Bonum Certa Men Certa

Microsoft Aggression and Deflection (Against Linux)

Video download link | md5sum e6992ceaa55d089f64f07013fd228f56 Microsoft Loves Linux FUD Creative Commons Attribution-No Derivative Works 4.0



Summary: Today we wish to take stock of a bunch of misleading, sensationalist coverage about "Linux"; as usual, Microsoft is connected to that, even more directly than one might expect...

THE TECHNICAL sabotage by Microsoft is easily demonstrable, e.g. in Mesa and in Linux (the "contributions" by Microsoft are to Microsoft, not to Linux, and they promote proprietary surveillanceware, not Software Freedom). In the video above I discuss NTFS in Linux (indirect link to bypass sites we boycott).



"Nothing Microsoft does benefits anyone else,"Ryan said moments ago in IRC, "except for a few odd cases that were usually less than 100 lines anyway. Which someone else probably would have done regardless at some point..."

"They try to minimize the usefulness of their "Linux" work to anyone else, because they don't want to make "Linux" work better except in shackles under their Azure crap."

More importantly, however, so far this week I've seen many Linux-hostile headlines, usually in Microsoft-friendly and/or Microsoft-connected sites which have historically been Linux-hostile.

Ignoring deliberate holes in Microsoft products, such sites would have you believe that Linux is the least secure thing on the entire planet!

As we put it in the latest batch of Daily Links, "while CISA admits Microsoft is full of holes that are actively exploited Microsoft and its faithful media operatives try to shift attention to "Linux" [as we demonstrated a few days ago, linking directly to CISA's site]..."

So what on Earth is going on here? "Microsoft concern-trolling Linux while putting NSA back doors in Windows," to quote our editorial comment? Speaking of actively exploited holes, two months after a patch had been made widely available we see this article. "This was patched a very long time ago," we noted this morning, and "meanwhile, there are dozen of zero-day flaws in Windows that are remotely exploitable, not local privilege escalation..."

So it seems like there might be distraction going on. And maybe there's more to it than meets the eye...

Not only is it very hard for a malicious, unknown actor to actually leverage such a bug; it's also hard to prove that Microsoft manipulates the media consciously in this case. We'd need to see leaked communications to actually prove such an assertion.

The net effect is the same and Microsoft staff now feeds the media with anti-Linux talking points. The stories are run by moles of the company, Microsoft-sympathetic 'gurus' who have moreover infiltrated the Linux Foundation (an organisation that nowadays ACTIVELY PARTICIPATES in such anti-Linux campaigns of semi-false talking points).

This keeps happening. We see it once in a few months, and this time it culminates in "old news" being rerun (about a bug properly patched more than 50 days ago [1, 2, 3, 4] and before it was even known to the general public).

The real problem, according to CISA, is Microsoft. But CISA's "blog" almost never mentions "Microsoft". It just maintains a catalogue many Microsoft flaws.

"If there is a problem affecting non-Microsoft systems," an associate told us today, "then that is unusual and therefore news. If there is a remote exploit in the wild being actively exploited against Microsoft systems, that is the normal situation and thus not news."

Towards the end of the video I show this new blog post from Debian's Russell Coker, noting that Microsoft gives the NSA et al direct access to PCs, so no "security" measures from Microsoft should be taken seriously, to quote the latest Daily Links.

To quote Ryan, who is a former Microsoft MVP: "Local Privilege Escalations are bugs, yes, but they are of low concern (and do get fixed). Anyone with direct physical access to a computer can elevate their privileges eventually. And on Windows there's a ton of them which sometimes even bypass the TPM and Bitlocker. There was one in the print spooler, for example, last summer. But it happens all the time on Windows and you don't even see it much in "the news". Any user on the machine could become SYSTEM and read your files, even if they were "protected". So that's Windows for you."

bnchs noted that "in GNU/Linux, you would have to boot to another OS to get root."

