Bonum Certa Men Certa

Microsoft Windows Zombies Also Knocked Facebook and Gawker Offline, More “Critical” Microsoft Flaws Discovered

Summary: More victims of Windows botnets abound; Microsoft discloses 5 new remotely-exploitable vulnerabilities

LAST NIGHT we wrote about Twitter's injury from Windows zombies. Twitter was not alone however; now that the Web is saturated with Windows botnets, anyone with an axe to grind can take Web sites of choice offline. A decade or so ago even Yahoo! was a victim, so our own suffering is very minor in comparison (but increasingly common). According to the BBC, Facebook is another new victim.



Denial-of-service (DOS) attacks take various forms but often involve a company's servers being flooded with data in an effort to disable them.


The Register reports that Gawker too is a victim.

New York-based media news and gossip blog network Gawker is recovering from a debilitating denial of service attack.


SJVN wrote a good essay on how Twitter was killed by Windows botnets.

DDoS attacks are hard to beat. While some Twitter fans are claiming that this is the biggest DDoS attack ever, I'm inclined to doubt it. Twitter, even though its performance has gotten much better, has often teetered on the edge of collapse due to the enormous load its users put on its social network infrastructure. No, the DDoS attack on Google earlier this year was probably still the worst attack on record.

How is this happening? Well, let me tell you. Today's DDoS attacks are made by Windows-powered botnets. They're not terribly sophisticated about these attacks. The last major one, which may or may not have come from North Korea, was driven by MyDoom, Windows malware from 2004.

[...]

Russians already successfully attacked Estonia's Internet infrastructure in 2007. With Windows botnets growing by leaps and bounds, it's easier than ever for governments or even just a handful of people to knock out major Web sites like Twitter.

I've said it before, I'll say it again. Thanks to Windows' security weaknesses, botnets are now commonplace and we can only expect to see more DDoS attacks in the future.


One person believes that he knows who was behind the attack (and its motives), being the botmaster or the leader of several.

As Twitter struggled to return to normal Wednesday evening, a trickle of details suggested that the outage that left 30 million users unable to use the micro-blogging service for several hours - at least in part - may have been the result of a spam campaign that targeted a single user who vocally supports the Republic of Georgia.


Windows has become an expensive and dangerous political tool. Based on this new report from Heise, change is nowhere near.

Microsoft to patch nine security vulnerabilities on Patch Tuesday



Five of the security updates reportedly patch critical vulnerabilities that could lead to remote code execution in Windows and a variety of other software.


Here is a couple more that are new.

"It is no exaggeration to say that the national security is€ also implicated by the efforts of hackers to break into€ computing networks. Computers, including many running Windows€ operating systems, are used throughout the United States€ Department of Defense and by the armed forces of the United€ States in Afghanistan and elsewhere."

--Jim Allchin, Microsoft



Recent Techrights' Posts

Seductive Mirage or Allure of Complex, Proprietary Coffee Machines (or Similar White Elephants)
Software is a lot like those things
Sloppy Reporting About Slop, or How The Register MS Lowers Its Standards
Maybe the management isn't even aware of this
IBM's Strategy: Cull 'Expensive' Workers, Replace Them With Cheaper Ones
So far we saw not even one rebuttal or challenge to the claim of Red Hat layoffs scheduled for tomorrow
The Goal of Coopetition Assumes You're Friends
it will never work with Microsoft
 
Slopwatch: LinuxSecurity, Brian Fagioli, and Other Serial Sloppers
Maybe Microsoft wants to dub this "Web5"
Gemini Links 10/08/2025: Residents Management Company, Automation, and Politics
Links for the day
Links 10/08/2025: AOL Ending Dial-up
Links for the day
Links 10/08/2025: Webrings, “AI Sunglasses” and “AI Eyeglasses”, US Administration Intensifies Attacks on Science and Research
Links for the day
Sometimes Newer is Worse
We generally need to reject this dumb notion that "old" means bad
The Code Used to Make Techrights Fits on a Seventh of a Floppy Disk (or 100KB When Compressed)
For the sake of comparison I've just downloaded the latest version of WordPress. The ZIP file is 27.2MB in size, or ~27,200KB.
What They Tell Young Programmers
Coding in 2025
Simpler is Better When Simple is Enough
Over-complicating things to "sell" new versions is so 1990s
Links 10/08/2025: From Social Control Media to Prison, New Examples of Windows TCO
Links for the day
If You Attack Somebody Too Much You Legitimise and Strengthen That Somebody
at the end those attacks add up to a "martyr" status
The Man Who Helped Microsoft Kill Linux is Trying to Delay Our Lawsuits Against Him
By conservative estimates, and based on court documents submitted by them, they're prepared to spend over a million dollars on lawyers, fighting against me and my wife
Gemini Links 10/08/2025: Gen Con 2025 and Framework Laptop
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, August 09, 2025
IRC logs for Saturday, August 09, 2025
The Register MS (Microsoft) or The Register AI (Slop)?
What a slopfest!
Is Red Hat About to Give the Boot to GNOME People Who Helped Microsoft 'Secure' (Monopolised) Boot?
It was always a dumb idea to play along with Microsoft's hardware mischief
Sales of Windows on PCs (Windows Licences) Go Down
Microsoft has a big problem in its hands
The Hype That Microsoft and The Register MS (Among Others) Promote Helps Stage DDoS Attacks on Free Software Sites
Microsoft is, to put it bluntly, pure evil
Links 09/08/2025: Putin Allegedly to Visit Alaska (Which He Deems Part of Russia), Mike Tyson Sued for Copyright Infringement
Links for the day
Slopwatch: Linux Journal, LinuxSecurity, and Google News With Its Slopfarms of Choice
SEO spam, made with LLMs
Follow the Money: The Register MS Gets Paid to Promote "Hey Hi" Ponzi Scheme/Hype, Some Fake 'Articles' Might Be Composed by LLMs Already
paid to promote slop
Gemini Links 09/08/2025: Rethinking Aliases and Posting on Gopher vs. the Web
Links for the day
Links 09/08/2025: Apollo 13 Astronaut Jim Lovell Dies, Slop Future Bleak
Links for the day
After Shutting Down Studios, Divisions, Applications (e.g. Skype) Microsoft is Also Shutting Down 'Apps'
Cuts all around as layoffs persist this month, Microsoft tries to get many people to resign, and debt skyrockets
Most of Geminispace Can Probably Fit on a CD-ROM or a DVD (the Textual Part)
If one excludes very large capsules and ones that contain non-textual contenty
Eventually UEFI 'Secure Boot' Will be Dropped (Users Will Demand Its Removal and Boycott Its Pushers)
we expect OEMs will just listen to users
The Register MS: We Know Slop is a Bubble and Mindless Hype, But We Get Paid to Participate
Call out the culprits
Hate Mail From Anonymous Cowards
if this persists, we'll need to escalate
There Are Probably Over a Million Pages in Geminispace
there are two many limitations which merit a mention when it comes to assessing magnitude
Informal Open Letter to the Lawyer of the Microsofters (on Who's Funding the SLAPPs Against Techrights)
Whenever I ask about the funding they try to change the subject and act all aggressive
Microsoft Lunduke is Just Provoking People for Provocation's Sake
Be forewarned and remember where this guy came from: Microsoft
Besieged by Plagiarists Who Play With LLMs and Image Fusions
We really need to exercise or use our collective voice to oppose Serial Sloppers
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, August 08, 2025
IRC logs for Friday, August 08, 2025
Gemini Links 09/08/2025: Water Painting and Political Violence
Links for the day
Slopwatch: LLM Sloppers in Google News, LinuxSecurity, and More
they also perpetuate some falsehoods as the LLMs lack any comprehension
Links 08/08/2025: China King of Plastics and US Dictator Plans to Meet Russian Dictator
Links for the day
Gemini Links 08/08/2025: Cracking a Family Member's Password and Overdose of Slop
Links for the day
Red Hat's Latest Talent Hunt, Day Ahead of Mass Layoffs, is Yet Another Microsoft Executive
Red Hat will apparently commence mass layoffs early this coming Monday
Links 08/08/2025: "Quit Facebook" and High Cost of Microsoft/Windows Shown Again ("BlackSuit")
Links for the day
Good Morning, Readers of The Register MS
Things The Register MS could (but does not) cover this morning
Why Gemini Protocol Has a Bright Future
Maybe Gemini Protocol's promise becomes more appealing as the Web turns to slop and bloat
It's a Lot Easier to Participate in the Unethical System Than to Oppose Injustices in It
Going after powerful and high-budget interests is never easy
Microsofters Filed Two SLAPPs Against Us, Now They Cannot Keep Up With Judges' Orders
For over 4 months already their facilitator in London has been under investigation by British authorities because of what's being done to my wife and I
Censorship Regarding Red Hat Layoffs
Talk about this? They'd rather not.
Struggling to Cut Costs, Microsoft Continues Shutting Down and Cancelling Stuff This Month
There are August layoffs at Microsoft
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, August 07, 2025
IRC logs for Thursday, August 07, 2025
Fake 'Linux' Articles, Written by Bots to Take Traffic Away From Real Articles
LLM slop helps replace information with junk or misinformation
When Google's Googlebombing of "Gemini" Was Not Enough; They Now Also Googlebomb "Gemini Space"?
We know GAFAM not only worries about Gemini Protocol but also attempts to 'infiltrate' Geminispace
The Register MS Promotes Microsoft Slop, Assumes All Readers Use Microsoft Windows
Microsoft really dominates the site
Gemini Links 08/08/2025: KDE/Qt Development and What's Missing From "Retro"
Links for the day