New Flaw in Windows Facilitates More DDOS Attacks

Dr. Roy Schestowitz

2010-07-27 22:03:18 UTC
Modified: 2010-07-27 22:03:18 UTC

Summary: Shoddy Microsoft software continues to provide opportunities for disgruntled people to attack and take down servers they dislike

ANY Windows botnet which is enabled by "Zeus" (Zeus is known to be a cause of DDOS attacks) is already taking advantage of Microsoft's latest severe flaw which affects even fully patched Windows:

Miscreants behind the Zeus cybercrime toolkit and other strains of malware have begun taking advantage of an unpatched shortcut handling flaws in Windows. It was first used by a sophisticated worm to target SCADA-based industrial control and power plant systems.

No patch is available yet:

Security researchers have found more malware exploiting an unpatched Windows vulnerability via .LNK shortcut files.

According to Sophos blog July 23, two other pieces of malware have been observed targeting the bug. One is a keylogging Trojan the company is calling Chymin-A that is "designed to steal information from infected computers." The other is Dulkis-A, a "worm written in obfuscated Visual Basic" that contains several subcomponents.

More here:

Slovakian security firm Eset reports the appearance of two malware strains that exploit security vulnerabilities in the way Windows handles .lnk (shortcut) files, first used by Stuxnet to swipe information from Windows-based SCADA systems from Siemens.

We covered those SCADA incidents earlier today. This has a serious impact on the world's energy, not to mention those BP BSODs which we've already covered in [1, 2, 3].

The damage costs a lot of money and time (which can be equated to money) and the security world is "ill-equipped to solve digital whodunnits," reports The Register.

“A lot of those efforts are very unqualified and pedestrian,” said Parker, who is director of security consulting services at Washington, DC-based Securicon. “There's really not any science behind the efforts that many people have been making recently that have resulted in stories like China is attacking us, Russia is attacking us, Korea is attacking us.”

It is really hard to know where DDOS attacks come from these days. People don't control their Windows PCs, which can be hijacked and chained back to some botmasters whose interests are not known.

Georgia has an unfortunate DDOS story to tell about its national infrastructure; after years of investigation it is still not perfectly clear if the Russian government had something to do with it or not. One youngster claims responsibility, but can he be believed? It can be hard to verify. And if one youngster can paralyse an entire nation, what does that teach us about those Windows zombies he used? ⬆

Some Slopfarms and Some Real News Sites Cover Richard Stallman’s (RMS) Talk: If his message about Software Freedom spreads, then we're all better off
Richard Stallman's Experiences With 'Cancel Brigades' Ought to Educate Linus Torvalds: Now they talk about "if Linus dies" scenarios
Steven Field (Red Hat) Speaks of "Recent Layoff" (RA/Wave) in Red Hat: IBM really doesn't like it when people talk about "RAs"
The "Alicante Mafia" - Part XIII - Is EPO Vice-President Steve Rowan in Cahoots With the "Alicante Mafia"?: that deserves much media attention, political intervention, and condemnation
A Week Ago We Contacted the EPO's Stephen (Steve) Rowan About Cocainegate: Tomorrow we'll write some more about Rowan
“Wikilaundering” Explained: "London PR firm rewrites Wikipedia for governments and billionaires"
IBM Reports 'Results' Tomorrow, Expect More "RAs" (Mass Layoffs): they use words like "efficiency", "optimisation", "AI", "pivot", "modernisation" and so on
Earlier This Month Microsoft Lunduke Said in Public It Was Good That Renee Good Was Murdered, Now He Mocks or Demonises People for Saying the US is Unsafe: Don't be easily conned by demagogues
Google News and "Linux" Slop: Why won't Google be interested in tackling this issue? Instead Google has been trying to participate in this issue.
IBM Kills Red Hat in the Darkness: What IBM does to Red Hat is malicious
IBM Red Hat's Goal Is Not Real Security (It Probably Never Was): Spies and trolls are very malicious people and sometimes they're the same thing
With Absurd Lies About Slop, Which Lacks Intelligence or Financial Potential, GAFAM and IBM Will Twist Mass Layoffs as 'Efficiency Drive' or 'AI Pivot': More layoffs are on the way
Animal Advocacy Works: All it takes is effort and determination
EPO Strike This Week: What has happened to Europe?
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, January 26, 2026: IRC logs for Monday, January 26, 2026
For the EPO to Survive, António Campinos and the "Alicante Mafia" Must Fall on Their Sword: There are EPO insiders who are convinced Campinos too is (or was) a cocaine addict
Gemini Links 26/01/2026: Pocket Power Pack, Batteries, and Breaks: Links for the day
"Microsoft Vista 11 Emergency Update" as Windows Fails to Boot (Again): Microsoft is desperately trying to find some new business model as the debt soars
4 Hours Ago The Register MS Published Paid-for Spam About "AI" (Slop, Buzzwords): "AI" mentioned 13 times in the page
IBM 'Results' Due Wednesday Evening, Expect Clues About Mass Layoffs: Don't expect IBM to say anything about "layoffs" or "RAs"
The Fall of the EPO (or the "Alicante Mafia" at EPO) Will be Due to This Reckless Lawyer Who Does Cocaine in Public While Speaking for the EPO: The longer European politicians (and media) turn a blind eye to this corruption, the worse it'll get
Why RMS is Scary to GAFAM 'Engineers' and the GAFAM Apologists (or Addicts): especially because of his ideas and his way of life
Firefox 'Market Share' Down to All-Time Low in 2026, Adding to It User-Hostile 'Features' Only Worsens Things: What is the goal of Mozilla at this point?
Links 26/01/2026: Windows Back Doors, American Winter Storm, and Report Says Iran's "Protest Death Toll May Exceed 30,000": Links for the day
Life Got Simpler and Therefore Also Healthier and Happier: Some people envy not wealth but happiness (which they're unable to attain, even with hoarding and accumulation)
Links 26/01/2026: Financial Stress in German Farms and Germany Wants to Take Its Gold Reserves Out of the US: Links for the day
Gemini Links 26/01/2026: "Lack of Meaningful Things" and Getting Back to Programming: Links for the day
Strong Correlation Between the Slop Ponzi Scheme (or Bubble) and Major Disasters: BitCoin ruins the planet; so does slop
We Will Never Allow the "Alicante Mafia" to Hide "Cocainegate": transparency typically scares malicious actors
Fewer Involuntary Interruptions This Year: This year we're doing much better
Prisons Are for Dangerous People Who Pose a Threat to the Public, Not People Who Inform the Public: At the end of the week EPO workers go on strike
Microsoft Loses Grip on Indian Ocean: Many countries, including in older allies of the US (such as Canada and the US), look for ways to get out of Microsoft dependence urgently
XBox Consoles Nearly Dead by Now, the 'XBox' (ex-Box) Brand Now Stands for Something Full of Slop, Spam, Filler, and Chaff: We're seeing the last day (maybe year) of "XBox"
The Great "AI" CON Explained by Dr. Andy Farnell: LLMs are basically advertisers of sorts
Links 26/01/2026: "Journalists Detained", in Germany "Unjustly Jailed Man Gets €1.3 Million Compensation": Links for the day
Red Hat Quietly Going Extinct After Bluewashing in 2026: At this point it would be rather foolish to assume that IBM will let Red Hat just "do its own thing" or maintain its corporate culture, identity, projects etc.
The "Alicante Mafia" - Part XII - Kris De Neef and Roberta Romano-Götsch, Who Stepped in for the Cokehead, Have No Comment on His Cocaine Usage (and the EPO's Cover-up): Sh-t floats to the top.
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, January 25, 2026: IRC logs for Sunday, January 25, 2026
Gemini Links 26/01/2026: Cold Perception, Software Patches in NixOS, and Sunk Cost Fallacy: Links for the day
Fake IBM Retirements (IBM Gives Older Workers Ultimatums, Deadlines, and Carrots on Sticks): As they point out, IBM is desperate to lower costs
Linuxiac is Basically a Fake News Site, But It's Being Fed by Google News: Because Google News is run by Google, a slop pusher
Links 25/01/2026: Slop "Tribalism", Nike Apparently Cracked: Links for the day
Claims That PIPs Are Abused for Silent Mass Layoffs at IBM (Without Severance) or Forced Retirements: Performance Improvement Plans (PIPs) "clearly bogus as everyone on my team who has been on one has been fired"
WebM Version of Richard Stallman's Latest Talk (Georgia Tech Talk): The file size is smaller
After Half a Decade Vista 11 is Still a Giant Failure: Don't expect Microsoft to gain a foothold
Details on IBM Layoffs in the EU Last Week, Same Allegedly Coming to the US Shortly: "Around 50 people affected in Belgium."
Technology Trends Driven by DRM Giants, Planned Obsolescence, Not the Needs of the Buyers: The "pushers" think of customers as "users"; and they encourage passivity, Stockholm Syndrome
Links 25/01/2026: Microsoft BitLocker Backdoored for Decades Already, Microsoft-Backed ICE Still Murders Civilians: Links for the day
Gemini Links 25/01/2026: "Expert in a Dying Field" and Global Commands: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, January 24, 2026: IRC logs for Saturday, January 24, 2026
After the Slop Bubble: At the end, looking back, we'll all generally understand that the net effort of slop was environmental destruction
IBM CEO Says IBM is Just Reliant on Buzzwords That Are Overhyped: IBM has nothing to show anymore and telling fairytales to shareholders is a temporary 'fix'
The "Alicante Mafia" - Part XI - No Comment From Steve Rowan, Niloofar Simon, and Christoph Ernst About Cocaine Inside EPO: What kind of patent office is this?

New Flaw in Windows Facilitates More DDOS Attacks

Recent Techrights' Posts