Bonum Certa Men Certa

Microsoft Windows Zombies Take Down Free Software Services Hosted on Amazon

Power button



Summary: Bitbucket goes offline due to a distributed denial of service attack (botnets)

BACK IN August when Windows zombies took Twitter down repeatedly (and to an extent Facebook also) [1, 2], some journalists went as far as suggesting that Microsoft should be sued.



Now that Windows zombies paralyse the hosting service known as Bitbucket, which serves Free software projects, one must wonder where it ever ends. We too were a victim. Is a ban on compromised Windows the last option remaining?

A crippling DDoS attack over the weekend against open-source hosting service Bitbucket and Amazon's EC2 service has questions being raised about the speed and effectiveness of Amazon's response to the emergency, as well as the general reliability of cloud services.


The Microsoft-dominated DHS speaks about hiring an army of security people to address this issue, but Cringely explains why it's unrealistic (to put it kindly).

“I’m not sure there are even a handful (of experts) with any sort of broad experience,” said expert number five, who is usually associated with security hardware. “There probably are pockets of them, with specialized narrow experience, e.g. in banking, virus or DOS attacks, military networks, etc.. And even if there were 1,000, what would they be doing on behalf of Uncle Sam?”

That’s a great question given that we as a nation can’t seem to hire and keep a national cybersecurity czar. So what are we doing hiring 1,000 experts given there is no boss?

[...]

The DHS is extremely unlikely to be able to find and train 1,000 cybersecurity experts in three years. Maybe they’ll come up with 100 (more likely 5-10), but the DHS environment will make it unlikely — very unlikely — that all of those 100 will stick around.

[...]

“Sure there are 1,000 (cybersecurity experts),” he said, ” but they are already employed… as hackers.”


Many Free software projects are being suspended by the rush of security flaws in non-Free software. The same can hardly be said about the opposite scenario; Google showed that even servers that deliver malware typically run Windows.

Recent Techrights' Posts

Microsoft's GitHub is Losing Traffic, Based on an Extensive Web Survey, and Its Future is Uncertain
Remember that Microsoft keeps close to its chest the operations and finances of GitHub (because it's embarrassing!)
[Meme] Shoestring Budget With Record Profits (Because Hundreds of Thousands of Fake European Patents Get Granted)
Record profits? EPO staff does not benefit!
 
Links 14/10/2024: Keeping Multiple Blogs, Wrestling With Misinformation
Links for the day
[Meme] Class of Microsoft
"Everything started with Microsoft DOS!"
History Education and Rejecting Creation Myths
The creator of Linux isn't the creator of GNU/Linux
How to Follow Our Updates About EPO (or Everything Else for That Matter)
follow us via RSS feeds
EPO Administration: Wait Several Months or Until Next Year for Clarifications
"After the intranet announcements of 18 September and 27 September and recent emails from CIGNA concerning opting into the VECOZO network, colleagues have been contacting us with queries and requests for guidance."
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, October 13, 2024
IRC logs for Sunday, October 13, 2024
Unrest at the European Patent Office as School Costs Eat Away the Income
"Letter to the administration on the Education Allowance - DISDH - German School"
Gemini Links 13/10/2024: ArcMenu, Emacs decide-mode, Midnight Pub Mass-Deletion Option
Links for the day
Links 13/10/2024: Science, Politics, and Some Gemini
Links for the day
Links 13/10/2024: Writing, Remembering John Wheeler, Voice Cloning
Links for the day
Certificate Authority Let's Encrypt Falls to 0.7% in Geminispace (It Was Around 12% Just 2 Years Ago and 7.5% This Past February)
Let's Encrypt is down again
Gemini Links 13/10/2024: Self-hosting Snac2 and Invasion of e-ink
Links for the day
SDxCentral, which the Linux Foundation Paid to Produce Marketing SPAM, Has Now Become Slop (LLM Spew) Disguised as 'Articles'
Google should delist it
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, October 12, 2024
IRC logs for Saturday, October 12, 2024
Links 12/10/2024: More Site Blocking, China's Hostility, and Evan Gershkovich's Upcoming Book
Links for the day
"Security Advantages" Explained by a Scammy "Security" Site That Uses LLMs to Spew Out Garbage
destroying the Web by saturating it with "bullshit".
Links 12/10/2024: Boeing to Cut 17,000 Jobs, Medieval Sleeping Habits, Warning About Liquidweb
Links for the day
Links 12/10/2024: Health, Safety and Climate Concerns
Links for the day
Gemini Links 12/10/2024: Ensemble and Assembler
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
Links 12/10/2024: TikTok Layoffs and Risk of More Wars
Links for the day
IRC Proceedings: Friday, October 11, 2024
IRC logs for Friday, October 11, 2024