05.27.09

Gemini version available ♊︎

BNP Attacked via Windows Zombies, Blames Conspirators

Posted in GNU/Linux, Microsoft, Security, Site News, Windows at 7:45 am by Dr. Roy Schestowitz

Defaced
Better DDoSed than defaced?

Summary: The problem with Windows botnets raises greater concerns as yet another Web site goes offline for the weekend

T

HE INHERENT insecurity of Microsoft Windows is some serious business. It is not only used for spamming at a biblical scale, but with an army of hundreds of millions of Windows zombies one truly becomes a master of the World Wide Web, deciding which Web sites go offline and which ones stay offline. That’s a lot of power to have and it requires no Australia-style secret filters. At worst, entire nations get be paralysed and there are real-world examples of this.

The problem is confirmed to be a hugely severe one because some security experts believe that only luck or mercy has permitted the Web to persist living. According to a new report from Heise, “ITU calls for global cybersecurity measures.”

The International Telecommunication Union ITU has published its proposals for harmonising global cybersecurity legislation on the periphery of a conference on the information society in Geneva.

This would not resolve anything. As we stressed the other day, banning of software tools would not be effective and fining vendors would not help either (Linux vendors agree). But if the FBI can't keep Windows secure, who can? Would a solution be to phase out (maybe eradicate or quarantine) Windows? Botnets consistently comprise Windows boxes because evidence suggests that UNIX and Linux are a lot more secure. No version of Windows will ever be secure, based on evidence too.

Over a week ago (13 days to be precise) we began suffering downtimes due to DDoS attacks and this morning we found this report in The Register:

BNP pleads for cash after reported DDoS assault

[...]

A conspiracy by “Marxist cyber criminals” campaigning against the BNP is alleged to be behind the assault, which remains ongoing, according to an appeal email, which was sent out on Monday.

The size of the renewed assault is unparalleled and there is no doubt that whoever has organised this has had to pay out a serious amount of money to the criminal underworld.

On Friday the servers of Clear Channel, part of a huge conglomerate that provides billboard advertising to the BNP, suffered a similar attack. Their IT professionals tracked the criminal activity back to a notorious “anti-fascist” organisation openly aligned to the Labour Party and supported by the Conservatives and the Liberal Democrats. This organisation was protesting at the decision by Clear Channel to allow the BNP to display advertising in support of our European Election Campaign.

As a consequence of the criminal actions against Clear Channel we understand that their legal team is currently in the process of issuing writs against the perpetrators which as well as civil actions will involve the possibility of potential criminal charges including racketeering.

Whether one believes them or not is a separate matter. Tracking the source of a DDos attack is next to impossible unless a comprehensive investigation is launched.

As for ourselves, we made no accusations against anyone, but we were privately sent information that may show the motive for an attack. There were about half a dozen such attacks. It was mostly likely targeted, it was not some random selection of a victim.

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive and Windows manager

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New


  1. Microsoft Staff Trying to Subvert the Freedom of Gemini (Without Disclosure of the Paymaster)

    Looking back at the past couple of years, it seems like Microsoft staff and boosters were more than eager to steer developers away from freedom and into Microsoft's cage



  2. Gemini Gone Mainstream: German Media Now in Geminispace

    With the likes of TAZ embracing Geminispace/Gemini Protocol we seem to have reached some sort of inflection point; taz.de did in fact add official presence to Geminispace



  3. Links 28/1/2022: LSFMM 2022 and 2021 UI Study Results From Elementary's Distro

    Links for the day



  4. IRC Proceedings: Thursday, January 27, 2022

    IRC logs for Thursday, January 27, 2022



  5. Links 28/1/2022: GNU Poke 2.0 and OPNsense 22.1 Released

    Links for the day



  6. Links 27/1/2022: Archinstall 2.3.1 and Nix 2.6.0

    Links for the day



  7. On the Internet, Trust Should Not Become Centralised

    “Trust” is a word that lost its meaning in the era of “TPM” and fancier names for 'Palladium'; we need to reject this idea that computers need to check with Microsoft if the operating system is trusted (not just Windows!), check with Gulag/Chrome if a Web site is trusted, and whether it's OK to run some application/s on one's own computer (as if Jim Zemlin et al get to decide what is trusted)



  8. Microsoft-Connected Publishers Suffer and Perish With Microsoft (While Peddling 'Fake News' for Their Beloved Sponsor)

    IDG and other fake news outlets/networks/sites (selling to companies flattering articles about themselves or renting out 'news space' to them, not just ad space) want us to think Microsoft is doing very well, but it's just that same old Ponzi scheme



  9. Links 27/1/2022: Mabox Linux 21.11 Herbolth and PipeWire 0.3.44

    Links for the day



  10. IRC Proceedings: Wednesday, January 26, 2022

    IRC logs for Wednesday, January 26, 2022



  11. [Meme] EPO: Pursuing an Eastern and Western District of Europe (for Patent Trolls and Software Patents)

    With the EPO so flagrantly lying and paying for misinformation maybe we should expect Benoît Battistelli and António Campinos to have delusions of grandeur… such as presiding over the Eastern and Western District of Europe, just like Mr. Gilstrap and Mr. Albright (political appointment by Donald Trump, ushering in “the swamp”)



  12. Gemini at 2,000: 86% of Capsules Use Self-Signed Certificate, Just Like the Techrights Web Site (WWW)

    As shown in the charts above (updated an hour ago), the relative share of ‘Linux’ Foundation (LE/LF; same thing, same office) in the capsules’ certificates has decreased over time; more and more (in terms of proportion) capsules choose to sign their own certificate/s; the concept of ‘fake security’ (centralisation and consolidation) should be rejected universally because it leaves nobody safe except plutocrats



  13. [Meme] UPC: Many Lies as Headlines, Almost Exclusively in Publishers Sponsored by EPO and Team UPC to Produce Fake News (Lobbying Through Misinformation)

    Lest we forget that EPO dictators, like Pinky and the Brainless Benoît Battistelli and António Campinos, have long littered the EPO's official Web site as well as publishers not directly connected to the EPO (but funded by it) with disinformation about the UPC



  14. EPO as the 'Ministry of Truth' of Team UPC and Special Interests

    The 'Ministry of Truth' of the patent world is turning the EPO's Web site into a propaganda mill, a misinformation farm, and a laughing stock with stock photography



  15. Microsoft 'Delighted' by Windows 11 (Vista 11) Usage, Which is Only 1% Three Months After Official Launch and Six Months After Release Online

    Microsoft boosters such as Bogdan Popa and Mark Hachman work overtime on distraction from the failure Vista 11 has been (the share of Windows continues to fall relative to other platforms)



  16. Links 27/1/2022: Preinstalled GNU/Linux (Ubuntu) and Arch Linux-Powered Steam Deck 30 Days Away

    Links for the day



  17. Don't Fall for Microsoft's Spin That Says Everything is Not Secure and Cannot be Secured

    Microsoft keeps promoting the utterly false concept that everything is not secure and there's nothing that can be done about it (hence, might as well stay with Windows, whose insecurity is even intentional)



  18. At Long Last: 2,000 Known Gemini Capsules!

    The corporate media, looking to appease its major sponsors (such as Web/advertising giants), won't tell you that Gemini Protocol is rising very rapidly; its userbase and the tools available for users are rapidly improving while more and more groups, institutions and individuals set up their own capsule (equivalent of a Web site)



  19. Links 26/1/2022: Gamebuntu 1.0, PiGear Nano, and Much More

    Links for the day



  20. IRC Proceedings: Tuesday, January 25, 2022

    IRC logs for Tuesday, January 25, 2022



  21. Links 26/1/2022: No ARM for Nvidia, End of EasyArch, and WordPress 5.9 is Out

    Links for the day



  22. Why the Unified Patent Court (UPC) is Still Just a Fantasy and the UPC's Fake News Mill Merely Discredits the Whole Patent 'Profession'

    Patents and science used to be connected; but now that the patent litigation 'sector' is hijacking patent offices (and even courts in places like Texas) it's trying to shove a Unified Patent Court (UPC) down the EU's throat under the disingenuous cover of "community" or "unity"



  23. Links 25/1/2022: Vulkan 1.3 Released, Kiwi TCMS 11.0, and antiX 19.5

    Links for the day



  24. Gemini Milestones and Growth (Almost 2,000 Known Gemini Servers Now, 39,000 Pages in Ours)

    The diaspora to Gemini Protocol or the transition to alternative 'webs' is underway; a linearly growing curve suggests that inertia/momentum is still there and we reap the benefits of early adoption of Gemini



  25. [Meme] Get Ready for Unified Patent Court (UPC) to be Taken to Court

    The Unified Patent Court (UPC) and Unitary Patent system that’s crafted to empower EPO thugs isn’t legal and isn’t constitutional either; even a thousand fake news 'articles' (deliberate misinformation or disinformation) cannot change the simple facts because CJEU isn’t “trial by media”



  26. The EPO Needs High-Calibre Examiners, Not Politicians Who Pretend to Understand Patents and Science

    Examiners are meant to obstruct fake patents or reject meritless patent applications; why is it that working conditions deteriorate for those who are intellectually equipped to do the job?



  27. Free Software is Greener

    Software Freedom is the only way to properly tackle environmental perils through reuse and recycling; the mainstream media never talks about it because it wants people to "consume" more and more products



  28. Links 25/1/2022: Git 2.35 and New openSUSE Hardware

    Links for the day



  29. IRC Proceedings: Monday, January 24, 2022

    IRC logs for Monday, January 24, 2022



  30. Links 25/1/2022: GPL Settlement With Patrick McHardy, Godot 4.0 Alpha 1, and DXVK 1.9.4 Released

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts