EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

02.10.11

Bad Security News for Apple and for Microsoft (Updated)

Posted in Apple, GNU/Linux, Microsoft, Security, Windows at 3:58 pm by Dr. Roy Schestowitz

Valentines day background

Summary: While technology news may have gotten obsessed with Linux and USB, it is actually Microsoft and Apple that suffer from critical problems

EARLIER this week we noted that Linux is inherently very secure and we also cited someone who had posted a good rebuttal to the “USB” claims that are spread out there right now. The short story is that the alleged USB-related flaw is very much exaggerated and good explanations exist to refute the original claims. On the other hand, consider the fact that Microsoft is claiming to plug 22 security vulnerabilities this Tuesday (the real numbers may be a lot worse):

Microsoft issued 12 security bulletins today to cover nearly two dozen vulnerabilities, including critical ones in Internet Explorer and Windows.

Moreover, The Inquirer says that “anti-virus software is losing the battle, and the war”:

ANTI-VIRUS SOFTWARE is fighting a losing battle against malware, and there’s nothing that can be done to turn the tide, according to a security testing firm.

NSS Labs, an independent security product and certification test lab, looked at 10 anti-virus products on the market. It found that the effectiveness of the software was variable, to say the least, with some products more effective at protecting against malware on USB keys than in email, and vice versa.

From the same source we learn that Apple’s proprietary hypePhone can be hacked in six minutes:

INSECURITY RESEARCHERS have busted an Iphone’s encryption protection in just six minutes to gain access to passwords.

Boffins at the Fraunhofer Institute for Secure Information Technology (SIT) in Germany devised the hack. The researchers did the tests to demonstrate that passwords aren’t secure on Iphones that have been lost.

They obviously had a point to prove and weren’t happy with just hacking Apple’s shoddy security encryption in six minutes. Within the allotted time, the team also managed to retrieve most of the passwords stored on the Iphone, accessing personal data that could be used to get into bank accounts.

Visibility of code and wide sharing of it breed bug reports and quick fixes. The mainstream press has been focusing on the wrong targets over the past few days.

Update: Gordon (thistleweb) has just posted a pointer to “yet ANOTHER #Microsoft story without mentioning the M or W word #BBC #pathetic #poorjournalism http://tighturl.com/2xsj twice in 1 week too”

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New

  1. The Time for Freedom-Respecting Routers Has Come

    Hardware sales are affected by the latest NSA revelations (back doors and flawed encryption) and now there is a window of opportunity for Free software alternatives

  2. GNU/Linux-Powered and Freedom-Respecting Phones (OpenMoko is Sort of Back)

    Perhaps a phone which Richard Stallman can use is already in the making, depending on how phone networks behave and how hardware behaves (whether it permits purely Free/libre software shim)

  3. Forget Camera Gimmicks; Google Should Add Legitimate Encryption and Improve Privacy in Android

    A call for Android developers to take privacy more seriously and not turn users of Android devices into products

  4. Microsoft's Anti-Linux/Android Patent (FAT) Collapses in Europe, But Microsoft-backed Xamarin Tries to Interject Other Microsoft Patents Into Google Gear

    A new ruling in Germany threatens Microsoft's campaign of fear and racketeering against Android (and GNU/Linux), but Microsoft allies from the now-defunct Novell help patent-pushing efforts, threatening to add new bait to Android

  5. FreeBSD Lost Trust in Hardware Makers, Alleging NSA Tampering

    FreeBSD believes that the NSA tampered with hardware-level random number generators

  6. Xbox Live Shows Even Higher Degree of Microsoft/NSA Collusion

    Xbox Live caught in the latest NSA scandal and the high degree of collusion seems to be reinforced by Microsoft's reluctance to comment; other developments like Microsoft's attack on rivals using the "privacy" card

  7. Docker: Yet Another Software Deployment Endeavor



  8. IBM and Microsoft Crushed Patent Reform in the United States, Last Resort is SCOTUS Again

    Legislation in the US continues to be steered by large companies (or their lobbyists) with heaps of software patents; SCOTUS receives another opportunity to cross out software patents

  9. Microsoft Shows That Corruption Pays Off

    The company which aids crimes of the state is protected from having its crimes treated as such; just like big banks that receive bailouts rather than jail sentences, Microsoft receives document formats monopoly rather than embargo

  10. Links 10/12/2013: Games, Applications, and Instructionals

    Links for the day

  11. Links 9/12/2013: Screenshots

    Links for the day

  12. Ubuntu is Not Truly Focused on Desktops Anymore

    More signs that Ubuntu is deemphasising the desktop and treating users like a product/commodity, not entities whose interests should drive development

  13. Fedora 20 About a Week Away

    Fedora's latest release is just around the corner (released scheduled for December 17th)

  14. Mother Jones Shows That Gates Foundation is a Hypocritical Ploy

    Popular magazine Mother Jones is the latest among many magazines (those which have not been paid by Bill Gates yet) to tell readers the true story of the tax-evading, investment-driving, PR-pumping, Microsoft- and patents-boosting operation known as "Gates Foundation"

  15. EU Commissioner VP Joaquin Almunia Aware of Microsoft's Anti-Linux By-Proxy Patent Strategy (Nokia), Threatens Antitrust Action

    Formally, or at least publicly, European regulars say that they are aware of what Microsoft/Nokia is up to and they're not going to tolerate it

  16. 'Secure' Boot is Not Secure, Time to Abandon It

    The 'security' boasted by restricted boot is shown to be a sham; other booting systems ought to be promoted at UEFI's expense

  17. Benefits of Ubuntu's Derivatives: MATE, Cinnamon, and the Depth Desktop Environment

    The power of deviation as demonstrated by Linux Mint and Linux Deepin, two of the more widely used derivatives of Ubuntu

  18. Don't Rule Out Gentoo, Slackware, and Mandriva Just Yet

    How distributions which were largely forgotten some years ago are making a comeback and spawning new derivatives

  19. State-of-the-Art Gaming on GNU/Linux Not Only Possible But Becoming Default Option, Hardware Products

    GNU/Linux as the operating system of gaming consoles no longer a far-fetched dream; companies other than Valve explore these possibilities

  20. Links 8/12/2013: Applications and Instructionals

    Links for the day

  21. Drifting Away From Copyleft in Databases

    Databases which are Free/Open Source software (FOSS) are becoming less liberal/freedom-respecting while deceiving labels hide it

  22. Roman Catholic Church Joins Opposition to 'Trade' Agreements

    The Church which claims to have 1.2 billion members is expressing dissatisfaction and opposition to TPP and TAFTA/TTIP

  23. 'Unauthorised' Programming and What It Means to Software Freedom

    DRM and DMCA versus society, or how operation-restricting legal mechanisms are affecting coders, for whom not only software patents are now a creativity wall

  24. Assassinations by Drone Make the West Hypocritical on Syria

    Putting in context the cycle of violence which the West uses to justify indefinitely detaining the domestic population, assassinating parts of it, and spying on everyone (even domestically, using loopholes)

  25. Links 6/12/2013: KDE and GNOME News

    Links for the day

  26. Links 6/12/2013: NSA News

    Links for the day

  27. Microsoft Sued Over Collusion With the NSA, Microsoft Issues Orwellian Statements

    Microsoft is lying about privacy of its customers and the Free Software Foundation (FSF) responds

  28. To Oracle, 'Community' Means Paying Oracle Customers

    Oracle continues to extend only its own distribution of GNU/Linux (which is a ripoff of another), leaving everyone else out in the cold

  29. Patent Policy Change a Victory for Large Corporations, Real Reform Remains Elusive

    Patent extortion and litigation by proxy still permitted in the United States, even after the passage of a celebrated (by corporations) new bill

  30. A Western Assault on GNU/Linux Security and Privacy

    Governments (which are dominated by corporations) continue to make security hard as part of a campaign to spy on everyone under claims that it helps "national security" (control from above)

CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts