Bonum Certa Men Certa

Hiding Microsoft's Culpability in Security Breaches and Other Major Blunders (in the United Kingdom, This May Mean You Can't Get Food)

posted by Roy Schestowitz on Mar 29, 2024,
updated Mar 29, 2024

Total Cost of Ownership (TCO) is vast

Manchester City checkout/site

YESTERDAY I noticed technical issues in the site of the local football team, Manchester City FC. It turned out to be worse than I had imagined.

"That URL goes to a web app not a Web site," I'm told by someone who blocks JavaScript by default, and it runs "Windows Server" apparently (it says "Windows Server 2008" in March 2024 over at Netcraft).

Microsoft Windows Server 2008

Windows Server 2008 has been "End of Life" (EOL) for over a decade already!

The site has historically had many severe issues, which is truly an embarrassing thing to, according to UEFA, the world's number one football club. "Club coefficient" is now 146,000, or 7,000 higher than Bayern Munich at second. Money isn't the issue here; Microsoft is more expensive and the oil sheiks at U.A.E. are funneling or pumping money to Bill Gates, both needlessly and at the cost of fans' security.

They waste their money on Microsoft, probably because they have got some Microsofter/s on the payroll, working for Microsoft from inside the club (in other words, working for Microsoft on someone else's payroll).

Manchester City crest

It's even worse. "Running on Microsoft Azure behind clownflare," as I was told, it is now behind "Malicious Clowns" (I did notice many ClownFlare gatekeeping episodes, presenting me with riddles to solve instead of pages... despite me using a mainstream browser without a VPN or Tor or anything like that). Azure has long been a failure despite what the media tells (for Microsoft as a sponsor). The "results" are faked (fraud), so Microsoft has moved on from harping about "clown computing" to "AI" (Hey Hype).

So someone out there (across the road from where I type this) needs to be sacked. This is not a new problem and I wrote about it before, both in my blog and elsewhere. It is worth noting that other football clubs are not this bad (they use GNU/Linux and Free software for their sites).

"I wonder how much money they lose directly by overpaying Microsoft and clownflare," I was told, "in addition to a large number of lost ticket sales."

It's almost impossible to book anything online. When Adobe Flash was dead or about to be dead they still used Flash. Technical incompetence all over this...

For the world's top-ranked or most prestigious club this is an embarrassment. They often cannot sell all the seats, so they leave money on the table and their digital assets in Microsoft's hands. Who's responsible for this shambles and, given new reports of mass compromise (security breaches), who will be held accountable when they formally announce security breaches? Since they use Azure, and Microsoft recently admitted that Azure had been cracked (belatedly and with blame-shifting), they did in fact suffer a security breach last year. Where does the responsibility lie for this? They just lie and lie like Sainsbury's and Gregg, having outsourced to Microsoft until essential systems broke down. People were unable to order good.

Of course Microsoft boasts about those companies as "clients" (in fancy "case studies") and hides/runs away when there are blunders and technical failures. Then Microsoft prefers not to be named at all.

Microsoft "keeps its contracts confidential," an associate reminds me, "and considers them as trade secrets even with government institutions like councils and universities."

"That secrecy is another thing to get out into the air..."

It is very difficult. I spent a lot of time over the telephone with Sainsbury's last week (4 different people) and they're stonewalling, calling it an "accident".

Anyway, with Microsoft we cannot expect real accountability. We already saw how the government let them get away with an Azure-wide security breach. The media has "moved on" and governments continue (secretly) paying Microsoft for breached systems, making problems and causing frustration for people who just want food, not a pew in some football stadium. Microsoft lowers standards for systems and for security.

Why does our tax money sponsor this?

Apropos security, "Google reports a significant surge in zero-day vulnerabilities in 2023," this Microsoft-sponsored 'news' site said on Wednesday, but "unlike other articles on the topic, this one avoids calling out Windows," the associate notes. The Register said "this included 17 Windows vulnerabilities, 11 in Safari, nine affecting both iOS and Android, and eight in Chrome."

A security-centric news site said: "Despite a surge in zero-day attacks, data shows that security investments into OS and software exploit mitigations are forcing attackers to find new attack surfaces and bug patterns."

But Microsoft is merely hiding known flaws [1, 2] until they are exploited by anyone other than the NSA et al. In other words, until it is too late and damage is already being done...

In a functioning industry, those who act like this would be detained and prosecuted.

Windows TCO is a considerable toll on all of society, even when they do not call out Windows.

Other Recent Techrights' Posts

Apparently Confirmed: IBM Layoffs in Canada Today, Hundreds Affected
Impacting "177 people", says one person, "in Ottawa"
[Video] Dr. Richard Stallman's Keynote Speech in Kerala Finally Uploaded
In non-free format and proprietary YouTube, but perhaps that's better than nothing
 
Android Rises Above 76% in Mozambique, Leaving Windows in the Dust
Windows may soon be measured as smaller than Apple's iOS
IBM, Red Hat and Microsoft Probably Also Manipulate Metrics (It Helps Con the Shareholders)
Wall Street's credibility will depend on enforcement of "checks and balances"
Slopwatch: trendhunter.com and Other Pure Junk From "Google News"
The need to vet sources is hardly new; anyone can spew out anything, anywhere. There's a need for vetting.
Gemini Links 28/03/2025: Rewatching The X-Files, Slop Concerns, and NOSTR Censorship
Links for the day
Links 28/03/2025: Australia at Risk, EPO Grants Illegal Patents With Illegal Effect
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, March 27, 2025
IRC logs for Thursday, March 27, 2025
Links 27/03/2025: Obituary to a Shop, Russia Trying to Buy Time
Links for the day
Links 27/03/2025: Slop, Autosuggestions, and Nostr
Links for the day
When Windows Was Dominant (1990s) Browser Monopoly Meant MSIE, But Now Google Android is Dominant and the Web in a 'Webapps' Era Works With (or Is Designed for) Chrome-isms
We've been there before
Slopwatch: BetaNews, LinuxSecurity.com, and the Attack on Web Search Using Fake and Likely Plagiarised Pages
Changing a few words here and there won't change the fact that it's not properly authored
Links 27/03/2025: U.S. Honeybee Deaths Reach Record High, Legal Occupation Next in Line After War on Science
Links for the day
Using Courts for 'Revenge' is Always a Losing Strategy
Trying to cause someone you dislike to spend a lot of money
IBM CFO James Kavanaugh Refers to Firing of Almost 10,000 Americans as "Workforce Rebalancing" (Shifting IBM's Centre of Balance to Low-salary Contracts/Countries)
The scale of IBM layoffs is getting too large to evade WARN Notices
Islands Are Leaving Microsoft Behind, According to statCounter
Android has had a very strong year
EPO Management Fails to Deny That the Office is Discriminating Against Women
Europe's second-largest institution isn't just exceedingly corrupt but also immoral
In Some Countries the Market Share of Vista 11 is Going Down, Not Up
despite being released in 2021
Rumour: Mass Layoffs in IBM Canada Today
Maybe later today some people from Canada will say something firmer and maybe some media will even talk about that
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, March 26, 2025
IRC logs for Wednesday, March 26, 2025
Gemini Links 27/03/2025: X-Files' "Kill Switch", Orlando, and ASN (Autonomous System Number) 'Hack'
Links for the day
Links 26/03/2025: Healthcare Cuts and Turkey's Own "2025 Project" (Culling Opposition)
Links for the day
LLM Slopfarm: A Site's Last Incarnation Before Throwing in the Towel, Going Offline Permanently
A lot of coverage that claims to be about Finland is chatbot-generated nonsense or poorly-plagiarised work
Microsoft Canonical Pays IDG to Spread FUD (Fear, Uncertainty, Doubt)
this seems a tad exploitative and reminds us of the time Novell kept telling companies that using anything other than SUSE was dangerous
Gemini Links 26/03/2025: GTD, Zenshuu, and Geminispace Community
Links for the day
Links 26/03/2025: Media's Failures, Arrests of Journalists, Limitations of End-to-End Encryption
Links for the day
LLM Slop (Lots of It Spewed Out by Microsoft) Versus Linux
Microsoft is a very, very evil company. It doesn't mind destroying the Web if there's a chance it'll make a buck in the process or mess up people's brains (in Microsoft's favour).
Slopfarms (Sites That Only Ever Publish LLM Slop) Are Killing Google News
pair of slopfarms still propped up by Google News
Microsoft's Serial Strangler's Law Firm Has a Long History of Fronting for People Who Do Bad and/or Illegal Things
Whose terrible idea was this?
Novell and Microsoft Apologist/Booster Bruce Byfield Writing About the FSF is a Recipe for Problems
Totally not shoehorning some agenda
Looking Forward to the Fall of UPC and Revocation of the Unified Patent Court (UPC) Agreement, Which Was Always Illegal and Unconstitutional
We'll try to keep abreast of any progress in this case
Slopwatch: Google News, LinuxSecurity.com, and the General Demise of the Web
many supposed or so-called "news" pages are just spewed out by some chatbots (or tools which help plagiarise original articles without getting caught; detection gets harder)
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, March 25, 2025
IRC logs for Tuesday, March 25, 2025