Bonum Certa Men Certa

The Cost -- and Cause -- for Security Failure, Data Breaches

Windows Vista is not a secure operating system and Vista 7 is the same. The ramifications can be very serious and no level of censorship can hide it. According to this report from the Identity Theft Resource Center, the leaking of sensitive data is rising sharply due to inappropriate means of securing it.



More than 35 million data records were breached in 2008 in the U.S., a figure that underscores continuing difficulties in securing information, according to the Identity Theft Resource Center (ITRC).


Each and every one of us pays for the damage, as costs are collective and our data is centralised not only on our personal computers*. Even our medical records can be compromised.

“Each and every one of us pays for the damage, as costs are collective and our data is centralised not only on our personal computers.”What is responsible for this and who is to blame? Well, based on empirical evidence, it's Microsoft that has failed. It failed not because it's an impossible task to secure software but because, as the manager of Windows said a few years ago, "our products just aren't engineered for security."

Let's consider GNU/Linux for a second. The platform runs in an environment that's highly connected; it runs on a very large number of boxes endlessly. In September 2008, said Steve Ballmer: “Forty percent of servers run Windows, 60 percent run Linux..."**

If GNU/Linux was not secure, wouldn't many of the Web servers out there be compromised? Evidently, they rarely do. Software that's installed on them with uploaders is a vector of weakness, but that too has not caused much harm.

On the other hand we have Windows, which is once again under a worm attack, according to this new report.

Business systems are being attacked by a worm exploiting a known Microsoft vulnerability, IT security experts have warned.


Sam Varghese, a GNU/Linux user, wrote about "worms, worms, worms" a few days ago. Security troubles under Windows have more of his computers migrated to GNU/Linux right now.

It would have been good to have some equivalent of Delilah on Windows to negate the role of this browser, but, sadly there is none. There are some third-party applications like XPlite , developed by Australian Shane Brooks, which do remove most of IE but then which browser do you use to update Windows? Only IE supports ActiveX.

You can, of course, move from XP to Vista where the updates are done through the control panel but that would be the equivalent of offering a man a choice between arsenic and cyanide for breakfast.


Sam mentions ActiveX, which was probably designed and implemented for anti-competitive reasons (making Web sites operating system-dependent), despite it's obvious dangers. As Bill Gates put it on numerous occasions, they needed to leverage standards-hostile extensions. In this one E-mail [PDF] he wrote: "Another suggestion In this mail was that we can’t make our own unilateral extensions to HTML I was going to say this was wrong and correct this also."

Where do Windows users end up because of this? Well, merely visiting a Web site can be dangerous because it gives the site great control over the entire operating system (access to local files even). At the moment, there are reports about Windows-only features in LinkedIn... malicious 'features'

[T]he sort of social media trouble quotient appears to have risen a bit as fake LinkedIn profiles are trying to send users towards malware.


We all reap what they sow.

"In one piece of mail people were suggesting that Office had to work equally well with all browsers and that we shouldn’t force Office users to use our browser. This Is wrong and I wanted to correct this."

--Bill Gates [PDF]



XHTML
Hostility towards (X)HTML came from the top



___ * Where else are they centralised? Well, a lot of people don't know where or how their medical records are kept or how susceptible those records might be to data theft. Are medical records kept only on private networks? or are they reachable by the outside world (Chinese or Russian crackers, for example). Ordinary people pay more attention once they realise exactly how this situation can cause them harm in a very personal way.

** This is an important point, and it should probably be made even stronger. If GNU/Linux was not more secure, wouldn't its 60 percent of the Web servers be compromised at least as often as Windows 40 percent? Yet evidence shows that they rarely are.

Comments

Recent Techrights' Posts

Lookout, It's Outlook
Outlook is all about the sharing!
Updated A Month Ago: Richard Stallman on Software Patents as Obstacles to Software Development
very recent update
Is BlueMail a Client of ZDNet Now?
Let's examine what BlueMail does to promote itself
OpenBSD Says That Even on Linux, Wayland Still Has a Number of Rough Edges (But IBM Wants to Make X Extinct)
IBM tries to impose unready software on users
 
The 'Smart' Attack on Power Grid Neutrality (or the Wet Dream of Tiered Pricing for Power, Essentially Punishing Poorer Households for Exercising Freedom Like Richer Households)
The dishonest marketing people tell us the age of disservice and discrimination is all about "smart" and "Hey Hi" (AI) as in algorithms akin to traffic-shaping in the context of network neutrality
Links 29/11/2023: VMware Layoffs and Too Many Microsofters Going Inside Google
Links for the day
Just What LINUX.COM Needed After Over a Month of Inactivity: SPAM SPAM SPAM (Linux Brand as a Spamfarm)
It's not even about Linux
Microsoft “Discriminated Based on Sexuality”
Relevant, as they love lecturing us on "diversity" and "inclusion"...
IRC Proceedings: Tuesday, November 28, 2023
IRC logs for Tuesday, November 28, 2023
Media Cannot Tell the Difference Between Microsoft and Iran
a platform with back doors
Links 28/11/2023: New Zealand's Big Tobacco Pivot and Google Mass-Deleting Accounts
Links for the day
Justice is Still the Main Goal
The skulduggery seems to implicate not only Microsoft
[Teaser] Next Week's Part in the Series About Anti-Free Software Militants
an effort to 'cancel' us and spy on us
Over at Tux Machines...
GNU/Linux news
Permacomputing
This work is licensed under a Creative Commons Attribution 4.0 International License
Professor Eben Moglen on How Social Control Media Metabolises Humans and Constraints Freedom of Thought
Nothing of value would be lost if all these data-harvesting giants (profiling people) vanished overnight
IRC Proceedings: Monday, November 27, 2023
IRC logs for Monday, November 27, 2023
When Microsoft Blocks Your Access to Free Software
"Linux is a cancer that attaches itself in an intellectual property sense to everything it touches." [Chicago Sun-Times]
Techrights Statement on 'Cancel Culture' Going Out of Control
relates to a discussion we had in IRC last night
Stuff People Write About Linux
revisionist pieces
Links 28/11/2023: Rosy Crow 1.4.3 and Google Drive Data Loss
Links for the day
Links 27/11/2023: Australian Wants Tech Companies Under Grip
Links for the day
Over at Tux Machines...
GNU/Linux news
Links 27/11/2023: Underwater Data Centres and Gemini, BSD Style!
Links for the day
[Meme] Leaning Towards the Big Corporate CoC
Or leaning to "the green" (money)
Software Freedom Conservancy Inc in 2022: Almost Half a Million Bucks for Three People Who Attack Richard Stallman and Defame Linus Torvalds
Follow the money
[Meme] Identity Theft and Forgery
Coming soon...
Microsoft Has Less Than 1,000 Mail (MX) Servers Left, It's Virtually Dead in That Area (0.19% of the Market)
Exim at 254,000 servers, Postfix at 150,774, Microsoft down to 824
The Web is Dying, Sites Must Evolve or Die Too
Nowadays when things become "Web-based" it sometimes means more hostile and less open than before
Still Growing, Still Getting Faster
Articles got considerably longer too (on average)
In India, the One Percent is Microsoft and Mozilla
India is where a lot of software innovations and development happen, so this kind of matters a lot
Feeding False Information Using Sockpuppet Accounts and Imposters
online militants try every trick in the book, even illegal stuff
What News Industry???
Marketing, spam, and chatbots
IRC Proceedings: Sunday, November 26, 2023
IRC logs for Sunday, November 26, 2023
The Software Freedom Law Center's Eben Moglen Explains That We Already Had Free Software Almost Everywhere Before (Half a Century Ago)
how code was shared in the 1970s and 80s