Eye on Security: Internet Still Threatened by Microsoft Windows
- Dr. Roy Schestowitz
- 2010-07-20 10:49:10 UTC
- Modified: 2010-07-20 10:49:10 UTC
Summary: New Windows Trojans, malware, and the likes of that
●
Can Windows kill the Internet?
I've long thought that someday Windows' security problems could foul up the Internet for everyone. That day may be arriving.
It's not just me being paranoid about Windows. It's the ISC (Internet Storm Center), the group that tracks the overall health of the Internet. They're wondering whether the newly discovered "LNK" exploit might be used to slam the brakes on the Internet's high-speed traffic.
According to Lenny Zeltser, an ISC security consultant, the ISC has
decided to raise the Infocon level to Yellow to increase awareness of the recent LNK vulnerability and to help preempt a major issue resulting from its exploitation. Although we have not observed the vulnerability exploited beyond the original targeted attacks, we believe wide-scale exploitation is only a matter of time. The proof-of-concept exploit is publicly available, and the issue is not easy to fix until Microsoft issues a patch. Furthermore, anti-virus tools' ability to detect generic versions of the exploit have not been very effective so far.
●
New Menace in the War Against Online Crime
Avoiding Web-borne infections is increasingly difficult, because many malicious sites are legitimate sites that have been hacked. But here are four steps to take to protect your computer:
1) Use the latest version of your favorite Web browser, because most have important anti-malware technologies not available in the older models. Consider using Google Chrome, which uses so-called sandboxing technology to stop drive-by downloads.
●
Microsoft initiates zero-day vulnerability probe
Microsoft is investigating reports of ongoing "targeted attacks" that reportedly exploit a serious Windows Shell vulnerability.
●
Zeus baddies unleash nasty new bank Trojan
Hackers have created a new version of the Zeus crimeware toolkit that's designed to swipe bank login details of Spanish, German, UK and US banks.
The malware payload, described by CA as Zeus version 3, is far more selective in the banks it targets. Previous versions targeted financial institutions around the world while the latest variant comes in two flavours: one that only target banks in Spain and Germany, and a second that only targets financial institutions in the UK and US.
●
MS Patch Tuesday: Googler zero-day fixed in 33 days
●
You Have to Wait a Month for Reinforcements
Folks who have migrated to GNU/Linux may have to work hard to make the transition but they can relax a lot afterwards. That other OS and its apps will be around for years drawing attention from malware and GNU/Linux will just keep growing staying small and modular with lots of immunity built in. The cost of fighting malware is almost entirely born by users of that other OS and GNU/Linux gets a free ride. I like that. The cost of monopoly is compounding itself and the price of Freedom declines.
Recent Techrights' Posts
- Microsoft Front Group Starts the Year by Championing Underage (or Child) Labour
- the fake 'FSF'
- Chatbots Are Not Data-Driven, They're Human-Censored and Rely on Wage Slaves (and Sometimes Unpaid Volunteers)
- This is the Microsoft wage slavery
- Gemini Links 12/01/2025: No Country For Old Men, Burned Homes, and "Planet P is Clean"
- Links for the day
- Slopwatch: Brittany Day and Brian Fagioli Are Still at It, Googlebombing "Linux" With LLM Slop (Taking Away Traffic From the Articles They're Plagiarising)
- Some more sites that used to cover GNU/Linux have turned into slopfarms
- [Meme] Being High on Drugs Isn't Happiness (Likewise, Being a "Star" in Social Control Media is Temporary)
- Many entities - or people - will regret telling everybody "follow me on Twitter"
-
- Record Lows for Windows (Microsoft) in Botswana
- The market share of Vista 11 is seen as going down
- Preserving Deleted Articles About Bill Gates Talking Like a Drug Dealer About Computer Users
- Now it's 2025. Different challenge.
- Links 13/01/2025: Disinformation, Social Control Media Actively Promoting Nazism, and Catchup With Ukraine
- Links for the day
- TPM Boosters Inside Debian (TPM Isn't About Security, It is About Control Over Users and Their Machines)
- We're not rushing to any conclusions
- Aaron Swartz Died 12 Years Ago After a Vicious Government Campaign to Stop Him
- The Aaron Swartz story is a reminder of the importance of having verifiable/verified information out there for the general public to see
- Links 13/01/2025: GitLab Enshittification and Minimalism and Efficiency with Gemini Protocol
- Links for the day
- Links 13/01/2025: Hardware, Health, and Conflicts
- Links for the day
- Microsoft Appears to Have Fallen to Only 15% in Maldives
- This is a problem for Microsoft
- Rumours of IBM Canada Layoffs
- We'll keep a vigilant eye on this
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Sunday, January 12, 2025
- IRC logs for Sunday, January 12, 2025
- Bots Covering Debian Releases
- It would be quite safe to guess that chatbots were at least partly leveraged for that text
- Links 12/01/2025: Microsoft Admits It's Laying Off Staff Only Where Staff is "Expensive" (Race to the Bottom)
- Links for the day
- [Meme] They Say That RMS Says the "F" Word (Freedom) Too Much...
- About 32.7k US dollars are now left for the FSF to raise (in 6 days)
- Links 12/01/2025: More Sanctions Against Russia, SCOTUS Signals Fentanylware (TikTok) Ban Will Stay
- Links for the day
- [Meme] A Jihad Against Servers the User Controls
- We need to strive for and work towards greater control by users over "their" servers
- Microsoft Azure-Only Bugs in "Linux" Can "Compromise the System."
- From ubuntu.com and linux.org a few days ago
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Saturday, January 11, 2025
- IRC logs for Saturday, January 11, 2025
- Gemini Links 12/01/2025: DHL Express Does Not Deliver, Oddmuse Update
- Links for the day
- Links 11/01/2025: Social Control Media Facing Sanctions, Carter Respected at Funeral
- Links for the day
- If TikTok (China) Has the Rights of American Persons, Then ByteDance Can be Sentenced to Death
- TikTok - like Julian Assange - does not enjoy any protections of the First Amendment and since it's not a person it would lack these protections as an American company, too
- After a Year of Layoffs in Microsoft Nigeria (and Microsoft in Africa at Large) Windows Falls to New Lows and Bing Falls to 0.46% "Market Share"
- Of course Microsoft gave bribes in Nigeria to suppress GNU/Linux adoption
- An Important Lesson About Patents and Patent Maximalism (They Drive People and Companies Away)
- This previously happened in Texas, where companies perceived their presence (in any form) to be a liability as patent trolls could drag them to friendly courts and win "damages"
- When It Comes to Fentanylware (TikTok), a Digital Weapon of a Hostile Entity, Common Dreams is Jumping the Shark Again (Years After It Ran Out of Steam or Money)
- Or maybe it likes the agenda promoted (curated) by Fentanylware (TikTok) and its parent company, Bytedance or Chinese Community Party (CPP)
- BetaNews is Now Officially a Spamfarm With Phantom Authors and Fake Text (SPAM and Linkspam Made With LLM Slop)
- That's it, the site is virtually dead now (maybe that was the plan all along)
- Hazem Abbas of medevel is Ruining His Site With LLM Slop
- Some of his articles are original, but now everything is suspect
- [Meme] Real and Fake (or "several influential "open source" organizations [which] have come to be dominated by large companies")
- The Free Software Foundation has not sold out
- Free Software Foundation: Anchoring the FSF in its values
- Original by Free Software Foundation
- GNU/Linux Surges to All-Time Highs in Greenland, Windows Sinks to All-Time Lows
- a lot of GNU/Linux gets detected there lately
- Microsoft's "Donald Trump First" Doctrine
- national deficits growing
- Microsoft in Trouble as Azure Breaks and Only Days After Promising Investment in "Datacentres" Construction of Actual Datacentres Paused (Expect More Azure Layoffs Very Soon)
- No wonder many people who got trapped inside Azure quit Azure, which keeps bleeding (losses and layoffs)
- Gemini Links 11/01/2025: Wildfire, Militia and the Mole, IRC vs Social Control Media
- Links for the day
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Friday, January 10, 2025
- IRC logs for Friday, January 10, 2025