Bonum Certa Men Certa

EU Concerns Highlight Need to Remove Windows From the Network

Flag of Europe



Summary: With Stuxnet running rampant and security issues at Microsoft reaching an all-time high, employees of the company attempt to distract from the fact that Windows -- not "sick" PCs -- is the cause

ACCORDING TO this report, "EU calls Stuxnet 'paradigm shift'" and there is need for change.

While official U.S. response has been comparatively mild, the European Union's cybersecurity agency says Stuxnet represents a "paradigm shift" in critical infrastructure threats and that current defense philosophies need to be reconsidered.

In a statement released yesterday, Udo Helmbrecht, the executive director of ENISA (European Network and Information Security Agency), said that as a "new class and dimension of malware," Stuxnet represents a "paradigm shift."

"The attackers have invested a substantial amount of time and money to build such a complex attack tool," he said. "The fact that perpetrators activated such an attack tool can be considered as the 'first strike,' i.e. one of the first organized, well prepared attacks against major industrial resources. This has tremendous effect on how to protect national" infrastructure in the future.


CNET's Elinor Mills no longer 'forgets' to mention Windows and "let's hope the[y] draw the right conclusion about Windows" was Glyn Moody's response to the above.

Stuxnet has become somewhat of a blessing to GNU/Linux because it helps more and more people see the serious ramifications of Windows use. Stuxnet is very much alive and there is no solution to it yet. We wrote about the subject in:

  1. Ralph Langner Says Windows Malware Possibly Designed to Derail Iran's Nuclear Programme
  2. Windows Viruses Can be Politically Motivated Sometimes
  3. Who Needs Windows Back Doors When It's So Insecure?
  4. Windows Insecurity Becomes a Political Issue
  5. Windows, Stuxnet, and Public Stoning
  6. Stuxnet Grows Beyond Siemens-Windows Infections
  7. Has BP Already Abandoned Windows?
  8. Reports: Apple to Charge for (Security) Updates
  9. Windows Viruses Can be Politically Motivated Sometimes
  10. New Flaw in Windows Facilitates More DDOS Attacks
  11. Siemens is Bad for Industry, Partly Due to Microsoft
  12. Microsoft Security Issues in The British Press, Vista and Vista 7 No Panacea
  13. Microsoft's Negligence in Patching (Worst Amongst All Companies) to Blame for Stuxnet
  14. Microsoft Software: a Darwin Test for Incompetence
  15. Bad September for Microsoft Security, Symantec Buyout Rumours
  16. Microsoft Claims Credit for Failing in Security
  17. Many Windows Servers Being Abandoned; Minnesota Goes the Opposite Direction by Giving Microsoft Its Data
  18. Windows Users Still Under Attack From Stuxnet, Halo, and Zeus


"Stuxnet Used in Black Hat SEO Campaigns" says Ziff Davis which also has this new slideshow-type article about Stuxnet.

That link that you click on for information about the Stuxnet worm might be leading you to a malicious site.

It's the dark side of search engine optimization; attackers boosting the search engine rankings of malicious sites so they can lure visitors with the promise of interesting news. In this case, it's the Stuxnet worm that is being used as bait.

Stuxnet has been a regular presence in security articles since it was discovered this summer. The worm was designed to target industrial control systems, and its complexity has made it a source of interest for security researchers and IT admins alike.


As expected, Microsoft is trying to distract from Windows as the source of this problem. In fact, it tries to take advantage of this fiasco and portray itself as a rescuer. As we showed some days ago, Microsoft steps up as the so-called 'solution' to the problem which Microsoft itself helped create and the old nonsense from Charney (he started this in [1, 2, 3, 4, 5, 6, 7, 8, 9]) has washed the Web, leading to responses like Marco's "Computer health certificates for surfing the Internet? Are you serious?"

First of all, he has managed to turn a problem that today, in large part, is caused by defects in his company's products in something that any freedom-loving government would really love to fix for you. This is genius at work. Because presenting (1) virus-ridden computers as "sick PCs", that is as a "public health" issue that should be fixed by "legal frameworks" that define and enforce "trusted computers systems" is just a way to mutilate computers so they can't do anymore what you want, but only what somebody else likes. In other words, this proposal could give governments a reason to fix Microsoft problems with their (as in "yours") money because it also does something else they want. Not to mention that movie and music corporations would surely insist to add "no copy" mechanisms to the "health" checklist.

Secondly, Mr Charney comes and proposes this... just seven months after an equally absurd and offending solution to the same problem, that is taxing ALL citizens to fix Microsoft's security problems. I am speechless, really.


John Gilmore says: "I'd recommend merely ignoring his ideas til they sink like a stone. But it looks like Intel and Microsoft are actively sneaking up on the free Internet and the free 10% of the computer market by building in these techniques and seeking partnerships with governments, ISPs, telcos, oligopolists, etc to force their use. So some sort of active opposition seems appropriate."

Here is what SJVN wrote about it:

My friend Richi Jennings is fond of the idea that users with malware-infected PCs should be cut off from the Internet. To this, I say not just “Yes,” but “Hell yes.” And, as he pointed out, other people are getting behind this idea of helping to clean up the litter of spam, malware, and distributed denial-of-service (DDoS) attacks that junks up the Internet highway.

Comcast, as Jennings pointed out, will be letting malware-infected users know that they’ve got garbage on their hard disk, but not keeping them off the net. Darn it.


If this was implemented, up to about half of the world's computer users would get disconnected. It's really that serious. Despite Microsoft's many promises for the best part of a decade, things are not improving. Microsoft does not reveal just how many holes exist in its software (there is silent patching which Microsoft keeps hidden), but this month it claims to be breaking the record:

i. Microsoft Plans Biggest Patch Tuesday Security Update Ever

Microsoft is poised to break its record for the most Patch Tuesday security bulletins ever for the second time in 2010.

On Oct. 12, the company is set to release 16 security bulletins to cover a total of 49 vulnerabilities in Windows, Internet Explorer, Microsoft Office and the .NET framework. In August, the company set a new record with 14 bulletins. That update fixed 34 security holes across a number of products.


ii. MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

This month’s batch of security patches from Microsoft will be a record-breaking one: 16 bulletins addressing a whopping 49 security vulnerabilities.


Windows XP may no longer be sold, but this Swiss cheese of an operating system is here to cause trouble for several more years:

Although Windows XP will no longer be for sale this doesn't mean that existing users will be left high and dry. Microsoft has said that it will provide support for Windows XP until April 2014. Windows Vista support will also end in April 2014.


Notice what Microsoft is doing with Vista. Support gets cut on the same date, despite the releases being almost 6 years apart. What does that tell people who were foolish enough to fall for Microsoft's hype and bet on Vista? It's also a potential lesson about Vista 7. A reasonable upgrade route is to GNU/Linux and Ubuntu 10.10 will be released very shortly.

Recent Techrights' Posts

Microsoft's Latest 'Novel' Approach, Trying to Prevent People Moving Away From Microsoft and From Windows
ads say a lot about their business strategy
Microsoft-sponsored "The New Stack" Publishing Microsoft Windows Articles in "Linux" Clothing
Just sayin'...
 
Microsoft Ends Support for Vista 10, So Relative Share of Vista 10 Goes Up, Vista 11 is Down
For 2 months in a row already
When Python is Basically Run by a 'Microsoft-Friendly' Mole Who Ousts People That Actually Contributed a Lot to Python for Many Years
Removing some of the best people
Syria: Microsoft Windows Down to 8% "Market Share" (It Was 99% Just 15 Years Ago)
it was even measured at less than 5% earlier this year
Links 08/12/2024: Boeing Leaks and Bluesky’s Business Model Dilemma
Links for the day
Gemini Links 08/12/2024: UK Winds and Ultraviolet Grasslands (UVG)
Links for the day
Links 08/12/2024: Conflicts, Misinformation, and Gutting of the Media
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, December 07, 2024
IRC logs for Saturday, December 07, 2024
Czech Republic: GNU/Linux Jumps Above 4%
data from the Czech Republic for 2024
IBM Engagement Surveys "Are Usually Useful for the Executives So They Know Which Things to Ignore"
This impacts Red Hat as well
Did Microsoft 'Write' (by Chatbots) This 'Article' About WINE?
The Web is drowning in garbage
Dictatorship Formalised: Python Software Foundation Violates Its Very Own Code Of Conduct (COC) or Code Of Censorship
Incoming Python Software Foundation Executive Director, Deb Nicholson, allegedly uses COCs to get ahead while violating COCs
[Meme] 'Self-Checkout' (and Banking 'Apps'): Passing All Accountability to the Customers
Stealing
Gemini Links 07/12/2024: Leasehold and NNTP
Links for the day
Fun Statistics About Techrights (Almost a Quarter Million Files)
Here are some raw numbers
PIP (Performance Improvement Plan) as an Instrumental But Largely Hidden (From the Public) Extra Layer of IBM's Workforce Reductions
The morale at IBM is really bad
Microsoft Money: From Bribing Bloggers to SLAPPing Bloggers
Microsoft money, different strategy?
Belgium: Windows Falls to Quarter of the Market, Mobile Devices Outsell or Overtake Desktops/Laptops on the Web
Microsoft has no operating system for 'smartphones'
Links 07/12/2024: CALEA Back Doors Backfiring, Fentanylware's (TikTok) U.S. Ban a Step Closer
Links for the day
statCounter: GNU/Linux Rises Sharply to All-Time High in Republic of South Korea
Notice how sharp the rise is!
It's FOSS? No, It's SPAM.
Another sellout
Another Massive Blow to the Web
This is awful news and it neatly relates to topics that we covered this morning
All the Latest Five Blog Posts at OSI's Blog Are Written by a Microsoft Operative Salaried by Microsoft
"Open Source" no longer means anything
Legacy of a Dying World Wide Web
Many people truly believe they're "stars" in social control media
Google Does Not Have a Search Engine Anymore
Google wants to "retain" users for more "screen time" and influence over their minds; it does not save you time, it's manipulating you
[Meme] Automattic: Host With Automattic, We'll Handle Our Own Complexity for You
The RHEL modus operandi (more so with systemd)
Finding Peace With Less
There seems to be a growing consensus (speaking to other editors helps confirm this) that the Web is going in a very bad direction
Links 07/12/2024: DEI Chopped by University of Michigan, French and South Korean Governments in Turmoil
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, December 06, 2024
IRC logs for Friday, December 06, 2024
Links 06/12/2024: Meal Changes and Internet Nostalgia
Links for the day
Brittany Day (linuxsecurity.com) Reposing Linux Foundation/Microsoft FUD Using LLMs, Probably Controlled by Microsoft
Plagiarised FUD by LLMs
Three Months
Next week on Tuesday our sister site turns 20.5
Links 06/12/2024: Promotion of Fake and Illegal Patent 'Court' (UPC), South Korean Strikes, and More Bailouts at Taxpayers' Expense
Links for the day
Links 06/12/2024: Alarm Raised in EU Over Meddling and Destabilisation by TikTok, Strong Criticism of 'Open'AI
Links for the day
In France, Android Skyrockets to 52%, Windows Falls to 26%
even in rich countries across Europe Windows is rapidly losing "market share"
When News Sites Become Shopping Catalogues Disguised as 'Reviews' or 'Articles'
Sometimes Fagioli uses HEY HI (AI, LLMs actually) to make 'articles' about HEY HI
[Meme] Hit and Run with SLAPP
Microsoft staff versus Techrights
[Meme] When You Go Against Corporate Front Groups and Shills of Moneyed Interests (EDRi is Microsoft-Compromised Now)
The "golden rule" is, follow the gold
The Register Exposed Many IBM Scandals, Lawsuits, and Secret Layoffs. Now IBM Pays The Register.
Hush money?
IBM Told the Media the Secret Mass Layoffs Would Carry on Till End of November, But They Still Happen This Month
"My team of 9 people had 4 regulars and 5 contractors. All contractors gone."
All the Red Flags in New Linux Foundation Report
How telling...
Gemini Links 06/12/2024: Shrinkflation and Working at Google
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, December 05, 2024
IRC logs for Thursday, December 05, 2024