03.14.09

Verdict: The BBC Broke the Law with Microsoft Windows Botnets, Which Conficker Continues Building (Updated)

Posted in Microsoft, Security, Windows at 7:03 am by Dr. Roy Schestowitz

BBC teletext

Summary: Experts slam the BBC for building a zombie PC army; Conficker is far from gone, being the Windows nightmare which it is

A couple of days ago we asked whether or not the BBC was breaking the law by harvesting people’s Windows PCs without their permission. The answer seemed obvious, but now we hear it from the experts too. The Register writes:

A controversial BBC Click documentary which involved researchers obtaining access to a botnet and sending spam is due to screen this weekend despite a growing storm of criticism.

Security experts – including McAfee, a firm whose representatives appear in the programme – have described the exercise as misguided and unnecessary. Legal experts contacted by El Reg reckon the show potentially breaches the unauthorised modifications provisions of the Computer Misuse Act, the UK’s computer hacking law.

From Out-Law.com

BBC programme broke law with botnets, says lawyer

A BBC programme has broken the Computer Misuse Act by acquiring and using software to control 22,000 computers, creating a botnet capable of bringing down websites. A technology law specialist has said that the activity is illegal.

The funny thing is that public money was in fact funding this crime and the BBC is likely to get away with it.

Another criticism came from Glyn Moody, who echoed the concern raised by Mike Brown the othe day. Moody was not particularly surprised to see that the BBC reinforces the notion that only Microsoft Windows exists in this world.

I don’t want to address that here, but a different point: that nowhere in the article does the word “Windows” occur. And yet, I’d be willing to bet that none of those 22,000 machines ran GNU/Linux or Mac OS. Because the fact is, that the vast majority of machines on botnets are running Windows, and that this is yet another problem caused by the Microsoft monoculture.

But nothing of this is mentioned in the BBC piece. Instead, it is presented as if botnets were some inevitable part of computing life – something you might get, just as you might catch a cold, because, hey, these things happen.

How so muchly expected from a close partner of Microsoft, which is literally occupied by Microsoft employees.

In other news, let’s forget about Windows botnets ending any time soon. According to ITWire, Conficker is alive and it gets more sophisticated.

A new version of the Conficker (aka Downadup) worm is working around attempts to stifle its activity by dramatically increasing the number of domain names used to call home for fresh instructions.

For readers’ convenience we include previous coverage below. This is a Windows-only issue; for PC users there is the option to migrate to GNU/Linux at any time and resolve this problem permanently.

More on Conficker:

Update: More from Sam Varghese:

But rather than being educational, the 23-minute episode of its technology programme Click, (report here) which often bordered on the sensational, left one major question unanswered: what kind of computers were these – Windows, Mac, Linux, BSD?

If the programme aimed to be educational, and not sensational, then one needed to know this fact above all. It is well-known that a vast majority of the PCs which are commandeered by cyber criminals – people known as crackers, not hackers – run some variant of Windows, with XP being number one.

The programme began this way: “20,000 computers. All hijacked and waiting for instructions. And all under our control.” And all spoken by a presenter with a wide-eyed look of impending doom in his eyes.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

This post is also available in Gemini over at:

gemini://gemini.techrights.org/2009/03/14/bbc-zombie-pc-crimes-conficker/

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

3 Comments

  1. Nick Reynolds (editor, BBC Internet Blog) said,

    March 14, 2009 at 2:45 pm

    Gravatar

    If you want to read the BBC’s side of the story it is here:

    http://www.bbc.co.uk/blogs/theeditors/2009/03/click_botnet_experiment.html

  2. Mike Brown said,

    March 14, 2009 at 6:03 pm

    Gravatar

    @Nick,

    I read the “BBC’s side of the story” to which you linked. They managed not to mention Windows there too.

    They do, at least, link off to a “PC Protection” page, which says:

    “Windows is the most popular OS and it is the most vulnerable to these kinds of attacks. ”

    At last, some admission that Windows might just be part of the problem. But it’s written so as to imply that its Windows’ popularity that makes it vulnerable – although without actually *saying* that – rather than it just being a badly written operating system. (No way all those MS refugees that washed up at the Beeb are going to allow anything like *that* to be said!)

    We’re also told:

    “Windows XP, Vista and Mac OS-X all have built-in firewalls”

    Quite so, but so do nearly all Linux distributions. That’s not worth a mention though. In fact, Linux itself isn’t worth a mention either.

  3. Roy Schestowitz said,

    March 14, 2009 at 6:25 pm

    Gravatar

    “Popular” is the wrong word.

    A lot of people I know hate Windows but carry on using it because they are given no choice.

    “Ubiquitous” would be a better word to use.

    As for the argument about security, Microsoft itself has already admitted that Windows is insecure by design and there is plenty of compelling evidence (including court exhibits) I can put forth to support this, not just extensive studies.

    “Our products just aren’t engineered for security.”

    Brian Valentine, Microsoft executive

    It is disappointing to see the BBC reinforcing incorrect consensus which was marketed vigorously by Microsoft. I used to believe the BBC had guts to offer proper reporting, not just recite spin and PR.

What Else is New


  1. Video: “Unjust Computing Clamps Down” by Richard Stallman

    12 days ago the FSF uploaded the video above, in which current threats to software freedom are explained by the FSF's founder



  2. FSF Web Site Now Lists the Seven Voting Members, Including Alexandre Oliva, Former Acting FSF President

    The FSF is now in good and reliable hands, which we're told are all supportive of the decision to bring back the FSF's founder to the Board; Oliva remains involved as a voting member



  3. The EPO's War on Justice and Assault on the Law -- Part 11: The Rapporteur Who Once Was Vice-President

    EPO‘s former Vice-President of DG3 will be the person to decide on the EPO’s (mis)conduct



  4. [Meme] Captured EPO

    Put the EPO back in the hands of people who do all the work and actually understand the real goals of a patent office



  5. An Urgent Need to Fix the EPO, Which is Becoming Rogue at Every Level (Even the 'Legal' Level)

    Helpless examiners are being put in a grave dilemma: violate the EPC or lose the job; it's meanwhile clear that internal appeals, including referrals to the Boards of Appeal, are also hopeless because these courts or tribunals obey tyrants, not the EPC, and moreover they cover up past abuses of the tyrants



  6. IRC Proceedings: Monday, May 17, 2021

    IRC logs for Monday, May 17, 2021



  7. 6,700 Signatures in Support of Richard Stallman's Return to the FSF's Board

    6,700 signatures will be secured any day now (maybe later today); we thought the graph is worth replotting again, even if only to remind people how badly the defamatory hate letter has backfired



  8. [Meme] The Real Gates Scandal is About Connections to Sex Trafficking (Epstein), Not Infidelity

    Some media is still trying to shift attention (some of the very same media that misdirected focus to Richard Stallman when a Gates-Epstein scandal unfolded at MIT), but people aren't gullible enough



  9. Links 17/5/2021: New GeckoLinux and Kdenlive 21.04.1

    Links for the day



  10. Richard Stallman Refers to Intel's Management Engine (ME) -- or a Back Door -- as 'Master', and the Processor Intel Lets Us Use as 'Slave'

    “The president and founder of the Free Software Foundation will speak about pressing issues in free software today, and will present the winners of the 2018 Free Software Awards,” says the summary (this was 3 years ago, i.e. before the purge of language, with a prominent role played by Intel)



  11. Links 17/5/2021: NetBSD 9.2 and Early Look at Bodhi Linux 6.0.0

    Links for the day



  12. Calle Josefsson as Living Proof That Attacking the Causes You Once Proclaimed to Stand for is Very Profitable

    Some thoughts on the situation of the Boards of Appeal in Haar; they're led by someone who receives a huge salary (a four- or five-fold increase) in exchange for an epic sellout and abandonment of principles; as a de facto legal slinger or imposter/poser he has already done incredible damage on several levels



  13. The EPO's War on Justice and Assault on the Law -- Part 10: A Faustian Pact?

    Benoît Battistelli‘s rubber-stamping judge from Sweden saw his salary growing four- or five-fold and he has meanwhile lowered his public profile, fearing that people will see what he sold his soul for



  14. EPO Staff Representatives Not Amused to See an Office That Steals From Staff and Even From Pensioners

    The heist continues; the EPO isn't just a milking cow of Germany but also of EPO officials who keep the 'lid' or the 'cover' on this whole financial instrument, which would enrage member states if they truly understood what's going on



  15. [Meme] Virtual Prisons for Virtual Hearings (Haarings)

    Today’s EPO has a truly twisted notion of the “rule of law”



  16. President of the Boards of Appeal, the Star of the Haar Show

    It’s best in the metal version; burn in Hell, Lesley Gore



  17. Right To Repair: When You Don't Own What You Buy (and Cannot Even Repair It Legally)

    The second part of preliminary background regarding the Right To Repair; our associate who extracted the videos from YouTube says that both are relevant to “Freedom 0″ (as per the FSF’s definition of Free software)



  18. Right To Repair: What It's About and How That Relates to Software

    A short (less than one minute) video that offers some background or sheds light on the intersection between Software Freedom and the Right To Repair



  19. Brand as Distraction From the Core Issues Surrounding the Right To Repair

    Excerpt of a video from Odysee, in which an important point is explained regarding a very actual and relevant case, more so given a recent ruling that indirectly impacts software freedom, mostly in (but not limited to) the United States



  20. Virtual 'Courts' Aren't Courts and Aren't Suitable Substitutes, Either

    The cheapening of the concept of justice, even as the pandemic that serves to justify that cheapening is gradually being brought under control, is the real issue that should be debated in Haar (or from private homes, probably somewhere around Haar); whether it's compulsory or not ought to be a side question



  21. IRC Proceedings: Sunday, May 16, 2021

    IRC logs for Sunday, May 16, 2021



  22. Links 17/5/2021: Linux 5.13 RC2 and a Lot About Patents

    Links for the day



  23. (All-Time) Archive of Techrights Videos Contains About 1,000 Videos, All Listed in One Place Now

    We're improving access to old material in the site and right now the focus is ways to improve discovery of old video/multimedia files



  24. Haar Song

    The Office in Munich is overseen by “a municipality near Munich,” according to Wikipedia (not inside Munich, so that in itself is a violation of the EPC)



  25. The EPO's War on Justice and Assault on the Law -- Part 9: Squeezing Out the Lifeblood of Democracy?

    The lack of public discourse at the EPO (where tyrants like Benoît Battistelli and António Campinos make up the rules and then have them rubber-stamped by kangaroo courts) helps explain an atrocious policy and moral abyss, which recently led to acceptance of European software patents and mass surveillance disguised as “access to justice”



  26. Luke Smith on Why Free Software Matters and 'Open Source' is Meaningless

    A video just released by a popular YouTube channel



  27. Links 16/5/2021: ExTiX 21.5, Drumstick Multiplatform MIDI File Player Refresh

    Links for the day



  28. EPO.org is a Really Awful Source of Information

    The site that bears a .org suffix is actually more like a private corporation lying about itself in order to save face and attract more money -- or in other words funds that will be squandered and stolen by corrupt administrators



  29. IBM Has Changed a Lot Since 2018, and Not for the Better

    IBM isn't that much of an ally of GNU/Linux as a community-led or community-centric operating system; IBM is in it all just for IBM and we need to treat IBM accordingly



  30. [Meme] Criticising IBM is Racist and Intolerant

    Systemd is becoming untouchable and its critics are framed as "toxic" or "trolls", no matter the facts and irrespective of the technical substance of their complaints


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts