Eye on Microsoft: Windows (In)Security in the News
- Dr. Roy Schestowitz
- 2009-04-24 10:24:19 UTC
- Modified: 2009-04-24 10:24:19 UTC
●
Windows Trojan That Infected Over 3.6 Million PCs Evolves with Worm Behavior
One of the top families of malicious code targeting the Windows platform has evolved with the addition of worm behavior, Microsoft warns. According to data made public via the Microsoft Security Intelligence Report, the Win32/Vundo Trojan infected over 3.6 million computers in the second half of 2008, and occupies the third position in a malware ranking behind Renos and Zlob. Vundo is a family of malware with various components that are designed to serve victims 'out of context' pop-up advertisements following infection. Microsoft warns that the Vundo family of malicious software can also
be used to download and execute arbitrary files.
●
One bot-infected PC = 600,000 spam messages a day
TRACElabs concluded that Rustock and Xarvester, the latter perhaps linked to the down-and-out Srizbi botnet, are the most efficient spam spewers of the nine bots. Each is capable of sending up to 25,000 messages per hour, or 600,000 per day, and 4.2 million per week.
●
Updated research of the largest base of real-world vulnerability data
4. Exploitation - Eighty percent of vulnerability exploits are now available within single digit days after the vulnerability’s public release. In 2008, Qualys Labs logged 56 vulnerabilities with zero-day exploits, including the RPC vulnerability that produced Conficker. In 2009, the first vulnerability released by Microsoft, MS09-001 had an exploit available within seven days. Microsoft’s April Patch Tuesday included known exploits for over 47 percent of the published vulnerabilities. This law had the most drastic change from the Laws 1.0 in 2004, which provided a comfortable 60 days as guidance.
Recent Techrights' Posts
- With 9 Mentions of Azure In Its Latest Blog Post, Canonical is Again Promoting Microsoft and Intel Vendor Lock-in, Surveillance, Back Doors, Considerable Power Waste, and Defects That Cannot be Fixed
- Microsoft did not even have to buy Canonical (for Canonical to act like it happened)
- Links 28/03/2024: GAFAM Replacing Full-Time Workers With Interns Now
- Links for the day
- Consent & Debian's illegitimate constitution
- Reprinted with permission from Daniel Pocock
- The Time Our Server Host Died in a Car Accident
- If Debian has internal problems, then they need to be illuminated and then tackled, at the very least in order to ensure we do not end up with "Deadian"
- China's New 'IT' Rules Are a Massive Headache for Microsoft
- On the issue of China we're neutral except when it comes to human rights issues
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Wednesday, March 27, 2024
- IRC logs for Wednesday, March 27, 2024
- WeMakeFedora.org: harassment decision, victory for volunteers and Fedora Foundations
- Reprinted with permission from Daniel Pocock
- Links 27/03/2024: Terrorism Grows in Africa, Unemployment in Finland Rose Sharply in a Year, Chinese Aggression Escalates
- Links for the day
- Links 27/03/2024: Ericsson and Tencent Layoffs
- Links for the day
- Amid Online Reports of XBox Sales Collapsing, Mass Layoffs in More Teams, and Windows Making Things Worse (Admission of Losses, Rumours About XBox Canceled as a Hardware Unit)...
- Windows has loads of issues, also as a gaming platform
- Links 27/03/2024: BBC Resorts to CG Cruft, Akamai Blocking Blunders in Piracy Shield
- Links for the day
- Android Approaches 90% of the Operating Systems Market in Chad (Windows Down From 99.5% 15 Years Ago to Just 2.5% Right Now)
- Windows is down to about 2% on the Web-connected client side as measured by statCounter
- Sainsbury's: Let Them Eat Yoghurts (and Microsoft Downtimes When They Need Proper Food)
- a social control media 'scandal' this week
- IRC Proceedings: Tuesday, March 26, 2024
- IRC logs for Tuesday, March 26, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- Windows/Client at Microsoft Falling Sharply (Well Over 10% Decline Every Quarter), So For His Next Trick the Ponzi in Chief Merges Units, Spices Everything Up With "AI"
- Hiding the steep decline of Windows/Client at Microsoft?
- Free technology in housing and construction
- Reprinted with permission from Daniel Pocock
- We Need Open Standards With Free Software Implementations, Not "Interoperability" Alone
- Sadly we're confronting misguided managers and a bunch of clowns trying to herd us all - sometimes without consent - into "clown computing"
- Microsoft's Collapse in the Web Server Space Continued This Month
- Microsoft is the "2%", just like Windows in some countries
- Links 26/03/2024: Inflation Problems, Strikes in Finland
- Links for the day
- Gemini Links 26/03/2024: Losing Children, Carbon Tax Discussed
- Links for the day
- Mark Shuttleworth resigns from Debian: volunteer suicide and Albania questions unanswered, mass resignations continue
- Reprinted with permission from Daniel Pocock
- Links 26/03/2024: 6,000 Layoffs at Dell, Microsoft “XBox is in Real Trouble as a Hardware Manufacturer”
- Links for the day
- Gemini Links 26/03/2024: Microsofters Still Trying to 'Extend' Gemini Protocol
- Links for the day
- Look What IBM's Red Hat is Turning CentOS Into
- For 17 years our site ran on CentOS. Thankfully we're done with that...
- The Julian Paul Assange Verdict: The High Court Has Granted Assange Leave to Appeal Extradition to the United States, Decision Adjourned to May 20th Pending Assurances
- The decision is out
- The Microsoft and Apple Antitrust Issues Have Some But Not Many Commonalities
- gist of the comparison to Microsoft
- ZDNet, Sponsored by Microsoft for Paid-for Propaganda (in 'Article' Clothing), Has Added Pop-Up or Overlay to All Pages, Saying "813 Partners Will Store and Access Information on Your Device"
- Avoiding ZDNet may become imperative given what it has turned into
- Julian Assange Verdict 3 Hours Away
- Their decision is due to be published at 1030 GMT
- People Who Cover Suicide Aren't Suicidal
- Assange didn't just "deteriorate". This deterioration was involuntary and very much imposed upon him.
- Overworking Kills
- The body usually (but not always) knows best
- Former Red Hat Chief (CEO), Who Decided to Leave the Company Earlier This Month, Talks About "Cloud Company Red Hat" to CNBC
- shows a lack of foresight and dependence on buzzwords
- IRC Proceedings: Monday, March 25, 2024
- IRC logs for Monday, March 25, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- Discord Does Not Make Money, It's Spying on People and Selling Data/Control (38% is Allegedly Controlled by the Communist Party of China)
- a considerable share exists
- In At Least Two Nations Windows is Now Measured at 2% "Market Share" (Microsoft Really Does Not Want People to Notice That)
- Ignore the mindless "AI"-washing
- Internet Relay Chat (IRC) Still Has Hundreds of Thousands of Simultaneously-Online Unique Users
- The scale of IRC