Quoting Ryan some more: "Becoming SYSTEM is an even bigger disaster than becoming ADMINISTRATOR, because in Windows, this means that you're...well, part of the system. You can even patch and hook into things that are "secured" and off limits to ADMINISTRATOR. Stuff that normally requires digital signing no longer requires digital signing. So at this point, rootkit? Sure. And all it takes is someone running as a Guest or as a user with no administrator hat to run a file that knows where the vulnerabilities are. Microsoft was in the news (their news) recently for raising the bug bounty. It's still less than Google's, and way less than what those things are worth to nation state attackers, terrorists, and ransomware outfits. By a factor of $10,000:$1 sometimes."

MinceR said it's "still wasted money from their perspective [as] that could be better spent on corruption, ads and lawyers..."

Ryan continued: "Even if you get $40,000 out of Microsoft's bug bounty system somehow, the ransomware gangs can just exploit it and make $20 million or more on one hit. So they'll pay better each time and it's simply up to the conscience of whoever found the problem in Windows as to what they want to do with it at that point. So the bug bounties are a ruse, a smoke screen, and the illusion of responsibility. In Linux, people find and fix bugs all the time. The code isn't hidden. That leads, usually, to inevitable discovery, and quick patching."

"People want to find bugs in Linux and report and fix hundreds of the same type, so they develop tools that can do things like that. Microsoft is annoyed that you reported one. Even over a decade ago before profiling tools were not as robust, not by a long shot, Coverity Scan admitted that "open source software, in general" was less than half as buggy as a comparable proprietary program. The proprietary software is sort of like the worst case situation for your security because they have little incentive to fix it unless there's already malware out there and they just can't hide the bugs any longer."

"It's like General Motors [GM] putting defective ignition switches in millions of cars for a decade after they knew they were shutting off the car unexpectedly and killing people in accidents. GM figured it'll cost $1 a car to fix this problem, then come all of the recalls, and we'll just grind them down with stall tactics and lawyers and stuff if they ever find out, and the settlement will still cost less. So that's what we do."

Update: Since we made the video above a bunch of other Microsoft boosters (with history) joined this FUD campaign. Of course they don't mention what happened to Windows this past week (CISA reports). Left out from the video (3 examples) are:



And about half a dozen more. Screenshot below:

Microsoft- anti-linux FUD

But yes, Microsoft loves Linux...

Microsoft loves Linux FUD.

Recent Techrights' Posts

Two Risks to Companies: The Microsoft Culture and the Microsoft Tools
Novell was killed by a form of "social engineering" by Microsoft
It's Hard to Trust People Who Worked - Not Only Those Who Still Work - at Microsoft
Bryan Lunduke is just what people would call an "arsehole of a person"
Links 06/07/2025: Climate Change and "The Right to Criticise"
Links for the day
The Mainstream Media Took 4 Days to Realise Microsoft Shut Down Its Operations in Pakistan and Fired Everybody
We estimate that Microsoft has had about 29,000 layoffs since January
“Twibel” Actions Against Comedians (and Why It's a Truly Low Blow)
they try to make up in quantities for a lack of merit or quality
 
[Video] "Copyleft Isn't a Bug."
"Copyleft isn’t a bug. It’s a feature. GNU GPL forced the world to treat code like a public good."
Being in Social Control Media Means Exposing Oneself to Heckling
Richard Stallman does not (either himself or directly) post to any social control media
Links 06/07/2025: Airlines Perils, Scams, and Breaches
Links for the day
For the Second Time, Bryan Lunduke From Microsoft is Siccing Racist Trolls and Vandals at Me
You're only reinforcing the point we made yesterday
Links 06/07/2025: End to End Encryption at Risk, Reuters Twitter ("X") Account Withheld in India
Links for the day
Gemini Links 06/07/2025: Tinylog and Certification Rotation
Links for the day
PCLinuxOS Sites Coming Back, Gradually
let's just be patient
Social Control Media, Even If Based on Free Software, Still Has Many Problems
a distraction from what actually mattered and still matters
IBM is Not Your Master
IBM makes friends with people who exclude the majority of the population: women
Help Fund the Free Software Foundation (FSF)
If you have some dollars to spare, go support the FSF
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, July 05, 2025
IRC logs for Saturday, July 05, 2025
A Short History of Attacks on Techrights (and Boycott Novell Before That)
good opportunity to tell again the story of several (not all) attempts to silence us
Leadership in Free Software
Don't let IBM lead. It's a terrible flag bearer.
Linux Foundation Apparently Flirting With Slop (Marketing by LLM-Generated SPAM)
The Web is in a really bad state!
COVID-19 Sped Up Site Improvements in Techrights
A few months later we created our very own IRC network
Gemini Links 05/07/2025: Negative Questions and 'Touching Grass' (Going Outside)
Links for the day
Links 05/07/2025: Dalai Lama Succession as 90th Birthday Approaches, 40 deg C in China
Links for the day
Links 05/07/2025: Hungary and US Defecting to Russia, "Google's Hotseat Hypocrisy"
Links for the day
Gemini Links 05/07/2025: 4th of July 2025 and "Zig Roadmap 2026"
Links for the day
How to Combat the Exploitation and Abuse by Microsoft GitHub
Not to mention corruption and crimes against women
Bryan Lunduke is Actually Sending His Audience to Attack People
"[Lunduke] is actually sending his audience to attack people."
Even The Right Wing is Rejecting Bryan Lunduke
no wonder he became so irrelevant and marginal
Microsoft's MSN Helps Microsoft Spread Lies About the Layoffs' Scale (Well Over 25,000 People Laid Off This Year)
There seem to be monopolies on lies and on truth
The Death of X Has Been Greatly Exaggerated (by Compromised Media)
X.Org Server is alive and well
Rewriting Things in Rust
How far would you go?
In 2025 Everything is "AI". Remember Blockchains?
Talk about what companies and things (services, products, software) actually do, not the labels they use
Julian Assange Has Been Free for a Year
Julian Assange and I disagreed on some things
Monopolies and Scalping
Monopolies gravitate towards price hikes
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, July 04, 2025
IRC logs for Friday, July 04, 2025
Microsoft's August Layoffs Wave: "August is Confirmed for Additional Performance Based Cuts"
"August is confirmed for additional performance based cuts from the recent connects along with additional organizational cuts."
What Microsoft Reputation Laundering (With a Weaponised Law Degree) Looks Like in a Foreign Continent
You would expect this in uncivilised and primitive countries
Slopwatch: LLMs 'Write' Fake or Distorted 'News' About "Linux"
LLM slop disguised as news
Links 04/07/2025: Google Replaces the Web With Slop, "AI Might Kill Us All"
Links for the day
Gemini Links 04/07/2025: Mindfulness and F1
Links for the day
Weeks After Microsoft Bankruptcy in Russia the Company Shuts Down in Pakistan, Too
Last month Windows' share in Pakistan fell to an all-time low
Rob Musial's June 2025 Additions of Malware in Proprietary Software
Via the GNU Web site this week
Links 04/07/2025: Microsoft's H-1B Visa Applications Show Another Crisis Unfolding, Many More Deep Cuts and Shutdowns Revealed, Complete Microsoft Exits
Links for the day
Gemini Links 04/07/2025: A Day To Remember and "Stop Killing Games"
Links for the day
Crime and Corruption at Microsoft GitHub Cannot be Covered Up by SLAPPs in Another Continent
We'll write about this for a long time to come
Slop Videos Are Disappointing Garbage, Nothing New, Just Brute Force up on Display or a Pedestal of Slop
Slop videos aren't a new thing
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, July 03, 2025
IRC logs for Thursday, July 03, 2025
The War on Local Storage (People Hosting Their Files Locally and Privately)
There's nothing wrong with controlling one's computing
What Digital Independence Means
Independence in the digital realms means abandoning platforms like GitHub, not just rejecting proprietary software
NVidia is a Bubble
they temporarily see fortunes and wrongly assume perpetuity thereof
Fedora Does Not Care About Diversity and Inclusion, It's About Optics (Corporate Image)
any notion of inclusion is superficial and misleading
Don't Buy the Excuses for Microsoft's Mass Layoffs
Back in the 90s, Microsoft bought a lot of companies to get and stay ahead