Bonum Certa Men Certa

The Huge, Collateral Cost of Microsoft's Collusion With Five Eyes Espionage Agencies

Michael S. Rogers "I don’t want a back door. I want a front door." -- Director of the National Security Agency (NSA), April 2015



Summary: Microsoft Windows continues to be inherently insecure, at the very least because Microsoft worked to make intrusion possible by shady agencies that operate outside the law (much like cyber gangs)

IT IS no secret that Microsoft works closely with the NSA and other Five Eyes agencies. It is also no secret that Stuxnet was developed by those agencies and targets Microsoft Windows. After it had targeted Iran it sort of 'spilled out' and caused many billions in damages all around the world (we covered examples). Having gotten out of hand, Microsoft's back doors for espionage agencies were soon exploited also by the "bad guys" (not that espionage agencies can be described as "good guys"). There is no substitute for absolute, scientifically-verifiable security and strong encryption. People who sell "Golden Key" dreams are non-technical war-loving liars. Based on this new article (Dan Goodin finally targets Microsoft for a change, having repeatedly bashed just Free software), a new Windows "exploit is reminiscent of those used to unleash Stuxnet worm." To quote Goodin: "The vulnerability is reminiscent of a critical flaw exploited around 2008 by an NSA-tied hacking group dubbed Equation Group and later by the creators of the Stuxnet computer worm that disrupted Iran's nuclear program. The vulnerability—which resided in functions that process so-called .LNK files Windows uses to display icons when a USB stick is plugged in—allowed the attackers to unleash a powerful computer worm that spread from computer to computer each time they interacted with a malicious drive."



"GNU/Linux is designed for security from the ground up and if one does not believe it, one can freely scrutinise the code."Any design that lets a USB device trigger commands at such high levels is a design that's clearly not designed by security professionals. Many other issues tied to this design have been reported for over a decade and Microsoft is not fixing it. According to last year's explosive report, titled "N.S.A. Devises Radio Pathway Into Computers", the NSA "relies on a covert channel of radio waves that can be transmitted from tiny circuit boards and USB cards inserted surreptitiously into the computers."

The media may go on about how Microsoft no longer delivering security patches is an issue, but as Microsoft tells the NSA about holes before patching them, what difference does it make? All versions of Windows, no matter how up to date they are, are vulnerable. It's not an accident. "Both Microsoft and HP were insistent companies that hadn’t refreshed [Windows Server 2003] after 14 July," said the report, "are exposing themselves to all sorts of security attacks, and that up-to-date patches and firmware are needed."

No, their first mistake is that they use Windows anything (never mind Windows Server, irrespective of the version too). Windows is not designed to be secure. It has back doors and front doors. GNU/Linux is designed for security from the ground up and if one does not believe it, one can freely scrutinise the code.

"The continuous and broad peer-review enabled by publicly available source code supports software reliability and security efforts through the identification and elimination of defects that might otherwise go unrecognized by a more limited core development team."

--CIO David Wennergren, Department of Defense (October 2009)



Recent Techrights' Posts

Microsoft 'Studies' Again? Leon Musolff is Writing Papers With Microsoft.
Even if one can see/find a link to "the study" (in the Bezos-controlled publication), most people won't look any further and just take everything at face value.
Towards GNU World Domination
The FSF led by Geoffrey S. Knauth with his friend Richard Stallman in the FSF's Board [...] Let's encourage people to adopt GNU/Linux. There has never been a better time.
 
Open Source Initiative (OSI) Promoting Microsoft and Proprietary Software Using Microsoft Operatives
Because nothing says "Open Source" like GPL violations facilitated by Microsoft
Another Site Bites the Dust: "Open Source For You" Becoming a Slopfarm (LLM Slop)
What a shame. Another dead site.
Links 23/04/2025: Crackdowns on Dissent, Palin Loses Libel Retrial Against New York Times
Links for the day
Links 23/04/2025: Hard Times and Digital Amnesia
Links for the day
The GNU/Linux Site Formerly Known as "linoxide.com" is Back... as an LLM Slopfarm!
Better for linoxide.com to go offline than to do this
Get Rid of Back Doors, Don't Obsess Over Bounties and Other Corporate PR Stunts (or Needless Reboot Rituals)
Security as a term has mostly lost its meaning due to repeated misuse for many years
Richard Stallman to Speak in Oxford University Exactly a Day From Now
outsourced to GAFAM
Links 23/04/2025: "Hiding Corruption" and "The Cost of Defunding Harvard"
Links for the day
statCounter Helps Visualise Just How Deep in Trouble Microsoft is (Especially in Africa)
Microsoft sabotaged efforts to connect Africans and equip them with GNU/Linux laptops
The Register is Using Linux-Hostile Clickbait in Articles of Linux Proponents
Don't be a "whore" to advertisers, team El Reg
Microsoft Windows in Cyprus Lacking a Future
Most people access the Web there from mobile
Matrix Has a Severe Problem With Illegal Images
If Matrix cannot get the CP problem under control, many projects and people will dump Matrix
Never Try to Justify Strangulation of Women (Not in the US and Not in the UK)
Joint post by Mrs. Rianne Schestowitz and Dr. Roy Schestowitz
Links 23/04/2025: Tesla Profits Plunge 71%, Intel Ready to Lay Off 20% of Staff, Microsoft and IBM Layoffs
Links for the day
Microsoft's Most Profound Issue is That People Moved to 'Mobile' and "App Stores" (Microsoft's Presence There is Negligible)
Expect a wild ride for Microsoft this year
Google News is Amplifying FUD and Lies About Linux (and OpenSSH/SSH) by Promoting Slopfarms With Machine-Generated FUD and Slop Images
Google should know better
Gemini Links 23/04/2025: Librarians, Anubis, and Refactoring a Gemini Capsule
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, April 22, 2025
IRC logs for Tuesday, April 22, 2025
Links 22/04/2025: Ending DEI Policies at Adobe, FTC Sues Uber
Links for the day
RMS is Done at KCL, Next Stop is Oxford
The message of RMS has long resonated well in India
US Government Already Bailing Out OpenAI/Microsoft With "Contracts", As Usual, Back Doors You Cannot Remove Becoming 'a Step Closer' on New PCs (Unless Everyone Acts ASAP)
The next "logical" step towards digital prisons
Microsoft Devises PR Stunts to Distract From Impending Mass Layoffs and Likely Bad Results Preceding Those Mass Layoffs
A "voluntary exit plan"
Gemini Links 22/04/2025: Deaths, HamsterCMS, and More
Links for the day
Links 22/04/2025: FTC v. Meta Trial and Google Remedies
Links for the day
In Turkey, Windows Down Rapidly While GNU/Linux Grows
Although Turkey is in NATO (but not the EU), it cannot quite trust computer systems controlled by the United States
GNOME, Microsoft, and GitHub: The Lack of Reporting on Abusive Colleagues Contributed to Profound Media Vacuum (or Blackout), Now Resorting to SLAPPs
This lack of morality/courage has helped enable further abuse, lining up more victims
Richard Stallman Has Updated His Article on Why "Free Software Is Even More Important Now"
Richard Stallman is about to give a talk here in the UK in a few hours
Microsoft Already Attacks the BSDs as Well (the E.E.E. Way, as Usual)
Bearers of bad news
The Open Source Initiative (OSI) is in Trouble, May Soon be Out of Business
Openwashing needs to end
Microsoft's Debt Grew Over 6 Billion Dollars in the Last Reporting Quarter (Before Inauguration), Expect Worse Next Week When 'Results' Are Disclosed and Mass Layoffs Resume
Microsoft is bleeding. It does not want people to notice.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, April 21, 2025
IRC logs for Monday, April 21, 2025
Richard Stallman Gives Public Talk in London in 7 Hours (Need to Register as Venue Limited to 150 Seats), Public Announcements Begin to Appear
These are not announced weeks or months in advance
Gemini Links 21/04/2025: Remembering Pope Francis, Crystal Simulation
Links for the day
Doing Microsoft's Job. On IBM's Payroll.
today's Red Hat cannot recognise threats even after a head-on collision
Google News is Rewarding Slopfarms, Not Journalism
Don't read junk from chatbots
Teaching GAFAM in Schools is Like Teaching Children to Smoke Tobacco
So suggests an FSF presentation
Richard Stallman, Whose Site is Trusted by Greater Manchester, Has Come to the United Kingdom
He doesn't suck up to the Crown, so he'll never be "knighted"
On Desktops/Laptops in Singapore Does a Fifth of Users Run GNU/Linux?
Probably not, but it's growing fast there
Links 21/04/2025: Fake Ceasefire and Software Patents (Fake Patents) Thrown Out
Links for the day
Companies With Fake Values and a Fake Economic/Financial State (Phony Valuations)
It'll all go up in smoke, eventually
Links 21/04/2025: Microsoft LLM Slop (Plagiarism) Going Out of Control, CT Scans' Cancer Problems Was Underrated
Links for the day
4 Years Ago Freenode Crumbled From Within
there are still hundreds of thousands of users online at any given time
GNOME Has a Long History (Over a Decade) Misusing the Code of Conduct (CoC) to Censor (Cull) Legitimate Technical Criticism
This has nothing to do with manners, it's about control (by cover-up)
Microsoft Has Tainted GNOME, Which Has Key People Acting as a SLAPP Front Against Techrights (Trying to Censor the Site by Extortion and Many Threats)
One common denominator (other than Microsoft salaries) is GNOME, which was led by an actual professional crank until she quit so suddenly months ago
Homeland of Linux Kernel Turning to GNU/Linux?
Adoption of Vista 11 has been relatively low
According to StatCounter, This is What Linux Adoption Looks Like (Based on Web Requests Visible to StatCounter)
How much worse will it get for Microsoft?
Gemini Capsules Still Outsourcing to Certificate Authority Let's Encrypt Now Measured at Less Than 10 (or Less Than 0.3%)
In Geminispace, Let's Encrypt is not commonly used
Twisting Microsoft's Failure (Transmitting Malware) as "SSH Backdoors" and a Linux Problem
Somehow we almost always find that those FUD pieces about "Linux" are based on obvious falsehoods
Vista 11 Has Burned OEMs and Some Move to GNU/Linux
When people can finally avoid Windows (there's no reason to attach it to new PCs) there will be a lot more GNU/Linux users out there
Remember That Microsoft Mass Layoffs Are Imminent Because Its 'Empire' is Falling Apart
European politicians take a long, hard look a Free software
Richard Stallman in the UK This Week, Scheduled to Give Two Public Talks (London and Oxford)
Those talks do not cover the same topics
Gemini Links 21/04/2025: April, Autism, and ASN
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, April 20, 2025
IRC logs for Sunday, April 20, 2025