossman, LLC
If IBM gets busted or might be busted, will the CEO jump, get pushed, or be arrested?
In Defence of Courts' Privacy Policies
If you want friends, go offline. Meet real people and share real experiences.
Why I Quit Academic Career (or Academia) Nearly 15 Years Ago
I am told by people who stayed that it has only gotten worse
“Why Open Source Misses the Point of Free Software”
As Dr. Richard Stallman once put it
GNU/Linux Grows at the Expense of Microsoft Windows in Croatia, Now Close to 8%
Croatia has been mentioned a lot lately in relation to EPO "lobbying" (vote-rigging)
27-Year IBM Veteran on IBM: "Worse than the Titanic and Perhaps Just Like Madoff, Enron, etc."
several comments we saw today envisioned the CEO of IBM in an orange suit (in US prison)
EPO "Cocaine Communication Manager" - Part XV - Nazi-Like Thinking at the European Patent Office (EPO) Not a Thing of the Past
antisemitism inside the EPO
Daniel Pocock Running for Office Again, Clacton-on-Sea By-election
By-election - code name "Pocock-on-Sea"
ServiceNow/ServiceLine and Slop at the EPO is Becoming a Health Risk to Staff
PD44 has historically been the oppressor at the EPO
IBM Can Burn Pensioners to Appease Wall Street and Protect the Billionaire CEO With His Humongous Bonuses
Its stock it set to open 2.82% in the red
IBM SHAREHOLDER INVESTIGATION: Potential Securities Claims Involving International Business Machines (IBM)
there's a risk of criminal action against executives
Tux Machines Moving Onwards and Upwards
"...tasks expand to fill the time available"
The Register MS is Publishing Spam for Gartner Group to Spread Hype About "AI", Mentioned 30 Times in the Paid (Fake) Article
One sure thing is, the so-called 'tech media' is profoundly compromised by American corporations
"Market Share" of GNU/Linux Nearly Trebled in Cambodia This Month
GNU/Linux is still measured at 8% by statCounter
GitHub is Dying (Traffic Down Despite Bots and Slop), Microsoft Will Eventually Cull it - Just Like XBox - to Limit the Losses
Do not stay on GitHub (Microsoft) under the false assumption that it is "free hosting" or will always be around
Teaser: Daniel Pocock is About to Go Mainstream Again
Stay tuned, Pocock has something in store
Microsoft Has Just Been Sued Over Layoffs
If the rumours are true, there is yet another wave of layoffs at Microsoft
Richard Stallman Always Cautioned, Upfront, That His Political Views Were Wholly Separate From His Scientific Work or GNU
Notice that he already spoke a lot about politics
Links 17/07/2026: Microsoft is Cutting OneDrive Coverage, Larry Ellison Sued by Paramount Investor
Links for the day
Nichirei and Asahi Beer Need to Take Cyberattacks as Hint of Opportunity to Move to Free Software
Windows TCO
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, July 16, 2026
IRC logs for Thursday, July 16, 2026
Gemini Links 17/07/2026: Sunlight in the Clouds, Techno-Therapy, and Sloppifying Original Text
Links for the day
Links 16/07/2026: Slop Recognised as a Waste of Energy, Hong Kong Cracking Down on Dissent/Opposition Some More
Links for the day
GNU/Linux Approaching 5% "Market Share" in Oceania, Almost Trebling in 12 Months
It is difficult to ignore the gains made by GNU/Linux this month
Microsoft Whistleblowers Explain How Brutal the Latest Cull is (Layoffs in Seconds-Long Calls, Mass Elimination of Whole Studios and High-Level Officials)
we see anonymous leakers or whistleblowers in the media today
Gemini Links 16/07/2026: esp32-gemserv, Slop-Contaminated Free Software, and Moving Systems
Links for the day
Last Summer Microsoft Mass Layoffs Came in Two Large Waves, Rumours Say Next Week Another Large Wave is Coming
If many more Microsoft layoffs are formally admitted next week we will not be surprised
Tomorrow is Another Strike Day at Europe's Second-Largest Institution, the Media is Still Deliberately Ignoring It
Fridays are now recommended “anchor days" for EPO strikes
Public Interest News Foundation Shows News Drought or News Deserts in the United Kingdom
Public Interest News Foundation shows that we should be deeply concerned
Illusions of Choice
Choices can be differently bad or equally bad
Windows Down to 10% in India
Windows is a "burning platform"
One Year Has Passed
Our aim is to repair an injured system wherein "abuse of process" can be turned into a weapon, leveraged even by foreigners who are funded by affluent third parties
Techrights is Annoying People Who Work for (and Serve) People Who Annoy (and Abuse) Society
Working against us (instead of with us) has historically been a bad strategy
No Skinnerboxes, No Slop, No False Idols or Corporate Prophets
Torvalds does not understand the everyday struggles of tech workers and tech users because he is a millionaire
IBM's Next Stop: $199 (Market Cap Already Under 2.5 Times IBM's Debt)
Don't rush to call us "sensationalist" over it
Links 16/07/2026: Solar Greenwashing by Energy-Wasting GAFAM and Growing Concerns About Harm by Social Control Media
Links for the day
Gemini Links 16/07/2026: Photography, Agility, and "Today I have Truly Become a Linux User."
Links for the day
Rebellion Brewing at Microsoft
As always, we welcome Microsoft whistleblowers
Technology Against Human Nature
Losing a sense of what it means to be alive
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, July 15, 2026
IRC logs for Wednesday, July 15, 2026