Bonum Certa Men Certa

Back Doors/Bug Doors in All Versions of Microsoft Windows Need a Name, a Logo, and Branding Too

Microsoft gets a free pass for insecurity

Michael S. Rogers "I don’t want a back door. I want a front door." -- Director of the National Security Agency (NSA), only days ago



Summary: All versions of Microsoft Windows are found to have been insecure since 1997, but the bug responsible for this is not named as candidate for back door access, let alone named (with logo and marketing) like far less severe bugs in Free/libre software such as OpenSSL

WHILE many journalists still refuse to call out Windows (see this new piece from Dan Goodin, who writes about crackers hoarding Windows hosts by the millions -- in botnets -- while mentioning the word "Windows" only once, very deep inside the article), some have no choice by to acknowledge that not every single computer runs Windows and therefore we should call out Windows when it's clearly to blame.



"This wouldn't be the first time it happens; recall how Google had to alert Microsoft for 3 months about a serious flaw while Microsoft did absolutely nothing (as if the intention was to keep Windows insecure, albeit secretly, very much like Apple)."Although there is no "branding" yet (as Microsoft buddies from a a Microsoft-linked firm like to do to Free/libre software bugs), there is a very serious bug in all versions of Windows (even the one still in development) that Microsoft's allies at the NSA must be very happy about, especially as the bug is 18 years old (meaning that Windows has allowed remote access since 1997, or around the time Microsoft was seeking to appease the US government after it had shamelessly broken many laws).

The bug was found not by Microsoft but by this team (press release), which probably has no access to Windows source code. This wouldn't be the first time it happens; recall how Google had to alert Microsoft for 3 months about a serious flaw while Microsoft did absolutely nothing (as if the intention was to keep Windows insecure, albeit secretly, very much like Apple).

ISPs should now restrict or ban Windows use, as it poses a huge risk (botnets and DDOS, never mind risk to all data stored on machines running Windows). Here is some early coverage of this [1, 2], some correctly emphasising that it's a 18-year-old vulnerability [1, 2].

Let's see if this starts a big debate about the insecurity of proprietary software (as other bugs with "branding" did to Free software, by means of gross generalisation). This "New Security Flaw Spans All Versions Of Windows" (similar wording in this headline). 18 years, eh? It even predates 9/11. It's older than some readers of this Web site.

Watch this disgraceful piece titled "Will Microsoft’s Security Measures in Windows 10 Tarnish Open-Source Development?"

Yes, it's more propaganda; The disingenuous openwashing of Windows continues, as we'll show in our next post.

"Our products just aren't engineered for security."

--Brian Valentine, Microsoft executive



Recent Techrights' Posts

They're Very Jealous of Richard Stallman and His Freedom (or Simple Lifestyle)
Jealousy is toxic because it can cause rational people to act irrationally and even severely harm themselves
Akira Urushibata on GNU coreutils
new message
There's Nothing Funny About Lawbreaking
There's plenty of room in society for humour, but "hacking" the state by breaking laws isn't cool or hip
 
Links 27/05/2025: Science Defunded, India Arrests an Academic
Links for the day
Gemini Links 27/05/2025: From Celsius to Fahrenheit and Deleting Social Control Media
Links for the day
Microsofters Have, in Effect, Attempted Extrajudicial Action Against Us
Courts and Judges (or Masters) don't exist to facilitate this kind of "bro" culture
UK High Court Masters Are Not Your Jesters, Microsoft
Judges aren't there for "funny" spectacles, they're there to act as arbiters in critical cases, not SLAPPs
Links 27/05/2025: Mass Layoffs at Volvo and More Evidence of 'AI' (Slop) Being a Passing Fad
Links for the day
The Code of Conduct (CoC) Gaslighting Phenomenon
There are still many people and projects foolish enough to outsource their labour to Microsoft via GitHub
Anouk Rozestraten (Deputy Director) Appears to Have Left the Free Software Foundation
Let's hope Rozestraten is still using and promoting Free software
More Mass Layoffs Coming Soon to Microsoft, Just a Question of When and How Many
Numbers from Washington were close to 5% and judging by prior rumours, it would be 5% + 5% (total 10%) at a later month
Links 27/05/2025: Bikes, Ideal Computers, and BYO
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, May 26, 2025
IRC logs for Monday, May 26, 2025
Richard Stallman's Milan Talk (Public Presentation) Was Packed, Video Available Soon
Looks like they even ran out of seats
Gemini Links 26/05/2025: Intangible Stuff and Slop Issues
Links for the day
The Openwashing Shills Initiative (OSI) - Part I: Complaints to IRS or USDOJ Needed
If enough people do it, this will be more effective, more so if people who are based in the US do it
Open Source Initiative (OSI) Lobbying and the OSI's Status at Stake
At the end we plan to summarise all the issues in one very long article
Breaking Into Other People's Devices Without Authorisation Isn't "Funny" or "Research"
“Chaos was the law of nature; order was the dream of man.”
The Issue Isn't the Internet, the Issue is How People Are Taught to Use or Misuse It
The Web is circling down the drain. The Internet is not.
A Healed Reputation of a Movement's Leader and His Robust Message
The more aggressively you push against resistors, the more credibility they will gain
Links 26/05/2025: Deletions from Microsoft's GitHub, Telegram Blocked in Vietnam
Links for the day
Linux Released Last Night and There's Already LLM Slop With Slop Images
BetaNoise does not seem to mind this anymore
Links 26/05/2025: Walmart Layoffs and DRM Dumpster Fire ('Old' Fire TV Devices Lose Netflix Access)
Links for the day
Gemini Links 26/05/2025: USB Camera Viewer and Fantasy Life
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, May 25, 2025
IRC logs for Sunday, May 25, 2025
Links 25/05/2025: 15 Years of UK Legal Aid Applicant Data Grabbed and 2 Billion Discord Messages Leaked Online
Links for the day
Gemini Links 25/05/2025: Farming and OpenBSD 7.7 on Acer Aspire ES 15
Links for the day
Fighting for Freedom is Much Better Than Fighting for Money
If life is about accumulation of money, then people will be "busy making money" till they die prematurely (with nothing to do with this money)
The Microsoft SLAPP Dossiers
A rather likely outcome is, they'll lose their licence to operate
Links 25/05/2025: Harvard’s Troubles and New Openwashing Examples
Links for the day
Gemini Links 25/05/2025: Whales and Battery Replacement
Links for the day
Links 25/05/2025: Climate Action Ridiculed and "Tesla Executive Admits That Self-Driving Is Going Nowhere Fast"
Links for the day
The Next Two Phases of Our Open Source Initiative (OSI) Series
Whatever people used to think about the OSI is no longer applicable and its current acronym is a misleading misnomer
Richard Stallman Has Barely Changed
Collecting "estate" "assets"? That's not "success" in the eyes of Dr. Stallman
Public Talk by Richard Stallman (RMS) Tomorrow
Still advertised
Gemini Links 25/05/2025: Konsole Layout Changes and Capitulation to Surveillance World
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, May 24, 2025
IRC logs for Saturday, May 24, 2025