Bonum Certa Men Certa

Microsoft Won't Secure Firefox/Chrome Users, Shows More Negligence

Web browser icons



Summary: ActiveX required by Microsoft's OneCare; investigation into Vista 7 vulnerabilities a case of "too little, too late"

MICROSOFT pretends to have changed for the better. It pretends that it allows users of Windows to use Web browsers other than Internet Explorer, but the following post -- artistically titled "Microsoft being a Onecare [Wanker]" -- suggests otherwise:

For starters, it uses an ActiveX control - Internet Explorer required in other words - that's annoyingly hard to install. You get warnings galore from Windows 7's UAC and IE about popups and do you really really really want to install something that has the potential to roger your system well and truly?


ActiveX was designed to restrict competition by supplanting Web standards. It ended up becoming one of the biggest security nightmares out there and Novell supports this.

Here is the new story of a man who has just been fired because of these practices from Microsoft:

Linux Contractor Fired for Using Firefox/Linux



[...]

The irony? The "compentency test" was a Security & Privacy test from the four letter credit card company that HAD to be taken on MS Windows with IE?

I'll let you be the ones to point out the obvious...the fact that this large computer/server company with three letters in their name is reportedly a "friend to Linux". I'll let you talk about how a Linux Professional who uses Linux as their desktop environment was denied access to employment. Employment that was based on his knowledge of Linux. Yeah, the server side...but still...

Now let's brag about how much ground Linux has made...

And a Linux Project Manager for said company asking the question:

"What's this Foxfire thing?"


As a secondary item of news, some days ago we argued for Microsoft liability when it comes to the latest Vista 7 vulnerability. Microsoft deserves to be accused of negligence and the following article implies deception too.

Is Microsoft Overhyping Security In Windows 7?



[...]

Microsoft has been aggressively marketing the security improvements in Windows 7, but some security experts believe this strategy could leave the software giant open to some unpleasant repercussions.


Vista 7 has been breached before and to give some examples of insecurity, we have:



Now there is the SMB flaw that Microsoft finally acknowledges.

Microsoft on Friday said it is working on a fix for a vulnerability in the Server Message Block file-sharing protocol in Windows 7 and Windows Server 2008 Release 2 that could be used to remotely crash a computer.


It really took them too long, having waited for attack code to appear before properly investigating. That's negligence and it is irresponsible. Gregg Keizer writes:

The zero-day vulnerability was first reported by Canadian researcher Laurent Gaffie last Wednesday, when he revealed the bug and posted proof-of-concept attack code to the Full Disclosure security mailing list and his blog. According to Gaffie, exploiting the flaw crashes Windows 7 and Server 2008 R2 systems so thoroughly that the only recourse is to manually power off the computers.


Why has Microsoft waited so long before looking into the problem? Could it be that lack of security and increased fear help Microsoft sell more 'solutions' to those very same problems? As we showed some days ago, [cref Microsoft is clearly profiting from Conficker], for example.

Comments

Recent Techrights' Posts

Following Corrections and Adjustments statCounter Sees GNU/Linux at 7.1%, an All-Time High
There is a lot of layoffs at Microsoft this month
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, July 10, 2026
IRC logs for Friday, July 10, 2026
Links 11/07/2026: Wednesday-Saturday News Catch-up
Links for the day
Prioritising High-Importance News
In order to fully catch up with news we'll not publish many new articles until next week
The Register MS: "AI" More Than 80 Times in One Article. But It's Not an Article, It's Sponsored Keyword-stuffed Page.
The Register MS is being paid to actively promoted this scheme
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, July 09, 2026
IRC logs for Thursday, July 09, 2026
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, July 08, 2026
IRC logs for Wednesday, July 08, 2026
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, July 07, 2026
IRC logs for Tuesday, July 07, 2026
Links 07/07/2026: Microsoft Cuts Doom "id Software" and Turkey Detains Journalists
Links for the day
Gemini Links 07/07/2026: Old Computer Challenge (OCC) and Hardware Tests
Links for the day
A Break From the Routine
What matters is what whistleblowers keep feeding information to us