Eye on Microsoft: Security Synopsis

Dr. Roy Schestowitz

2009-08-13 23:29:40 UTC
Modified: 2009-08-13 23:29:40 UTC

Summary: Failures and cover-ups (sponsored by Microsoft)

● Security is a process

I often point out that Windows is insecure. It's so insecure, in fact, that I, in all seriousness, propose that ISPs (Internet Service Providers) should start forcing users to secure Windows-since neither users or Microsoft will do the job, Windows PCs should be banned from the Internet. That said, nothing, and I mean nothing is really secure.

[...]

It doesn't work that way. Security is a process, it's not a product. Some systems are more secure than others. Linux, as anyone who pays any attention to security news knows, is a lot more secure than Windows. If we were talking cars, Linux would be an Audi A4, the Mac, BMW 330 and Windows would be a mid-70s Ford "Hit here to blow up" Pinto.

● Microsoft: 2 year response to critical 0-day hole (Vista 7 too is suffering from the same symptoms)

It turns out Microsoft has known about the critical security vulnerability in its Office Web Components (OWC), which was fixed last patch day, for more than two years. Only since it has been actively exploited has the behemoth sprung into life and, within a month, released a patch.

● Microsoft IE 8 shines in Web browser security test (emphasis in red is ours)

Microsoft's Internet Explorer 8 rated tops among five browsers tested by NSS Labs for effectiveness in protecting against malware and phishing attacks—though NSS Labs acknowledges Microsoft paid for the tests.

● Virus arms race primes malware numbers surge

The amount of catalogued malware by Panda was 18 million in the 20 years from the firm's foundation until the end of 2008. This figure increased 60 per cent in just seven months to reach 30 million by 31 July 2009.

● Twitter briefly knocked offline by hackers (again) (Microsoft Windows is a culprit [1, 2, 3, 4, 5, 6])

Twitter suffered from yet more security jitters on Tuesday night, after another attack left the site briefly unavailable.

● Aussie arrested in botnet allegation (74,000 down, ~319,926,000 to go)

Inspector Blue Knacker of the Adelaide Yard claims that the 20 year old is also suspected of having developed software capable of launching virus attacks on 74,000 computers worldwide.

● [Microsoft Wordpad is Vulnerable, Exploit Available]

Richard Stallman Gives Talk in 20 Hours at Ostschweizer Fachhochschule Campus in Rapperswil-Jona: The talk is in English
Using Slop (and Slop in Articles) to Attack Copyleft 'on Budget': This article is pure BS from an anti-GPL and anti-RMS 'activist'
Why The Register MS Sold Out to Microsoft: They're Losing Lots of Money, The Register MS is Bleeding to Death, Based on Its Own Financial Records: With over 6 million pounds in debt (nearly 10 million US dollars) we guess it's likely some other company will take over the site (if it deems it worthwhile)
Microsofters' SLAPP Censorship - Part 7 Out of 200: Like With the Serial Strangler From Microsoft, Misuse of UK-GDPR to Try to Hide Embarrassing Facts: They do and say really bad things, then allege it's a "privacy violation" to mention those things
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, March 08, 2026: IRC logs for Sunday, March 08, 2026
Gemini Links 09/03/2026: Exponentials and Tailscale: Links for the day
Sloppyleft: Article by Alexandre Oliva
Hard to Replace 'Human Touch': The reason many people insist on using GNU
The Slop Companies Gamble at Our Economy's Expense and They Know It's a Losing Bet (So It's a de Facto Robbery): The crash of this bubble isn't just inevitable, it's already happening and receding sporadically because of false announcements about money that does not actually exist (to "buy time")
Suppressing Speech by Blackmail, the Iran Story: When Debian wanted to stage a seemingly legitimate election it needed to have more than one candidate running; so eventually the female partner of a geek rose to the challenge (had no coding skills at all, no technical history in Debian) and lost to the "incumbent German"
Too Focused on Buzzwords the Media is Paid to Saturate the Collective Mind With: Just because companies do really bad things in the digital realm does not imply "AI" or follow from "AI"
Discrimination and Prejudice Against Female Journalists: we can shame people who attack a reporter on the grounds of gender
An American War on GNU/Linux, Software Freedom, and British Investigative, Science-Based Reporting - Part II - Trying to Put People in Prison for Committing the Act of Journalism: This is abuse of process
Attack on Copyright and Copyleft by Code Conversion Is Nothing New, It Predates Slop (Code Produced by LLMs) by Several Decades: Even back in the 90s many people converted programs from one language to another. That could invalidate copyleft (and copyright), which already existed
Almost a Slopless Weekend for "Linux": Let's hope slop will come to an end or sites will cease linking to slop
Insiders Explain Why IBM is Dying and the Inherent Culture Problem: There are many ways to shave this IBM cat
Links 08/03/2026: Microsoft Lost $400 Million on "Project Blackbird" and Half the States Sue Over Illegal Tariffs: Links for the day
Links 08/03/2026: Cisco Holes Again and "Blatant Problem With OpenAI That Endangers Kids": Links for the day
Activism/Journalism in Our Blood: one must fight for one's principles
Gemini Protocol in Its Prime: What's particularly neat about Gemini Protocol is that it's fast and cheap
Microsofters' SLAPP Censorship - Part 6 Out of 200: Intentionally Misnaming Women, People Who Offered to Testify That They Too Had Been Subjected to Similar Abuse: Today it is International Women's Day
Even Fedora Leadership Cannot Figure Out the Microsoft Kill Switch/Back Door, 'Secure' Boot: It does not actually enhance security
Bruce Perens: Richard Stallman "Has Achieved His Goal": Stallman's next talk is tomorrow
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, March 07, 2026: IRC logs for Saturday, March 07, 2026
Gemini Links 07/03/2026: Buying Woodland, Indra 1.3.0 Available, and LLM Exhaustion: Links for the day
The Harder They Attempt to Take Down This Site (and Take Away Liberties), the More People Will See This Site: We'll carry on as usual, as from sunlight comes justice
An American War on GNU/Linux, Software Freedom, and British Investigative, Science-Based Reporting - Part I - A Matter of National Security: Those people are Americans who try to advance the interests of American corporations by weaponising courts abroad
Why They Always Try to Shoot the Messenger (When the Message Harms Profits): A matter of economics
Coinbase - Like Block - is in Huge Trouble, Its Debt Nearly Doubled in Half a Year: The real reason Block is collapsing is its debt
Starting Another New Series This Evening, It's About American Folly: today commences a series long in the making (years)
Nations Stand to Benefit From Gender Equality and Increased Participation by Women: International Women's Rights Day starts in about 6 hours in the UK
Microsoft is Losing It, Now It's Censoring Its Critics and Sceptics: Whether the measurements made by statCounter are accurate or not, the trends (long-term) typically make sense
WIRED (Conde Nast) Reviews Are Paid-for Marketing Spam, They Change Dates on Old 'Articles' to Make Them Look Relevant and New: The Web is fast becoming a burial ground for ads, trash, spam, and slop
Gemini Links 07/03/2026: Humour, Chilling, and Oversized 'Phones': Links for the day
Cyber|Show by Andy and Helen Recommended by Techrights and Tux Machines: If your time is limited and you look for informative essays and shows (audio)
Links 07/03/2026: CJEU to Finally Examine Behaviour of the Illegal and Unconstitutional Unified Patent Kangaroo Court, Creative Commons (CC) Hosts Open Heritage Statement Event in Amsterdam: Links for the day
Microsoft's Thailand Problem: It's definitely not Windows
New Lows for Microsoft in Micronesia: GNU/Linux has shown some growth there too
Microsofters' SLAPP Censorship - Part 5 Out of 200: Clearly Not a Security Professional/Expert, Only Ever Pretending to be One: "The Claimant says he is “a computer security expert”, but his background and his track record in the education sense (genetics) does not support this assertion."
Links 07/03/2026: Fuel Already Running Low and "Economic Crisis of the Iran War": Links for the day
The Corporate Media Repeated the Lies Told by Jack Dorsey ("AI" Hype), Now It Does the Same for Larry Ellison: Disregard the hundreds of headlines that say mass layoffs at Oracle are due to "AI" something
The Free Software Community is Gaining Momentum as Its Importance is More Broadly Realised: As long as "trendy" technology goes in a negative direction there will be a growing portion in society looking for alternatives
Spooking or Chasing Away Women (From Computer Science): The status quo discourages women from even trying to study Computer Science and related disciplines
"IBM Has Changed So Much in the Last Decade to the Point It's Completely Unrecognizable.": IBM is a dying, rotting company with a morbid culture
The Register MS, Sponsored by Communist Party of China (CPC): What will happen when the bubble crashes the economy?
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, March 06, 2026: IRC logs for Friday, March 06, 2026
Gemini Links 07/03/2026: Coffee Problem, Marchintosh, Learning, and "Selectively Disabling HTTP": Links for the day

Eye on Microsoft: Security Synopsis

Recent Techrights' Posts