New Flaw in Windows Facilitates More DDOS Attacks

Dr. Roy Schestowitz

2010-07-27 22:03:18 UTC
Modified: 2010-07-27 22:03:18 UTC

Summary: Shoddy Microsoft software continues to provide opportunities for disgruntled people to attack and take down servers they dislike

ANY Windows botnet which is enabled by "Zeus" (Zeus is known to be a cause of DDOS attacks) is already taking advantage of Microsoft's latest severe flaw which affects even fully patched Windows:

Miscreants behind the Zeus cybercrime toolkit and other strains of malware have begun taking advantage of an unpatched shortcut handling flaws in Windows. It was first used by a sophisticated worm to target SCADA-based industrial control and power plant systems.

No patch is available yet:

Security researchers have found more malware exploiting an unpatched Windows vulnerability via .LNK shortcut files.

According to Sophos blog July 23, two other pieces of malware have been observed targeting the bug. One is a keylogging Trojan the company is calling Chymin-A that is "designed to steal information from infected computers." The other is Dulkis-A, a "worm written in obfuscated Visual Basic" that contains several subcomponents.

More here:

Slovakian security firm Eset reports the appearance of two malware strains that exploit security vulnerabilities in the way Windows handles .lnk (shortcut) files, first used by Stuxnet to swipe information from Windows-based SCADA systems from Siemens.

We covered those SCADA incidents earlier today. This has a serious impact on the world's energy, not to mention those BP BSODs which we've already covered in [1, 2, 3].

The damage costs a lot of money and time (which can be equated to money) and the security world is "ill-equipped to solve digital whodunnits," reports The Register.

“A lot of those efforts are very unqualified and pedestrian,” said Parker, who is director of security consulting services at Washington, DC-based Securicon. “There's really not any science behind the efforts that many people have been making recently that have resulted in stories like China is attacking us, Russia is attacking us, Korea is attacking us.”

It is really hard to know where DDOS attacks come from these days. People don't control their Windows PCs, which can be hijacked and chained back to some botmasters whose interests are not known.

Georgia has an unfortunate DDOS story to tell about its national infrastructure; after years of investigation it is still not perfectly clear if the Russian government had something to do with it or not. One youngster claims responsibility, but can he be believed? It can be hard to verify. And if one youngster can paralyse an entire nation, what does that teach us about those Windows zombies he used? ⬆

If You Value Privacy, Follow the Likes of Eben Moglen, Phil Zimmermann, and Richard Stallman, Not Back Doors' Boosters Who Mislabel Themselves as Security Experts: Signal is not really secure
Writer's Block is Not a Problem to Us, Only a Lack of Time: Or timewasting by aggressive militants who try to silence us [...] People who experience writer's block very often find it depressing (it feels unproductive) and sometimes come to the conclusion that perhaps writing isn't for them
March Plans for Techrights: next month we plan to start the series about how the SRA failed
Almost 5,000 Known Gemini Capsules: It is now just 98 short of 5k
Priceless leaks found in crowdfunding campaign: Reprinted with permission from Daniel Pocock
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, February 26, 2026: IRC logs for Thursday, February 26, 2026
[Video] "New RMS [Richard Stallman] Positive Media" Reaches Millions of Viewers This Week: Assuming 5+ million people will watch this on the first week, that's good publicity for the Free software movement
Another Quiet Slop Day Passes By: the number of slopfarms we can locate/track is fast decreasing
Gemini Links 26/02/2026: Sending a Thesis and Lupa/Onion ("Lupa now lists Gemini .onion addresses"): Links for the day
Links 26/02/2026: Bcachefs Man Bonkers, "Seven Journalists Convicted for Taking Photos at Courtroom": Links for the day
Links 26/02/2026: "Peak Mental Sharpness" and "The Whole Economy Pays the Amazon Tax": Links for the day
"Community" Site Deleted by Jeffrey Epstein-Connected 'Linux' Foundation Had Interview Where Eben Moglen Spoke of GPLv3 and of DRM, Back Doors Etc.: Deleting what happened or what was said two decades ago
Richard Stallman (Free Software Foundation) and Eben Moglen (Columbia Law School) Explained 25 Years Ago That Proprietary Software (and Proprietary Firmware) Would Lead to Back Doors: a fortnight after the 9/11 terror attacks in the US
Giving to the Community Versus Taking From the Community (or Worse, Attacking the Community): some people bring no contributions, only harm
LLM Slop Will Try to 'Rewrite' History of UNIX and GNU/Linux: We occasionally see slopfarms spreading misinformation about UNIX, GNU, and Linux
Where Does the Solicitors Regulation Authority (SRA) Stand on Machine-Generated Legal Documents and Copy-pasting One Client's Lawsuit to Start Another (for American Serial Strangler)?: Now that many law firms cheat (copypasta, paper DOoS, LLM slop, breaches of rules, even defaming the other side) the SRA cannot keep up
Of Course Android is Not Free Software: That Android is not about freedom should not be so shocking
Talking About Blackboxes: Having just reposted a couple of articles from Alex Oliva
Microsoft Slop is Already Killing XBox: Microsoft will fail at alleviating such concerns
Two Weeks Have Passed and It Looks Like Conde Nast's Ars Sloppica Sacked "Senior" "AI" "Reporter" Benj Edwards But Did Not Remove All His LLM-Produced 'Articles': the editorial standards at Conde Nast's Ars Sloppica are a joke
Alex Oliva (GNU Linux-Libre): Stricter is Less Popular: Reprinted with permission from Alex Oliva
Fraud and Crimes at Microsoft: A lot of these American companies simply cheat and even bribe
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, February 25, 2026: IRC logs for Wednesday, February 25, 2026
FSF's Alex Oliva on Hardware Black Boxes: Reprinted with permission from Alex Oliva
What Microsoft Hides Underneath: In recent years a lot of this shell game was played via "Open" "AI" [sic]
A Lot of Slopfarms Died, Google News Feeds the Few Which Survived and Still Target "Linux": Many just simply died
Links 25/02/2026: Fifth Year of War in Ukraine, Dihydroxyacetone Man Looking to Start More Wars: Links for the day
Gemini Links 25/02/2026: Retired a Year, Illness, Losing a Lung, and "Back to Gemini": Links for the day
The Register MS Published a Ponzi Scheme-Boosting Fake Article This Morning. It Mentions "AI" 30 Times.: Will credibility be left after the bubble pops entirely?
They Try to Ruin Linux, Too ("Attestation" in GNU/Linux): In the context of Web browsers, this isn't unprecedented and we wrote a lot about it
Mozzarella Company: All Our Cheese Comes With Mold Now, But You Can Ask the Seller to Remove the Mold: If you reject and oppose slop, do not download/use Firefox
Stallman Was Right About Back Doors: I had some conversations with Dr. Stallman about security and back doors
Australian Signals Directorate ex-employee sold back doors to Russia: Reprinted with permission from Daniel Pocock
IBM Debt-Loading and Liability (Toxic Asset) Offloading: One can hope that IBM will be subjected to the same attention Kyndryl received, but this boils down to politics
Links 25/02/2026: 'Hybrid Warfare' and "Boycott the State of the Union": Links for the day
IBM (and Red Hat) Can Disappear in the Coming Years, Along With Kyndryl (Debt Twice as Big as Its 'Worth'): No wonder Red Hat workers tell us they hate IBM
Software Freedom is Science, But It Also Sustains Life: In some sense, Software Freedom can be explained in the context of nourishing people
“Xbox, like a lot of businesses that aren’t the core AI business, is being sunsetted.": There has been a lot of narrative control lately, including at 9PM on a Friday
3,300 Capsules Known to Lupa and Currently Accessible: Gemini Protocol turns 7 this summer
When it Comes to Firmware, the FSF and Its Founder RMS Won the Argument (But Not the Fight, Yet): The "whataboutism" tactics are physiological manipulation means of discouraging those who move in the correct direction
Austria Tackles Digital Weapon Disguised as "Social" and/or "Media": Are we seeing the end days of Social Control Media?
Nothing Over the Horizon for XBox: XBox is not even being sold in many places anymore
Solicitors Regulation Authority (SRA) Contradicting Itself: You Can Use Slop to Cheat Clients, But You Can Also Face Disciplinary Actions Over Slop: Where does the SRA stand on the matter?
In Praise of Eben Moglen: Hopefully Professor Moglen will be with us for many decades to come and become an active speaker on issues such as Software Freedom
Sunsetting IBM (for the Benefit of Few Corrupt Officials and Wall Street Speculators): IBM will not (and cannot) survive for much longer [...] The issue is bad leadership, not any particular nationality/race
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, February 24, 2026: IRC logs for Tuesday, February 24, 2026
Gemini Links 25/02/2026: Rise of Solar in 2025 and Smallnet Protocols: Links for the day

New Flaw in Windows Facilitates More DDOS Attacks

Recent Techrights' Posts