04.27.15

The Unethical Business of Selling Fear of Free/Libre Software Bugs (Black Duck, Sonatype, and Symantec)

Posted in Free/Libre Software, FUD, Google, Marketing at 4:02 am by Dr. Roy Schestowitz

Snake oil

Summary: The spreading of fear of Free/Open Source software (FOSS) is now a growth industry, so proprietary opportunists are eager to capitalise on it, even if by distorting the truth

EARLIER THIS month some Black Duck publicity stunt fooled some journalists into promotion of Black Duck FUD. We saw that persisting until April 20th (one week ago), even in pro-FOSS sites (blogs) that did this days later. IDG made a slideshow out of it. Well, sadly, it cites Black Duck, which tries to sell proprietary software under the guise of Free software promotion.

In reality, Black Duck is not just selling fear of GPL violations — the original 'product' which was 'sold' by this firm. It’s a two-faced firm masquerading as pro-FOSS whilst attacking FOSS. Black Duck and Duck Duck Go both give a bad name to ducks. They pretend to be FOSS or at least openwash themselves (a lie) and they pretend to defend users (also a lie, they merely exploit or monetise users).

In other news, Sonatype reportedly compared FOSS to “Public Health Hazard”. To quote one report: “That’s the assessment of Joshua Corman, CTO at Sonatype, who took to the stage at RSA 2015 to characterize insecure software as a kind of “cyber-asbestos,” widely deployed, inherently dangerous, and eventually carrying an astronomical cost in terms of human suffering and cost to clean up because …we just didn’t know how dangerous it was at the time when we embraced it.”

So Sonatype is again on an anti-Free software binge. It is not the first time (see examples in [1, 2, 3, 4]) and it is easy to see why it is doing this. It’s trying to sell its products, which are nothing to do with Free software. Sonatype’s track record of FOSS FUD is expanding and may one day rival the Microsoft-connected Symantec, which continues its FUD campaign against Android, generating misleading headlines such as “One in Five Android Apps Is Malware” in this case. When people install software from Google Play, then there is virtually no risk, but don’t expect Symantec to properly analyse this. Symantec sells insecurity. To quote the misleading article: “According to Symantec’s latest Internet Security Threat Report, “17 percent of all Android apps (nearly one million total) were actually malware in disguise.” In 2013, Symantec uncovered roughly 700,000 virus-laden apps.”

But where are they found? Are any accessible to most Android users? No, so Symantec is defining it wrongly and framing the issue by saying that many applications’ “primary purpose is to bombard you with ads.” That’s not malware, but they made up a new word.

Google has already responded mostly by removing apps with too many ads (that’s not malware) and saying that Android “antivirus” is snake oil, as Google said before (responding to the likes of Symantec several years ago).

Android now has an industry of snake oil around it because there is a lot of market share there. The same can be said about FOSS, which is why Black Duck and Sonatype are busy badmouthing security aspects of it. They’re all just looking for a quick buck; FUD and reputation damage to FOSS are “collateral damage”.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

This post is also available in Gemini over at:

gemini://gemini.techrights.org/2015/04/27/growth-industry-of-fud/

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. In 2021 the EPO Works for Parasites Instead of Scientists (and It Cannot Even Hide That Anymore)

    Europe's second-largest institution is working for those who attack instead of create (or those who attack actual creators, with lousy and sketchy patents as ammunition)



  2. Links 1/3/2021: Manjaro ARM 21.02 and First Linux 5.12 RC Released

    Links for the day



  3. IRC Proceedings: Sunday, February 28, 2021

    IRC logs for Sunday, February 28, 2021



  4. On Gangstalking and Victim-Blaming

    Reprinted with permission from Daniel Pocock



  5. If the Web Can Be Increasingly Replaced (or Complemented) by Gemini and IPFS Etc., Then Large Monopolists Will Try to Dominate Those

    Monopolists and sociopaths won't be clapping and cheering for whatever stands a chance of replacing the Web (or Big Banks); if they ever embrace those replacements, it'll be to dominate and in turn undermine these



  6. Links 28/2/2021: Nitrux 1.3.8 and Kraft 0.96

    Links for the day



  7. Techrights Over 3 Internet Protocols and From the Command Line, Using Either Curl/Wget/Text Editor (Over WWW) or IPFS or Gemini

    A quick demo of how Techrights can be accessed without a browser, either over gemini:// or over http://



  8. The Command Line for Weather and Football Scores, Among Other Stuff

    A lot of stuff can be done from the command line and productivity (not to mention privacy) enhanced by automation and scripting over the Web (or even Gemini, as we shall show in a future video)



  9. You Know Gemini Space is Getting a Lot Bigger When You Need to Implement DDOS Protection

    Techrights is currently working on tools or programs that help detect and respond to DDOS attacks (or abusive over-consumption of pages) over gemini://



  10. The Fall of The Register

    A word of caution about The Register, a British publisher that nowadays does a lot of reputation laundering for Microsoft and Bill Gates (instead of news about actual technology, as opposed to clown computing, big brands, and oligarchs)



  11. IRC Proceedings: Saturday, February 27, 2021

    IRC logs for Saturday, February 27, 2021



  12. Links 27/2/2021: IPFS 0.8, OnionShare 2.3.1, and New Stuff in KDE

    Links for the day



  13. The Internet After Social Control Media (and Maybe After the World Wide Web Too)

    There seems to be a growing trend of protests and backlash against centralised Internet disservices; there's also growing dissatisfaction over bloat and spyware, which the Web rendered a 'norm'



  14. SCO's Darl McBride is Finished (Bankruptcy)

    Some news about the site and about the long-forgotten SCO, whose infamous old (and sacked) Darl McBride (responsible for decade-long attacks on Linux) loses everything, based on fresh legal documents



  15. IRC Proceedings: Friday, February 26, 2021

    IRC logs for Friday, February 26, 2021



  16. Links 26/2/2021: Wine 6.3, Genode OS Framework 21.02

    Links for the day



  17. Links 26/2/2021: GNU Poke 1.0 is Out and Rocky Linux Leaves Microsoft GitHub

    Links for the day



  18. Microsoft's Status in Web Servers is So Bad That It Has Fallen Off Charts, is Now Partly Delisted

    In several categories or criteria Microsoft is no longer even listed by Netcraft; the share has become rather minuscule during the pandemic, which convinced more companies to explore expense-cutting moves



  19. We Take Away Your Freedom for Your Own Safety...

    People are herded like cattle and protest/dissent will be demonised as part of the new norm; what will be the cost of the pandemic and will resistance to the status quo ever be permitted to resume?



  20. EPO President Pushes Illegal Software Patents in South America (Over the Telephone With a Misleading New Puff Piece)

    The EPO's "news" section has become worse than a form of distraction (from the EPO's internal rot); it celebrates illegal and unlawful practices, spreading them to other continents



  21. The Free Software Foundation Warns Against Using Twitter

    Richard Stallman said Twitter was OK because it was possible to use it without proprietary software; that's no longer the case, so the Free Software Foundation (FSF) speaks out against it. It speaks about it more than 3 months after the problem became a known one and also an irreversible one (maybe Twitter would have reversed the decision if the media or the FSF actually spoke about it early enough).



  22. IRC Proceedings: Thursday, February 25, 2021

    IRC logs for Thursday, February 25, 2021



  23. Stéphane Bortzmeyer Explains Gemini Protocol (February 2021)

    A recent talk from Stéphane Bortzmeyer about Gemini and what it is for (or why)



  24. Links 26/2/2021: Istio 1.7.8 Announced, Blender 2.92, Firebird 3.0 Language Reference, FSF Against Twitter

    Links for the day



  25. Special Thanks to Mogz

    Credit where it's due to Mogz



  26. Modifying WordPress to Include Gemini Links in All Articles (Assuming a Canonical URL Form)

    In order to promote the departure from the World Wide Web (where possible and suitable; sites with text don't typically need Web-like features) one can promote the analogous pages in one's Gemini capsule; we suggest a way of doing so in WordPress (the most widely used CMS)



  27. Links 25/2/2021: RHEL for Open-Source Infrastructure, GNOME 40 Beta, LXPanel 0.10.1

    Links for the day



  28. IBM and Qt Don't Understand Free Software and They Now Impose Terms and Conditions on Who Qualifies for Use of Free Software Free of Charge

    IBM and Qt Don't Understand Free Software and They Now Impose Terms and Conditions on Who Qualifies for Use of Free Software Free of Charge



  29. Techrights Gemini Capsule, Now With Over 35,000 Pages and Files

    Blog posts combined with static (plain text) files are now 36,000+ in number, just for Gemini protocol alone; that number keeps growing as our conversion proceeds and evolves (our software will be released under terms of the AGPLv3)



  30. Eventually, or Hopefully, Many People Will Come Back to What the Web Used to Be (Or Web Alternatives More Like the 'Old' Web)

    With RSS feeds making a comeback and a resurgence of personal blogs we can take back the Web from a cabal of tech/Internet giants and social control media, censored, curated and spied on by oligarchy


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts