EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

05.05.10

Eye on Security: Windows 2003 Web Sites Defaced, SharePoint 2007 Suffers Zero-Day Vulnerability

Posted in Australia, Finance, Microsoft, Security, Vista, Vista 7, Windows at 2:22 pm by Dr. Roy Schestowitz

Secure OS

Summary: IDG report about mass defacements of Windows sites in Australia and other security problems that are new

HAVING just taken a glance at the past week’s news from IDG*, we found:

i. Australian Cereal Hacker on Defacement Rampage

The ANZAC Day attacks were conducted by a single hacker, or hacking group, and affected Windows 2003 operating systems.

ii. Microsoft Investigates SharePoint 2007 Zero Day

Microsoft is scrambling to fix a bug in its SharePoint 2007 groupware after a Swiss firm abruptly released code that could be used in an attack.

The proof-of-concept code was released Wednesday, just over two weeks after security consultancy High-Tech Bridge says it disclosed the issue to Microsoft on April 12.

iii. Texas Man to Plead Guilty to Building Botnet-for-hire

A Mesquite, Texas, man is set to plead guilty to training his 22,000-PC botnet on a local ISP — just to show off its firepower to a potential customer.

The third article ought to call out Windows, which is responsible for hundreds of millions of zombie PCs

Microsoft views vulnerabilities also as an opportunity. Here is the latest propaganda whose purpose is apparently to sell Vista 7 using ‘security’ as an excuse (Microsoft is hiding flaws without ever reporting them, probably in order to distort statistics). As we showed before, Vista 7 is not secure. To name some older posts on the subject:

Ian Paul from IDG has just written about Vista 7′s “worst features”:

Windows 7 fixed many of Vista’s ills, but it also introduced a few of its own.

IDG also has this new article about the LoveBug worm, which is estimated to have cost $5-8 billion in damages (for one worm alone). Needless to say, Microsoft did not carry the burden of these damages.

When the LoveBug worm hit 10 years ago, it was a different time when people believed admirers were really reaching out to say “I love you”, personal firewalls were turned off by default and executable attachments weren’t blocked at e-mail gateways.

Those circumstances allowed the Love Letter worm — the first Visual Basic script worm — to infect more than 50 million computers worldwide within a week, causing estimated $5 billion to $8 billion in damages, bringing down networks by maxing out their ability to fire off e-mails and causing painstaking disinfection of affected machines.

Here we are a decade later and Microsoft never resolved those issues which it continually promises to address.

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive

___
* We chose IDG so as not to be accused of choosing a Microsoft-hostile source.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Mansion of Pedophilia – Addendum: Accessing and Assessing Court Documents

    How anyone out there can do the job the media failed to do (after an apparently unprecedented arrest at the home of Bill Gates)



  2. Mansion of Pedophilia – Addendum: Progress on Police Request

    9 updates from the police department of Seattle but still nothing material/concrete, only promises and major delays



  3. IRC Proceedings: Sunday, January 19, 2020

    IRC logs for Sunday, January 19, 2020



  4. Mansion of Pedophilia – Part VIII: More Than 4 Months of Waiting for Police Department to Send Over the Files They Claim to Have an Issue Opening

    The police department (PD) of Seattle is unable to open its own files about arrest for pedophilia at Bill Gates' home; it has been unable to open these files for several months, it claims...



  5. Starting a GNU Replacement for GitHub, Possibly Based on GitLab

    "It might be easier if we start from the GitLab software," Stallman said



  6. European Commission Pushes for Even Greater Patent Maximalism Instead of Rationality, Patent Zealots' Site Cherry-Picks China as Whipping Boy

    Fear of China is being leveraged to promote an agenda of patent maximalists; the general idea they promote is that granting millions of low-quality patents is the only way to compete, even if in reality that merely handicaps the whole market



  7. CRISPR Patents Disallowed, But Where Are the Journalists?

    The narrative surrounding last week's decision against CRISPR patents may have been virtually monopolised by the litigation think tanks and law firms; it certainly feels like no journalism is left to rebut them, fact-check, and introspect



  8. Links 19/1/2020: Wine 5.0 RC6, Alpine 3.11.3

    Links for the day



  9. Judges Reject EPO Patents on Life as Constitutional Complaints Against the EPO Pile Up in Germany

    EPO judges throw out patents on life (CRISPR at least); there's now growing hope that they'll have the courage to do the same to patents on software



  10. IRC Proceedings: Saturday, January 18, 2020

    IRC logs for Saturday, January 18, 2020



  11. StartPage (System1) Found New Spin Allies. Some Have Been Offered StartPage Jobs. Some Might Already be Working for StartPage in Secret.

    Pro-StartPage voices appear to be paid (or have been promised pay) by StartPage; the key strategy of StartPage seems to be, attack and betray people's privacy while paying people in particular positions to pretend otherwise



  12. IRC Proceedings: Friday, January 17, 2020

    IRC logs for Friday, January 17, 2020



  13. Links 18/1/2020: Mir 1.7 and GNU Guile 3.0.0

    Links for the day



  14. IRC Proceedings: Thursday, January 16, 2020

    IRC logs for Thursday, January 16, 2020



  15. Links 16/1/2020: Mozilla Layoffs, PinePhone Braveheart Shipping, KDE Plasma 5.18 LTS Reaches Beta

    Links for the day



  16. Microsoft is a Market Leader in Lying and Corruption

    Microsoft is working hard to describe itself as the exact opposite of what it is and what it has been; ‘Internet rot’ helps a lot with this agenda, not to mention control of the media (the narrative)



  17. The European Patent Organisation Continues to 'Piss All Over' Separation of Powers

    The EPO continues to scatter invalid patents (IPs) that are European Patents (EPs) all over Europe and nobody can stop this, not even the judges of the EPO because they lack independence (by their very own admission)



  18. Zealots of Team UPC (Patent Litigation) Now Attacking the Courts and the Judges, Removing Their Mask on the Face of Things...

    The tactics of Team UPC aren't changing, only the shamelessness associated with these tactics is changing (because it looks like the end of days to them)



  19. Microsoft Now Uses or Leverages Software Freedom Against Free Software

    A reader's explanation of what Microsoft is trying to accomplish with its so-called 'embrace' and what steps will come next (how they manifest themselves)



  20. IRC Proceedings: Wednesday, January 15, 2020

    IRC logs for Wednesday, January 15, 2020



  21. Links 15/1/2020: CentOS Linux 8.1, Oracle VirtualBox 6.1.2 and GNU Sed 4.8

    Links for the day



  22. OSI Board at Microsoft: This is How Institutions Die or Completely Lose Their Purpose/Direction

    The photo (or meeting) may mark the turning point of the Openwashing as-a-Standard Initiative (OSI), which less than a year earlier took a bucket of money from Microsoft



  23. IRC Proceedings: Tuesday, January 14, 2020

    IRC logs for Tuesday, January 14, 2020



  24. When Microsoft's Actions Speak for Themselves (About Back Door Access)

    Unwittingly, people are being reminded of the 'special relationship' between Microsoft and the US Army (or government); The back doors or bug doors are still there, even 7 years after Edward Snowden's NSA leaks



  25. Why You -- Yes, You Too -- Should Consider Migrating to GNU/Linux

    The window is closing (and Windows/Vista 7 closing down); the chance to use machines that the users actually control is still there



  26. Can We Please Stop Lying for Microsoft in the Mainstream Media?

    Dishonesty for short-term financial gain (e.g. advertising money) will be a big loss in the long run. There’s a reason why so many news sites perish and Datamation (where I wrote more than a decade ago) now throws away remnants of reputation by spreading a big lie from Microsoft.



  27. It's Only Factual and Truthful to Point Out That About Half of the EPO's Management Committee Are From the President's Nation (and Many Are Underqualified Friends of His)

    The patent-granting extravaganza of what a reader and contributor of ours likes to call "Club Med" will result in great pain (not just for the Office but for Europe as a whole); pointing out who's to blame (the culprits) is an exercise in practicality



  28. Stranger Than Fiction: Team UPC's Mental Condition

    Team UPC's delusions continue to unmask UPC proponents (in 2020) as totally and entirely detached from reality



  29. Links 14/1/2020: IBM Joins LOT Network; X.Org Server 1.20.7, Tails 4.2.2 and Zanshin 0.5.71 Released

    Links for the day



  30. Vista 7 is Dead, Long Live GNU/Linux

    A reminder of Microsoft’s universal “PC tax” ambitions — evidence that the company was never interested in ‘playing nice’ with anybody


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts