EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

07.25.15

Vista 10 (Windows 10) Has NSA Back Doors and Front Doors

Posted in Microsoft, Security, Vista 10, Windows at 2:19 pm by Dr. Roy Schestowitz

Michael S. Rogers
“I don’t want a back door. I want a front door.” — Director of the National Security Agency (NSA), April 2015

Summary: Vista 10 to bring new ways for spies (and other crackers) to remotely access people’s computers and remotely modify the binary files on them (via Windows Update, which for most people cannot be disabled)

MICROSOFT never cared about security. A former Windows manager, Brian Valentine, said explicitly that Microsoft products “just aren’t engineered for security.” Last year we also showed how back in the 1990s Bill Gates and his staff had already collaborated quite intimately with the NSA, well before Snowden’s NSA and GCHQ leaks helped confirm this (with hard evidence and subsequently media reports).

The Apache Software Foundation (ASF), which is unfortunately headed by a guy from Microsoft, is going into bed with the NSA right now, despite the negative publicity that may accompany/come with such a move. Microsoft, much to our surprise, is still working with the NSA on Windows, and it does this also for Vista 10. One new article about Microsoft’s purchase of an Israeli (i.e. spy-friendly as we explained says ago) company says that “[a] big reason for this is the company’s collaboration with the National Security Agency (NSA).”

“Yes, Microsoft still keeps the NSA in the picture.”Microsoft is still thinking that enough people foolishly believe NSA collaboration is ‘for security’ rather than for ‘national security’, i.e. back doors. A Windows-powered site reminded us some days ago that NSA “worked with Microsoft on security aspects of the Windows 7 operating system and later for Windows 8 and 10.”

Yes, Microsoft still keeps the NSA in the picture. This actually surprised us because it’s a PR disaster. Why does Microsoft still want to be seen working in cahoots/collusion with the NSA? In proprietary software, back doors or “national security”, i.e. not real security, are the cause of many costly issues. Software is designed to be penetrable rather than secure. Is there anyone who still honestly thinks that Vista 10 won’t have back doors? Microsoft never stopped its relationship with the NSA and it is obviously still working with the NSA, despite knowing the negative publicity this can bring. A Darwin Award goes out to anyone who still thinks that Microsoft is not helping the NSA exploit its software (because “national security” and other such excuses), despite the Snowden-provided documents that show exactly that.

Earlier today the developer of GNU Telephony wrote that at Microsoft “they created the perfect environment for such demands to be met, forced updates is a front door for govt malware and spying” [and indeed, as The Register revealed last week, they had even removed the ability to stop/block these updates in most “editions”. Over ten years ago it was reported on the Web that even when you toggle off automatic updates Microsoft still does it.]

Looking back at news only a few days old, HP has reported 4 new vulnerabilities in Internet Explorer, and not for the first time. To quote IDG: “HP’s Zero Day Initiative (ZDI) doesn’t cut much slack with its 120-day disclosure policy. When ZDI knocks on your door and says you have a security hole, you get 120 days to fix it or risk full public disclosure. That’s what happened — again. With ZDI and Microsoft — again. Over Internet Explorer — again.”

“The only way to avoid MSIE is to ditch Windows since it is built-in and impossible to remove” iophk said to us. Will Hill wrote: “There are still vendor supplied IE6 specific software that will not work outside of IE. One of my vendors at work told me one of their pieces of software might work with IE8 but no other browser, including the IE 11 that Microsoft had shoved onto most of the computers. This just highlights the fact that vendors who use Microsoft don’t care about their customers and that Microsoft does not care about anyone.”

“In proprietary software, back doors or “national security”, i.e. not real security, are the cause of many costly issues.”Going only 3 days back, there is this news that Hacking Team helps governments take over Microsoft Windows through back/bug doors, exploiting fonts. “Unpatched systems,” wrote Paul Hill, “can be affected if the user opens a document of webpage that contains an embedded OpenType font file. As the font drivers in Microsoft systems runs in kernel mode it means that an attacker could gain access to the entire system with the ability to add and remove programs and create new user accounts with admin privileges.”

Windows recently suffered from other font-related holes, and not for the first time, either. It’s an easy access point for the NSA into Windows (Microsoft tells the NSA before patching such holes). All versions of Windows are vulnerable and they have all been found vulnerable (without fixes) for decades.

What will the world look like after this back doors ‘leader’ and ‘champion’, Microsoft, is gone for good? Well, we need to ensure that NSA partners like Red Hat [1, 2, 3, 4, 5] don’t compromise GNU/Linux, too. Social engineering, bribes, blackmail, anonymous patches, etc. are the classic tricks of this trade.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. António Campinos Takes EPO Waste and Corruption to Unprecedented Levels and Scale

    The “B” word (billions) is thrown around at Europe’s second-largest institution because a mischievous former EUIPO chief (not Archambeau) is ‘partying’ with about half of the EPO’s all-time savings, which are supposed to be reserved for pensions and other vital programmes, not presidential palaces and gambling



  2. Links 15/6/2019: Astra Linux in Russia, FreeBSD 11.3 RC

    Links for the day



  3. Code of Conduct Explained: Partial Transcript - August 10th, 2018 - Episode 80, The Truth About Southeast Linuxfest

    "Ask Noah" and the debate on how a 'Code of Conduct' is forcibly imposed on events



  4. Links 14/6/2019: Xfce-Related Releases, PHP 7.4.0 Alpha

    Links for the day



  5. The EPO is a Patent Troll's Wet Dream

    The makers of software and games in Europe will have to spend a lot of money just keeping patent trolls off their backs — a fact that seems to never bother EPO management because it profits from it



  6. EPO Spreading Patent Extremists' Ideology to the Whole World, Now to South Korea

    The EPO’s footprint around the world's patent systems is an exceptionally dangerous one; The EPO amplifies the most zealous voices of the patents and litigation ‘industry’ while totally ignoring the views and interests of the European public, rendering the EPO an ‘agent of corporate occupation’



  7. Guest Post: Notes on Free Speech, and a Line in the Sand

    We received this anonymous letter and have published it as a follow-up to "Reader's Claim That Rules Similar to the Code of Conduct (CoC) Were 'Imposed' on LibrePlanet and the FSF"



  8. Links 13/6/2019: CERN Dumps Microsoft, GIMP 2.10.12 Released

    Links for the day



  9. Links 12/6/2019: Mesa 19.1.0, KDE neon 5.16, Endless OS 3.6.0 and BackBox Linux 6

    Links for the day



  10. Leaked Financial 'Study' Document Shows EPO Management and Mercer Engaging in an Elaborate “Hoax”

    How the European Patent Office (EPO) lies to its own staff to harm that staff; thankfully, the staff isn't easily fooled and this whole affair will merely obliterate any remnants of "benefit of the doubt" the President thus far enjoyed



  11. Measuring Patent Quality and Employer Quality in Europe

    Comparing the once-famous and respected EPO to today's joke of an office, which grants loads of bogus patents on just about anything including fruit and mathematics



  12. Granting More Fundamentally Wrong Patents Will Mean Reduced Certainty, Not Increased Certainty

    Law firms that are accustomed to making money from low-quality and abstract patents try to overcome barriers by bribing politicians; this will backfire because they show sheer disregard for the patent system's integrity and merely lower the legal certainty associated with granted (by greedy offices) patents



  13. Links 11/6/2019: Wine 4.10, Plasma 5.16

    Links for the day



  14. Chapter 10: Moving Forward -- Getting the Best Results From Open Source With Your Monopoly

    “the gradual shift in public consciousness from their branding towards our own, is the next best thing to owning them outright.”



  15. Chapter 9: Ownership Through Branding -- Change the Names, and Change the World

    The goal for those fighting against Open source, against the true openness (let's call it the yet unexploited opportunities) of Open source, has to be first to figuratively own the Linux brand, then literally own or destroy the brand, then to move the public awareness of the Linux brand to something like Azure, or whatever IBM is going to do with Red Hat.



  16. Links 10/6/2019: VLC 3.0.7, KDE Future Plans

    Links for the day



  17. Patent Quality Continues to Slip in Europe and We Know Who Will Profit From That (and Distract From It)

    The corporate media and large companies don't speak about it (like Red Hat did before entering a relationship with IBM), but Europe is being littered and saturated with a lot of bogus software patents -- abstract patents that European courts would almost certainly throw out; this utter failure of the media to do journalism gets exploited by the "big litigation" lobby and EPO management that's granting loads of invalid European Patents (whose invalidation goes underreported or unreported in the media)



  18. Corporate Front Groups Like OIN and the Linux Foundation Need to Combat Software Patents If They Really Care About Linux

    The absurdity of having groups that claim to defend Linux but in practice defend software patents, if not actively then passively (by refusing to comment on this matter)



  19. Links 9/6/2019: Arrest of Microsoft Peter, Linux 5.2 RC4, Ubuntu Touch Update

    Links for the day



  20. Chapter 8: A Foot in the Door -- How to Train Sympathetic Developers and Infiltrate Other Projects

    How to train sympathetic developers and infiltrate other projects



  21. Chapter 7: Patent War -- Use Low-Quality Patents to Prove That All Software Rips Off Your Company

    Patents in the United States last for 20 years from the time of filing. Prior to 1994, the patent term was 17 years from when the patent was issued.



  22. The Linux Foundation in 2019: Over 100 Million Dollars in Income, But Cannot Maintain Linux.com?

    Today’s Linux Foundation gets about 0.1 billion dollars per year (as explained in our previous post), so why can’t it spend about 0.1% of that money on people who write for and maintain a site that actually promotes GNU/Linux?



  23. Microsoft and Proprietary Software Vendors a Financial Boon for the Linux Foundation, But at What Cost?

    The Linux Foundation is thriving financially, but the sources of income are diversified to the point where the Linux Foundation is actually funded by foes of Linux, defeating the very purpose or direction of such a nonprofit foundation (led by self-serving millionaires who don't use GNU/Linux)



  24. The Linux Foundation as a Facilitator of Microsoft's Abduction of Developers (for GitHub, Azure, Visual Studio and Windows)

    There’s a profoundly disturbing pattern; in a rush for influence and money the Linux Foundation inadvertently (or worse — consciously and deliberately) paved the way to Microsoft’s more modern version of Embrace, Extend, Extinguish (EEE)



  25. Links 8/6/2019: FreeBSD 11.3 Beta 3, Git 2.22.0 and IPFire 2.23

    Links for the day



  26. Microsoft Peter is a Pedophile, Arrested Without Bail

    "Microsoft Peter" turns out to be a very sick man, much like people who apply for a job at Microsoft, knowing the company's dirty dealings and crimes



  27. Links 7/6/2019: IceWM 1.5.5, IBM Layoffs, Kdenlive 19.04.2

    Links for the day



  28. This Week's US Senate Hearings on Patents Are a Farce, Just as Expected

    With few exceptions like the EFF, Senate hears testimonies from stacked panels (full of lobbyists and think tanks), set up for the sole purpose of misleading Senate and helping them buy a law



  29. António Campinos Given an Extension to Prove He Respects the Rule of Law

    President Campinos managed to avert a strike coinciding with the next meeting of the Administrative Council; but that might only be temporary a reprieve



  30. Lawlessness at the EPO Means That Software Patents Are Still Being Granted and EPO Judges Have Their Hands Tied

    The EPO is making it virtually impossible to stop the illicit patenting of algorithms; even the EU nowadays participates in this EPC-violating agenda


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts