Bonum Certa Men Certa

Microsoft Sabotaging No-IP Rather Than Admitting Its Own Failures, Time for Class Action Seems Right as List of Affected Domains Collected

Summary: Microsoft control over the Internet (control that should never have been granted) is used to shut down millions of legitimate services

THIS is an incident that has infuriated many people, companies, organisations, etc. It's widely publicised by now. Microsoft is above the law, apparently, or rather, Microsoft is the law in the United States (see our page about "Microsoft influence in the United States government").



Tux Machines, our near-real-time news site, relied on No-IP until some months ago. Millions of people use the site every month. Millions of services and sites use No-IP every month. It means that billions of people are dependent on No-IP . It is a critical service for perhaps tens of millions of Web sites and other services (such as LDAP, E-mail, and so on). Well, Microsoft's outrageous demands have ruined the services. It is Microsoft's fault (due to its own sabotage like back doors and incompetence that makes many insecurities). Do Microsoft's demands now supersede the rest of us? Can Microsoft knock offline millions of services all around the world and if so, where did Microsoft acquire such an infitinite power? Here is an explanation and roundup of the past few days' responses, which resulted in Microsoft relinquishing control of No-IP (when it was already too late and huge damage had been done).

"Can Microsoft knock offline millions of services all around the world and if so, where did Microsoft acquire such an infitinite power?"Let's start by stating that Microsoft has back doors and much of the blame for SPAM, DDOS etc. should be put on Microsoft Windows, which is insecure by design. Microsoft cannot claim to be pursuing better Internet security (ever!) while it does what it does for the NSA. For Microsoft to take a whole network to court is like the FBI and USDOJ going after MegaUpload; however, Microsoft, unlike the FBI and USDOJ, is not a Federal agency. So what the heck is going on here? And how can Microsoft get away with it? Surely there should be a class action lawsuit, but will victims be capable of finding each other, then organising? Here is the response from No-IP and an article about it which says:

Millions of legitimate servers that rely on dynamic domain name services from No-IP.com suffered outages on Monday after Microsoft seized 22 domain names it said were being abused in malware-related crimes against Windows users.


"Apparently," it says, "the Microsoft infrastructure is not able to handle the billions of queries from our customers. Millions of innocent users are experiencing outages to their services because of Microsoft’s attempt" (Microsoft is probably arrogant enough to not even apologise).

"Microsoft now claims that it just wants to get us to clean up our act, but its draconian actions have affected millions of innocent Internet users," says the above.

They should organise for class action lawsuit. Perhaps No-IP should sue Microsoft for loss of many customers and the customers too should sue Microsoft for the damage caused by its overreach and abuse. No-IP ought to help its clients organise for a class action lawsuit.

Two days ago I drafted a post about this, calling for class action against Microsoft over this whole overreach. I did not publish it at the time as I was waiting to see how much damage was done overall. The services had not been restored by that time. Some services were down for several days. Now, let's try to estimate the damage. If we assume $1000 compensation for 1.8 milion servers, then that's $1.8 billion, which Microsoft can probably borrow from one of its offshore havens to pay in reparations. Microsoft should be sued in an organised fashion and prepare to pay billions of dollars in compensation, just as they were forced to pay fines after browser-related crimes.

"So, to go after 2,000 or so bad sites, [Microsoft] has taken down four million,” Gogun said. Gogun is a senior employee at NoIP.

Here is some press coverage of interest and feedback from victims, including:



How can Microsoft gain the power to just shut down parts of the Web without an open legal process? Watch IDG's (partly Microsoft-funded) coverage of the No-IP fiasco (tilted in favour of Microsoft to make it look like innocent "error").

Tux Machines, which used to be No-IP-managed, went down around the same time that I repeatedly protested about this online. Interestingly enough (and that's a fact), DDOS attacks on Tux Machines (by Windows-running PCs) began just a few minutes after I repeatedly ranted about Microsoft's sabotage of No-IP. I can't prove the correlation, but it was curious enough to note. The botmaster/s attacking Tux Machines was not stupid. There was hammering on different parts of the site each time one was blocked/denied (I had to manually block huge chunks of IPs and addresses). Following Microsoft's logic, many of its back-doored (for NSA) Windows PCs attack Web sites, so it's fine to just shut down Windows PCs universally.

Here is some other and later coverage of developments and an official response from Microsoft (face-saving lies). 1.8 million customers are said to be affected and "Microsoft Insists That No-IP 'Outage' Was Due To A 'Technical Error' Rather Than Gross Abuse Of Legal Process," says TechDirt:

Microsoft Insists That No-IP 'Outage' Was Due To A 'Technical Error' Rather Than Gross Abuse Of Legal Process



Earlier today, we wrote about a ridiculous situation in which Microsoft was able to convince a judge to let it seize a bunch of popular domains from No-IP.com, the popular dynamic DNS provider, routing all their traffic through Microsoft servers, which were unable to handle the load, taking down a whole bunch of websites. Microsoft claimed that this was all part of a process of going after a few malware providers, though No-IP points out that Microsoft could have easily contacted them and the company's fraud and abuse team would have cut off those malware providers.


To quote the conclusion: "That's not a "technical error." That's Microsoft blatantly making an extreme claim that convinced a judge to hand over a whole bunch of domain names without any kind of due process or adversarial hearing. While Microsoft may have then had a technical error on top of that, what kicked this off was a very, very big legal error."

Microsoft probably knows that it's about to be sued, so it is making up stories about "errors" while Microsoft-funded press repeats the lies. Here is AOL coverage:

Microsoft seized 23 domains this week from No-IP, a provider of dynamic DNS services, after filing a civil suit alleging that the domains in question were used to distribute malware.

The domains, according to Microsoft, were used 93 percent of the time for distributing the Bladabindi and Jenxcus malware families. A court granted Microsoft custodianship — DNS authority — of the digital properties so that it could “identify and route all known bad traffic to the Microsoft sinkhole and classify the identified threats.”


This was an abuse of the Court. Microsoft deceived the Court to take over what one writer called "universe" (millions of domains). Microsoft broke the Internet for several days, having abused or bamboozled a court.

To quote one of our readers, Microsoft "is getting the heat for the attack against No-IP. Yes, they failed by trying to run Microsoft products in a production situation but the actual anger needs to be directed at the court which handed, ex parte, No-IP's business over to Microsoft. How on earth was that allowed? That's the real question and one that Microsoft appears to what to distract from with stupid side tracks on 'technical issues' to bring the attention away from legal issues. Fraud. There was no accidents involved: Microsoft took over the domain on purpose after a lot of work manipulating the court.

"Then underneath the technical side is Microsoft inherent, built-in vulnerability. Without Microsoft there would be no botnets."

Comments

Recent Techrights' Posts

Video: University in Peru Honours Richard Stallman
Tomorrow, January 20, Richard Stallman speaks in France
FOSDEM is Called "FOSDEM" Because of Richard Stallman (RMS)
The overlap there seems timely; yesterday RMS spoke in French-speaking (in part) Switzerland where questions in French were accepted
January 20: Richard Stallman Talk in Europe
evening time in Europe, around midday in the United States and Canada
 
Links 19/01/2025: TikTok (Fentanylware) Now Banned in the US, Convicted Felon Talks to Fentanylware CEO and Pooh-Tin About Undoing the Ban Despite the Supreme Court Unanimously Upholding It
Links for the day
FTC Realises Microsoft Buying Fake 'Clients' to Fake "Revenue" (Microsoft 'Buying' Services and Products From Itself!)
Ponzi scheme
Total Lock-down Ambitions - Part III - The Web Browser as DRM Pusher
A lot of "streaming" stuff is DRM
IBM Termination Story and Information From Microsoft About Mass Layoffs
In 2 weeks of 2025 Microsoft already had 2 waves of layoffs
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, January 18, 2025
IRC logs for Saturday, January 18, 2025
Links 18/01/2025: Restoring the Great Wall of China and Economic Expansion in China
Links for the day
Guardian Digital (linuxsecurity.com) is Spamming the Web With Microsoft's Promotional LLM Slop About UEFI 'Secure' Boot (Which is Against Real Security)
This is an attack on honest journalism
Links 18/01/2025: TikTok's Endgame, "Car Freedom", and Spying in Cars 'Fines' GM (Settlement)
Links for the day
Links 18/01/2025: Apple Getting Out of Hey Hi (AI) Slop (Too Much Misinformation), Chaffbots/Chatbots Try to Settle Copyright Infringement Lawsuits
Links for the day
What Fake News Sites Are Doing to GNU/Linux
The LLM slop about Linux serves two purposes
Links 18/01/2025: Microsofters Upset at Microsoft's Ridiculous Rebrands (Excuse for Massive Price Hikes), Chaffbot Company ('Open'AI) Faces More Lawsuits
Links for the day
Gemini Links 18/01/2025: Surge in Illnesses, ctags, and Gemsync
Links for the day
Slopwatch: Too Lazy to Write Real Articles, Offloading to Chatbots Instead (LLM Slop About "Linux")
The Web was already full of garbage before the LLM frenzy. Now it's even worse.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, January 17, 2025
IRC logs for Friday, January 17, 2025
RMS 'Inauguration' in Montpellier (Government Administration) on January 20th
Happy hacking
Even Technical Articles and HowTos From UNIXMen Nowadays Seem to be LLM Slop
We've just permanently removed the RSS feed of UNIXMen
The FSF's 2024 End-of-Year Fundraiser Succeeds: Over $400k to Support Software Freedom
That's worth bringing up again because the SFC is trying to 'crash' this achievement of the FSF
[Meme] Fentanylware (TikTok) Banned in the United States, Next Up European Union (EU)
And the United Kingdom (UK)
President Biden is Right, "Free Press is Crumbling" and the United States Exports Its Media-Hostile Culture to Other Continents
perhaps Biden should pay closer attention to how Donald Trump-inspired Americans take their battles to other continents
Links 17/01/2025: TikTok Banned by the United Stated (SCOTUS Rejects Appeal)
Links for the day
Software Freedom Conservancy Inc (SFC) Makes It Obvious It's Just a Copycat Trying to Exploit or Leech Off the FSF's (and GNU's) Work
They swim next to the rich people (who "match")
Links 17/01/2025: Fentanylware (TikTok) Herds Its (Drug) Users Into Even More Harmful "Apps"
Links for the day
Guardian Digital, Inc (linuxsecurity.com) Uses Microsoft-Controlled Front Groups and LLM Slop in Order to Spread Microsoft-Directed Anti-Linux FUD
Microsoft garbage likely produced by Microsoft LLMs, spewing out Microsoft FUD
Likely Fake 'Article' About Linux Mint 22.1
BetaNews fired up its plagiarism machine (LLM)
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, January 16, 2025
IRC logs for Thursday, January 16, 2025