EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

03.14.09

Verdict: The BBC Broke the Law with Microsoft Windows Botnets, Which Conficker Continues Building (Updated)

Posted in Microsoft, Security, Windows at 7:03 am by Dr. Roy Schestowitz

BBC teletext

Summary: Experts slam the BBC for building a zombie PC army; Conficker is far from gone, being the Windows nightmare which it is

A couple of days ago we asked whether or not the BBC was breaking the law by harvesting people’s Windows PCs without their permission. The answer seemed obvious, but now we hear it from the experts too. The Register writes:

A controversial BBC Click documentary which involved researchers obtaining access to a botnet and sending spam is due to screen this weekend despite a growing storm of criticism.

Security experts – including McAfee, a firm whose representatives appear in the programme – have described the exercise as misguided and unnecessary. Legal experts contacted by El Reg reckon the show potentially breaches the unauthorised modifications provisions of the Computer Misuse Act, the UK’s computer hacking law.

From Out-Law.com

BBC programme broke law with botnets, says lawyer

A BBC programme has broken the Computer Misuse Act by acquiring and using software to control 22,000 computers, creating a botnet capable of bringing down websites. A technology law specialist has said that the activity is illegal.

The funny thing is that public money was in fact funding this crime and the BBC is likely to get away with it.

Another criticism came from Glyn Moody, who echoed the concern raised by Mike Brown the othe day. Moody was not particularly surprised to see that the BBC reinforces the notion that only Microsoft Windows exists in this world.

I don’t want to address that here, but a different point: that nowhere in the article does the word “Windows” occur. And yet, I’d be willing to bet that none of those 22,000 machines ran GNU/Linux or Mac OS. Because the fact is, that the vast majority of machines on botnets are running Windows, and that this is yet another problem caused by the Microsoft monoculture.

But nothing of this is mentioned in the BBC piece. Instead, it is presented as if botnets were some inevitable part of computing life – something you might get, just as you might catch a cold, because, hey, these things happen.

How so muchly expected from a close partner of Microsoft, which is literally occupied by Microsoft employees.

In other news, let’s forget about Windows botnets ending any time soon. According to ITWire, Conficker is alive and it gets more sophisticated.

A new version of the Conficker (aka Downadup) worm is working around attempts to stifle its activity by dramatically increasing the number of domain names used to call home for fresh instructions.

For readers’ convenience we include previous coverage below. This is a Windows-only issue; for PC users there is the option to migrate to GNU/Linux at any time and resolve this problem permanently.

More on Conficker:

Update: More from Sam Varghese:

But rather than being educational, the 23-minute episode of its technology programme Click, (report here) which often bordered on the sensational, left one major question unanswered: what kind of computers were these – Windows, Mac, Linux, BSD?

If the programme aimed to be educational, and not sensational, then one needed to know this fact above all. It is well-known that a vast majority of the PCs which are commandeered by cyber criminals – people known as crackers, not hackers – run some variant of Windows, with XP being number one.

The programme began this way: “20,000 computers. All hijacked and waiting for instructions. And all under our control.” And all spoken by a presenter with a wide-eyed look of impending doom in his eyes.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

3 Comments

  1. Nick Reynolds (editor, BBC Internet Blog) said,

    March 14, 2009 at 2:45 pm

    Gravatar

    If you want to read the BBC’s side of the story it is here:

    http://www.bbc.co.uk/blogs/theeditors/2009/03/click_botnet_experiment.html

  2. Mike Brown said,

    March 14, 2009 at 6:03 pm

    Gravatar

    @Nick,

    I read the “BBC’s side of the story” to which you linked. They managed not to mention Windows there too.

    They do, at least, link off to a “PC Protection” page, which says:

    “Windows is the most popular OS and it is the most vulnerable to these kinds of attacks. ”

    At last, some admission that Windows might just be part of the problem. But it’s written so as to imply that its Windows’ popularity that makes it vulnerable – although without actually *saying* that – rather than it just being a badly written operating system. (No way all those MS refugees that washed up at the Beeb are going to allow anything like *that* to be said!)

    We’re also told:

    “Windows XP, Vista and Mac OS-X all have built-in firewalls”

    Quite so, but so do nearly all Linux distributions. That’s not worth a mention though. In fact, Linux itself isn’t worth a mention either.

  3. Roy Schestowitz said,

    March 14, 2009 at 6:25 pm

    Gravatar

    “Popular” is the wrong word.

    A lot of people I know hate Windows but carry on using it because they are given no choice.

    “Ubiquitous” would be a better word to use.

    As for the argument about security, Microsoft itself has already admitted that Windows is insecure by design and there is plenty of compelling evidence (including court exhibits) I can put forth to support this, not just extensive studies.

    “Our products just aren’t engineered for security.”

    Brian Valentine, Microsoft executive

    It is disappointing to see the BBC reinforcing incorrect consensus which was marketed vigorously by Microsoft. I used to believe the BBC had guts to offer proper reporting, not just recite spin and PR.

What Else is New

  1. Organising Techrights

    We're tidying up the site so as to make it easier to find past material (by clustering topics programmatically)

  2. Links 26/5/2019: GNOME 3.33.2 and OSS Catchup

    Links for the day

  3. Much Ado About Senators Tillis and Coons (Who Failed in 2017 and in 2018)

    The patent microcosm is attempting to buy laws that supersede the US Supreme Court (SCOTUS) and remove/weaken U.S.C. § 101 as well as PTAB while their blogs and sponsored 'articles' serve as lobbying vehicles

  4. European Patents Are Eventually Being Revoked. But at Great Expense to Everyone Except Law Firms.

    European Patent EP2724461 is revoked; but the cost of this chaos, which included an invalid embargo, could well be measured in billions, not millions

  5. Team Campinos Will Try to Make It Difficult to Go on Strike (But Won't Manage to Prevent It)

    The European Patent Office has a long and growing tradition of failing to respect staff's rights, including the right to go on strike (over violations of other rights of staff)

  6. Links 25/5/2019: Wine 4.9 Released, FreeBSD 11.3 Beta, Telegram Launches Fift

    Links for the day

  7. Links 24/5/2019: PostgreSQL 12 Beta 1 and Rust 1.35 Released

    Links for the day

  8. EPO Strikes Further Diminish Chances of UPC Ever Materialising (in Any Shape or Form)

    The EPO crumbles under the weight of its own corruption while an increasingly-insane Team UPC pretends all remains normal and a patent trolls-friendly system is ready to take off

  9. EPO Allegedly Becoming Insolvent (Pretext for Cuts), So Staff Gets Punished While Management Takes the Jackpot

    The corporate 'logic' at the EPO follows the "shareholders' value" propaganda line as if the EPO is a private company looking to maximise revenue rather than serve the public

  10. EPO President Still Not Obeying Courts' Rulings

    Federation of International Civil Service Associations (FICSA) sent a message to António Campinos yesterday (the same day SUEPO publicly made a call for strike)

  11. António Campinos Has Run Out of Time and EPO Staff is Going on Strike (Skipping Mere Protests)

    European Patent Office strikes are to resume; as SUEPO recently put it, people have come to accept that EPO leadership has not really changed and none of the underlying issues is being tackled

  12. Links 23/5/2019: Elisa 0.4.0, OpenSUSE Leap 15.1 Released

    Links for the day

  13. Links 22/5/2019: Mesa 19.0.5, Huawei and GNU/Linux, Curl 7.65.0, End of Antergos, Tails 3.14, ownCloud Server 10.2, Firefox 67.0

    Links for the day

  14. Quality of Patents is Going Down the Drain and Courts Have Certainly Noticed

    Uncertainty or lack of confidence in the patent system has reached appalling levels because heads of patent offices are just striving to grant as many patents as possible, irrespective of the underlying law

  15. EUIPO and EPO Abuses Growingly Inseparable

    'Musical chairs' at CEIPI and the EPO/EUIPO (Battistelli, Archambeau, Campinos) as well as joint reports never fail to reveal the extent to which EPO abuses are spreading

  16. Links 21/5/2019: China's GAFAM Exit, DragonFlyBSD 5.4.3

    Links for the day

  17. Links 20/5/2019: Linux 5.2 RC1, LibreOffice 6.3 Alpha, DXVK 1.2.1, Bison 3.4 Released

    Links for the day

  18. South Korea's Government Will Show If Microsoft Loves Linux or Just Attacks It Very Viciously Like It Did in Munich

    Microsoft's hatred of all things GNU/Linux is always put to the test when someone 'dares' use it outside Microsoft's control and cash cows (e.g. Azure and Vista 10/WSL); will Microsoft combat its longstanding urge to corrupt or oust officials with the courage to say "no" to Microsoft?

  19. Links 19/5/2019: KDE Applications 19.04.1 in FlatHub and GNU/Linux Adoption

    Links for the day

  20. The War on Patent Quality

    A look at the EPO's reluctance to admit errors and resistance to the EPC, which is its very founding document

  21. Watchtroll, Composed by Patent Trolls, Calls the American Patent System “Corrupt”

    Another very fine piece from Watchtroll comes from very fine patent trolls who cheer for Donald Trump as if he's the one who tackles corruption rather than spreading it

  22. Unified Patent Court Won't Happen Just Because the Litigation Microcosm Wants It

    Unified Patent Court (UPC) hopefuls are quote-mining and cherry-picking to manufacture the false impression that the UPC is just around the corner when in reality the UPC is pretty much dead (but not buried yet)

  23. Links 17/5/2019: South Korea's GNU/Linux Pivot, Linux 5.1.3

    Links for the day

  24. Q2 Midterm Weather Forecast for EPOnia, Part 4: Happy Birthday to the Kötter Group?

    This year the Kötter Group commemorates the 85th anniversary of its existence. But is it really a cause for celebration or would a less self-congratulatory approach be more fitting? And does it create the risk that a routine tendering exercise at the EPO will turn into Operation Charlie Foxtrot?

  25. Links 16/5/2019: Cockpit 194, VMware Acquires Bitnami, Another Wine Announcement and Krita 4.2.0 Beta

    Links for the day

  26. The EPO's Key Function -- Like the UPC's Vision -- Has Virtually Collapsed

    The EPO no longer issues good patents and staff is extremely unhappy; but the Office tries to create an alternate (false) reality and issues intentionally misleading statements

  27. Stanford's NPE Litigation Database Makes a Nice Addition in the Fight Against Software Patent Trolls

    As the United States of America becomes less trolls- and software patents-friendly (often conflated with plaintiff (un)friendliness) it's important to have accurate data which documents the numbers and motivates better policy; The NPE (troll) Litigation Database is a move towards that and it's free to access/use

  28. Q2 Midterm Weather Forecast for EPOnia, Part 3: “Ein kritikwürdiges Unternehmen”

    A brief account of some further controversies in which the Kötter Group has been involved and its strained relations with German trade unions such as Verdi

  29. EPO Had a Leakage Problem and Privacy of Stakeholders Was Compromised, Affecting at Least 100 Cases

    The confidentiality principle was compromised at the EPO and stakeholders weren't told about it (there was a coverup)

  30. Links 15/5/2019: More Linux Patches and More Known Intel Bugs

    Links for the day

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts