EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

05.05.10

Eye on Security: Windows 2003 Web Sites Defaced, SharePoint 2007 Suffers Zero-Day Vulnerability

Posted in Australia, Finance, Microsoft, Security, Vista, Vista 7, Windows at 2:22 pm by Dr. Roy Schestowitz

Secure OS

Summary: IDG report about mass defacements of Windows sites in Australia and other security problems that are new

HAVING just taken a glance at the past week’s news from IDG*, we found:

i. Australian Cereal Hacker on Defacement Rampage

The ANZAC Day attacks were conducted by a single hacker, or hacking group, and affected Windows 2003 operating systems.

ii. Microsoft Investigates SharePoint 2007 Zero Day

Microsoft is scrambling to fix a bug in its SharePoint 2007 groupware after a Swiss firm abruptly released code that could be used in an attack.

The proof-of-concept code was released Wednesday, just over two weeks after security consultancy High-Tech Bridge says it disclosed the issue to Microsoft on April 12.

iii. Texas Man to Plead Guilty to Building Botnet-for-hire

A Mesquite, Texas, man is set to plead guilty to training his 22,000-PC botnet on a local ISP — just to show off its firepower to a potential customer.

The third article ought to call out Windows, which is responsible for hundreds of millions of zombie PCs

Microsoft views vulnerabilities also as an opportunity. Here is the latest propaganda whose purpose is apparently to sell Vista 7 using ‘security’ as an excuse (Microsoft is hiding flaws without ever reporting them, probably in order to distort statistics). As we showed before, Vista 7 is not secure. To name some older posts on the subject:

Ian Paul from IDG has just written about Vista 7′s “worst features”:

Windows 7 fixed many of Vista’s ills, but it also introduced a few of its own.

IDG also has this new article about the LoveBug worm, which is estimated to have cost $5-8 billion in damages (for one worm alone). Needless to say, Microsoft did not carry the burden of these damages.

When the LoveBug worm hit 10 years ago, it was a different time when people believed admirers were really reaching out to say “I love you”, personal firewalls were turned off by default and executable attachments weren’t blocked at e-mail gateways.

Those circumstances allowed the Love Letter worm — the first Visual Basic script worm — to infect more than 50 million computers worldwide within a week, causing estimated $5 billion to $8 billion in damages, bringing down networks by maxing out their ability to fire off e-mails and causing painstaking disinfection of affected machines.

Here we are a decade later and Microsoft never resolved those issues which it continually promises to address.

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive

___
* We chose IDG so as not to be accused of choosing a Microsoft-hostile source.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Patents Roundup: Apple Versus Android/Linux, Leigh Rothschild Versus Everyone, Patent Lawyers Versus Patent Reform and Progressivism

    News collated which pertains to software patents, especially those which affect Free/libre software



  2. Links 4/9/2015: Acer Predator 8, GNOME 3.17.91 Released

    Links for the day



  3. Microsoft's Vista 10 Still a Failure, So Focus Shifts to Attacks on GNU/Linux, Android

    Vista 10 adoption is already plateauing (at very low levels considering the zero-cost 'upgrade') and Microsoft is trying to assert or exploit (patent) monopolies where adoption and market growth are extremely high (Free software)



  4. Links 3/9/2015: Xiaomi's Linux Push, Calligra/Krita 2.9.7

    Links for the day



  5. TechBytes Episode 89: Chromebooks, Privacy, and Vista 10

    An episode which focuses on the rise of Chromebooks, serious issues pertaining to privacy, media bias, and the demise of Windows



  6. Links 2/9/2015: Chromebooks and Red Hat Enterprise Linux 7.2 Beta

    Links for the day



  7. Software Patent From Troll Called 'Rothschild Connected Devices Innovations' a Symptom of a Rotten Patent System

    Another example of patent trolls and software patents as gatekeepers and parasites, denying access to very trivial ideas or implementations



  8. When Even Patent Lawyers' Blogs Acknowledge the Rapid Demise of Software Patents

    Voices for patents are accepting the new order wherein software patents are hardly potent at all (and increasingly difficult to acquire)



  9. Calling Proprietary Software, Software Patents, Lock-in (Like OOXML) and DRM 'Open'

    What Microsoft et al. call 'Next-Generation Open Media Formats' are basically neither open nor acceptable (it's DRM) and what Microsoft apologists dub 'Open Source Tools' are just another example of a Microsoft Office openwashing Trojan horse



  10. Recycled Old News About Vista 10, Stressing That Not Only '10' is Spyware But All of Windows is

    How Microsoft propagandists are spinning Microsoft's gross and potentially illegal privacy violations as a reason to 'upgrade' to Vista 10



  11. Links 1/9/2015: Manjaro Linux 0.8.13, Netrunner 14.2 LTS

    Links for the day



  12. Patents Roundup: IAM's Claims About India, Lawyers' Patent Bias, ITC for Microsoft, and PTAB Against Kyle Bass

    Another weekly summary, focusing on issues that pertain to or affect Free software in particular



  13. Microsoft Crowd Rocks the Media With Misleading Claims and Deliberate Lies About GNU/Linux, Vista 10, and Free/Open Source Software

    A roundup of rigged press coverage, intended purely to serve Microsoft's agenda



  14. Links 31/8/2015: Linux 4.2, LXLE 14.04.3

    Links for the day



  15. IRC Proceedings: August 9th, 2015 – August 29th, 2015

    Many IRC logs



  16. “Conservative” Site Responds (Yet Again) to Misguided “Conservative” Efforts to Derail Patent Reform in the US

    Patent trolls throw stones in glass houses, contributing to their own unpopularity, but some influential “Conservatives” continue to defend (conserve) them



  17. Increase in Lobbying for Software Patents in Europe and Its Trojan Horse, the Unitary Patent (UPC)

    The relentless campaigns to bring software patents into Europe have not stopped and so-called 'unification' -- much like so-called 'trade' deals -- serves to support them



  18. Microsoft Technology Crashes Financial Markets, Again

    SunGard, which is a Microsoft shop, is clearly failing to provide what it calls mission-ciriticaal [sic] solutions



  19. Alice v. CLS Bank (Alice/§101) Comes to Squash Software Patents Even in Eastern District of Texas

    The crackdown on software patents is coming along nicely and the Alice case is now being utilised even in the capital of patent trolls



  20. Apple's Patent Cases Against Android Are Falling Apart, as Acknowledged Even by the Anti-Android Lobby





  21. Links 29/8/2015: NetworkManager 1.0.6, Systemd Merges “su” Command Replacement

    Links for the day



  22. Microsoft Loves Linux to Death and Still Tries to Kill GNU/Linux

    Microsoft's relentless attacks on GNU/Linux and Free software in general (even if it runs on Windows) are so evident that claims of 'love' remain laughable at best (if not infuriating)



  23. Censorship, Self-Censorship and Intimidation Now the Modus Operandi at EPO

    The European Patent Office has ceased even trying to pretend that it respects human rights, including the right to free speech



  24. Patent Practitioners: "The Unitary Patent Might be Able to Open the Floodgates for Software Patents in Europe"

    The EPO-backed Unitary Patent scheme threatens to bring software patents to Europe and along with them a lot of patent trolls from all around the world (especially the United States)



  25. Microsoft Lies About Vista 10 and Increases Microsoft Surveillance (Even Beyond Vista 10 and Into Android, Vista 7/8)

    Windows surveillance expands retroactively, making its way into platforms other than Windows and also expanding to predecessors of Vista 10



  26. Another Suicide at the EPO, Fifth by Our Count

    Yet another EPO member of staff has just committed suicide, leading to the inevitable question: how many people need to die before Battistelli and his minions are out of the Office for good?



  27. Links 27/8/2015: ownCloud Desktop Client 2.0, Red Hat Downgraded

    Links for the day



  28. Microsoft-connected Mesosphere Threatens to Eliminate Free Software in the Datacentre

    Hiding behind a misleading 'open' label while actually backed by Microsoft (and based on new rumours may join Microsoft), Mesosphere wishes to eradicate Free and back doors-free software in large datacentres hosting a lot of physical and virtual servers



  29. Microsoft Aggression Against GNU/Linux Amid Vista 10's Failure

    A look at the recent assault on GNU/Linux in Munich and the likely cause for this assault (in such a timely fashion, too)



  30. Message to LinuxCon Regarding Microsoft: “It is Necessary to Get Behind Someone in Order to Stab Them in the Back.” -Sir Humphrey Appleby

    Jim Zemlin, executive director of the Linux Foundation, helps Microsoft gain influence in the Foundation after payments are received


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts