Microsoft Windows Zombies Take Down Free Software Services Hosted on Amazon

Dr. Roy Schestowitz

2009-10-05 18:13:36 UTC
Modified: 2009-10-05 18:13:36 UTC

Summary: Bitbucket goes offline due to a distributed denial of service attack (botnets)

BACK IN August when Windows zombies took Twitter down repeatedly (and to an extent Facebook also) [1, 2], some journalists went as far as suggesting that Microsoft should be sued.

Now that Windows zombies paralyse the hosting service known as Bitbucket, which serves Free software projects, one must wonder where it ever ends. We too were a victim. Is a ban on compromised Windows the last option remaining?

A crippling DDoS attack over the weekend against open-source hosting service Bitbucket and Amazon's EC2 service has questions being raised about the speed and effectiveness of Amazon's response to the emergency, as well as the general reliability of cloud services.

The Microsoft-dominated DHS speaks about hiring an army of security people to address this issue, but Cringely explains why it's unrealistic (to put it kindly).

“I’m not sure there are even a handful (of experts) with any sort of broad experience,” said expert number five, who is usually associated with security hardware. “There probably are pockets of them, with specialized narrow experience, e.g. in banking, virus or DOS attacks, military networks, etc.. And even if there were 1,000, what would they be doing on behalf of Uncle Sam?”

That’s a great question given that we as a nation can’t seem to hire and keep a national cybersecurity czar. So what are we doing hiring 1,000 experts given there is no boss?

[...]

The DHS is extremely unlikely to be able to find and train 1,000 cybersecurity experts in three years. Maybe they’ll come up with 100 (more likely 5-10), but the DHS environment will make it unlikely — very unlikely — that all of those 100 will stick around.

[...]

“Sure there are 1,000 (cybersecurity experts),” he said, ” but they are already employed… as hackers.”

Many Free software projects are being suspended by the rush of security flaws in non-Free software. The same can hardly be said about the opposite scenario; Google showed that even servers that deliver malware typically run Windows. ⬆

European Authorities, Already Bribed and Infiltrated by Microsoft, Won't Help You Find BigBlueButton, Jami, Ring, and Jitsi: Because they're paid by Microsoft and are Microsoft 'addicts' themselves
Moving From Content Management Systems (CMSs) to Static Site Generators (SSGs) Saves You Time, Makes You a Lot More Productive: try to reduce the cost (financial and computational) of running your site
Leak: European Patent Office (EPO) is Now Attacking Amicale Clubs: corruption has become the norm and scientists are robbed of any dignity
Oracle Fraud (or Defrauding Shareholders): "the obvious [lie] is that watts are (wasted) electricity [and] and FLOPS are computing capacity"
Explaining (in Length and Depth) the Damage Matthew Garrett Did to Linux and to GNU/Linux Users: no matter how many threats we receive
The Register MS Still Takes Money to Hype Up "AI" in Articles by Microsoft Resellers With the Term "AI" 30+ Times in Them: Notice how many times they mention "AI"
The Apache Logo News is VERY Old, Racists and 'Anti-Woke' Bigots Look for Something to Incite Other Bigots With: Nothing to see here, move along
Linux Mint 9/11: "4th One Today..." (in Reddit): Remember that not everyone having an issue reports it to social control media like Reddit
Nepal Will Fall Without a Single Shot Fired, Thanks to Social Control Media: Or very few shots (by the authorities)
European Corruption in the European Patent Office (EPO) Targets Culture: "In reality, the project includes a new “legal instrument” shifting administrative burden and liability on EPO staff while creating new uncertainty and externalising Amicale activities."
UEFI Secure Boot Failing, as Expected for Nearly 15 Years Already (Techrights Said This Since 2012): in the media
Debian 9/11: people report this issue
Gemini and Web Links 13/09/2025: MElon's Slop Grift and "Autonomous Trains": Links for the day
Pursuing Peace Through Violence: You cannot "see" a person's mind, until the mouth opens
Can We Please Stop Celebrating Shooters?: "An important point to hammer on is that CoCs were never intended for uniform or symmetric application"
Geminispace is Growing Faster in 2025 Than It Did in 2024: What matters is that corporations haven't ruined it and LLM slop is extremely rare
Links 13/09/2025: China Punishes for 'Negative' Posts, US Police Unable to Find Shooter: Links for the day
Who's the Mystery Financier of SLAPP Against Techrights and Is That a Millionaire/Billionaire?: Whose idea was it to fund meritless lawsuits against my wife and I?
Slopwatch: Slow Slop Day: This distracts from or may take traffic away from the original articles, actually written by actual people
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, September 12, 2025: IRC logs for Friday, September 12, 2025
CoC Gone Wrong: Celebrating Murder OK, Complaining About the Celebration Gets You Banned: Hopefully the NixOS Foundation will have a word with (maybe replace) the moderator/s
Gemini Links 12/09/2025: Familiarity and Secondary Dominants: Links for the day
Links 12/09/2025: "Bad Reviews" as Extortion Weapon, "Free Speech At Risk in America’s Schools" According to ACLU: Links for the day
Only One Speaker Does Not Do Sharecropping for MElon (in X.com): The man who puts principles before PR/optics
The Mind of the 'Hulk Hogan of UEFI': in a nutshell
A Day After "UEFI 9/11": UEFI Secure Boot Bypass: In the news today (right now), as published in the past few hours
Links 12/09/2025: Slop Code as Liability, Microsoft Outlook Down for Many: Links for the day
It's Still Not to Late to Turn Off "Secure Boot": If people reboot their PC or server today, and it relies on "Secure Boot" on Sept. 12 or later, then depending on the firmware there may be trouble ahead
Links 12/09/2025: Shira Perlmutter is Back, “Software Per Se” Patent Rejections in In re McFadden: Links for the day
Slopwatch: Linux Plagiarism, Slopfarms Still Infesting Google News, Many Images Are Fake: Google is promoting plagiarism
"This Morning Might Turn Out to be an Interesting One for System Admins Who Haven't Updated Their Devices' Secure Boot Certificate" (If They Reboot): Who asked for this anyway?
Gemini Links 12/09/2025: Metric System, Dumping Windows, and Software Architecture is Dead: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, September 11, 2025: IRC logs for Thursday, September 11, 2025
Microsoft Admits the Workers Have Lost Trust (Endless Layoffs, 12-13 Rounds of Layoffs This Year), So Now It's Trotting out Its Peter Bright-Like Media Prop Jordan Novet: What they don't want people to pay attention to right now
Links 11/09/2025: Windows TCO and Russian Drones Invading Poland (EU/NATO): Links for the day
Gemini Links 11/09/2025: xkcd, misfin, and Alhena 5.3.2: Links for the day
Repetition of Last Summer (Microsoft Breaking Dual-Boot Systems): UEFI 9/11 is about to kick in
UEFI 'Secure Boot' Boiling Frogs (Cannot Turn Off 'Secure Boot'): "MSI laptop is locked on Secure Boot and doesn't allow me to turn it off"
UEFI 9/11 Aftermath - Part IV: The 'Hulk Hogan of UEFI' and His 'Hideout' Holiday (Retreat From Reality): Let's keep an eye on what matters
UEFI 9/11 Aftermath - Part III: Mr. 'Secure Boot' (Shim) and His Fake 'Holiday' (Sending My Wife and I Threatening E-mails on 9/11): despite being on holiday, according to him, he finds time to instruct lawyers to contact my wife
UEFI 9/11 Aftermath - Part II: "The SecureBoot Thing Got Out of Hand.": The next few weeks might be... interesting
UEFI 9/11 Aftermath - Part I: "I Believe This Affects Thousands of Devices... Because Multiple Devices I Checked, Whether Client or Server [...] Affected.": Most people aren't even aware that this is happening or about to happen
The UEFI 9/11 - Part X - An Outline of the Series About Microsoft Sabotaging GNU/Linux (With Ramifications to Unfold Online in Coming Weeks as People Reboot): Today is UEFI 9/11 (9/11/2025)
Ron Wyden: Microsoft Should be Held Accountable for Security Breaches (He Has Said This for Years Already, It Never Happens): Negative media coverage isn't a fine and it does nothing to compensate Microsoft's billions of victims
Culture of silence: Ubisoft harassment convictions, Mozilla, Sylvestre Ledru & Debian make no comment: Reprinted with permission from Daniel Pocock
Disable 'Secure Boot' (If It Lets You): it doesn't put you in control
Links 11/09/2025: "Hey Hi" Ponzi Schemes at Oracle (Unpaid Contracts) and Cindy Cohn is Leaving the EFF: Links for the day
Longtime Red Hat Staff: Maybe Just Disable 'Secure Boot': A refreshing take from Adam Williamson
Gemini Links 11/09/2025: Playdate Console, Dichotomy between the Real and the Digital: Links for the day
A Dozen Observations About "UEFI 9/11" Deflections: What we are expected to see, tentatively
The Microsoft AstroTurfing and Microsoft-Led Blame-Shifting Tactics Are Ahead of Us: Of course it has nothing to do with security, it's about control, i.e. them controlling everything
Celebrating Assassination is Bad Because It Legitimises Assassination of the People You Like, Too: Condoning or even celebrating political assassinations is bad optics (and taste)
The World's Richest Ponzi Scheme (Faking Value Using Net Waste): The higher they go the harder they fall
We Could Dual-Boot Back in the 1990s, Why Has This Become So Difficult?: And prone to breakage
Being Conditioned to Accept Unreliable Computer Systems That Fail With Black Screen of Death (BSoD): Welcome to 2025
Slopwatch: Google News is Still Promoting Many Fake Articles About "Linux", in Effect Rewarding Misinformation and Plagiarism: things continue to deteriorate
New Series: The Coup Against GNU/Linux Has Begun: today, this year in particular, we shall also focus on Secure Boot, which is sold based on a lie and tortures many computer user
New Paper on "BYOVD, but in firmware. Signed UEFI shells, vulnerable modules offer new paths for Secure Boot bypasses.": One might say digital "security theatre"
Links 11/09/2025: Oracle Layoffs, Drunk Pilots in Japan Airlines, US-Korea Tensions Grow: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, September 10, 2025: IRC logs for Wednesday, September 10, 2025

Microsoft Windows Zombies Take Down Free Software Services Hosted on Amazon

Recent Techrights' Posts