Armchair reseachers fall right into the trap
Summary: Microsoft’s “patch Tuesday” is being rebranded and studies that are based on it continue to make GNU/Linux look bad
The game of counting vulnerabilities is a dirty game which Microsoft knows how to cheat in.
“Microsoft renames “patch Tuesday”,” said a reader of this site, pointing to this article. “What those updates would contain remained a mystery to the experts,” says the article. Yes, because when you patch proprietary software nobody really knows what is going on.
This comes amid some security PR from Microsoft partners like Trustwave [1, 2] (it got to LWN) and Sourcefire, which seems to think that Linux has existed since 1988 in its so-called analysis which neglects to take account of Microsoft's hidden patches. Be wary and sceptical of so-called ‘security’ reports that compare platforms on particular criteria that they score based on public knowledge alone. Microsoft has already admitted hiding security-related patches.█