Bonum Certa Men Certa

ISP Under Unfortunate 'DDOS Attack' by Microsoft Corporation; Liability of Software Debated in Europe

Stranded



Summary: Microsoft servers run amok and questions about liability return

SIMON PHIPPS has just found this very interesting message about an ISP which was brought down to its knees by "Windows Update". It is actually a recurring issue that affects networks in all sorts of ways (e.g. global Skype downtime).

We were facing a distributed denial of service attack from the world's largest "botnet:" Microsoft's "Windows Update."

[...]

As Spider-Man creator Stan Lee once noted, "with great power comes great responsibility." Microsoft, by virtue of its control over Windows-based PCs, has the ability to shut down the entire Internet at will -- and must be careful not to do it, inadvertently, by turning 90% of the world's PCs into a "zombie army."

Furthermore, content delivery networks such as Akamai, which distributes Microsoft's updates, must not be allowed to discriminate against smaller providers by making updates uncacheable (at least by a standards-conforming Web cache) and then denying smaller ISPs access to a cache that WILL cache them.


This is reminiscent of past incidents (see [1] and [2] at the bottom of this post). Yesterday we wrote about FAA where the damage of Microsoft's security, reliability and stability track record seems immense (in a very negative way). Now we find this from UC Berkeley right at the top of the news.

University of California, Berkeley, officials said Friday that hackers infiltrated restricted computer databases, putting at risk health and other personal information on 160,000 students, alumni and others.


Can liability put an end to this? That's the question the European Commission is asking and Glyn Moody reports on this matter.

Should Software Developers Be Liable for their Code?



Should Microsoft pay for the billions of dollars of damage that flaws in its software have caused around the world? It might have to, if a new European Commission consumer protection proposal becomes law. Although that sounds an appealing prospect, one knock-on consequence could be that open source coders would also be liable for any damage that errors in their software caused.

Here's what the European Commission is proposing:

A priority area for possible EU action is "extending the principles of consumer protection rules to cover licensing agreements of products like software downloaded for virus protection, games or other licensed content", according to the commissioners' agenda. "Licensing should guarantee consumers the same basic rights as when they purchase a good: the right to get a product that works with fair commercial conditions."

EU consumer commissioner Kuneva said that more accountability for software makers, and for companies providing digital services, would lead to greater consumer choice.


We have already covered this issue of liability and a reader wrote to us yesterday and offered his opinion too:

I suppose that this means that it is soon possible for the new administration to use military force to deal with Microsofters, if they don't dismantle their movement voluntarily:

Pentagon girds for cyber warfare

Official: No options ‘off the table’ for U.S. response to cyber attacks

Not so long ago, someone (or some group) did the electronic equivalent of cutting holes in the perimiter fence and taking out the guard towers by deploying Microsoft products inside a US Army base inside Afghanistan. The damage was quite bad as a result, and maybe the corrective actions were kept quiet and in-house, but certainly there is a paper trail leading back to those who brought MS products into the base.

In a recent speech, President Obama mentioned that US workers must come first. If that priority is followed, then it leads to removal of threats to US workers. Considering that the conficker Windows worm cost over $ 9.1 billion in the first three months, and that is on par with the other Windows worms, the 100's of billions saved over a few years by getting rid of any last trace of MS can easily pay for a new tech sector *and* a new economy.



Should Microsoft be made responsible and liable for damages caused by its software? Would this serve as a preventive measure? ____ [1] Are we being DOS attacked by a Microsoft employee?

Now I find it funny that a person that lives about 5 minutes from Redmond which is the headquarters of Microsoft is DOS attacking us and I don't believe that this is a coincidence.


[2] Bots Helped To Boost Microsoft Live Search Gains

In a blog post, Compete analyst Steve Willis attributed Microsoft's search gains to prizes awarded to users participating in Live Search Club, which features games that post queries to Microsoft's search engine.

[...]

Microsoft is essentially being DDoSed by thousands of people hundreds of times per minute, but they are mistaking this rise in traffic for people actually using Live Search."


Recent Techrights' Posts

Tons of Anti-Linux 'Articles' Published by Bots (LLMs), Maybe Microsoft's
Upon closer inspection, all this FUD turned out to be LLM garbage
Ubuntu Desktop Director of Engineering Has Only One Blog Post. It Promotes Microsoft Windows.
Remember that even 15 years ago (more or less, maybe 16 years ago) Canonical appointed a a 'former' Microsoft manager (Spencer) to lead Ubuntu on the desktop
IBM Red Hat on "era of cloud computing", pushing "hey hi" (AI) hype in Microsoft Azure
LLM slop might actually be more benign than Microsoft promotion
Corruption and Rule-Breaking Prevail at the European Patent Office (EPO), Europe's Second-Largest Institution
The law does not really exist at the EPO; it can be perceived as merely a "recommendation"
404 Media Says "Workers at NASA Told to Drop Everything to Scrub Mentions of Indigenous People, Women from Its Websites" But There's Also Accessibility in the Firing Line
In the case of abandoning accessibility, everyone stands to be hurt and proprietary software can be brought in to replace standards
 
Rumours of IBM Layoffs Apparently Confirmed Yesterday, IBM Canada Consulting Impacted (as Rumoured)
when IBM has layoffs we must also read it as Red Hat layoffs
Gemini Links 06/02/2025: Voicemail Sucks and Night of Lights
Links for the day
Links 06/02/2025: YouTube Takedowns Out of Control, 'DOGE' Breaking Laws
Links for the day
statCounter: More Countries Where Windows is Around 1% "Market Share" (People Have Moved to Android/Linux)
in some nations Windows is already 1% or less
When BetaNews Writes Real Articles About "Linux" They Promote Windows
The Web is in a bad state. We need to at least try to correct this.
Gemini Links 06/02/2025: Cynicism and "Real Magic on the C64"
Links for the day
Links 06/02/2025: New Sanctions, Layoffs, and Executive Orders
Links for the day
Distros and Desktop Environments, Devices
GNU/Linux focused
New Rumours of IBM Layoffs in 2025, IBM Consulting Still Struggles, Based on Management
"Hey hi" (AI) has been a common excuse for business failure
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, February 05, 2025
IRC logs for Wednesday, February 05, 2025
Links 05/02/2025: Kessler Syndrome and News Online
Links for the day
statCounter: Monaco Now 7% GNU/Linux ("Proper")
GNU/Linux, not counting Chromebooks, is on the rise
Many Parts of Google Lose Money
It's quite apparent that many parts of Google - even some that rely on ad revenue or push ads - aren't profiting
European Internet Forum (EIF) is Dominated by American Corporations and Microsoft Lobbyists, Staff Take the Lead
Should the officials over here or the European Parliament pay attention to these people?
Links 05/02/2025: Connection without Connectivity and Unionised Grocery Workers
Links for the day
Just Because People on Top of the Microsoft Pyramid Made a Lot of Money Doesn't Mean Microsoft is Wealthy
The bigger they are the harder they fall
Gemini Links 05/02/2025: Learning, Madman Ruling a Mad Country, Back in Geminispace
Links for the day
statCounter Shows "WIntel" Chasing a Dying Market
Microsoft acts as if it's running out of money
Free Software Foundation, Inc. (FSF) Still Raising Money, Richard Stallman Contributes
total exceeding $430k
A Lot of Stuff About "Linux" in Google News is LLM Slop, Fake 'Articles'
It seems to be getting worse
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, February 04, 2025
IRC logs for Tuesday, February 04, 2025