06.15.13

Gemini version available ♊︎

Confirmed: Microsoft Tells the NSA About Back Doors in Windows

Posted in Microsoft at 7:22 am by Dr. Roy Schestowitz

Nobody needs hardware-level back doors when Windows (or other proprietary software) is installed

Hardware

Summary: Official confirmation that the NSA is being notified about ways of hijacking Windows before Microsoft releases fixes

Half a decade ago I put together some links about backdoors in Windows. I had accumulated those links for years. Now that we know how corrupt and aggressive the NSA can be (common knowledge after the latest leak), with cracking attacks on China, espionage, and unlimited mass surveillance in a fascistic manner (with corporations fully complicit), it all seems far less improbable and hardly far-fetched.

According to a new report from the corporate press (as corporate as it can get, being Bloomberg), Microsoft tells NSA staff about universal unpatched holes before they are being addressed:

Microsoft Corp. (MSFT), the world’s largest software company, provides intelligence agencies with information about bugs in its popular software before it publicly releases a fix, according to two people familiar with the process. That information can be used to protect government computers and to access the computers of terrorists or military foes.

Redmond, Washington-based Microsoft (MSFT) and other software or Internet security companies have been aware that this type of early alert allowed the U.S. to exploit vulnerabilities in software sold to foreign governments, according to two U.S. officials. Microsoft doesn’t ask and can’t be told how the government uses such tip-offs, said the officials, who asked not to be identified because the matter is confidential.

Frank Shaw, a spokesman for Microsoft, said those releases occur in cooperation with multiple agencies and are designed to be give government “an early start” on risk assessment and mitigation.

Glyn Moody asked, “why would anyone ever trust Microsoft again…?”

Frank Shaw is not a technical man. His job is to lie, e.g. about sales of Vista 8 (quite famously and most recently). He came from Waggener Edstrom, a lying and AstroTurfing company. The above should be read as follows: when new holes exist which permit remote hijacking the unaccountable, cracking-happy NSA is being notified. What can possibly go wrong now that we have proof that the NSA is cracking PCs abroad with impunity? Germany, are you paying attention?

Here is more about this news:

Some of the back and forth is innocuous, such as Microsoft revealing ahead of time the nature of its exposed bugs (ostensibly providing the government with a back door into any system using a Microsoft OS, but since it’s don’t ask, dont’ tell, nobody really knows). However the bulk of the interaction is steeped in secrecy: “Most of the arrangements are so sensitive that only a handful of people in a company know of them, and they are sometimes brokered directly between chief executive officers and the heads of the U.S.’s major spy agencies, the people familiar with those programs said.”

In IRC, Sosumi highlighted this article and said, “tell me something that isn’t known already, like PRISM is just an evolution of a previous snooping program and that the NSA has built an AI, even if rudimentary, in order to assist them sort the information… also I wonder if Keith Alexander will be at this year’s DEFCOM conference” (part of the PR and recruitment exercise).

Here is an interesting new post which relates to what we know about NSA’s cracking of people’s PCs (the lesser-advertised role of the NSA):

Skype is said to have several back doors. Our latest post about it got updated with new information. Skype can be used as a back door on any platform (known holes left unaddressed), GNU/Linux included. Microsoft controls it and it has a monopoly on the source code.

Watch the MSN corporate press (Microsoft’s pseudo ‘news’ site) promoting both Skype and Facebook:

Thanks to a simple inquiry on Facebook, it’s now a day to celebrate with a father who didn’t know he existed for nearly three decades.

“Whitewashing of Skype and Facebook” is what iophk called this. “Notice the lack of I-told-you-so articles about FB snooping or any coverage of the snooping at all.”

Skype is a Microsoft-controlled product (acquired and quickly altered to reduce decentralisation, user control, and privacy). Advertising it with the partly Microsoft-owned Facebook is too shallow a case of bogus ‘journalism’.

There is also something about spying capabilities of the Xbox One, summarised by the headline “US Navy serviceman calls Xbox One’s 24-hour online check “a sin committed against all service members”” (people seem to be getting the importance of privacy, over time).

A few weeks ago we spoke about expanding the scope of coverage in Techrights to privacy-related matters. We’ll soon conduct an interview with Richard Stallman (to be published later this month) as privacy becomes a central issue relating to software freedom. We should start using the privacy card to advance the Free/libre software agenda.

National Security Agency

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New

  1. The Popularity of the World Wide Web is Partly Faked (Bots and Scams, Especially in Social Control Media)

    ontrary to popular misconceptions surrounding a Web 'monoculture' (therein exists a Web browser monoculture too; many used to equate the Internet with the Web and with the "Blue E"... and now Chrome), there's a lot of fakes, lots of bot activity, and alternatives to the Web are worth exploring

  2. Links 28/05/2022: KDE Eco Sprint and GUADEC 2022 Conference Plans

    Links for the day

  3. When 50% of Slashdot's 'Linux' Section is Microsoft Marketing, EEE, and FUD

    As this minutes-old screenshot shows, Slashdot is not what many of us “geeks” remember it for

  4. Do Not Become (or Remain) Enslaved and Exploited by Microsoft GitHub

    Slavery isn’t a dirty word but a strong word — or a disturbing concept — used to convey or describe an abusive relationship between organisms — typically human beings — or between corporations and humans, e.g. the way Microsoft treats GitHub projects/users

  5. Microsoft GitHub Exposé — Part XXI — Rumours About How Microsoft Plans to Actually Make Money (Not Losses) From GitHub

    GitHub is not 'free hosting' but a ticking time bomb, a proprietary platform looking to entrap its users (serfs) inside yet more proprietary platforms (for Microsoft to become their oppressive master)

  6. Links 28/05/2022: KDE Weekly Summary, RZBoard V2L

    Links for the day

  7. [Meme] Fluffy Staff

    EPO President António Campinos is failing to ‘contain’ the media after less than 4 years at the Office, just like Benoît Battistelli around 2014

  8. Kluwer Patent Blog Belatedly Gives EPO Staff a Voice

    There are at least 2 bloggers — if not 3 people — at Kluwer Patent Blog who air grievances of EPO staff; in addition, many of the comments there blast EPO management and Team UPC and it helps change the perceptions long shaped by bribes and blackmail from EPO management

  9. [Meme] Fluffy President

    Prepare for more puff pieces and fluff from President Fluffinos, who has commandeered the EPO‘s official Web site for self-serving whitewash and promotion of illegal agenda like European software patents and a kangaroo court to approve those (UPC)

  10. Blaming Patent Examiners Who Respect the Law

    The latest comments here are quite revealing; the EPO not only breaks the law with impunity but it also challenges the very legal system (like courts) with total impunity; Benoît Battistelli and António Campinos are, in that regard, no better than Putin, just more temperamental

  11. Our Priorities and Our Future: More Gemini and More Daily Links (a Lot More Frequently)

    An informal and unscripted video that explains where we are and where we’re going

  12. IRC Proceedings: Friday, May 27, 2022

    IRC logs for Friday, May 27, 2022

  13. Links 28/05/2022: Twitter Fined for Spying in '2FA' Clothing

    Links for the day

  14. Links 27/05/2022: Trisquel 10.0.1 LTS and Perl Appreciation

    Links for the day

  15. Links 27/05/2022: Fwupd 1.8.1 and GCC 9.5

    Links for the day

  16. Visual Proof That Twitter Very Likely Faked Its Magnitude the Moment Musk et al (KSA, Ellison and so on) Wanted to Buy

    There's a very compelling case for the allegation that Twitter is defrauding shareholders and participants in the platform; Twitter is a lot smaller than it used to be (fewer people are actively involved), it is losing money, and it is so desperate to be acquired that it's shamelessly faking traffic

  17. Links 27/05/2022: Wayland 1.21 Alpha, KDE Adds Flatpak and Snap Permissions to Discover

    Links for the day

  18. IRC Proceedings: Thursday, May 26, 2022

    IRC logs for Thursday, May 26, 2022

  19. Links 27/05/2022: Many More Microsoft Security Failures (and Spin/Lies)

    Links for the day

  20. Links 26/05/2022: KStars 3.5.9 and Chrome 103 Beta

    Links for the day

  21. Links 26/05/2022: AlmaLinux OS 9.0, MooseX::Extended for Perl Introduced

    Links for the day

  22. Links 26/05/2022: Kernel Events and Systemd-Free GNU/Linux Distributions

    Links for the day

  23. Links 26/05/2022: DuckDuckGo Increasingly Exposed as Microsoft Proxy

    Links for the day

  24. EPO Celebrates Software Patents Again, Dubbing Them 'Hey Hi' (AI) and '4IR'

    The ludicrous state of the EPO is demonstrated by yesterday’s puff piece about “four million” (merely requests for monopoly in Europe; most come from outside Europe) and L’Oréal, which claims to have “invented” something that was already done in the 1990s if not the 1980s

  25. [Meme] EPO's Monkey Business: Lowering the Patent Examination Bar

    As we shall show in a moment, EPO President António Campinos has lowered the quality of patents and applications; sooner or later he might outsource the job to ‘livestock’

  26. IRC Proceedings: Wednesday, May 25, 2022

    IRC logs for Wednesday, May 25, 2022

  27. Heads of Patent Offices Are Immune to Coronavirus

    The overconfident chiefs of the U.S. Patent and Trademark Office (USPTO) and EPO might love speaking about COVID-19 (in relation to patents), but they do not take it seriously themselves

  28. Links 26/05/2022: Plex Finally on GNU/Linux

    Links for the day

  29. The General Consultative Committee of the EPO Exposes a Disaster and a Lack of Genuine Dialogue

    The General Consultative Committee (GCC) at the EPO deals with unlawful proposals from António Campinos (he’s happy to violate laws, constitutions, protocols, conventions, just like Benoît Battistelli did) and once again the abuses by managers is covered up; it’s as if the Office is run by unaccountable gangsters who arrogantly curse at everyone whilst insisting they’re the nicest people ever

  30. The Latest Letter to Josef Kratochvìl and the Heads of Delegation of the Administrative Council of the European Patent Organisation

    A week-old letter from the Central Staff Committee (CSC) to the Administrative Council of the European Patent Organisation highlights the nature of a crisis; there's no genuine dialogue and staff of the EPO (i.e. the scientists who do all the actual work) is constantly under attack

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts