Eye on Microsoft: Ransomware, Botnets, Critical Flaws, and Insecure Microsoft File Types
- Dr. Roy Schestowitz
- 2009-07-28 07:18:43 UTC
- Modified: 2009-07-28 07:18:43 UTC
●
Smut page ransomware Trojan ransacks browsers
Russian cybercrooks have come up with a variant of ransomware scams, which works by displaying an invasive advert for online smut in users' browsers that victims are extorted to pay to remove.
●
The Business of Botnets
Kaspersky Lab released some interesting statistics recently in a technical whitepaper. As part of its research into the cyber-underground, the company took a look at how botmasters are pricing the networks under their control.
●
Microsoft to fix critical hole in IE
In a rare move, Microsoft on Friday said it would be releasing security updates on Tuesday--outside of its monthly patch cycle--for a critical vulnerability in Internet Explorer and a moderate vulnerability in Visual Studio.
●
Microsoft to Issue Emergency Patches Next Week
The advance notification advisory that Microsoft released about these upcoming patches doesn't say so explicitly, but a spokesperson for the company confirmed that the updates will address a critical security flaw in collection of code that Microsoft uses in a number of places in Windows. Having a vulnerability in this so-called "code library" is especially dangerous because Microsoft also provides this library to third-party software makers to help them build programs that can leverage certain built-in features of Windows.
●
Insecure by design: MS Office formats
You see, when you're opening an Office document today, you're not just opening static words, images, or numbers. You're actually starting a program that uses Microsoft Office as its interpreter. And, no matter whether you're using Word 2,0 formats or the 2008's 7,000+ pages mis-mash of 'standard' ECMA-376 Office Open XML file formats, there is no built-in network security layer. Instead, there is a mis-mash of fixes for one problem or the other.
Also see:
Emergency, Botnets, and No Remedy
Recent Techrights' Posts
- KDE's Cornelius Schumacher Explains Why You Should be Slop-Free
- Output is not measured by quantity of words
- Links 03/05/2026: Insolvent US Bailing Out Google, Microsoft, Amazon, Nvidia, Oracle, OpenAI, and SpaceX
- Links for the day
-
- ChromeOS and GNU/Linux Exceed 5% in New Zealand
- Can we expect New Zealand and Australia to divest from GAFAM?
- Links 04/05/2026: Energy Shortages Become More Visible, Germans Reject Military Service, Merz Says US 'Humiliated' Over Iran
- Links for the day
- The Real News is Botnets (e.g. Windows With Back Doors), Not Iran
- Let's focus on the botnets [...] Microsoft's aim is the opposite of security
- SLAPP Censorship - Part 66 Out of 200: Alex Graveley Did Illegal Things, Then Asserted Mentioning Those Illegal Things is Privacy Violation
- Alex Graveley "has suffered damage and distress" when the public found out he told women to kill themselves
- The Corrupt Lecture the Non-Corrupt - Part XII - Outsourcing Everything to Microsoft, Which is Illegal
- Today's EPO isn't about technology or law
- Melissa Chan on Why Press Freedom Matters to Everyone, Not Just Journalists
- dispelling a myth
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Sunday, May 03, 2026
- IRC logs for Sunday, May 03, 2026
- Gemini Links 04/05/2026: Another Old Web Pillar Gone and Simple Lobsters Mirror for Gemini
- Links for the day
- SLAPP Censorship - Part 65 Out of 200: Graveley and Garrett Claims Are Word-by-Word Similar (They Also Collaborated All Along)
- We'll keep it short today
- IBM Has a Long and Rich History of Showing Chatbots Bear No Business Prospects (From Jeopardy to Watson Healthcare and McDonalds)
- Watson Healthcare is already in the dustpan, so they are rebranding it again
- Europe Decoupling is Bad News for GAFAM, Especially Bad to Microsoft
- Countries want independence
- India Needs to Recognise That the World Wide Web is Monoculture in India
- In the US, a judge with Indian roots dealt with a case related to this; why won't India?
- All-Time Lows for Windows Down Under
- seeing the demise of Windows in Australia (historically a slow or low adopter of GNU/Linux) is good news
- Linux Kernel Tainted by Software Patents That Make Linux Worse and the 'Linux' Foundation is Compiling Bribes to Enable This (Promotion of Monopolies and Tolerance of Software Patenting)
- Why you need to reboot when a serious bug is found in Linux? "Licencing"...
- IBM's Kyndryl Accounting Fraud Explained and More Recently the Insiders Talk About Mass Layoffs
- Judging by how the media totally ignored 800+ layoffs at IBM's Confluent and 400+ layoffs at Red Hat a few weeks ago don't expect to hear anything about Kyndryl layoffs
- Links 03/05/2026: Water Shortages Crises and Slop Fakes "Are Coming for Your Bank Account" (Slop-Enabled Fraud)
- Links for the day
- All-Time Lows for Windows in Spain and Portugal
- data which became publicly available less than 24 hours ago in statCounter
- The Corrupt Lecture the Non-Corrupt - Part XI - EPO 'Products' to Cement Asian and American Monopolies
- Only a fool would believe Lame Duck Campinos
- Microsoft Windows Falls Below 9% in South Africa
- As one can expect, GNU/Linux is measured as going up in France
- Gemini Links 03/05/2026: The Black Side of the Web, LiveJournal, Chimarrão
- Links for the day
- A Month Since Mass Layoffs at Red Hat (400+ Engineers Laid Off), The Media Didn't Cover It
- We are very concerned about the state of the media
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Saturday, May 02, 2026
- IRC logs for Saturday, May 02, 2026
- Gemini Links 02/05/2026: Strange Psychosis and TUIs
- Links for the day
- Links 02/05/2026: Microsoft Has Begun Rebranding Vista 11 as 'XBox' (Because the Console is Dying), Slop Rejected by Oscars
- Links for the day
- IBM's CEO 10 Years Ago in IBM-Sponsored Forbes: "For those willing to embrace [blockchains], the future will indeed be bright."
- How well did this prediction materialise?
- SLAPP Censorship - Part 64 Out of 200: Not Amused by Repeated Threats (to "Shut Down" My "Existence" While Mentioning My Wife Too)
- it's about censorship
- RightsCon Cancellation as a Data Point in a World Gone Astray
- RightsCon should not even be controversial
- The NHS is Under Attack by Anthropic and Microsoft (or Their Lemmings That Infect the NHS)
- They are kidding themselves if they seriously believe Web-facing source code repositories are the real threat to patients
- cPanel is Not Linux, cPanel is Proprietary Software
- It's fair to say I've used cPanel for 23 years
- Links 02/05/2026: Gen Z is Turning Against Slop and OpenAI/Microsoft Rift Explained
- Links for the day
- Storage and Memory Prices Are Rising Not Because of High Demand (Production Can Match Demand), It's Partly Because of Price-Fixing (Same as Food Price Increases)
- Sophisticated robberies are still robberies
- Thousands of Layoffs at IBM, So IBM Pays Mainstream Media to Claim That IBM is Hiring (Paid Lies)
- This is a story about the media failing us, not just IBM failing as a company
- A Look at DataStax Bluewashing (IBM and Layoffs)
- IBM is a place that many people leave or get pushed out of
- Gemini Links 02/05/2026: Leaving Session, Alhena 5.5.7, and Slop Failing Customers
- Links for the day
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Friday, May 01, 2026
- IRC logs for Friday, May 01, 2026
