Over 23 New Microsoft Vulnerabilities and Microsoft Could Not Patch the One Actively Under Attack

Dr. Roy Schestowitz

2009-04-15 22:58:00 UTC
Modified: 2009-04-15 22:58:00 UTC

Summary: Another massive patch Tuesday is due, but Microsoft customers are still left vulnerable

ACCORDING to a flood of reports, Microsoft claims to have just patched 23 vulnerabilities (the real number is a lot bigger and always a mystery). Quite a few of them are "critical".

It's a busy month for Windows administrators, as Microsoft has released eight security bulletins addressing more than 20 vulnerabilities. Five of the bulletins are rated 'critical'.

But here is the important bit:

Missing from the list is relief for a zero-day vulnerability in PowerPoint, actively targeted by hackers since last month.

This most likely means that for at least another month, all Microsoft Office users will be left exposed to attacks which have already begun, with Microsoft confirming this. Later on, people wonder why Conficker is able to propagate quite so rapidly. Here is the latest report about Conficker.

People have been speculating, waiting and prognosticating, but until now the extremely cleverly programmed Conficker worm has limited itself to mainly defensive measures, such as opening various communications channels (Conficker.C can set up peer-to-peer networks with other infected systems) in order to transform itself with downloaded code, and to actively combating anti-virus software and security analysis tools. Even on 1 April, the known date on which Conficker.C would be looking for updates, virtually nothing happened. Now however, money is involved: computers infected with the Conficker worm are downloading the scareware program "SpywareProtect2009".

Despite the latest lie from a Microsoft executive (circulating in the press this week), Windows Vista is just as insecure as its predecessors.

With so many of the world's Windows PCs already enlisted to join a botnet, it is no wonder that -- even according to Microsoft's latest report -- 97% of E-mail is SPAM. We have already shown why this is Microsoft's fault, at least in part. The catastrophic damage is not just one of productivity; according to this new report, there is also a severe environmental cost.

That's what McAfee says in its "Carbon Footprint of Spam" report released Wednesday, which states climate-change researchers from the firm ICF and McAfee's security staff calculated that the amount of energy needed to transmit, process and filter spam globally is equal to 33 billion kilowatt-hours each year. They say that can also be expressed as the equivalent to the electricity used in 2.4 million homes annually or the same green-house gas emissions from 3.1 million passenger cars using 2 billion gallons of gas.

The Inquirer, as usual, sensationalised it a bit.

Spam is killing the planet

[...]

Apparently, dealing with spam burns 33 billion kilowatt hours (one KW is about what a single bar electric heater will use) every year, enough to power 2.4 million homes.

There may be simple solutions to this. ⬆

Comments

twitter

2009-04-16 03:59:41

(33E9 x 1E3 kWh/year) / (365 days/year x 24 hours/day) = 3.8E9 W, about four nuke plants worth of power on average. What an amazing waste.

Don't Talk to Bullies: This serious matter is still being examined by British authorities
The Register MS Has Begun Using Slop Images: It's not clear when it started; but it's definitely getting worse [...] Worst of all are 'articles' about slop that are themselves slop
When It Comes to Technology, Mozilla and Firefox Are Illiberal: Last month in Planet Debian we saw one more person explaining to everyone how to "turn off" DRM in Firefox and hide the pop-up/s
Working Whilst Away From Home: Decades ago being away meant all sorts of problems associated with workflows and connectivity
The Next Version of Windows Will Always be the Best (for Microsoft): It's worse and slower over time
"End of the Smartphone Era" According to Jeffrey Epstein's Key Enabler: They call it "sour grapes"
Microsoft's Windows in Gabon: Still Moving Down: What is this Unknown? Who knows...
Links 17/08/2025: Strike Downs Air Canada, Postmortems of Putin's Red Carpet Summit: Links for the day
Links 17/08/2025: Slow Tools and Enshittification of YouTube: Links for the day
Links 17/08/2025: "The Performance of Power" and "My Undesirable Friends": Links for the day
Growing Our Reach: Our goal was never "hits"
The Russian Vision of Technology: Russia's surveillance is very extensive
Sooner or Later Almost Everyone Will Know "AI" is Just a Go-To, Misused, Misapplied, and Grossly Overused Term of Liars and Con Jobs Who Ride a Ponzi Scheme: At the expense of people gullible enough to "invest" in this or take salaries/bonuses in the form of "stock" (tied to a Ponzi scheme)
Reddit Funded by Microsoft: Reddit is merely a filter and we knows who controls that filter (using money)
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, August 16, 2025: IRC logs for Saturday, August 16, 2025
The Open Source Initiative Has Many Scandals, We'll Try to Summarise Them All: Open Source Initiative (OSI) hates facts
Open Source Initiative (OSI), Wikipedia, Molly De Blanc, and Censorship/Reputation Laundering: OSI is like SPLC. The old name remains, the mission changed
Gemini Links 17/08/2025: Misunderstanding "Geminiverse" and Let's Encrypt: Links for the day
Links 17/08/2025: Breaches, Layoffs, and Scams: Links for the day
The Case for Software Freedom in Europe Becomes Stronger as GAFAM and the US Become Allies of Those Who Invade Europe: "One would think that both sides of the pond would be very interested in this valuable commons and work to not just protect it but cultivate it further, rather than work to saw the legs from under it by advancing software patents instead."
Slopwatch: Google News, LinuxSecurity, LinuxBSDos.com, and Garbage From Brian Fagioli: nowadays when people search the Web or when one researches some topic (looking not just for news in Google News) one is increasingly likely to land on a fake 'article' spewed out by some Microsoft LLM
Gemini Links 16/08/2025: Back After Hiatus and News Aggregators in Geminispace: Links for the day
Links 16/08/2025: mRNA Being Abandoned, Putin Plant Flags in Alaska, Faces No Sanctions: Links for the day
Links 16/08/2025: Science Besieged, Confidentiality Standards Breached: Links for the day
Links 16/08/2025: Loners and Vacation, Climate Issues: Links for the day
Links 16/08/2025: Chatbots Bad for Kids, Software Patents Apple Battle: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, August 15, 2025: IRC logs for Friday, August 15, 2025
Slopwatch: WebProNews and Google News Promoting Fake Articles About "Linux": Google News is being flooded by these slopfarms, so when Linux news is being sought online (via Google News) many people will read bots that spew out FUD
Original European Patent Convention (EPC, 1973), Routinely Violated by the European Patent Office, Now in Geminispace: hundreds of thousands of European Patents must be immediately revoked
Gemini Links 16/08/2025: Politics and Alhena 5.2.8: Links for the day
Links 16/08/2025: "Hey Hi (AI) Data Centers Are Driving Up Electricity Bills for Everyone" and the Case Against Booking.com: Links for the day
Gemini Links 15/08/2025: Leasehold, Slop Bubble, and Xobaqu: Links for the day
Links 15/08/2025: Flight Attendant Strike, Floods, and Tropical Storms: Links for the day
Links 15/08/2025: German Government Falls Short on Free Software, Russians Breach EU Systems: Links for the day
Microsoft is Still Losing Cyprus: The market share goes down, so share prices go up
Microsoft Accenture is in Trouble: For one thing, its debt doubled in a matter of months
News Will Slow Down and Slop Will Contribute to the Slowdown: In recent years every time there was some holiday or major break the number people who "came back" shrank
Upgrading IRC Network of Techrights: a new version of the daemon we've used since 2021 was released very recently
X.Org is Still Not Dead: Oracle still developing it
"Register Debate Series" About Microsoft in the UK is Controlled by Microsoft (US): The Register is run by Microsoft "Analysts", so the debate is doomed from the get-go
IBM is a Terrible Model for Red Hat: "Most likely caused by laying off too many people"
Microsoft Problems in Palestinian Territory and Israel: Microsoft stock (share price) goes up when market share goes down
Microsoft is getting ready to cause many employees to resign: Having already laid off many workers earlier this month, it now tries another approach
Slave is Not a Bad Word, We Need to Use It Sometimes: Who does such exclusion of words benefit? What sort of expression will be deemed impermissible and subjected to CoC enforcement?
National Day of Action: "This Friday, August 15th, there is an organized, petition-based, protest of Wells Fargo in major cities across the US," Richard Stallman wrote
Our Gemini Editions Now Contain 100,000+ GemText Pages: Our Gemini Editions aren't small, even if Gemini Protocol is still the 'underdog'
"Maybe the Problem is You": they probably felt like they had no choice because they really needed this Microsoft money
The Relations Between the United States and Europe Deteriorate, Should Europe Continue to Rely on American Tech Giants?: The shallow notion that made-in-USA software is fairly safe for Europe to rely to is coming to a standstill
Techrights and Tux Machines Running as Usual During Vacations: No interruptions, maybe temporarily slowdowns
GNU OS, Powered by Hurd: Choice is good, as long as choices exist that respect the users' freedom
Gemini Links 15/08/2025: ADHD and "Random Weird Things": Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, August 14, 2025: IRC logs for Thursday, August 14, 2025
"Article 52. PATENTABLE INVENTIONS" in the European Patent Convention: Some time tomorrow we'll have a complete local copy of the EPC

Over 23 New Microsoft Vulnerabilities and Microsoft Could Not Patch the One Actively Under Attack

Spam is killing the planet

Comments

Recent Techrights' Posts