Bonum Certa Men Certa
Ana Isabel Carvalho and Ricardo Lafuente on Designs Beyond the GUI | One Month Passes, Only Comments in a Blog Post Actually Contain Accurate Information About EPO and UPC

Corporate Media Slanting Microsoft's Shipping of Racist Malware as 'Protestware' (and an 'Open Source' Issue)

Video download link | md5sum 70ea0f9ea4cf595dea1913731f6ca4c3 Protestware is Newspeak for Malware Creative Commons Attribution-No Derivative Works 4.0



Summary: After dozens of highly misleading 'news' pieces blaming "open source" for the actions of malicious/misguided Brandon*, shipping malware to many people through Microsoft servers, it is probably time to explain what really happened; it's part of a pattern of blame-shifting by Microsoft and so far this year we've seen many waves of dishonest Fear, Uncertainty, Doubt (FUD) tactics utilised for dramatisation and soon weaponised to create/reinforce a stigma

THE noise cancellation has been set up and now we should be able to make videos more rapidly, albeit much more is left to be configured later (like a proper Web browser that blocks ads).



This video is a belated repsonse to last month's FUD that even reached SJVN at ZDNet. The media was too eager to misportray and misattribute a "supply chain" (typically means Microsoft) attack. It's really quite ridiculous, but we haven't -- until now at least -- done a proper rebuttal. It may seem like old news already, but it's never too late to correct falsehoods. There's also racism involved.

"If the media fails to earn people's trust, this is why."Basically, in recent years we keep seeing NPM issues blamed on the victims, or on the recipients who got malware infections from Microsoft's own servers. The media never bothers mentioning that Microsoft controls NPM and is therefore responsible for it. We'll certainly get back to this topic some time in the future, as part of our Microsoft GitHub Exposé series.

We'd rather not link to any of the misleading pieces in this case (we found not a single accurate one, or any piece that got the narrative/culpability right), but it is explained briefly in the video above. If the media fails to earn people's trust, this is why.

Brandon Sanderson No/Yes: Malware? No! Let's call it protestware
What is it, Brandon?



____ In the words of bnchs in IRC, "Brandon turned his library into malware for nothing but to seem like a "hero" to people; it didn't take too long for Snyk, and eventually CVE, to catch on to his hidden malware [and] after people discovered it, he has attempted to delete the commit and any evidence of his malware [...] of course, it was too late [...] but I personally wouldn't trust NPM." (NPM is Microsoft)
Ana Isabel Carvalho and Ricardo Lafuente on Designs Beyond the GUI | One Month Passes, Only Comments in a Blog Post Actually Contain Accurate Information About EPO and UPC

Recent Techrights' Posts

One Person's Take on Jef Spaleta, the New Fedora Project Leader
"With a little searching, I wonder what else may be found regarding Microsoft."
LLM Slop Has Virtually Killed unixmen.com and Many Other Sites
There's no longer any incentive to write real articles in there
Taking a Moral Stand Against Strategic Lawsuits Against Public Participation (SLAPPs) and the Worst Offenders/Facilitators
Any other stance would sidle with moral depravity or moral hazard
France: Apple and Microsoft Down, GNU/Linux Up to New Record Levels
How will tariffs against France impact things in the coming months?
 
In Iraq, Windows 3.1 (Percent)
There's also zero
Links 06/04/2025: Flood, Cool Gemini Capsule, and Long Form
Links for the day
Links 06/04/2025: Science, Politics, and Pricier Goods
Links for the day
Sharp Declines for Microsoft Windows in Bangladesh (Pop. ~175,000,000), Big Gains for GNU/Linux
Microsoft Windows has been having a really hard time in poor countries
Links 06/04/2025: Fake Reviews, Privatisation Heists, and "AI" as Smokescreen for Impoverishing Humans
Links for the day
Links 06/04/2025: Many New Acts of Repression and Elements of Financial Depression
Links for the day
In Qatar GNU/Linux Rose From Under 1% to Over 4% in Two Years (or Over 5% If Counting ChromeOS)
It's a big improvement compared to what we saw last year
LLM Scrapers Are a Nuisance, But They're Also a Reminder It's Time to Make Your Site Static
Perhaps the best protection is the ability to endure surges
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, April 05, 2025
IRC logs for Saturday, April 05, 2025
Links 06/04/2025: Attacks on Education, Fake Patents, and Fake (Illegal) Patent Courts
Links for the day
Open Source Initiative (OSI) Privacy Fiasco in Detail: What Was Reported to the California Privacy Protection Agency (CPPA)
We hope to finish this whole lot within a week, then move on to election, lobbying etc.
Links 05/04/2025: Tariffs Backfiring, YouTuber Arrested, X/Twitter Set to be Fined
Links for the day
Gemini Links 05/04/2025: Offline is For Everyone, Copyright Colonialism, and More
Links for the day
Links 05/04/2025: TikTok Unsold (Still), Royal Society is Dead
Links for the day
Techrights Will Spend the Next Few Years Writing a Lot About Strategic Lawsuits Against Public Participation (SLAPPs)
It's a growing problem
The State of EPO Staff's Health in Rijswijk or The Hague
We're going to cover the EPO some more later in the month
NVIDIA Corp Lost 36% of Its "Value" Since Cheeto Inauguration, But "Gen Hey Hi" (GenAI) is Totally Not a Bubble
Selling loads of unneeded hardware based on hysterical hype; like selling shovels during a Gold Rush
GNU/Linux Growing in East Asia, Windows by Default No More?
GNU/Linux is now on the shelf
Slopwatch: Anti-Linux 'Articles' From Linux-Hostile LLMs
It is almost always negative things and nobody can be held responsible for it except the charlatans prompting the LLMs
Links 05/04/2025: Fentanylware (TikTok) "Sale Looks Highly Imminent" (US), Stock Market Drowning in Panic
Links for the day
Gemini Links 05/04/2025: Moving Plants, No to Smartwatches, RAID Hygiene
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, April 04, 2025
IRC logs for Friday, April 04, 2025
Techrights Has Dealt With More Potent SLAPPs Than Violent Microsofters Begging to Hide What They Did to Women
I became accustomed to SLAPPs
Links 04/04/2025: Fury in South Korea, Flight MH370 Remains Mystery
Links for the day
Gemini Links 04/04/2025: Anger and Raspberry Pi CM4
Links for the day
Links 04/04/2025: LLM Slop Bubble Bursting and Korea Music Copyright Association Bans Slop 'Music'
Links for the day
Traf-O-Data, the Company That Jeffrey Epstein's BFF (Bill Gates) (Co)Founded 53 Years and Went Out of Business Due to Heavy Losses
Who will die first, Bill or Microsoft?
Why Microsoft's Shares Sank Almost 20% in Recent Months (the Bubble is Imploding)
verified press reports from the past 24 hours
A Note on SimilarWeb
Or why SimilarWeb is meaningless for more than 99% of the sites on the Web
GNU/Linux Rises to Almost 5% in Algeria While Windows Sinks to All-Time Low
GNU/Linux grew tenfold
Where to Get More Gags
A valued reader recommended that to us
Links 04/04/2025: Tech Stock (Inc. GAFAM) Fall, Google Pretends to Do End-to-End Encrypted Emails (With Google in Control)
Links for the day
IBM Said to be Shutting Down Offices or Sites in the United States
the press can no longer avoid admitting that IBM moves many jobs to India
To Participate in Fedora Diversity You Must Use Proprietary Software
Not for the first time either
LLM Slop as Attack Vector on the Reputation of Linux
The attacks on Linux have escalated to information warfare
Yandex About to Be Three Times Bigger Than Microsoft (Bing) in Asia
That's about 60% of the world's population
Gemini Links 04/04/2025: Decoupling Updates, Elaho as Gemini Client
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, April 03, 2025
IRC logs for Thursday, April 03, 2025