EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

07.04.15

Microsoft Windows Unsafe at Any Speed, by Design

Posted in Microsoft, Security, Windows at 11:04 am by Dr. Roy Schestowitz

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive

Speed limit

Summary: More timely reminders that Windows is simply not designed to be secure, irrespective of version, status of patching, etc.

GIVEN the exceptionally strong ties between Microsoft and the NSA we shouldn’t be so shocked that Microsoft constantly lets the NSA know how to break into computers with Windows installed on them. That’s a fact.

Samsung, perhaps realising that ‘updating’ Windows (or even ‘upgrading’ it) won’t make it more secure decided to altogether abandon Windows Update. As IDG put it:

This week, it’s Samsung, which has been outed as intentionally disabling Windows Update. According to independent researcher Patrick Barker, he was trying to help a customer figure out why a PC kept randomly disabling Windows Update, which caused the system to be dangerously and continuously vulnerable to open security flaws.

Remember that Windows Update can also be used (or misused) to install new back doors at any time. Richard Stallman has repeatedly warned about the danger of any such mechanism. It’s basically a remote control for one’s PC, where the controller is not the user but the software vendor and potentially crackers (like NSA and the GCHQ, as well as non-government entities). When the article above says “vulnerable to open security flaws” it probably means security flaws that are provably known to cyber criminals not affiliated with governments.

“Remember that Windows Update can also be used (or misused) to install new back doors at any time.”According to Microsoft Peter (Peter Bright), writing about how much of a farce Windows ‘security’ really is might be something that a research student cannot do. To quote the booster:

Willcox’s research investigates ways in which Microsoft’s EMET software can be bypassed. EMET is a security tool that includes a variety of mitigation techniques designed to make exploiting common memory corruption flaws harder. In the continuing game of software exploit cat and mouse, EMET raises the bar, making software bugs harder to take advantage of, but does not outright eliminate the problems. Willcox’s paper explored the limitations of the EMET mitigations and looked at ways that malware could bypass them to enable successful exploitation. He also applied these bypass techniques to a number of real exploits.

The laws here have become so ridiculous that merely pointing out that some piece of software is ‘Swiss cheese’ and ‘easy pickings’ would potentially constitute a violation of the law. Microsoft Peter, writing another article about the failing Xbox business (billions in losses), shows how Microsoft secretly tried to deal with manufacturing flaws that may have led to loss of lives (there is a famous case involving a baby who died after an Xbox-induced house fire).

It often seems like Microsoft can get away with just about anything (surveillance by the back door, house fires etc.) as long as it colludes with the state against citizens. Anyone who still believe that Windows can be made secure (intrusions-resistant) clearly is deluded, or at least misinformed.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Slashdot

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. 10 Reasons Why All This 'Edge for Linux' Coverage is a Total Farce

    The fake hype surrounding "Edge" is an inauthentic hype/buzz campaign made to coincide with anti-Google sentiments spread by Microsoft front/pressure groups



  2. Microsoft's IIS Has Collapsed Again This Past Month (and IIS Will Not and Cannot Survive This Way)

    Netcraft shows that Microsoft's decline further accelerates in the Web servers space; IIS is becoming financially unviable



  3. Links 21/10/2020: Alpine 3.12.1, Tor Browser 10.0.2

    Links for the day



  4. [Meme] US Department of Justice Should Have Taken on Microsoft Again, Not Google

    When lobbying, connections and political sway determine the actions of the American government it's hardly surprising that Bill Gates gets the Trump administration to fight for him (to make him even richer)



  5. [Meme] Banning Words, Gaslighting Volunteers

    What happens when institutions are themselves in violation of a CoC (institutional violation) and massive corporations that fund such institutional violations are defending demonisation of the individual (squashing ‘uncomfortable’ voices, even volunteers’)



  6. IRC Proceedings: Tuesday, October 20, 2020

    IRC logs for Tuesday, October 20, 2020



  7. Links 21/10/2020: $8000 GNU/Linux Desktop, Tails 4.12, Open Infrastructure Foundation and Firefox Release

    Links for the day



  8. Never Feed the Internet Trolls, No Matter How Tempting It Becomes

    The tactics for removing critics of abuse (by framing them as "abusive") have evolved a lot in recent years; the best course of action is to never entertain provocateurs in any way whatsoever (just ignore them, give them no attention which they crave and feed on)



  9. Bill Gates: “I'm Not a Lawyer” (He Dropped Out of College, Where He Studied Law Before and After Breaking the Law Chronically)

    How Microsoft blackmailed other companies into supporting nothing but Microsoft and Windows; Bill Gates repeatedly lied to the interrogators about it, then said "I'm not a lawyer" (IANAL) even though he went to college to become one, just like his father who died last month



  10. Microsoft Has Not Changed Since Being Investigated (and Prosecuted) for Crimes at a Federal Level

    The media keeps telling us a bunch of worthless junk about Gates "saving the world" and Microsoft becoming a "nice" and "gentle" (or "soft") company, but nothing could be further from the truth



  11. Stick a Fork in the Open Source Initiative (OSI). OSI is Dead. Microsoft Bought OSI.

    OSI leadership proudly showing early signs of 'prognosis negative'; the OSI can never and will never recover from this; Microsoft killed it



  12. Links 20/10/2020: OpenZFS 2.0 RC4 and Trisquel GNU/Linux 9.0

    Links for the day



  13. People With God Complex Must Never be Allowed in Positions of Power

    The attack on Linus Torvalds — an attack which at his own expense/peril he fails to recognise/acknowledge — seeks to put both projects that he founded right in Microsoft’s palm



  14. IRC Proceedings: Monday, October 19, 2020

    IRC logs for Monday, October 19, 2020



  15. Corporate Media: GNU/Linux Can Only Succeed If/When Microsoft Dominates Everything Inside It

    The corporate takeover (or handover) of GNU/Linux would not have been possible without complicity of corruptible (bribed) media



  16. Bill Gates Explains How Microsoft and Apple Leverage Software Patents in Their Cross-Licensing Deals (to Perpetuate Duopoly/Shared Monopoly)

    A look back at Apple's and Microsoft's use or misuse of bogus software patents in bargaining (in effect excluding those who have not amassed tens of thousands of patents)



  17. Standards and Choices

    GNU/Linux is a very standards-based platform; having lots of choices (e.g. distros to choose from) isn’t the principal problem — or nowhere near the extent sabotage and illegal tactics by Microsoft have been



  18. IBM's “Emb(RACE)” Campaign is an Insult to History and Historians

    IBM wishes to be seen as some heroic saviour and warrior for black girls; this requires serious if not torturous revisionism to be believed



  19. There Are Too Many Types of Cars...

    "Choice is malicious," say the antagonists



  20. Reversal of Narratives by Internet Trolls (Spinning Reaction to Their Trolling as 'Abuse')

    Organisations that engage in demonisation of people (typically those who expose the abuses of such organisations) somehow evade the standards of Codes of Conduct, as if Codes of Conduct are covertly designed not to protect individuals but to empower those who already have all the powers (or front for powerful people/corporations)



  21. Ongoing (Albeit Secret) Campaign of Patent Extortion Against GNU/Linux Distributions Using Software Patents, Even Expired Ones in Europe

    GNU/Linux distros attacked by software patents, even in Europe where no such patents are supposed to exist (or have any legal bearing)



  22. Links 19/10/2020: Linux 5.9-ck1/MuQSS, Linux Kodachi 7.3

    Links for the day



  23. Java's James Gosling is Wrong. Free Software Advocates Never Suggested or Insinuated That Money-Making Was Ethically Wrong.

    The honorable James Gosling mischaracterises the stance of Free software advocacy, portraying it like it is an issue of money rather than respect for users



  24. Maybe This is What Codes of Conduct Were Made for? Or to Prevent? (Updated)

    When people bemoan the abuse they receive from a so-called 'anti-harassment' team (covering up corporate corruption in a project by ousting people) this is the kind of thing they receive from colleagues or former colleagues



  25. Media Contradicts Itself, Redefines Proprietary Software as 'Open'... for Microsoft

    Proprietary GitHub is being spun as Microsoft going "open" (nothing could be further from the truth) in another EEE-type move with diffusion and confusion



  26. A Critic's Free Software Dictionary by figosdev

    Sarcastic take on often-spoken words in the domain of technology



  27. IRC Proceedings: Sunday, October 18, 2020

    IRC logs for Sunday, October 18, 2020



  28. Links 19/10/2020: OpenBSD 6.8, RapidDisk 7.0.0, Tails 4.11 Reviewed

    Links for the day



  29. The Different Types of Spammy 'Articles' and 'Reviews' Which Have Killed 'Professional Journalism' (Nowadays Mostly SPAM)

    The media has become so rogue that a lot of it is merely an extension of the marketing/PR industry; unless this is corrected, online publishers will fail to earn or maintain any degree of trust



  30. When the Software -- and by Extension Hardware and Network -- Controls the User...

    A distraction-free workflow is more likely to be attained using Free software than without it; in a world with information overload and 'surveillance capitalism' people need to carefully rethink what they do (or have done to them) digitally


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts