01.20.10

“Emergency!” Says Microsoft as It’s Losing Market Share; All Versions of Windows Are Vulnerable

Posted in Free/Libre Software, FUD, GNU/Linux, Microsoft, Security, Windows at 5:48 pm by Dr. Roy Schestowitz

Summary: Microsoft responds very urgently to the gains Firefox and other Web browsers are making as more vulnerabilities start to surface; Microsoft also throws FUD at Firefox, just as it does against GNU/Linux

INTERNET EXPLORER is under attack [1, 2, 3, 4, 5, 6, 7]. Microsoft calls it an “emergency”, but the emergency is that Microsoft is losing market share, not that customers are at risk. Microsoft had publicly belittled this issue… until governments started to speak out and complain.

This is the real emergency:

German government IE warning leads to spike in Firefox downloads

Following a warning last Friday from the German Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik, BSI) concerning the security hole in Internet Explorer (IE), Mozilla has said that it has recorded a “huge increase” in the number of Firefox downloads in Germany. According to a post by Mozilla’s Ken Kovash on the Mozilla Blog of Metrics, more than 300,000 downloads of the open source browser took place during the recent Friday to Monday period. Similarly, Opera also reportedly saw downloads of its browser in Germany more than double.

“MS to issue emergency patch for potent IE vuln,” heralds The Register:

Microsoft will release an emergency update that patches the Internet Explorer vulnerability used to breach the security defenses of Google and other large companies.

Even the BBC wrote about it, having previously served as Microsoft’s mouthpiece amid these embarrassing incidents.

SJVN has just published “Who cares if IE is patched soon?”

Microsoft is now promising us that they’ll have a patch for the latest IE security hole … real soon now. So what? This problem, while it’s been exploited the most in IE 6, it exists in all modern versions of IE and it can be exploited in every version of Windows from Windows 2000 to Windows 7. And, I’m supposed to trust that Microsoft will ‘patch’ it right this time and that it won’t blow up on me again? I don’t think so.

SJVN is right. Governments complained due to a pattern of shoddy maintenance/stewardship from Microsoft, not because of this one incident. Enough it enough and taxpayers are paying the price while Microsoft and its ecosystem are profiteering from malware.

Microsoft is publicly defending the already-poor reputation of Internet Explorer. It does so right now “by spreading FUD against Firefox,” says Glyn Moody. He cites the following article:

With world governments advising citizens to switch from Internet Explorer to alternative browsers, and an unpatched security hole in at least two major versions of Internet Explorer, Microsoft has to do something to restore faith in its browser. Easiest way to do it, apparently, is by saying that other browsers are even worse than IE.

The FUD against Firefox is made out of fabrications and secrets. It’s not even worth quoting.

Very recently we also caught Microsoft attacking Linux [1, 2] in order to defend Windows Mobile. So, Microsoft is finally just attacking rival operating systems and Web browsers when its own products come under scrutiny. Microsoft is miserable enough to descend to the final stage per Mahatma Gandhi, who said: “First They Ignore You, Then They Ridicule You, Then They Fight You.”

Linux is not taking Microsoft’s insults without rebutting. Jim Zemlin, the head of the Linux Foundation, has just shot back at Microsoft for its remarks. Here’s the background he provides:

Last week, David Coursey reported that Microsoft entertainment and devices boss Robbie Bach made the prediction in an analyst briefing that Linux on mobile will lose. Why? It’s choice is a bad thing for customers and that there is too much Linux in the mobile marketplace

But wait. There’s more. Since we’re discussing operating systems, check out this new article from The Register:

Windows plagued by 17-year-old privilege escalation bug

A security researcher at Google is recommending computer users make several configuration changes to protect themselves against a previously unknown vulnerability that allows untrusted users to take complete control of systems running most versions of Microsoft Windows.

Well, is anyone surprised at all? Not the Slashdot crowd, that’s for sure. Microsoft never pretended to be a master of security until it became a huge threat to its survival. Microsoft must pretend now. Why? Because there’s potent competition.

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

2 Comments

  1. subsonica said,

    January 20, 2010 at 7:25 pm

    Gravatar

    If it were just Internet Explorer…

    http://lists.grok.org.uk/pipermail/full-disclosure/2010-January/072549.html

    there is something fundamentally wrong with Windows security design.
    Windows was never meant nor actually prepared to be multiuser or networked. Back in the days, Microsoft simply took MS-DOS + LAN MANAGER and glued to it a ripoff of the Digital VMS model of user security, copied the HPFS filesystem from OS2 (shafting IBM in the process) and called it NTFS, then added the Netware and BSD TCP/IP stack into the mix, called it “Windows NT” and they have just kept patching that model up to the current offerings, adding an E+E+E’ed version of LDAP called “Active Directory” on top of it from Windows 2000 on.
    Every day that passes, keeping relying on this windows model for your data, services and applications is becoming more and more an irresponsability.

  2. Dennis Murczak said,

    January 21, 2010 at 1:45 pm

    Gravatar

    That pretty much sums up Windows history. They also copied KDE and sudo and marketed both as groundbreaking new stuff.

    They should have stopped slapping new features onto a rotten legacy architecture years ago; now they are paying the bill. Not to mention that the only market in which they don’t have to compete is shrinking.

What Else is New


  1. EPO Staff Representation Complains That EPO Management Exploits Pandemic and 'House Arrests' to Overwork Staff, Lower Quality

    The EPO keeps breaking its promises to workers; not only are key employees seeing their net salary cut (inflation factored in) but pensioners too are being robbed and in the meantime the total time spent on work is increasing



  2. Fake News is Not a 'Wing' Thing

    The two-party corporate-led system (and media) would have us obsess/bicker about accuracy of news based on some binary/dual system of blind loyalty rather than underlying facts and priorities



  3. Links 25/1/2021: Huawei on GNU/Linux, NuTyX 20.12.1, Whisker Menu 2.5.3, Lutris 0.5.8.3, Linux 5.11 RC5

    Links for the day



  4. Fear, Uncertainty, and Doubt (FUD) in ZDNet is the Norm

    ZDNet continues to emit lots of garbage 'journalism', in effect Microsoft PR and what's known as "black PR" for Linux; just like Bleeping Computer, which ZDNet hired this writer from, there's no adherence to facts, just smears and innuendo



  5. Truth Tellers Aren't an Enemy of Free Software

    There's a perpetual attack on people who speak out against actors and corporations in positions of great power, however subtle and indirect those attacks may seem on the surface (they don't wish to be held accountable for defaming activists)



  6. The Linux Foundation, With Over 124 Million Dollars in Annual Revenue, is in Trouble Because of the Pandemic, So It's Trying to Reinvent Itself as Training and Certifications Outfit

    With mountains of cash and a Public Relations (PR) or marketing business model the so-called 'Linux' Foundation became reliant on travel, lodging, booths and speeches on sale; COVID-19 is a great risk to that business model



  7. IRC Proceedings: Sunday, January 24, 2021

    IRC logs for Sunday, January 24, 2021



  8. Our Move Further Away From the World Wide Web, the Browser Monopolies, HTTP, and HTML

    The World Wide Web (WWW) is going down a bad path and a clearly regressive direction; the solution isn't going 'retro' but exploring more sophisticated systems which are robust to censorship (localised or globalised) and downtime (related to censorship) while reducing surveillance by leveraging encryption at the endpoints



  9. Important Issues Not Entertained in the Community, Especially Critics of the Status Quo

    here's corporate infiltration inside communities (for oligarchy hunts volunteer, unpaid labour) and those who speak about that as a threat to our cause and objectives are painted as misguided outcasts who must be ignored



  10. Internet Origins of the Mob

    Reprinted with permission from Daniel Pocock



  11. When Proprietary Software Users Dictate the Freedom-Leaning Communities

    Fedora doesn't care about software freedom and its steward (or parent company) is sometimes imposing proprietary software on staff; they've quit caring



  12. In 2020 Onwards 'Open Source' is Just a Marketing Ploy of Monopolies, Unlike Free Software

    More people are nowadays seeing or witnessing 'Open Source' for what it truly is; the term has become a misleading marketing term of proprietary software firms looking to rebrand as "ethical" (e.g. by sharing some code with other proprietary software firms, over proprietary platforms such as GitHub)



  13. Microsoft: The Year After We Bought GitHub There Was a Significant Decline in Number of New Projects on GitHub

    Microsoft has just admitted that in 2019 GitHub saw a very significant decline in number of new projects (and users, which it is conveniently miscounting by adding 'phantom' ones) on the site. Just what we had heard before they confirmed it (and they foresaw this effect of the takeover, hence the lies about "loving" Linux).



  14. Social Control Media is a Passing Fad, We Should All Go Back to Blogging and Subscribing to RSS Feeds

    The whole "social control media" phenomenon has been oversold or promoted using lies; in reality, as a mountain of evidence serves to show, it's a way to manage society at a macro scale



  15. As Andrei Iancu Removes Himself From the Patent and Trademark Office All Eyes Are on Biden's Next Nomination

    Patent zealots and their front groups already lobby Joe Biden to put one of them in charge of the U.S. Patent and Trademark Office; we'll soon see if Joe Biden "means business" or simply means monopoly/large corporations (and their law firms/departments)



  16. Data Point: GNU/Linux Share in Desktops/Laptops Nearly Tripled in the Past Decade, Peaking This Past Month (All-Time High)

    Contrary to what some publishers try to tell us, GNU/Linux is still growing and mostly at the expense of Windows



  17. IRC Proceedings: Saturday, January 23, 2021

    IRC logs for Saturday, January 23, 2021



  18. Links 24/1/2021: Nouveau X.Org Driver Release and GhostBSD 21.01.20

    Links for the day



  19. InteLeaks – Part XXX: Harbor Research's Pseudo-scientific 'Research' for Intel, Bizarrely Suggesting a Microsoft Partnership for a Domain Largely Controlled or Dominated by Linux

    The full document that Intel paid for and in turn used to justify cracking down on Free software (obliterating Free software-based workflows inside Intel), instead outsourcing all sorts of things to proprietary software traps of Microsoft



  20. Chromium and Chrome Are Not Free Software But an Example of Microsoft-Fashioned Openwashing Tactics

    It's time to reject Google's Web monopoly (shared with other companies but still an oligopoly); removing its Web browser would be a good start



  21. Links 23/1/2021: Chromium Pains and New Debian Maintainers

    Links for the day



  22. InteLeaks – Part XXIX: Harbor Research Did Not Produce a Study But an Elaborate Hoax for Intel, Suggesting Microsoft Partnership and Outsourcing Based on Zero Evidence and No Solid Rationale

    The pseudo-scientific ‘report’ from Harbor Research is more of the same nonsense we’ve grown accustomed to; unethical if not rogue firms are being paid to lie — or to perpetuate falsehoods which someone stands to gain from



  23. Video: The State of Communities Surrounding GNU/Linux Distributions

    A discussion about the state of volunteer efforts going into the development, maintenance (in the 'maintainership' sense) and support/advocacy of GNU/Linux distros



  24. IRC Proceedings: Friday, January 22, 2021

    IRC logs for Friday, January 22, 2021



  25. InteLeaks – Part XXVIII: Intel Served Report From Microsoft Boosters, Who Provide No Actual Evidence and No Science to Back Their Supposed 'Findings'

    Findings and recommendations from Harbor 'Research' aren't based on any scientific methods, just perceived loyalty, branding, and a bunch of unsourced quotes (from unnamed people with ridiculous job titles like a soup of buzzwords)



  26. Erosion of Communities, Ascent of Corporate-Industrial Fake Communities

    Despite the attempts to manipulate/trick developers (and sometimes users) into becoming unpaid workforce of for-profit companies, there's an exodus back to real communities, which aren't subjected to the fury of wealthy shareholders who utterly dislike or simply don't care for software freedom



  27. The Corporate 'Left' and the Open Source Pseudo 'Movement'

    President Biden may not be as bad as his predecessor, but that hardly means very much; software freedom is still threatened, along with many other things



  28. Links 22/1/2021: pfSense Plus, Endless OS Foundation, and Many Laptops With GNU/Linux

    Links for the day



  29. The Linux Foundation is Trying to Obscure Racism Using Microsoft-Inspired Tactics (Vouchers Disguised as Actual Money)

    The Linux Foundation and its PR stunts don’t help combat racism; one might argue that the Foundation is leveraging racism, which prevails in the US, to paint itself as benevolent and caring (offering immaterial things and self-serving press releases)



  30. InteLeaks – Part XXVII: 'Pulling a Nokia' on Intel (Outsourcing to Microsoft)

    The recommendation of an Intel marriage with Microsoft (even in units that deal mostly with Linux) is an insulting slap across the face of developers employed there; we take a look at recommendations made to IoTG (Intel) by a firm with Microsoft orientation


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts