10.18.10

Security Propaganda From Microsoft: Villains Become Heroes

Posted in Deception, Microsoft, Security, Windows at 3:48 am by Dr. Roy Schestowitz

Robin Hood

Summary: A survey of security news and an analysis of Microsoft spin, namely how the company diverts attention away from its failures and portrays itself as a security leader

YESTERDAY we caught up with 3 weeks of Microsoft (in)security news, adding to our record more evidence to show what we had argued earlier this month. While the former Microsoft executives who now run Juniper Networks help protect Windows from those many vulnerabilities (some of which are hidden), there is no denying of the fact that Windows vulnerabilities are on the rise [1, 2]. To highlight bits from the news, vulnerabilities multiply fast and they are found by the dozens:

VUPEN Security Discovers Critical Vulnerabilities in Microsoft Software

VUPEN Security, the world leader in vulnerability research and analysis, today announced that the VUPEN Vulnerability Research Team (VRT) has been working with Microsoft for six months to address twenty-one vulnerabilities discovered by VUPEN in major Microsoft software.

Also in the news:

Windows full of holes, ready for Microsoft patch

In case you were wondering, the previous record was 34 in late 2009, which makes the number 49 seem even bigger. You have to wonder if we are getting better or worse about this security thing.

Microsoft Issues Biggest Fix Ever For Windows, Explorer, Office

Microsoft releases security patches for Windows, IE, Office

Microsoft will roll out a whopper load of patches

Microsoft Preps Record Security Patch Tuesday

Microsoft Patch Tuesday expected to set record

Microsoft’s Biggest Patch Tuesday Ever — Better Update Your System, or Else

Microsoft sets Patch Tuesday record, fixing 49 security holes

Microsoft issues patches for a record 49 security holes

Patch Tuesday brings record harvest of security fixes

As that last one puts it: “Many of these holes allow a remote takeover of your computer, in some cases after you do nothing wrong beside visit the wrong Web page. One such opening has frequently been exploited by the Stuxnet worm that’s been running around the world.”

Microsoft has only just done something about Stuxnet, which we wrote about in:

  1. Ralph Langner Says Windows Malware Possibly Designed to Derail Iran’s Nuclear Programme
  2. Windows Viruses Can be Politically Motivated Sometimes
  3. Who Needs Windows Back Doors When It’s So Insecure?
  4. Windows Insecurity Becomes a Political Issue
  5. Windows, Stuxnet, and Public Stoning
  6. Stuxnet Grows Beyond Siemens-Windows Infections
  7. Has BP Already Abandoned Windows?
  8. Reports: Apple to Charge for (Security) Updates
  9. Windows Viruses Can be Politically Motivated Sometimes
  10. New Flaw in Windows Facilitates More DDOS Attacks
  11. Siemens is Bad for Industry, Partly Due to Microsoft
  12. Microsoft Security Issues in The British Press, Vista and Vista 7 No Panacea
  13. Microsoft’s Negligence in Patching (Worst Amongst All Companies) to Blame for Stuxnet
  14. Microsoft Software: a Darwin Test for Incompetence
  15. Bad September for Microsoft Security, Symantec Buyout Rumours
  16. Microsoft Claims Credit for Failing in Security
  17. Many Windows Servers Being Abandoned; Minnesota Goes the Opposite Direction by Giving Microsoft Its Data
  18. Windows Users Still Under Attack From Stuxnet, Halo, and Zeus

Now, any sane person would say that Microsoft and almost nobody else is to blame for these vulnerabilities and should therefore be held accountable. But not when Microsoft’s spin machine occupies the news, though. Take the Bill Gates-funded Guardian [1, 2, 3, 4] for example. It serves as Microsoft’s platform right now by publishing “Microsoft Removed 6.5 Million Bots From Windows Machines In Q2″ and it’s the same propaganda the MSBBC published some days ago, having previously (just a week beforehand) given Microsoft's Charney the platform yet again. It’s rather astonishing that journalists are able to portray Microsoft as the “good guy” in this story by merely reciting reports from Microsoft. It’s an example of the failure of today’s journalism and it’s hard to tell just how much impact the former Microsoft UK executives who run the BBC or Bill Gates’ sponsorship of The Guardian have here. A few hours ago our reader told us that “Bill Gates on BBC breakfast news later.” Later this week we’ll write about that too.

“It’s rather astonishing that journalists are able to portray Microsoft as the “good guy” in this story by merely reciting reports from Microsoft.”Anyway, here is a rant about what Microsoft is trying to do here and here are a few more examples of the Microsoft spin [1, 2, 3]. So fake news is good news? It should not be the case. Either way, it’s clear that they portray Microsoft as the saviour, not the culprit, even though the problem itself was caused by Microsoft’s continued negligence [1, 2, 3]. Earlier this morning we gave an example of similar spin. Here is the same propaganda with a “Zeus” flavour [1, 2]. The latter says that “Zeus-created botnets, known as Zbots, control many millions of computers — mostly Windows XP machines — in almost 200 countries.” Okay, so why give Microsoft any credit? That’s just mastery of spin. We wrote about Zeus in posts such as [1, 2, 3, 4, 5, 6, 7].

Watch out for the spin, some of which originates in the ‘Microsoft press’ (e.g. Kurt Mackie). As usual, Microsoft will just blame the users, even though zero-day flaws mean that any Windows computer can be hijacked even if it’s fully patched. As for those who patch early, they take other types of risks and this bit of news is why people are reluctant to patch:

On Tuesday, Microsoft released updates for both Microsoft Office 2004 and 2008 to correct some security vulnerabilities in the software, but a number of people are having difficulties opening some Excel spreadsheets in Office 2004 after the update.

As mentioned by CNET member and MacFixIt reader Kurt in the comments of our article announcing the update:

“After applying the update yesterday, some Excel documents refuse to open. For a fraction of a second the open progress bar shows up, then nothing happens.”

This problem has been echoed by numerous other Office users here at CNET as well as at the Office for Mac forums, and Microsoft’s Mac team is currently investigating the issue.

Yes, that’s why many people won’t patch, either. Even those whose machine is not fully patched can sometimes blame Microsoft’s poor quality of patches.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

2 Comments

  1. twitter said,

    October 18, 2010 at 7:34 am

    Gravatar

    Microsoft’s efforts are sort of like tobacco companies telling cancer patients that their favorite cigarette has been reformulated and should be safe to use if their local doctor can cure them by some inadequate surgery. The main difference is that there’s a better link between Windows and malware than the near certainty of cancer after smoking. It’s no wonder that Bill Gates invests in tobacco now.

    Dr. Roy Schestowitz Reply:
    October 18th, 2010 at 9:42 am

    He also pretends to fight against smoking. There’s a conflict there.

What Else is New

  1. Links 19/1/2021: Krita 4.4.2 Released and JingOS Hype

    Links for the day

  2. Team UPC Keeps Pretending That UPCA Can Still be Resurrected (Even Without the UK, Which is Strictly a Requirement)

    The latest distortion of facts regarding the Unified Patent Court (UPC) Agreement (UPCA) as seen from the lens of people who seek to profit from such distortion

  3. 'Ethical Source' is Not Ethical and Not a Movement But a Misguided Self-Serving PR Stunt

    Something which is neither enforceable nor ethical is being promoted by profoundly unethical media in the pockets of large corporations

  4. InteLeaks – Part XXI: Intel Seeking Advice From a Bunch of Clowns (Harbor 'Research')

    A firm called Harbor 'Research' is making dubious recommendations to Intel; as shown in the above video, there's also an obsession with buzzwords (typically suggestive of a lack of technical grasp/understanding)

  5. IRC Proceedings: Monday, January 18, 2021

    IRC logs for Monday, January 18, 2021

  6. The US Election Was Not Rigged, But the Nomination Process Was (Undermined to Maintain Control by Oligarchy)

    Cheating/driving the left out of the Democratic Party seems like a longstanding tradition and we know who stands to gain from it; moreover, problems remain in the voting process because it's controlled by secret code of companies like Microsoft (in spite of the openwashing)

  7. InteLeaks – Part XX: Redacted (for Names Only) Release of Intel File About Developer eXperience (DX) Meddling in GNU/Linux

    Today (or tonight) we release the first 'phase' of InteLeaks in a sensibly redacted form; coming up next is a surprise from Team Microsoft

  8. Sites in Bed With the EPO and UPC 'Covering' the 'News' Without Mentioning Any of the Overt Abuses

    It is rather sad that blogs like IP Kat have turned into proponents of abusive EPO management and Team UPC increasingly resorts to lying using pseudonyms (to avert criticism and accountability); much of the rebuttal or response that’s hinged on reality/facts can only be found in comments, which are still subjected to a face-saving moderation process (conducted by Team UPC)

  9. Suppressed Facts of the Free Software Movement and Its Community of Volunteers – Part IV: Stories From the Depths of the Free Software Foundation (FSF)

    To reduce or alleviate suspicions and a potential of mistrust the FSF needs to become more transparent and liberate information (such as the real reason Bradley Kuhn left, as noted in the previous part)

  10. Links 18/1/2021: GNU Radio 3.9, Wikipedia at 20

    Links for the day

  11. InteLeaks – Part XIX: Intel's Web 'Experts' Seen as Microsoft Champions Dealing With the Platform Microsoft is Looking to Destroy

    Things aren't rosy at Intel because the hires aren't suitable for the job of documenting and/or presenting GNU/Linux-centric products (whose target audience is Free software developers)

  12. Adding Images as Characters to the Daily Bulletins of Techrights

    Our daily bulletins now have inside them coarse graphics, depicted using characters alone, and the tool used to generate them announced a new release earlier today; we showcase some of its features (in a new video)

  13. Links 18/1/2021: Weekly Summaries and Linux 5.11 RC4

    Links for the day

  14. IRC Proceedings: Sunday, January 17, 2021

    IRC logs for Sunday, January 17, 2021

  15. The Oligarchs' Parties Will Never Choose the Side of Software Freedom Because Free Software Cannot Bribe Officials

    The tough reality is that next week's (or this coming week's, depending on what Sunday counts as) inauguration ceremony is partly symbolic as all the same and important issues remain largely untouched, for corporations control almost everything of significance

  16. COVID-19 Has Actually Helped Software Freedom Due to Financial and 'Spare Time' Factors

    Developers and users are increasingly exploring what the Free software world has to offer; this is actually measurable and it contradicts claims to the contrary

  17. Future Plans and Using Videos to Complement Text

    Remarks on recent and impending site changes; We are not replacing text with video, we're just trying to enhance the presentation a bit, especially where visuals help make a point or where browsing through Web sites (or leaks) is more suitable than static, linear presentation

  18. InteLeaks – Part XVIII: Intel Does Not Know How to Properly Do Research and It Seems Apparent Unscientific Methods Are Used to Justify Poor Documentation

    There appears to be a severe crisis at Intel; they cannot recruit scientists (or those whom they recruited are walking away) and as a result the company produces bad products with poor documentation (or highly defective chipsets that top-notch marketing cannot compensate for); in this video we walk through some examples of how studies are being conducted (as already noted in Part XVII)

  19. Suppressed Facts of the Free Software Movement and Its Community of Volunteers – Part III: The Free Software Foundation (FSF) Seems More Like a Victim of Destabilisation Campaigns

    The Free Software Foundation (FSF), which turns 36 later this year, is looking to raise money that helps support the GNU Project, soon 38 years old and likely the most important Free software project to exist (ever)

  20. Links 17/1/2021: EasyOS on Raspberry Pi and GNU libsigsegv 2.13

    Links for the day

  21. InteLeaks – Part XVII: The High Cost of Microsoft Windows Users in GNU/Linux Development Teams

    A look inside Intel explains what holds back the technical team, which bemoans the lesser technical people getting in the way and not even using the product that they are writing about

  22. IRC Proceedings: Saturday, January 16, 2021

    IRC logs for Saturday, January 16, 2021

  23. Suppressed Facts of the Free Software Movement and Its Community of Volunteers – Part II: Why Bradley Kuhn Left the Free Software Foundation (FSF)

    The founder of the FSF is still at the FSF (albeit not publicly) and the person who lobbied to oust him has basically been 'banished' by the founder

  24. Links 16/1/2021: LibreOffice 7.1 Release Candidate, Zeroshell 3.9.5, FreeBSD Report, and GhostBSD 21.01.15

    Links for the day

  25. Free Speech on the Web Not Respected by Companies That Used to Support Software Freedom

    Mozilla does not have to make its Web browser about politics; it can just make an excellent piece of software that is neutral about the Web pages that it renders, based on the user's personal preferences

  26. Suppressed Facts of the Free Software Movement and Its Community of Volunteers – Part I: We Are Under Attack by Corporations and Their Salaried Facilitators

    The corporate takeover (taking over the Commons, produced by volunteers who are motivated by altruism) is a subject we must speak about and somehow tackle; this series will highlight uncomfortable or difficult truths

  27. InteLeaks – Part XVI: Intel Cannot Do Command Line, Even When It's Vastly Simpler and More Suitable for Development

    The Developer eXperience (DX) team at Intel seems to be full of Microsoft drones instead of developers and/or mildly technical people; this has not only harmed the quality of documentation but also upset staff, alienating people who actually understand what developers need (more than buzzwords like "DX")

  28. IRC Proceedings: Friday, January 15, 2021

    IRC logs for Friday, January 15, 2021

  29. Links 15/1/2021: KaOS 2021.01, Whisker Menu 2.5.2, Istio 1.8.2

    Links for the day

  30. InteLeaks – Part XV: Intel is Blind to Blind and Colour-Blind People

    Intel does not seem to grasp very basic concepts associated with accessibility; nevertheless, Intel shamelessly tries painting itself as "woke" and a "justice warrior" (policing speech while overlooking much-needed practical work)

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts