01.20.10

Gemini version available ♊︎

“Emergency!” Says Microsoft as It’s Losing Market Share; All Versions of Windows Are Vulnerable

Posted in Free/Libre Software, FUD, GNU/Linux, Microsoft, Security, Windows at 5:48 pm by Dr. Roy Schestowitz

Summary: Microsoft responds very urgently to the gains Firefox and other Web browsers are making as more vulnerabilities start to surface; Microsoft also throws FUD at Firefox, just as it does against GNU/Linux

INTERNET EXPLORER is under attack [1, 2, 3, 4, 5, 6, 7]. Microsoft calls it an “emergency”, but the emergency is that Microsoft is losing market share, not that customers are at risk. Microsoft had publicly belittled this issue… until governments started to speak out and complain.

This is the real emergency:

German government IE warning leads to spike in Firefox downloads

Following a warning last Friday from the German Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik, BSI) concerning the security hole in Internet Explorer (IE), Mozilla has said that it has recorded a “huge increase” in the number of Firefox downloads in Germany. According to a post by Mozilla’s Ken Kovash on the Mozilla Blog of Metrics, more than 300,000 downloads of the open source browser took place during the recent Friday to Monday period. Similarly, Opera also reportedly saw downloads of its browser in Germany more than double.

“MS to issue emergency patch for potent IE vuln,” heralds The Register:

Microsoft will release an emergency update that patches the Internet Explorer vulnerability used to breach the security defenses of Google and other large companies.

Even the BBC wrote about it, having previously served as Microsoft’s mouthpiece amid these embarrassing incidents.

SJVN has just published “Who cares if IE is patched soon?”

Microsoft is now promising us that they’ll have a patch for the latest IE security hole … real soon now. So what? This problem, while it’s been exploited the most in IE 6, it exists in all modern versions of IE and it can be exploited in every version of Windows from Windows 2000 to Windows 7. And, I’m supposed to trust that Microsoft will ‘patch’ it right this time and that it won’t blow up on me again? I don’t think so.

SJVN is right. Governments complained due to a pattern of shoddy maintenance/stewardship from Microsoft, not because of this one incident. Enough it enough and taxpayers are paying the price while Microsoft and its ecosystem are profiteering from malware.

Microsoft is publicly defending the already-poor reputation of Internet Explorer. It does so right now “by spreading FUD against Firefox,” says Glyn Moody. He cites the following article:

With world governments advising citizens to switch from Internet Explorer to alternative browsers, and an unpatched security hole in at least two major versions of Internet Explorer, Microsoft has to do something to restore faith in its browser. Easiest way to do it, apparently, is by saying that other browsers are even worse than IE.

The FUD against Firefox is made out of fabrications and secrets. It’s not even worth quoting.

Very recently we also caught Microsoft attacking Linux [1, 2] in order to defend Windows Mobile. So, Microsoft is finally just attacking rival operating systems and Web browsers when its own products come under scrutiny. Microsoft is miserable enough to descend to the final stage per Mahatma Gandhi, who said: “First They Ignore You, Then They Ridicule You, Then They Fight You.”

Linux is not taking Microsoft’s insults without rebutting. Jim Zemlin, the head of the Linux Foundation, has just shot back at Microsoft for its remarks. Here’s the background he provides:

Last week, David Coursey reported that Microsoft entertainment and devices boss Robbie Bach made the prediction in an analyst briefing that Linux on mobile will lose. Why? It’s choice is a bad thing for customers and that there is too much Linux in the mobile marketplace

But wait. There’s more. Since we’re discussing operating systems, check out this new article from The Register:

Windows plagued by 17-year-old privilege escalation bug

A security researcher at Google is recommending computer users make several configuration changes to protect themselves against a previously unknown vulnerability that allows untrusted users to take complete control of systems running most versions of Microsoft Windows.

Well, is anyone surprised at all? Not the Slashdot crowd, that’s for sure. Microsoft never pretended to be a master of security until it became a huge threat to its survival. Microsoft must pretend now. Why? Because there’s potent competition.

“Our products just aren’t engineered for security.”

Brian Valentine, Microsoft executive

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

2 Comments

  1. subsonica said,

    January 20, 2010 at 7:25 pm

    Gravatar

    If it were just Internet Explorer…

    http://lists.grok.org.uk/pipermail/full-disclosure/2010-January/072549.html

    there is something fundamentally wrong with Windows security design.
    Windows was never meant nor actually prepared to be multiuser or networked. Back in the days, Microsoft simply took MS-DOS + LAN MANAGER and glued to it a ripoff of the Digital VMS model of user security, copied the HPFS filesystem from OS2 (shafting IBM in the process) and called it NTFS, then added the Netware and BSD TCP/IP stack into the mix, called it “Windows NT” and they have just kept patching that model up to the current offerings, adding an E+E+E’ed version of LDAP called “Active Directory” on top of it from Windows 2000 on.
    Every day that passes, keeping relying on this windows model for your data, services and applications is becoming more and more an irresponsability.

  2. Dennis Murczak said,

    January 21, 2010 at 1:45 pm

    Gravatar

    That pretty much sums up Windows history. They also copied KDE and sudo and marketed both as groundbreaking new stuff.

    They should have stopped slapping new features onto a rotten legacy architecture years ago; now they are paying the bill. Not to mention that the only market in which they don’t have to compete is shrinking.

DecorWhat Else is New


  1. Links 26/10/2021: SUSE Linux Enterprise Micro 5.1 and Multi-Distro Benchmarks

    Links for the day



  2. Links 26/10/2021: Vulkan 1.1 Conformance for Raspberry Pi 4 and Tor Browser 10.5.10

    Links for the day



  3. [Meme] Sounds Legit

    When not cheating on the wife, the EPO‘s “doyen” cheats in the exams and makes it into the epi Council, in effect working “[t]owards a common understanding [sic] of quality” with “patent attorneys nominated as “assessors” by the EPO, epi and BusinessEurope” (notorious lobbyists for dictators, litigation, and monopolies, neither business nor science)



  4. [Meme] Mayoral Patent Office Chief

    As it turns out, political 'double-dipping' isn't just a thing in North Macedonia, Austria, and EPOnia



  5. Romania's Patent Office (OSIM): Nine Different Chiefs in Just Eight Years

    The Romanian State Office for Inventions and Trademarks (OSIM), being the equivalent of the U.S. Patent and Trademark Office (USPTO) in the sense that it covers both patents and trademarks, is a very flaky institution with no shortage of scandals; for our English-reading audiences we now have a summary of a decade’s worth of blunders and leadership changes



  6. The EPO’s Overseer/Overseen Collusion — Part XXIV: The Balkan League - Romania

    Romania’s patent office has been in flux this past decade, occasionally led by people with no relevant experience, but rather political connections (like EPO President António Campinos) and sometimes forged documents and fake degrees



  7. IRC Proceedings: Monday, October 25, 2021

    IRC logs for Monday, October 25, 2021



  8. [Meme] “Social Democracy” at the EPO

    Some comments on the current situation at the European Patent Office from Goran Gerasimovski, the new EPO Administrative Council delegate for North Macedonia and Social Democratic candidate for mayor of Centar (a municipality of Skopje)



  9. [Meme] António Campinos Visits the OSIM

    António Campinos visits OSIM Director-General Ionel Muscalu in February 2014



  10. [Meme] [Teaser] Meet the President

    Later today we shall see what Romania did for Battistelli



  11. Links 26/10/2021: Latte Dock 0.10.3 and Linux 5.15 RC7

    Links for the day



  12. Gemini Protocol's Originator: “I Continue to Care About This Project and I Care About the Community That Has Formed Around It.”

    'Solderpunk' is back from a long hiatus; this bodes well for Geminispace, which grew fast in spite of the conspicuous absence



  13. Bulgarian Like Bavarian Serfdom

    Bulgarian politics seem to have played a big role in selecting chiefs and delegates who backed Benoît Battistelli‘s unlawful proposals, which treat workers almost like slaves and ordinary citizens as disposable ‘collaterals’



  14. The EPO’s Overseer/Overseen Collusion — Part XXIII: The Balkan League - Bulgaria

    Today we examine the role of Bulgaria in Benoît Battistelli‘s liberticidal regime at the EPO (as well as under António Campinos, from 2018 to present) with particular focus on political machinations



  15. Links 25/10/2021: New Slackware64-current and a Look at Ubuntu Budgie

    Links for the day



  16. Links 25/10/2021: pg_statement_rollback 1.3 and Lots of Patent Catchup

    Links for the day



  17. Microsoft GitHub Exposé — Part III — A Story of Plagiarism and Likely Securities Fraud

    Today we tread slowly and take another step ahead, revealing the nature of only some among many problems that GitHub and Microsoft are hiding from the general public (to the point of spiking media reports)



  18. [Meme] [Teaser] Oligarchs-Controlled Patent Offices With Media Connections That Cover Up Corruption

    As we shall see later today, the ‘underworld’ in Bulgaria played a role or pulled the strings of politically-appointed administrators who guarded Benoît Battistelli‘s liberticidal regime at the EPO



  19. IRC Proceedings: Sunday, October 24, 2021

    IRC logs for Sunday, October 24, 2021



  20. Links 25/10/2021: EasyOS 3.1 and Bareflank 3.0

    Links for the day



  21. The Demolition of the EPO Was Made Possible With Assistance From Countries That Barely Have European Patents

    The legal basis of today's EPO has been crushed; a lot of this was made possible by countries with barely any stakes in the outcome



  22. The EPO’s Overseer/Overseen Collusion — Part XXII: The Balkan League - North Macedonia and Albania

    We continue to look at Benoît Battistelli‘s enablers at the EPO



  23. Links 24/10/2021: GPS Daemon (GPSD) Bug and Lots of Openwashing

    Links for the day



  24. Links 24/10/2021: XWayland 21.1.3 and Ubuntu Linux 22.04 LTS Daily Build

    Links for the day



  25. IRC Proceedings: Saturday, October 23, 2021

    IRC logs for Saturday, October 23, 2021



  26. Links 24/10/2021: Ceph Boss Sage Weil Resigns and Many GPL Enforcement Stories

    Links for the day



  27. GAFAM-Funded NPR Reports That Facebook Let Millions of People Like Trump Flout the So-called Rules. Not Just “a Few”.

    Guest post by Ryan, reprinted with permission



  28. Some Memes About What Croatia Means to the European Patent Office

    Before we proceed to other countries in the region, let’s not forget or let’s immortalise the role played by Croatia in the EPO (memes are memorable)



  29. Gangster Culture in the EPO

    The EPO‘s Administrative Council was gamed by a gangster from Croatia; today we start the segment of the series which deals with the Balkan region



  30. The EPO’s Overseer/Overseen Collusion — Part XXI: The Balkan League – The Doyen and His “Protégée”

    The EPO‘s circle of corruption in the Balkan region will be the focus of today’s (and upcoming) coverage, showing some of the controversial enablers of Benoît Battistelli and António Campinos, two deeply corrupt French officials who rapidly drive the Office into the ground for personal gain (at Europe’s expense!)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts