EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

10.18.10

Security Propaganda From Microsoft: Villains Become Heroes

Posted in Deception, Microsoft, Security, Windows at 3:48 am by Dr. Roy Schestowitz

Robin Hood

Summary: A survey of security news and an analysis of Microsoft spin, namely how the company diverts attention away from its failures and portrays itself as a security leader

YESTERDAY we caught up with 3 weeks of Microsoft (in)security news, adding to our record more evidence to show what we had argued earlier this month. While the former Microsoft executives who now run Juniper Networks help protect Windows from those many vulnerabilities (some of which are hidden), there is no denying of the fact that Windows vulnerabilities are on the rise [1, 2]. To highlight bits from the news, vulnerabilities multiply fast and they are found by the dozens:

VUPEN Security Discovers Critical Vulnerabilities in Microsoft Software

VUPEN Security, the world leader in vulnerability research and analysis, today announced that the VUPEN Vulnerability Research Team (VRT) has been working with Microsoft for six months to address twenty-one vulnerabilities discovered by VUPEN in major Microsoft software.

Also in the news:

Windows full of holes, ready for Microsoft patch

In case you were wondering, the previous record was 34 in late 2009, which makes the number 49 seem even bigger. You have to wonder if we are getting better or worse about this security thing.

Microsoft Issues Biggest Fix Ever For Windows, Explorer, Office

Microsoft releases security patches for Windows, IE, Office

Microsoft will roll out a whopper load of patches

Microsoft Preps Record Security Patch Tuesday

Microsoft Patch Tuesday expected to set record

Microsoft’s Biggest Patch Tuesday Ever — Better Update Your System, or Else

Microsoft sets Patch Tuesday record, fixing 49 security holes

Microsoft issues patches for a record 49 security holes

Patch Tuesday brings record harvest of security fixes

As that last one puts it: “Many of these holes allow a remote takeover of your computer, in some cases after you do nothing wrong beside visit the wrong Web page. One such opening has frequently been exploited by the Stuxnet worm that’s been running around the world.”

Microsoft has only just done something about Stuxnet, which we wrote about in:

  1. Ralph Langner Says Windows Malware Possibly Designed to Derail Iran’s Nuclear Programme
  2. Windows Viruses Can be Politically Motivated Sometimes
  3. Who Needs Windows Back Doors When It’s So Insecure?
  4. Windows Insecurity Becomes a Political Issue
  5. Windows, Stuxnet, and Public Stoning
  6. Stuxnet Grows Beyond Siemens-Windows Infections
  7. Has BP Already Abandoned Windows?
  8. Reports: Apple to Charge for (Security) Updates
  9. Windows Viruses Can be Politically Motivated Sometimes
  10. New Flaw in Windows Facilitates More DDOS Attacks
  11. Siemens is Bad for Industry, Partly Due to Microsoft
  12. Microsoft Security Issues in The British Press, Vista and Vista 7 No Panacea
  13. Microsoft’s Negligence in Patching (Worst Amongst All Companies) to Blame for Stuxnet
  14. Microsoft Software: a Darwin Test for Incompetence
  15. Bad September for Microsoft Security, Symantec Buyout Rumours
  16. Microsoft Claims Credit for Failing in Security
  17. Many Windows Servers Being Abandoned; Minnesota Goes the Opposite Direction by Giving Microsoft Its Data
  18. Windows Users Still Under Attack From Stuxnet, Halo, and Zeus

Now, any sane person would say that Microsoft and almost nobody else is to blame for these vulnerabilities and should therefore be held accountable. But not when Microsoft’s spin machine occupies the news, though. Take the Bill Gates-funded Guardian [1, 2, 3, 4] for example. It serves as Microsoft’s platform right now by publishing “Microsoft Removed 6.5 Million Bots From Windows Machines In Q2″ and it’s the same propaganda the MSBBC published some days ago, having previously (just a week beforehand) given Microsoft's Charney the platform yet again. It’s rather astonishing that journalists are able to portray Microsoft as the “good guy” in this story by merely reciting reports from Microsoft. It’s an example of the failure of today’s journalism and it’s hard to tell just how much impact the former Microsoft UK executives who run the BBC or Bill Gates’ sponsorship of The Guardian have here. A few hours ago our reader told us that “Bill Gates on BBC breakfast news later.” Later this week we’ll write about that too.

“It’s rather astonishing that journalists are able to portray Microsoft as the “good guy” in this story by merely reciting reports from Microsoft.”Anyway, here is a rant about what Microsoft is trying to do here and here are a few more examples of the Microsoft spin [1, 2, 3]. So fake news is good news? It should not be the case. Either way, it’s clear that they portray Microsoft as the saviour, not the culprit, even though the problem itself was caused by Microsoft’s continued negligence [1, 2, 3]. Earlier this morning we gave an example of similar spin. Here is the same propaganda with a “Zeus” flavour [1, 2]. The latter says that “Zeus-created botnets, known as Zbots, control many millions of computers — mostly Windows XP machines — in almost 200 countries.” Okay, so why give Microsoft any credit? That’s just mastery of spin. We wrote about Zeus in posts such as [1, 2, 3, 4, 5, 6, 7].

Watch out for the spin, some of which originates in the ‘Microsoft press’ (e.g. Kurt Mackie). As usual, Microsoft will just blame the users, even though zero-day flaws mean that any Windows computer can be hijacked even if it’s fully patched. As for those who patch early, they take other types of risks and this bit of news is why people are reluctant to patch:

On Tuesday, Microsoft released updates for both Microsoft Office 2004 and 2008 to correct some security vulnerabilities in the software, but a number of people are having difficulties opening some Excel spreadsheets in Office 2004 after the update.

As mentioned by CNET member and MacFixIt reader Kurt in the comments of our article announcing the update:

“After applying the update yesterday, some Excel documents refuse to open. For a fraction of a second the open progress bar shows up, then nothing happens.”

This problem has been echoed by numerous other Office users here at CNET as well as at the Office for Mac forums, and Microsoft’s Mac team is currently investigating the issue.

Yes, that’s why many people won’t patch, either. Even those whose machine is not fully patched can sometimes blame Microsoft’s poor quality of patches.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

2 Comments

  1. twitter said,

    October 18, 2010 at 7:34 am

    Gravatar

    Microsoft’s efforts are sort of like tobacco companies telling cancer patients that their favorite cigarette has been reformulated and should be safe to use if their local doctor can cure them by some inadequate surgery. The main difference is that there’s a better link between Windows and malware than the near certainty of cancer after smoking. It’s no wonder that Bill Gates invests in tobacco now.

    Dr. Roy Schestowitz Reply:
    October 18th, 2010 at 9:42 am

    He also pretends to fight against smoking. There’s a conflict there.

What Else is New

  1. Links 9/1/2017: Civilization VI Coming to GNU/Linux, digiKam 5.4.0 Released

    Links for the day

  2. Links 9/1/2017: Dell’s Latest XPS 13, GPD Pocket With GNU/Linux

    Links for the day

  3. Update on Patent Trolls and Their Enablers: IAM, Fortress, Inventergy, Nokia, MOSAID/Conversant, Microsoft, Intellectual Ventures, Faraday Future, A*STAR, GPNE, AlphaCap Ventures, and TC Heartland

    A potpourri of reports about some of the world’s worst patent trolls and their highly damaging enablers/facilitators, including Microsoft which claims that it “loves Linux” whilst attacking it with patents by proxy

  4. Mark Summerfield: “US Supreme Court Decision in Alice Looks to Have Eliminated About 75% of New Business Method Patents.”

    Some of the patent microcosm, or those who profit from the bureaucracy associated with patents, responds to claims made by Techrights (that software patents are a dying breed in the US)

  5. Eight Wireless Patents Have Just Been Invalidated Under Section 101 (Alice), But Don't Expect the Patent Microcosm to Cover This News

    Firms that are profiting from patents (without actually producing or inventing anything) want us to obsess over and think about the rare and few cases (some very old) where judges deny Alice and honour patents on software

  6. 2017: Latest Year That the Unitary Patent (UPC) is Still Stuck in a Limbo

    The issues associated with the UPC, especially in light of ongoing negotiations of Britain's exit from the EU, remain too big a barrier to any implementation this year (and probably future years too)

  7. Links 7/1/2017: Linux 4.9.1, Wine 2.0 RC4

    Links for the day

  8. India Keeps Rejecting Software Patents in Spite of Pressure From Large Foreign Multinationals

    India's resilience in the face of incredible pressure to allow software patents is essential for the success of India's growing software industry and more effort is needed to thwart corporate colonisation through patents in India itself

  9. Links 6/1/2017: Irssi 1.0.0, KaOS 2017.01 Released

    Links for the day

  10. Watchtroll a Fake News Site in Lobbying Mode and Attack Mode Against Those Who Don't Agree (Even PTAB and Judges)

    A look at some of the latest spin and the latest shaming courtesy of the patent microcosm, which behaves so poorly that one has to wonder if its objective is to alienate everyone

  11. The Productivity Commission Warns Against Patent Maximalism, Which is Where China (SIPO) is Heading Along With EPO

    In defiance of common sense and everything that public officials or academics keep saying (European, Australian, American), China's SIPO and Europe's EPO want us to believe that when it comes to patents it's "the more, the merrier"

  12. Technical Failure of the European Patent Office (EPO) a Growing Cause for Concern

    The problem associated with Battistelli's strategy of increasing so-called 'production' by granting in haste everything on the shelf is quickly being grasped by patent professionals (outside EPO), not just patent examiners (inside EPO)

  13. Links 5/1/2017: Inkscape 0.92, GNU Sed 4.3

    Links for the day

  14. Links 4/1/2017: Cutelyst 1.2.0 and Lumina 1.2 Desktop Released

    Links for the day

  15. Financial Giants Will Attempt to Dominate or Control Bitcoin, Blockchain and Other Disruptive Free Software Using Software Patents

    Free/Open Source software in the currency and trading world promised to emancipate us from the yoke of banking conglomerates, but a gold rush for software patents threatens to jeopardise any meaningful change or progress

  16. New Article From Heise Explains Erosion of Patent Quality at the European Patent Office (EPO)

    To nobody's surprise, the past half a decade saw accelerating demise in quality of European Patents (EPs) and it is the fault of Battistelli's notorious policies

  17. Insensitivity at the EPO’s Management – Part V: Suspension of Salary and Unfair Trials

    One of the lesser-publicised cases of EPO witch-hunting, wherein a member of staff is denied a salary "without any notification"

  18. Links 3/1/2017: Microsoft Imposing TPM2 on Linux, ASUS Bringing Out Android Phones

    Links for the day

  19. Links 2/1/2017: Neptune 4.5.3 Release, Netrunner Desktop 17.01 Released

    Links for the day

  20. Teaser: Corruption Indictments Brought Against Vice-President of the European Patent Office (EPO)

    New trouble for Željko Topić in Strasbourg, making it yet another EPO Vice-President who is on shaky grounds and paving the way to managerial collapse/avalanche at the EPO

  21. 365 Days Later, German Justice Minister Heiko Maas Remains Silent and Thus Complicit in EPO Abuses on German Soil

    The utter lack of participation, involvement or even intervention by German authorities serve to confirm that the government of Germany is very much complicit in the EPO's abuses, by refusing to do anything to stop them

  22. Battistelli's Idea of 'Independent' 'External' 'Social' 'Study' is Something to BUY From Notorious Firm PwC

    The sham which is the so-called 'social' 'study' as explained by the Central Staff Committee last year, well before the results came out

  23. Europe Should Listen to SMEs Regarding the UPC, as Battistelli, Team UPC and the Select Committee Lie About It

    Another example of UPC promotion from within the EPO (a committee dedicated to UPC promotion), in spite of everything we know about opposition to the UPC from small businesses (not the imaginary ones which Team UPC claims to speak 'on behalf' of)

  24. Video: French State Secretary for Digital Economy Speaks Out Against Benoît Battistelli at Battistelli's PR Event

    Uploaded by SUEPO earlier today was the above video, which shows how last year's party (actually 2015) was spoiled for Battistelli by the French State Secretary for Digital Economy, Axelle Lemaire, echoing the French government's concern about union busting etc. at the EPO (only to be rudely censored by Battistelli's 'media partner')

  25. When EPO Vice-President, Who Will Resign Soon, Made a Mockery of the EPO

    Leaked letter from Willy Minnoye/management to the people who are supposed to oversee EPO management

  26. No Separation of Powers or Justice at the EPO: Reign of Terror by Battistelli Explained in Letter to the Administrative Council

    In violation of international labour laws, Team Battistelli marches on and engages in a union-busting race against the clock, relying on immunity to keep this gravy train rolling before an inevitable crash

  27. FFPE-EPO is a Zombie (if Not Dead) Yellow Union Whose Only de Facto Purpose Has Been Attacking the EPO's Staff Union

    A new year's reminder that the EPO has only one legitimate union, the Staff Union of the EPO (SUEPO), whereas FFPE-EPO serves virtually no purpose other than to attack SUEPO, more so after signing a deal with the devil (Battistelli)

  28. EPO Select Committee is Wrong About the Unitary Patent (UPC)

    The UPC is neither desirable nor practical, especially now that the EPO lowers patent quality; but does the Select Committee understand that?

  29. Links 1/1/2017: KDE Plasma 5.9 Coming, PelicanHPC 4.1

    Links for the day

  30. 2016: The Year EPO Staff Went on Strike, Possibly “Biggest Ever Strike in the History of the EPO.”

    A look back at a key event inside the EPO, which marked somewhat of a breaking point for Team Battistelli

CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts