EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

09.28.10

Microsoft Claims Credit for Failing in Security

Posted in Microsoft, Security, Windows at 7:37 am by Dr. Roy Schestowitz

Servers rack - amateur

Summary: Latest security issues and systematic deception, mostly from Microsoft and its various boosters across the Web (giving credit to Microsoft after Microsoft messed up)

Gratis as in Lock-in

A FEW days ago we wrote about Microsoft's attempt at disconnecting the air supply from third-party AV vendors, at least in small businesses. This would only decrease security due to monoculture, decreased competition, and lack of incentive to improve. The funny thing here is that Microsoft sells a vulnerable operating system and then claims to be distributing “free of charge” (only to some people) what ought to have been a characteristic of the operating system, not an add-on. The spinners from Seattle call it a “free” anti-virus software and what’s meant by free is not freedom. It’s free as in gratis, with lock-in. It decreases one’s personal freedom and also impedes freedom of choice. A better headline than “Free Anti-Virus Protection Spurs More Robust Options” would be “Free-of-charge Anti-Virus Pseudo-protection Depresses More Robust Options”.

Watch the Indian press turning the whole thing into Vista 7 promotion: “IT major Microsoft has launched a campaign to help computer users identify threats to their systems and how their networks can be made secure using Original Windows 7 that now comes with the advantage of Microsoft Security Essentials.”

So Microsoft wants to dump Security Essentials on the market (as expected by many people all along) and already we learn that “Scareware Apes Microsoft Security Essentials”. Microsoft has always performed very poorly among the security products already available and well established. “Anti-virus systems get tested” says The Inquirer which gives the following details:

A NUMBER of the most common anti-virus security systems have had a beady eye passed over their effectiveness and fitness for purpose in an assessment.

The study, which was carried out by the Austrian AV Comparatives group, looked at twenty products from the main providers that volunteered to take part.

We do not know who if anyone refused, but AV Comparatives said that it had limited test subjects to no more than twenty and required that participants adhered to its undisclosed criteria.

“Over half of all apps have security holes,” claims Veracode (which we mentioned in [1, 2]).

More than half of all software applications failed to meet an acceptable level of security, according to a study based on real-world code audits by application security firm Veracode.

Around 57 per cent of applications failed to pass muster when first submitted to Veracode’s cloud-based testing service. A similar 56 per cent of finance-related applications failed first testing by Veracode’s security audit. The quality of the code used in many business-critical banking and insurance operations was simply not up to snuff.

ASP.NET Under Attack, Spin

In security news, the other major issue last week was the Microsoft ASP.NET vulnerability, which we wrote about in [1, 2, 3, 4].

“Is this really praise-worthy, especially when someone responds to flaws which the same someone is responsible for?”The ASP.NET problem alarmed Microsoft a great deal and the PR spin strives to make Microsoft be seen as responsive. An advisory was quickly issued [1, 2, 3] because of bad publicity and because it was already being exploited (a demo existed). There is only a temporary fix, not a permanent one. There are third-party fixes.

So, once again Microsoft pays attention to flaws a tad too late and then scrambles to limit damage it could probably prevent. Is this really praise-worthy, especially when someone responds to flaws which the same someone is responsible for?

Just like in the case of Russian spin [1, 2], Microsoft is trying to make itself look like the saviour rather than the problem. Lee Pender of the Microsoft boosters is trying to make Microsoft look good by painting it as responsive and responsible. To quote: “Well, late last week, we got an update from a Microsoft spokesperson who wanted to tell us that Microsoft hasn’t just buried its head in the sand on Stuxnet.”

We wrote about Stuxnet in [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14].

Microsoft-Police

Over in Australia, Microsoft is involving the police right now (funded by taxpayers) [1, 2, 3, 5]. It’s about a computer scam that affects Microsoft.

Twitter and Fog Computing

The other day we wrote about the major problem Twitter.com was having. Half a million Twitter users are said to be affected by a Twitter worm and Slashdot discusses the matter before and after the patching. Here are “the names and faces behind the ‘onMouseOver’ Twitter worm attack”. It’s one of those risks of Fog Computing. Even a teenager turns out to have been smart enough to do it.

But later, some mischievous users of the site started using the exploit to make people “retweet” infected messages (when they hovered over a tweet with the code inserted) that they had not authorised.

The guy is Australian, so will the police get involved? Or does the Australian police get involved only to help Microsoft?

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Slashdot

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Links 5/8/2020: Wayfire 0.5 and Plasma Browser Integration

    Links for the day



  2. IRC Proceedings: Tuesday, August 04, 2020

    IRC logs for Tuesday, August 04, 2020



  3. SUSE is Still Pushing Microsoft Proprietary Software and Bragging About the Novell Patent Collusion With Microsoft

    SUSE seems to have learned no lessons after the aftermath of its (or Novell’s) Microsoft patent scam, which had been negotiated partly by Miguel de Icaza (now working directly for Microsoft) before causing Novell to collapse and offload its patents to Microsoft (‘TikTok operandi’ or asset stripping); the past cannot be left behind if SUSE — like Novell — celebrates and perpetuates that past



  4. Release: 29 Pages of Internet Access Report About Pedophile Working for Bill Gates at His Home

    As we’ve found nothing too sensitive in the document, today we’re finally disclosing and publishing the second release (first one published yesterday); this includes network addresses used on the devices of the engineer of Bill Gates, who had a laptop and external hard drives (portable) with plenty of child pornography (imagery and videos)



  5. Links 4/8/2020: Kodachi 7.2, Collabora Office 6.4

    Links for the day



  6. [Meme] Nadella is Doing With Donald Trump What Ballmer Did With Elop and Icahn to Steal Other Companies (Nokia and Yahoo, Respectively)

    The illegal (attempted) confiscation of a Chinese company to distract from or compensate for Microsoft's collapse reminds us that Microsoft is only getting worse and more malicious under Nadella, who is happy to liaise with a hugely corrupt and racist regime



  7. We Don't Really Know How Many People Died With (or From) COVID-19 and How Many Will Die After Home Recovery or Release From Hospital

    The coronavirus pandemic that began last year as an epidemic (COVID-19) is still a very serious problem, even half a year after its widespread arrival in Europe; it's important to emphasise the importance of not down-playing this problem (which is far from solved) because social control media is full of junk



  8. IRC Proceedings: Monday, August 03, 2020

    IRC logs for Monday, August 03, 2020



  9. Release: Police Report About Arrest of Bill Gates Engineer for Pedophilia (Detained at Residence of Bill Gates)

    Today we release 15 pages (amongst almost 3,000 pages we have) about the Jones arrest; this includes details about what happened when the detectives came to the home of Bill Gates



  10. Bill Gates' Personal Engineer Rick Jones is Connected to Other Child Pornographers. One Key Contact Works (or Worked) Indirectly for Microsoft.

    MagicHour listed Microsoft among their clients, as we noted before, and the full (redacted for child porn reasons) name is Brett Paine. We had reached out to the employer (several of us, separately), but we never received any reply.



  11. Links 3/8/2020: Linux 5.8, GNU Linux-libre 5.8, Libinput 1.16, Rust 1.45.2, Julia 1.5

    Links for the day



  12. IRC Proceedings: Sunday, August 02, 2020

    IRC logs for Sunday, August 02, 2020



  13. [Meme] Is It Not a Layoffs Round When You Rebrand It?

    More and more Microsoft layoffs; but the media is hardly interested in reporting those and/or analysing the growing scale of the layoffs (about half a dozen rounds of layoffs this summer alone)



  14. IBM is Already Gutting Red Hat and Firing Employees Without Warning, Jim Whitehurst Isn't Even Using GNU/Linux

    The situation at Red Hat isn’t good, employee morale is very low, and yet — perhaps unsurprisingly — nobody seems to be talking about it (at least not in the mainstream media)



  15. Microsoft Lays Off Many More Workers in the Advertising Division/s and Terminates Products While the Press is Distracted by TikTok Rumours

    Microsoft is laying off a huge number of workers without properly reporting these and whilst exploring ways to divert attention away from those layoffs



  16. Links 2/8/2020: Wine-Staging 5.14, VokoscreenNG 3.0.5

    Links for the day



  17. IBM and the Bomb - Part VI: Diplomacy Replaced With 'Trade' (Money Over Politics), or How Watson Jr. Was Sold to the Public, in the Same Way His Father (IBM Co-founder) Sold His Business Relationship With Dictators Like Hitler

    Sometimes people are led to believe that corporations directly and indirectly run their country; judging by the events of 4 decades ago (IBM chief becoming the American representative in Russia/Soviet Union), this is hardly a new thing and it's not a myth, either



  18. IBM and the Bomb - Part V: Arms Control by Company That Profits From Nuclear Arms? World War II Mistakes Repeated?

    A decade after the end of the deadliest war his father died and two decades later he repeated the same mistake — the error of conflating business with politics, as if maximising revenue would miraculously achieve the best outcome for nations as well



  19. IRC Proceedings: Saturday, August 01, 2020

    IRC logs for Saturday, August 01, 2020



  20. Links 2/8/2020: Nitrux 1.3.1, Debian GNU/Linux 10.5 “Buster” and Wine 5.14 Released

    Links for the day



  21. [Meme] Privilege: When They're Born Into Money That Means They Know Everything About Anything

    Tens of thousands of nuclear weapons were in 'safe hands' because rich kid Tom was representing the United States in Russia (USSR at the time), having proven his skills by being born to the man who had met Hitler and made lots of money in the Third Reich



  22. IBM and the Bomb - Part IV: IBM's Watson Came Under Fire for Representing the U.S. in U.S.S.R./Russia With No Qualifications or Any Relevant Experience

    There was certainly resistance to "Mr. rich man" Watson Jr. becoming a US diplomat owing to privilege (born into the 'right' family) rather than experience and/or political track record, symbolising a sort of "revolving doors" phenomenon -- namely overlap between business and politics, or money and power, respectively



  23. IBM Loves Power (and Nuclear POWER, or Expensive OpenPOWER) More Than It Loves GNU/Linux

    As we noted last week, IBM is very close to Modi because it is moving a lot of its workforce to India and this can become a future liability to IBM’s reputation (or lack thereof) as a tolerant firm



  24. IBM and the Bomb - Part III: IBM's Watson Jr. Rose From Business V.I.P. to U.S. Ambassador in the Soviet Union During the Cold War (Which IBM Profited From)

    Like his father, who was IBM‘s co-founder and later president of the International Chamber of Commerce (ICC), which helped the Nazis, Watson Jr. entered US and international politics in his later days; recently-declassified documents show us his political legacy



  25. Donald Trump's Trash Against China Helps Prop up Microsoft Monopoly and Distract From All the Microsoft Layoffs

    Microsoft as a surveillance giant of the United States government isn’t a myth; it was first in the PRISM programme of the NSA (Bill Gates is a loud proponent of NSA surveillance), it took over European Skype under mysterious circumstances, and now it might be getting TikTok as a ‘gift’ from Donald Trump’s friends and the imperialists, in effect confiscating Chinese assets for full-spectrum dominance



  26. [Meme] Testosterone Patent Office

    When you're running an office that's barely diverse at all and you paint a misleading picture of it expect backlash



  27. The Criminals Who Run the EPO Are Exploiting Lesbian, Gay, Bisexual and Transgender People to Distract From Their Corruption and Crimes

    The misuse of social justice causes by corporate interests has become grotesque; more people ought to speak about the ramifications and object/work against this misuse, which mostly serves to obscure or distract from the biggest issues



  28. EPO Workers Are Losing Their Homes and Losing Their Time Off; It's All About So-called 'Production'

    As another wave of attack on labour rights, European Patent Office (EPO) workers turn their homes into their workplaces and they no longer enjoy any real breaks from work (they work all year around, sometimes until midnight and overnight); they’re supposed to be thankful and even happy as if António Campinos does them a favour by not firing them (at least not yet) and because there’s a health crisis they should be grateful for anything thrown at them (Benoît Battistelli + disaster = Campinos)



  29. IRC Proceedings: Friday, July 31, 2020

    IRC logs for Friday, July 31, 2020



  30. Managing IP Still Champions Fake 'News' for Team UPC

    Managing IP does not care about its reputation; all it cares about is appeasing its clients by spreading falsehoods and perpetuating baseless hope


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts