Windows Vulnerable, Billions in Damages, and Other Security News
- Dr. Roy Schestowitz
- 2009-04-26 06:07:09 UTC
- Modified: 2009-04-26 06:07:09 UTC
Microsoft
●
Windows Bugs Never Truly Squashed
Hackers can successfully attack Windows PCs months -- even years -- after Microsoft Corp. fixes a flaw, a security expert said, because there's always a pool of unpatched systems.
According to data that Qualys Inc. culled from scans of more than 80 million machines, between 5% and 20% of all systems are never patched for any vulnerabilities, including those disclosed by Microsoft in its monthly security updates.
●
Rigged Word docs exploit 2008 bug, say researchers
Attackers, probably based in China, are exploiting a December bug in Microsoft Word to hijack Windows PCs, Vietnamese security researchers warned today.
●
The Microsoft Tax: Conficker’s estimated economic cost: $9.1 billion
"The Cyber Secure Institute claims that based on their previous studies into the average cost of such malware attacks, the economic loss due to the Conficker worm could be as high as $9.1 billion," Dancho Danchev reports for ZDNet.
Others
●
After Five Years, Apparently The Mobile Virus Flood Is Really Coming This Time
For about five years, there's been an effort to whip up hype around the supposed threat of mobile viruses and malware. Pretty much all of that hype's come from anti-virus vendors, so it's been pretty suspect, particularly as this threat they've been hyping for so long has failed to materialize.
●
International hackers, many from China, are attacking NYPD computers
A network of mystery hackers, most based in China, have been making 70,000 attempts a day to break into the NYPD's computer system, the city's top cop revealed Wednesday.
●
K.gov cautious on EU cyberwar effort
Security chiefs are considering joining an EU wargame to help guard critical internet infrastructure against attacks from enemy states or criminals, but Whitehall officials are concerned other members of the bloc are not ready.
●
The Great Brazilian Sat-Hack Crackdown
"This had been happening for more than five years," says Celso Campos, of the Brazilian Federal Police. "Since the communication channel was open, not encrypted, lots of people used it to talk to each other."
●
Conficker
The New York Times called it an "unthinkable disaster", the television news show 60 Minutes said it could "disrupt the entire internet" and we at the Guardian warned that it might be a "deadly threat". Naysayers were few, and drowned out.
Recent Techrights' Posts
- Misinformation of IBM Spread via LLM Slop
- Since a lot of sites now rely on LLMs we can expect the corporations' lies to be perpetuated by bots. That includes the myths of IBM Red Hat.
- Our Site Search Increases Our Editorial and Informational Independence
- Implementing our search facility is a long-term investment
- Corruption is a Reality, It's Not a Dirty or a Strong Word
- Corruption is a topic some newspapers shy away from
- Rosanna Yuen & GNOME community triple tricked
- Reprinted with permission from Daniel Pocock
-
- This Coming Thursday EPO Staff Meets Online to Discuss the Salaries Going Down While Stoned Managers Increase Their Own
- compensation going down relative to inflation and other factors
- Gemini Links 09/11/2025: File Managers and DPC Commissioner
- Links for the day
- Links 08/11/2025: Climate Talk Unfruitful, OldVersion.com Archive Facing Shutdown
- Links for the day
- IBM is Eliminating Red Hat Like It Eliminated Tivoli and Eliminated Cognos
- Be wary of IBM
- Quitting One's Job Isn't Forbidden, Right?
- it's important to remind people that leaving one's job is perfectly OK
- Being Absent/Missing From Social Control Media is Not a Sign of Weakness
- Broadly speaking, social control media is for losers
- Empathy Online
- I recently learned from someone that running his Web site might hurt some feelings, even if the writings are truthful
- Advocates of GNU/Linux and the Uphill Battles Behind Us
- GNU/Linux felt like "activism" 20 years ago. Now it's mainstream.
- Cybersecurity Means Real Security, Not Back Doors
- Standing our ground on technology and cybersecurity is an uncompromisable stance
- Links 08/11/2025: Disinformation Crisis, Denmark Recognises Threats Associated With Social Control Media
- Links for the day
- The Free Software Foundation (FSF) is Besieged for the Times It Does the Right Things
- As that upsets rich people's interests (and they were, at times, sponsors)
- Links 08/11/2025: Technical and Financial GAFAM Woes and Arrests of Journalists by Despots
- Links for the day
- Like SUSE, IBM Red Hat Seems to be Using LLM Slop to Write Fake (Bot-Generated) Blog Posts
- IBM Red Hat keeps promoting slop
- How German Media Covered Cocainegate at The European Patent Office (EPO)
- At some point we'll ask that same press to revisit the issue and this time comment on the EPO connection
- Our Launch of Techrights Search Has Been Successful (So Far)
- There are about 50,000 articles indexed there, going 19+ years back
- Daniel Pocock Explains Social Engineering in Debian and Other Communities Increasingly Controlled by "Barons"
- Communities are not corporations
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Friday, November 07, 2025
- IRC logs for Friday, November 07, 2025
- Adrian & Diana von Bidder-Senn, Debian: detailed history of a death
- Reprinted with permission from Daniel Pocock
- Crypto AG tricked ETH Zurich student internship
- Reprinted with permission from Daniel Pocock
- An Old Story of Fraud at the EPO in the Netherlands (and How the Dutch Government Facilitated It)
- We've already mentioned several other scandals where the the Dutch government engaged in fraud and passive corruption
- Voicing Concerns About European Patent Office (EPO) in Rijswijk
- The report is dated yesterday
- Gemini Links 08/11/2025: KeePassRX and Pluribus
- Links for the day
- IBM Layoffs Not Done, Terminations of Staff in India, Brazil, and Mexico Reported
- This hopefully answers questions such as, "do the layoffs only impact US and Canada?"
- Slopwatch: Brian Fagioli Targets "Linux" With LLMs, Google News Helps Blame "Linux" for Amazon WorkSpaces Flaws
- Tonight's slopfest
- Gemini Links 07/11/2025: Switzerland, k3s, and Privacy
- Links for the day
- Links 07/11/2025: Software Patents Squashed, Stock Markets Wobble Over Slop Uncertainties
- Links for the day
- A 19th Anniversary and High-Impact Exclusives
- The end of 2025 will be very difficult for EPO management
- The Register MS, Payroll First
- GNU/Linux is a growing platform
- Links 07/11/2025: US Government Shutdown Imperils Critical Functions, Slop in "AI" Clothing Debunked Some More, Bubble's Implosion Ongoing/Imminent According to Experts
- Links for the day
- Gemini Links 07/11/2025: No Goodbyes, Homelab, Mouse Keys / Pointer Keys
- Links for the day
- 12 Years for Justice is Far Too Slow (and More People, Especially Women, Are Hurt)
- Why do police departments and legal systems fail to protect women?
- Before Freenode Collapsed Its Staff (the People Who Now Run Libera.Chat) Were Censoring/Silencing Some Free Software Supporters
- We still have this issue in the Free software community
- Freenode and irc.com Are Still Around
- It emulates retro terminals
- We Don't Compete, We Analyse and Report
- Principles are so much better than money and they're something money can never acquire
- Red Hat is Also Laying Off Staff in India
- Red Hat is a dishonest company
- All We Want to See is Any Form of Accountability in Europe's Largest Institutions
- Because people at the top of institutions should never be above the law!
- Finding Recent Talks of Richard Stallman
- We already have many pages, documents, and media files. Organising them and helping people find them is the next Big Task.
- Richard Stallman First Speaker at Ethereum Cypherpunk Congress the Weekend After This Coming Weekend
- He'll be speaking over the Net
- Diversity at Red Hat
- Remember to judge corporations by their actions, not some Web pages with words in them
- First the Python Software Foundation (PSF) Attacked Its Most Productive Volunteers. Now It Attacks Its Funding Sources.
- The U.S. National Science Foundation (NSF) rejected by PSF
- News of Substance About the EPO's Substance Abuse (Cocaine)
- EPO Cocaine Chronicles - link to archived BILD article and photos
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Thursday, November 06, 2025
- IRC logs for Thursday, November 06, 2025
- On Midlife Crises
- Focus on the sabotage, not politics
- Hallmark of Fake News: "Single-digit" (Percentage) and 1% Isn't the Same Thing
- apparently "rebalancing" is the new layoffs euphemism
- Links 07/11/2025: Patent Trolls Target Germany, Celebrities Visit Ukraine
- Links for the day
- Misinformation/Disinformation Disguised as Information About GNU General Public Licenses (GNU GPL) Usage
- GPL-type licences (reciprocal obligations) remain dominant
- Slopwatch: LinuxSecurity, Brian Fagioli, and Google News Boosting WebProNews (All Slopfarms)
- Those slopfarms just saturate the Web with misinformation and mindless chaff
- Techrights and Tux Machines at Over 40
- 19 years of Techrights and 21+ years of Tux Machines
- IBM Mass Layoffs This Week Not Limited to North America, Red Hat Staff Terminated
- Do not relocate for a company that sees you as nothing but a number or a "human resource"
- Coming Soon: More Proof of Cocaine Use at Europe's Second-Largest Institution
- Stay tuned
- Entering Our 20th Year
- ...and still looking for answers
