EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

02.15.11

When Windows Kills

Posted in Australia, Microsoft, Security, Windows at 12:51 pm by Dr. Roy Schestowitz

Ambulance

Summary: Australian emergency services had their own emergency (a downtime of over a day) due to Windows viruses; a lot more evidence from the news shows the uniqueness of Windows as far as insecurity goes

OVER the years we have gathered examples where Microsoft’s shoddy security cost lives, e.g. [1, 2, 3]. At one point we called it “Death by Microsoft Windows” and it appears to be happening again in Australia, whose government has shared a bed with Microsoft for many years (the OOXML fiasco is an example of that, but it is a month old by now [1, 2, 3, 4, 5]). According to IDG:

Computers which co-ordinate NSW’s ambulances are back online in three of the state’s regions after a major virus forced staff to shut them down for more than 24 hours.

The virus crept into the Ambulance Service of NSW’s dispatch system at 1pm (AEDT) on Saturday, prompting staff to co-ordinate paramedics by telephone and handwritten notes.

“Major virus,” eh? What do they mean by “major”? Viruses in this context are not physical beings. Surely a better term would be “Windows virus,” not “major virus,” right? “Windows, presumably,” writes Glyn Moody, “is this so wise when lives depend on it?”

The EFF points out that, based on Bruce Schneier’s analysis, the Microsoft updates are a potential flaw and there is a mention of “SCADA” too (covered in [1, 2, 3, 4, 5]).

We know the market pressure approach can work. Once Microsoft saw that the market would (at least threaten to) make purchasing decisions on the basis of security, we suddenly got the Secure Windows Initiative and Trustworthy Computing. A key security technique is keeping the heat on vendors.

There is also an operational problem. To get a handle on the state of security of important infrastructure, try a Google search for [ scada security ]. It turns up alarming reports of basic security problems in some of our nation’s most important systems. (“SCADA” stands for “supervisory control and data acquisition”, and is used generally to refer to industrial control systems for things like water purification, electricity, manufacturing, and so on.)

Somewhat related to this is the shocking news that the very notorious HBGary created Windows rootkits like “MAGENTA”, based on some new leaks:

In the new emails released by Anonymous we discover that HBGary Inc. may have been working on the development of a new type of Windows rootkit that was undetectable and almost impossible to remove.

There is also more about Stuxnet, which we last mentioned last night.

The Stuxnet worm repeatedly attacked five industrial plants inside Iran over a 10-month period, according to new data collected by researchers from antivirus firm Symantec.

Three of the undisclosed organizations were targeted once, one was hit twice and one was targeted three times, members of Symantec’s Security Response Team wrote in the report (PDF), which updates findings first released in September. The attacks took place in 12,000 separate infections in 2009 and 2010 and weren’t discovered until July.

Also in the news right now:

A report issued today warns IT professionals that cybercriminals are changing their tactics and, as a result, predicts there will be fresh banking trojans arriving in the wild.

The bi-annual report from M86 Security says that IT managers need to redouble their efforts to patch their IT systems, as next-generation malware is now on the way.

These new types of malware, says the company behind the report, are likely to include application code that takes advantage of social networking service users.

Notice the avoidance of words like “Microsoft” and “Windows”. It suits them well, it does not inform the readers though. Microsoft is one of the major causes of SPAM, owing to the number of botnets that get created by capitalising on Microsoft flaws. Nonetheless, the culprit from Redmond does some new marketing around E-mail ‘surveys’ that are probably intended to exploit Valentine’s Day. Business as usual, right?

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Links 19/12/2014: Robolinux 7.7.1 LXDE, Red Hat Thriving

    Links for the day



  2. Another Microsoft Partner Markets Linux FUD Using Logo, Name, and Lies

    Microsoft's partner Alert Logic is trying to label a feature of Linux a security flaw and even makes marketing buzz for it



  3. Redmonk is Spreading Black Duck's Anti-GPL Talking Points After Payments From Black Duck, Microsoft

    CBS' ZDNet spreads the GNU-hostile narrative which comes from Redmonk, funded by Microsoft and Black Duck, citing Black Duck, which also comes from Microsoft and is a partner of Microsoft



  4. 'Good' Software Patents From EA Show Cases Where DRM is a Patent Infringement

    Where two evils collide the public benefits, or how some software patents discourage the use of DRM



  5. Richard Stallman: What Does It Mean for Your Computer to Be Loyal?

    New article from Richard Stallman



  6. Links 18/12/2014: LinuxQuestions.org Polls, Fedora for POWER

    Links for the day



  7. Links 16/12/2014: Google and ODF, Civilization: Beyond Earth Comes to GNU/Linux

    Links for the day



  8. Bill Gates' Pet Troll Intellectual Ventures is Collapsing as Founder Quits

    Intellectual Ventures founder leaves after an exceptionally large round of layoffs, despite [cref 77299 recent subsidies from Sony and Microsoft]



  9. Keeping Software Patents Out of Europe Following the Demise of Software Patents in the US

    Instability in the EPO seemingly prevents further expansion of patent scope, which is the subject of scrutiny of EPO staff



  10. Links 15/12/2014: OSI 2014 Annual Report, GPLv2 Court Test

    Links for the day



  11. Links 14/12/2014: Calligra 2.9 Beta, Krita 2.9 Beta

    Links for the day



  12. Software Patents Are Dying in the US, But Patent Lawyers Refuse to Admit It

    Patent lawyers continue to distort the reality of software patents' demise in the United States



  13. Links 13/12/2014: Android Wear “Lollipop”, European Commission and FOSS

    Links for the day



  14. Time to Take Microsoft Out of British Aviation Before Planes Crash Into Buildings

    London's mighty Heathrow Airport among those affected by a Microsoft-reliant air traffic control system which is not being able to properly recover from an outage, and not for the first time either



  15. News From France and Germany: Battistelli Under Fire, But Not Fired Yet, Just Firing His Opposition

    The régime headed by Benoît Battistelli and his criminal deputy continues to overthrow or pressure out everyone who is not 'loyal' to the régime



  16. Links 12/12/2014: Linux++, KDE Frameworks 5.5.0, Calligra 2.8.7

    Links for the day



  17. The USPTO is Broken: New Evidence Presented

    The scope of patents, as evidenced by some statistical figures and individual patents, shows that the USPTO is broken and must be reformed or dismantled



  18. US Patent Reform (on Trolls Only) More or Less Buried or Ineffective

    An update on efforts to reform the patent system in the United States, including the possibly imminent appointment of Michelle Lee to USPTO leadership role



  19. Software Patents in Canada Not Dead Yet

    Canada's patent status quo increasingly like that of the United States and Canadian giants like BlackBerry now pose a threat to software developers



  20. Dreaming of a Just Christmas: When a Third of EPO Walks Out to Revolt and European Judges Attack the EPO Over Abuses

    Information about the abuses of Battistelli et al. at the EPO are finally receiving wider coverage and increasing the strain on Battistelli's authoritarian reign



  21. Links 11/12/2014: Red Hat Enterprise Linux 7.1 Beta, Firefox 35 Plans

    Links for the day



  22. Ubuntu Core Announcement is Not About Microsoft and Hosting Ubuntu on Azure is Worse Than Stupid

    The power of media spin makes the idea of hosting Free software under the control of an NSA PRISM and back doors partner seem alluring



  23. France Gets Involved in Battistelli's Abuses in the EPO - Part XII (Updated)

    The EPO scandal has officially spilled over to France, where a French Senator got involved and starts asking serious questions



  24. Rolling of Heads Likely Imminent at EPO

    The European patent system is shaking as management breaks the rules, staff is protesting against the management every week, and charges of corruption resurface



  25. Links 11/12/2014: systemd 218, Empire Total War

    Links for the day



  26. Links 10/12/2014: Fedora 21, Ubuntu Core

    Links for the day



  27. Links 9/12/2014: Fedora 21 and Torture Report Are Out

    Links for the day



  28. Exclusive: The Enlarged Board of Appeal Complains About Battistelli's Corrupt Management to the Administrative Council (Updated)

    Text of the complaint from the Enlarged Board of Appeal (EBoA) reaches Techrights, demonstrating just how rampant the abuse in Battistelli's EPO has become



  29. Protests Against EPO Corruption Approach 1,000 in Attendance

    EPO staff at all levels is revolting against the management of the EPO, whose dismissal seems to be only a matter of time



  30. Links 9/12/2014: Greg Kroah-Hartman Interview, Fedora 21 Imminent

    Links for the day


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts