08.16.10

Gemini version available ♊︎

Microsoft Security Issues in The British Press, Vista and Vista 7 No Panacea

Posted in Microsoft, Security, Vista, Vista 7, Windows at 4:10 am by Dr. Roy Schestowitz

Summary: Security news from the British press and IDG (gathered in recent weeks), affecting all versions of Windows

THE MSBBC (mentioned in the previous post) continues calling a criminal “hacker”, which deceives British readers.

Another report, specifically this one from The Inquirer (there are more such reports outside the UK), says that “[a] scary number of security suites fail on Windows Vista” and this potentially contradicts that story Microsoft had printed in IDG the other day.

Doomed from the start probably because they were tested on Windows Vista Business Edition SP2, the tests found a marked inability of some software to cope with heavy attacks. As opposed to Windows Vista’s inability to cope, full stop. Virus Bulletin’s crack squad also noted that false positive rates were very high, with legitimate files from Corel, Roxio and Adobe having been falsely identified as being infected.

Yesterday I went over to good friend of mine who has been stuck with Vista for a few years and hates it (I showed him KDE and GNOME, then set it up for his brother in law). Vista is in many ways a mess and the fonts are ugly on some screens (BSODs are an occasional problem too); Vista 7 is more of the same but somewhat improved. According to this new eWEEK readers survey, there are more GNU/Linux users there than Vista 7 users. No surprise.

Windows XP scored nearly 44 percent in a poll of which desktops eWEEK readers use to run their business. Microsoft’s Windows 7 came in behind Linux, while Vista languished with a handful of votes in the “other” category.

In other security news from this month, let’s look at The Register (UK):

Hoax Facebook virus makes more trouble than a real virus

Blackhole your malware

Anti-virus defences even shakier than feared

A study by web intelligence firm Cyveillance found that, on average, vendors detect less than 19 per cent of malware attacks on the first day malware appears in the wild. Even after 30 days, detection rates improved to just 61.7 per cent, on average.

Waledac zombie attacks rise from the grave

However, over recent weeks, the botnet is making a comeback of sorts. Spammed messages containing malicious attachment harbouring Waladec agents and disguised as tax invoices or job offers and the like have begun appearing, Trend Micro warns.

The same run of spam messages is also being used to spread fake anti-virus and other scams unrelated to Waledac, and there’s no sign that a new command and control structure, much less a fresh round of spamming, has begun.

Scotland Yard cuffs six in megaquid phish ring probe

Botnet that pwned 100,000 UK PCs taken out

Click fraud botnet unpicked

Cybercrooks use of botnets to make money by sending spam or launching denial of service attacks has become a well-understood business model.

But the controllers of networks of compromised PCs have other ways of turning an illicit profit, including using rogue traffic brokers to defraud reputable brands. Trend Micro’s write-up of a click fraud scam sheds light onto this less well-known but highly lucrative cyberscam.

“Malware Reaches An All-Time High,” claims this report.

McAfee found 6 million malicious files in the second quarter, compared to 4 million in the first quarter.

This was also covered by IDG, which published “Malware Call to Arms: Threat at All-Time High and Rising”

Going as far back as last month in IDG, we also have:

Atlanta Has Dubious Honor of Highest Malware Infection Rate

Natural Disasters and Global Warming Fuel the Malware Flames

After worm, Siemens says don’t change passwords

Trusteer Finds 100,000 UK Computers Infected With Zeus

We wrote about Zeus in [1, 2, 3] and about Stuxnet/Siemens in [1, 2, 3, 4, 5, 6]. “Stuxnet Industrial Worm Was Written Over a Year Ago,” claims IDG.

A sophisticated worm designed to steal industrial secrets has been around for much longer than previously thought, according to security experts investigating the malicious software.

Called Stuxnet, the worm was unknown until mid-July, when it was identified by investigators with VirusBlockAda, a security vendor based in Minsk, Belarus. The worm is notable not only for its technical sophistication, but also for the fact that it targets the industrial control system computers designed to run factories and power plants.

From CNET: “Stuxnet could hijack power plants, refineries”

“For example, at an energy production plant, the attacker would be able to download the plans for how the physical machinery in the plant is operated and analyze them to see how they want to change how the plant operates, and then they could inject their own code into the machinery to change how it works,” he said.

The Stuxnet worm propagates by exploiting a hole in all versions of Windows in the code that processes shortcut files ending in “.lnk.” It infects machines via USB drives but can also be embedded in a Web site, remote network share, or Microsoft Word document, Microsoft said.

Microsoft issued an emergency patch for the Windows Shortcut hole last week, but just installing the patch is not enough to protect systems running the Siemens program because the malware is capable of hiding code in the system that could allow a remote attacker to interfere with plant operations without anyone at the company knowing, according to O’Murchu.

That’s truly a national security issue. Watch this news from Japan: [via]

Computer criminal blows probation

Tokyo police said Wednesday they have arrested a 27-year-old man in Osaka on suspicion of using a computer virus to destroy stored data.

Unless or until Windows is removed, systems that affect many people’s lives will continue to be at risk.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New


  1. How Basic Laws and Fundamental Rights Got Crushed in the European Patent Office

    Our next series will show the sheer hypocrisy of the EPO, hiding behind the veil of (patent) law while so shamelessly violating just about every law in the books without facing any form of accountability



  2. Regrettable Acts of Self-Harm: OpenMandriva and Mozilla Being Outsourced to Microsoft Proprietary Software and Monopoly

    In another blow to software freedom, OpenMandriva and Mozilla decide to abandon their own systems and use proprietary software from Microsoft instead



  3. Links 26/9/2021: Mozilla Spends on PR, OpenMandriva Outsourcing to Microsoft

    Links for the day



  4. IRC Proceedings: Saturday, September 25, 2021

    IRC logs for Saturday, September 25, 2021



  5. Links 25/9/2021: GNU/Linux Recognition in Mainstream Media and Wine-Staging 6.18

    Links for the day



  6. Reminder: GNU Turns 38 This Monday Around Midday (When GNU's Founder Gives Talk in Poland)

    With media and Torvalds speaking again about anniversaries (this has gone on for the past week because Torvalds wrote about it yet again), it is important to recall the announcement that got the ball rolling and basically started it all (the GNU/Linux operating system) because it was in 1983, not 1991. We reproduce in full the announcement.



  7. Links 25/9/2021: Wine 6.18 and Chromium Complier Woes

    Links for the day



  8. [Meme] When the EPO Watches Everything ('Dissidents', Media, Etc.) and Isn't Being Watched by Anybody

    The EPO is taking Europe for a wild ride; Everything is a vehicle for the very same agenda, with nobody left to hold it accountable or ask any tough questions… (even the media is in the EPO’s back pocket or back seat)



  9. Virtual Oversight

    “eMeetings” that simulate an impression of oversight are like ‘ViCo’ to simulate access to justice; will that ever change and will oversight be restored at EPOnia, Europe’s second-largest institution?



  10. The Corporate Coup Against the Soul of the Free Software Community Is Not Over

    The erosion of community role in the development of GNU/Linux is a growing problem; part of the problem is that large corporations target technical and philosophical (perceived) leaders in coordinated smear campaigns, led by media they own



  11. IRC Proceedings: Friday, September 24, 2021

    IRC logs for Friday, September 24, 2021



  12. Links 24/9/2021: GNU Coreutils 9.0, BattlEye GNU/Linux Support

    Links for the day



  13. [Meme] 'Linux' Foundation is Greenwashing Microsoft Again, Misusing the Linux Brand Like Nobody's Business

    Microsoft has weaponised the Linux brand to dub a toxic company like itself (helping notoriously polluting companies and generating lots of waste, both directly and through planned obsolescence, inefficient software, DRM, etc.) as "green"



  14. Richard Stallman to Speak (in Person) in Poland, Dedicate the Talk to Medical Professionals

    Days after his talk in Ukraine Richard Stallman plans to do the same in Poland (just announced)



  15. Links 24/9/2021: 30 Years of Europe’s First Root Name Server, Repairability of Laptops Discussed

    Links for the day



  16. ZDNet Has Failed

    ZDNet is on the decline and its demise appears to have greatly accelerated in recent months; we take a quick look at this month's coverage and explain the conflict of interest (it's PR, not news, and it's far too shallow/blatant to simply overlook)



  17. [Meme] Some People Are Just Above the Law

    A lot of people are still flabbergasted or at least baffled/miffed to discover that some people are in effect above the law; not even Europol and Interpol can apprehend and hold them accountable; that needs to change. Had Benoît Battistelli worked for France Télécom S.A. (not the EPO), would he be arrested? What about António Campinos and his drunk son?



  18. NPR and PBS, Both Funded by Bill Gates, Try to Save Him

    Bill Gates continues to corrupt the media and corrupt social control media (such as Twitter) using his money



  19. The EPO Must Forsake Its Diplomatic Immunity and Quit Pretending It's About Patent Law (or Any Law)

    There's no sign of the EPO actually trying to obey the law and correct the mistakes of the past; to make matters worse, the existing administration adds yet more corruption to an already-massive pile while dismissing any form of oversight



  20. IRC Proceedings: Thursday, September 23, 2021

    IRC logs for Thursday, September 23, 2021



  21. Links 24/9/2021: Ubuntu 21.10 Beta, Istio 1.11.3, and More Milestones for Steam Deck

    Links for the day



  22. [Meme] President Campinos Addresses the Legacy of Battistelli's “Strike Regulations”

    A sequence of four EPO memes about those infamous and unlawful “strike regulations” that Benoît Battistelli and António Campinos have exploited to abuse thousands of workers



  23. [Meme] Bill Gates Keeps Digging Himself Deeper in the Grave Each Time He Speaks

    These sorts of ‘interviews’ with Gates’ own propaganda mills (he also pays Twitter now) aren’t going to improve his image; people aren’t infinitely gullible (Source)



  24. Linux Foundation and Other 'Diploma Mills' Say There's Demand for Their Products in Their New 'Research' (Marketing)

    The so-called ‘Linux’ Foundation (LF), together with edX, are basically marketing their services and products, but this is disguised as 'research' (a false narrative widely parroted by shallow and paid-for media partners of theirs), piggybacking brands like “Linux” and buzzwords like “Open Source” (even when they promote proprietary things, e.g. memorisation of proprietary GUIs)



  25. [Meme] The EPO's Carte Blanche and 'Diplomatic Immunity' Card

    EPO staff is being taken for another ride by António Campinos and his cohorts, whose popularity among staff has likely gone down to sub-zero levels already (even faster than Benoît Battistelli)



  26. As Expected, Minimal Pseudo Compliance From EPO Management, Adding Insult to Injury

    SUEPO Central, the core of the staff union of EPO staff (almost 7,000 workers at the EPO, most of whom are SUEPO members), has strong words about the EPO's attitude and stance, which is perhaps unsurprising but still extremely disappointing



  27. Links 23/9/2021: PostgreSQL 14 RC 1 and MidnightBSD 2.1

    Links for the day



  28. Links 23/9/2021: More UPC PR Stunts and IBM (Poettering) TPM for Linux

    Links for the day



  29. The EPO is on the Run (Escaping Negative Press Coverage)

    Aside from tens of millions of euros granted to media and academia (to keep them complicit or silent about EPO corruption, which also implicates the EU) there’s also SLAPP and threats against staff representatives; but Members of the European Parliament are becoming interested in what’s really going on in Europe’s second-largest institution, so this utter waste of EPO money (manipulating the press and gaming universities’ research) might in itself become a scandal sooner or later



  30. [Meme] Lowering the Standards...

    It's time for another round of fluff at the EPO, this time without even travelling (PR-over-'ViCo')


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts