Eye on Security: Windows is Vulnerable, GNU/Linux is Not
- Dr. Roy Schestowitz
- 2010-06-11 21:17:22 UTC
- Modified: 2010-06-11 21:17:22 UTC
Summary: Today's examples of security weaknesses in Windows (which help justify Google's recent abandonment of Windows on the desktop)
●
Microsoft Security Vulnerability Disclosed (no
silent patches yet?)
Microsoft was left racing to patch a Windows Help and Support Center vulnerability after Tavis Ormandy, an information security researcher who's charged with keeping Google's products secure, Thursday publicly disclosed both the bug as well as proof-of-concept attack code.
Ormandy reportedly informed Microsoft of the vulnerability on Saturday, June 5, and Microsoft acknowledged receipt the same day. Five days later, however, Ormandy went public with a posting to the Full Disclosure mailing list. Later that day, Microsoft issued its own vulnerability announcement.
●
Bug gives attackers complete control of Windows PCs [
via]
A security researcher has warned of a vulnerability in older versions of the Windows operating system that allows attackers to take full control of a PC by luring its user to a booby-trapped website.
The flaw resides in the Windows Help and Support Center, a feature that provides users with online technical support. Malicious hackers can exploit the weakness of Windows by embedding commands in web addresses that activate the feature's remote assistance tool, which allows administrators to execute commands over the internet. The exploit works in XP and Server 2003 versions of Windows and possibly others.
●
Malware Squared
Use browsers and operating systems that are more secure. Get away from the monopoly OS that is the main target of attacks. Cut down your risk by a factor of 1000 or so by a single step, migrating to GNU/Linux. It makes sense.
Recent Techrights' Posts
- Advertisers and Their Covert Impact on Publications' Output (or Writers' Topics of Choice, as Assigned or Approved by Editors)
- It cannot be trivially denied that sponsorship in the form of "advertising" impacts where publishers go (or don't go, won't go)
- Terrible Year for Microsoft Windows in Cyprus
- down from 86% to 72% since January
-
- Links 24/12/2024: Labour Strikes and TikTok Scrambling to Prop Up Radical Politicians That Would Protect TikTok
- Links for the day
- Where the Population is Controlled by Skinnerboxes Inside People's Pockets (or Purses)
- A very small fraction of mobile users practise or exercise freedom/control over the skinnerbox
- [Meme] Coin-Operated Publishers (Gaming the Message, Buying the Narrative)
- Advertise (sponsor) to 'play'
- [Meme] How to Kill Unions (Staff on Shoestring Budget Cannot Afford Lawyers)
- What next for the EPO? "Gig economy"?
- The EPO's Staff Union (SUEPO) Takes Legal Action to Rectify the Decrease in Wages (Lessening of Purchasing Power)
- here is what the union published
- Gemini Links 24/12/2024: Deedum Gemini Client Gets Colour Support, Advent of Code 2024
- Links for the day
- Microsoft Windows Slides to New Lows in Colombia
- Now Windows is at an all-time low
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Monday, December 23, 2024
- IRC logs for Monday, December 23, 2024
- A Strong and Positive Closing for the Year's Last Week
- In a lot of ways this year was a good one for Free software
- Feels Too Warm for Christmas
- Christmas is here, no snow in sight
- Links 23/12/2024: 'Negative Time' and US Arms Taiwan Again
- Links for the day
- Links 23/12/2024: The Book of Uncommon Beings, Squirrels, and Slop Ruining Workplaces
- Links for the day
- Links 23/12/2024: North Korean Death Toll in Russia at ~1,100, Oligarch Who Illegally Migrated/Stayed (Musk) Shuts Down US Government
- Links for the day
- The World's 'Richest Country' Chooses GNU/Linux
- This has gone on for quite some time
- Richard Stallman on Love
- Richard Stallman's personal website includes a section that lists three essays on the subject of love
- Apple's LLM Slop Told Us Luigi Mangione Had Shot Himself, BetaNews Used LLMs to Talk About a Dead Linus Torvalds
- They can blame it on some bot
- Microsoft, Give Me LLM Slop About "Linux" and "Santa", I Need Some Fake Article...
- BetaNews is basically an LLM slop site
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Sunday, December 22, 2024
- IRC logs for Sunday, December 22, 2024
- Technology: rights or responsibilities? - Part XI
- By Dr. Andy Farnell
- GNU/Linux and ChromeOS in Qatar Reach 4%, an All-Time High
- Qatar has money to spend, but not much of it will be spent on Microsoft, or so one can hope
- Links 22/12/2024: Election Rants and More Sites Available via Gemini
- Links for the day
- Links 22/12/2024: North Pole Moving and Debian's Joey Hess Goes Solar
- Links for the day
- This 'Article' About "Linux Malware" is a Fake Article, It's LLM Slop (Likely Spewed Out by Microsoft Chatbot)
- They're drowning out the Web
- Early Retirement Age: Linus Torvalds Turns 55 Next Week
- Now he's almost eligible for retirement in certain European countries
- Gemini Links 22/12/2024: Solstice and IDEs
- Links for the day
- BetaNews: Microsoft Slop is Your "Latest Technology News"
- Paid-for garbage disguised as "journalism"
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Saturday, December 21, 2024
- IRC logs for Saturday, December 21, 2024