Summary: Back door in all versions of Windows (for Internet Explorer has been embedded deep inside Windows to suppress browser competition) worries governments around the world, including those behind NSA and GCHQ
IT HAS long been known that Microsoft and the NSA work together and share information about back doors, voluntary or involuntary. Any government that still uses Windows is leaving itself vulnerable to espionage and sabotage like Stuxnet. It’s a strange mystery that many governments still have Windows in their networks. Technically it makes no sense and strategically it’s suicidal.
A few days ago we learned about a permanent back door in Windows XP. To quote one site: “Microsoft reported an alarming security flaw exposed by security farm FireEye, Inc. that affects all versions of Internet Explorer from 6 to 11. Though the newer versions of Windows operating systems will be patched in a couple of weeks, Windows XP users should be worried. Windows XP support was discontinued by Microsoft from April 8, 2014 and it is not going to get any more security patches.”
“Even when a flaw in OpenSSL was found and reported it had already been patched by all the major GNU/Linux distributions. It hadn’t yet been patched by Microsoft and Apple.”Feds are genuinely concerned about this based on the Canadian and the US corporate press, not just because Microsoft will leave Windows XP vulnerable but because at present every version of Windows is vulnerable and there is no fix. Since it’s proprietary software, nobody other than Microsoft can create a fix, either.
This latest back door shows that moving to GNU/Linux makes the most sense. Even when a flaw in OpenSSL was found and reported it had already been patched by all the major GNU/Linux distributions. It hadn’t yet been patched by Microsoft and Apple.
For those who think that Vista 8 (or 8.1) is going to offer some kind protection, mind this unfavourable new analysis. To quote just one bit: “Before shutting down, I manually told it to check for updates. It found one. The description says “Windows 8.1 Update”, and the accompanying text says the stuff about you must install this update to ensure that your computer can continue to receive future updates. So, was my HP updated or not? According to the test described by Microsoft, it was; but according to the Windows Update that is waiting to install, it was not.
“Which is correct? Beats me. How do you tell for sure? Beats me.”
Windows is a mess and this mess is filled with back doors. No government anywhere (not even the US government) should rely on it. The world is moving on and it’s time to move with it. GNU/Linux is the secure option. █