06.24.15

Microsoft is Again Demonstrating That It is Not Interested in Making Windows Secure

Posted in Microsoft, Security, Windows at 9:33 am by Dr. Roy Schestowitz

“Our products just aren’t engineered for security.”

–Brian Valentine, Microsoft executive

Michael S. Rogers
“I don’t want a back door. I want a front door.” — Director of the NSA (2015)

Summary: Microsoft decides to leave Windows with flaws in it, claiming that fixing the flaws would not be worth Microsoft’s resources

FOR A LONG period of time (3 months or more) Microsoft refused to fix a serious flaw in Windows. It only did something about it when it was too late because the public had found out. Microsoft blamed the messenger.

This is not the exception, it’s pretty much the norm. Some Windows flaws exist for as long as 15 years, but they have no "branding" like a name or a logo.

“People with access to the world’s biggest stockpile of nuclear weapons still use Windows XP.”“Dustin Childs says the company couldn’t get Microsoft to patch an IE exploit,” says this new report, pointing to HP’s Web site. “Since Microsoft feels these issues do not impact a default configuration of IE,” Childs wrote, “it is in their judgment not worth their resources and the potential regression risk” (a lot more damning information can be found in the HP Security Research Blog).

Given Microsoft’s cooperation with the NSA on back door access, this hardly surprises us. Even more sad than this is a new report about the US Navy wasting millions in taxpayers’ money to run an operating system initially released in 2001. People with access to the world’s biggest stockpile of nuclear weapons still use Windows XP. As IDG put it:

The U.S. Navy is paying Microsoft millions of dollars to keep up to 100,000 computers afloat because it has yet to transition away from Windows XP.

After the Office of Personnel Management (OPM) disaster (Windows involved), we oughtn’t be too shocked about some nuclear disaster happening because of dependence of ancient Windows. █

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.

Permalink Mail Send this to a friend

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New

Pretending EPO Corruption Stopped Under António Campinos When It is in Fact a Lot Worse in Several Respects/Aspects (Than It Was Under Benoît Battistelli)

Germany's eagerness to keep Europe's central patent office in Munich (and to a lesser degree in Berlin) means that politicians in the capital and in Bavaria turn a blind eye to abuses, corruption and even serious crimes; this won't help Germany's image in the long run
IRC Proceedings: Saturday, March 28, 2020

IRC logs for Saturday, March 28, 2020
Links 28/3/2020: Wine 5.5 Released, EasyPup 2.2.14, WordPress 5.4 RC5 and End of Truthdig

Links for the day
IRC Proceedings: Friday, March 27, 2020

IRC logs for Friday, March 27, 2020
The Fall of the UPC - Part VIII: Team UPC Celebrates Death, Not Life

Team UPC plays psychological games now; it is trying to twist or spin its defeat as good news and something to be almost celebrated; it is really as illogical (and pathetic) as that sounds
Links 27/3/2020: GNU/Linux Versus COVID-19 and Release of GNU Guile 3.0.2

Links for the day
When Your 'Business' is Just 'Patent Portfolio'

Hoarding loads of patents may seem impressive, but eating them to survive is impossible if not impermissible
LOT Network is a One-Man (Millionaire's) Operation and Why This Should Alarm You

The ugly story of Open Invention Network (OIN) and LOT; today we take a closer look at LOT and highlight a pattern of 'cross-pollination' (people in both OIN and LOT, even at the same time)
Faking Production With Fake Patents on Software

The EPO with its illegal guidelines (in violation of the EPC) can carry on churning out millions of fake patents that European courts would only waste time on and small companies be blackmailed with (they cannot afford legal battles)
With the Unified Patent Court (UPC) Out of the Way Focus Will Return to EPO Corruption

Expect the European Patent Office (EPO) to receive more negative attention now that the ’cause’ of UPC is lost and there’s no point pretending things are rosy
IRC Proceedings: Thursday, March 26, 2020

IRC logs for Thursday, March 26, 2020
Links 27/3/2020: qBittorrent 4.2.2, Krita 4.2.9, pfSense 2.4, Bodhi Linux 5

Links for the day
IRC Proceedings: Wednesday, March 25, 2020

IRC logs for Wednesday, March 25, 2020
Still Work in Progress: Getting Those 2,851 Pages of Police Report About Arrest for Pedophilia in Home of Bill Gates

It’s extremely difficult to get those police records, which were requested exactly one day before the media started attacking Richard Stallman (associating him with pedophiles based on a deliberate distortion)
Links 26/3/2020: Plasma Bigscreen, New Kubernetes, Fedora's New Identity and Bodhi Linux 5.1.0

Links for the day
Guest Article: Window Managers, Github and Software Disobedience

"Walking away from monopolies is the essence of freedom"
Links 25/3/2020: LLVM 10.0.0 and UCS 4.4-4 Released, WordPress 5.4 RC4

Links for the day
'Team UPC' Last Week

The looks on Team UPC's faces 5 days ago (before and after the 9:30AM announcement)
The Fall of the UPC - Part VII: Lies and Revisionism About the Reasons for the UPC's Ultimate Demise (to Leave the Door Open for More Failed Attempts)

The media was lying in a hurry, in a coordinated effort to distort the meaning of the FCC's decision or belittle the impact of this decision; Techrights will carefully watch and respond to these lies
IRC Proceedings: Tuesday, March 24, 2020

IRC logs for Tuesday, March 24, 2020
Linux Foundation Became Anti-Linux, Run by Microsoft People to Serve Microsoft's Agenda

Microsoft is taking over the bodies of healthy projects, infecting the hosts in order for them to become slaves of the proprietary parasite; there's still no (known) cure, but we're familiar with the symptoms
Microsoft Continues to Attack and Steal From the Open Source/Free Software Communities

Microsoft cannot be trusted and there's no "new Microsoft," as another fairly new story serves to show
Targeted Attack Leveraging FSF Servers

Targeted by a determined and persist perpetrator, I've received over 20,000 E-mails. And the weapon of choice was the FSF's infrastructure, remotely misused against yours truly.
If We Weren't Silencing Founders, Critics and People We Just Don't Like

"In the long run, history is rarely very kind to tyrants, especially the ones who did little more than lie to people and demand things that served no real purpose."
The Fall of the UPC - Part VI: Drowning in Material

We're starting to see few good reports on the subject of UPC being rejected by the constitutional court of Germany; we also have a rapidly-growing 'buffer' of rather blatant examples of disinformation (which we'll tackle as best we can)
FFII: EU Software Patent Court Stopped by Constitutional Court, Patent Industry Will Try Again

The third attempt to validate software patents in Europe via a central patent court (UPC) has been stopped by the German Constitutional Court. The Unified Patent Court (UPC) would have given the keys of the kingdoms to the patent industry, and the last word over software patentability. FFII predict that the patent industry will continue to push for an UPC v2.0.
Links 24/3/2020: Alpine 3.11.5, MythTV 31.0 and Tails 4.4.1

Links for the day
IRC Proceedings: Monday, March 23, 2020

IRC logs for Monday, March 23, 2020
Links 23/3/2020: Linux 5.6 RC7, Audacious 4.0, and Git 2.26 Released

Links for the day
The Fall of the UPC - Part V: Pretending That Opponents of the Unitary Patent Simply Don't Exist

It's difficult if not totally impossible to find articles from impartial journalists -- let alone from actual scientists -- about the failure of the Unitary Patent and UPC Agreement (UPCA)