10.10.10

Gemini version available ♊︎

EU Concerns Highlight Need to Remove Windows From the Network

Posted in Europe, Microsoft, Security, Vista, Vista 7, Windows at 1:38 am by Dr. Roy Schestowitz

Flag of Europe

Summary: With Stuxnet running rampant and security issues at Microsoft reaching an all-time high, employees of the company attempt to distract from the fact that Windows — not “sick” PCs — is the cause

ACCORDING TO this report, “EU calls Stuxnet ‘paradigm shift’” and there is need for change.

While official U.S. response has been comparatively mild, the European Union’s cybersecurity agency says Stuxnet represents a “paradigm shift” in critical infrastructure threats and that current defense philosophies need to be reconsidered.

In a statement released yesterday, Udo Helmbrecht, the executive director of ENISA (European Network and Information Security Agency), said that as a “new class and dimension of malware,” Stuxnet represents a “paradigm shift.”

“The attackers have invested a substantial amount of time and money to build such a complex attack tool,” he said. “The fact that perpetrators activated such an attack tool can be considered as the ‘first strike,’ i.e. one of the first organized, well prepared attacks against major industrial resources. This has tremendous effect on how to protect national” infrastructure in the future.

CNET’s Elinor Mills no longer 'forgets' to mention Windows and “let’s hope the[y] draw the right conclusion about Windows” was Glyn Moody’s response to the above.

Stuxnet has become somewhat of a blessing to GNU/Linux because it helps more and more people see the serious ramifications of Windows use. Stuxnet is very much alive and there is no solution to it yet. We wrote about the subject in:

  1. Ralph Langner Says Windows Malware Possibly Designed to Derail Iran’s Nuclear Programme
  2. Windows Viruses Can be Politically Motivated Sometimes
  3. Who Needs Windows Back Doors When It’s So Insecure?
  4. Windows Insecurity Becomes a Political Issue
  5. Windows, Stuxnet, and Public Stoning
  6. Stuxnet Grows Beyond Siemens-Windows Infections
  7. Has BP Already Abandoned Windows?
  8. Reports: Apple to Charge for (Security) Updates
  9. Windows Viruses Can be Politically Motivated Sometimes
  10. New Flaw in Windows Facilitates More DDOS Attacks
  11. Siemens is Bad for Industry, Partly Due to Microsoft
  12. Microsoft Security Issues in The British Press, Vista and Vista 7 No Panacea
  13. Microsoft’s Negligence in Patching (Worst Amongst All Companies) to Blame for Stuxnet
  14. Microsoft Software: a Darwin Test for Incompetence
  15. Bad September for Microsoft Security, Symantec Buyout Rumours
  16. Microsoft Claims Credit for Failing in Security
  17. Many Windows Servers Being Abandoned; Minnesota Goes the Opposite Direction by Giving Microsoft Its Data
  18. Windows Users Still Under Attack From Stuxnet, Halo, and Zeus

“Stuxnet Used in Black Hat SEO Campaigns” says Ziff Davis which also has this new slideshow-type article about Stuxnet.

That link that you click on for information about the Stuxnet worm might be leading you to a malicious site.

It’s the dark side of search engine optimization; attackers boosting the search engine rankings of malicious sites so they can lure visitors with the promise of interesting news. In this case, it’s the Stuxnet worm that is being used as bait.

Stuxnet has been a regular presence in security articles since it was discovered this summer. The worm was designed to target industrial control systems, and its complexity has made it a source of interest for security researchers and IT admins alike.

As expected, Microsoft is trying to distract from Windows as the source of this problem. In fact, it tries to take advantage of this fiasco and portray itself as a rescuer. As we showed some days ago, Microsoft steps up as the so-called ‘solution’ to the problem which Microsoft itself helped create and the old nonsense from Charney (he started this in [1, 2, 3, 4, 5, 6, 7, 8, 9]) has washed the Web, leading to responses like Marco’s “Computer health certificates for surfing the Internet? Are you serious?”

First of all, he has managed to turn a problem that today, in large part, is caused by defects in his company’s products in something that any freedom-loving government would really love to fix for you. This is genius at work. Because presenting (1) virus-ridden computers as “sick PCs”, that is as a “public health” issue that should be fixed by “legal frameworks” that define and enforce “trusted computers systems” is just a way to mutilate computers so they can’t do anymore what you want, but only what somebody else likes. In other words, this proposal could give governments a reason to fix Microsoft problems with their (as in “yours”) money because it also does something else they want. Not to mention that movie and music corporations would surely insist to add “no copy” mechanisms to the “health” checklist.

Secondly, Mr Charney comes and proposes this… just seven months after an equally absurd and offending solution to the same problem, that is taxing ALL citizens to fix Microsoft’s security problems. I am speechless, really.

John Gilmore says: “I’d recommend merely ignoring his ideas til they sink like a stone. But it looks like Intel and Microsoft are actively sneaking up on the free Internet and the free 10% of the computer market by building in these techniques and seeking partnerships with governments, ISPs, telcos, oligopolists, etc to force their use. So some sort of active opposition seems appropriate.”

Here is what SJVN wrote about it:

My friend Richi Jennings is fond of the idea that users with malware-infected PCs should be cut off from the Internet. To this, I say not just “Yes,” but “Hell yes.” And, as he pointed out, other people are getting behind this idea of helping to clean up the litter of spam, malware, and distributed denial-of-service (DDoS) attacks that junks up the Internet highway.

Comcast, as Jennings pointed out, will be letting malware-infected users know that they’ve got garbage on their hard disk, but not keeping them off the net. Darn it.

If this was implemented, up to about half of the world’s computer users would get disconnected. It’s really that serious. Despite Microsoft’s many promises for the best part of a decade, things are not improving. Microsoft does not reveal just how many holes exist in its software (there is silent patching which Microsoft keeps hidden), but this month it claims to be breaking the record:

i. Microsoft Plans Biggest Patch Tuesday Security Update Ever

Microsoft is poised to break its record for the most Patch Tuesday security bulletins ever for the second time in 2010.

On Oct. 12, the company is set to release 16 security bulletins to cover a total of 49 vulnerabilities in Windows, Internet Explorer, Microsoft Office and the .NET framework. In August, the company set a new record with 14 bulletins. That update fixed 34 security holes across a number of products.

ii. MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

This month’s batch of security patches from Microsoft will be a record-breaking one: 16 bulletins addressing a whopping 49 security vulnerabilities.

Windows XP may no longer be sold, but this Swiss cheese of an operating system is here to cause trouble for several more years:

Although Windows XP will no longer be for sale this doesn’t mean that existing users will be left high and dry. Microsoft has said that it will provide support for Windows XP until April 2014. Windows Vista support will also end in April 2014.

Notice what Microsoft is doing with Vista. Support gets cut on the same date, despite the releases being almost 6 years apart. What does that tell people who were foolish enough to fall for Microsoft’s hype and bet on Vista? It’s also a potential lesson about Vista 7. A reasonable upgrade route is to GNU/Linux and Ubuntu 10.10 will be released very shortly.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New


  1. Links 20/05/2022: Plasma's Latest Beta in Kubuntu 22.04, Kapow 1.6.0 Released

    Links for the day



  2. Turkey's Migration to Pardus Linux and LibreOffice Explained 2 Months Ago in LibrePlanet

    This talk by Hüseyin GÜÇ was uploaded under the title “Real world GNU/Linux story from Istanbul”



  3. In Turkey, Windows Market Share is Down to Almost Nothing, 'Linux' is About Two Thirds of the Connected Devices

    Watch this graph of Windows going down from around 99.5% to just 11.55% this month



  4. The Lies and Delusions of António Campinos

    Monopolies and American corporations (and their lawyers) are a priority for today's EPO, Europe's second-largest institution



  5. Links 20/05/2022: Fedora BIOS Boot SIG

    Links for the day



  6. Links 20/05/2022: Oracle Linux 8.6 and VMware Security Crisis

    Links for the day



  7. IRC Proceedings: Thursday, May 19, 2022

    IRC logs for Thursday, May 19, 2022



  8. Links 19/05/2022: Rust 1.61.0 and Lots of Security FUD

    Links for the day



  9. EPO Eating Its Own (and Robbing Its Own)

    António Campinos is lying to his staff and losing his temper when challenged about it; Like Benoît Battistelli, who ‘fixed’ this job for his banker buddy (despite a clear lack of qualifications and relevant experience), he’s just robbing the EPO’s staff (even pensioners!) and scrubbing the EPC for ill-gotten money, which is in turn illegally funneled into financialization schemes



  10. [Meme] EPO Budget Tanking?

    While the EPO‘s António Campinos incites people (and politicians) to break the law he’s also attacking, robbing, and lying to his own staff; thankfully, his staff isn’t gullible enough and some MEPs are sympathetic; soon to follow is a video and publication about the EPO’s systematic plunder (ETA midnight GMT)



  11. EPO.org (Official EPO Site) Continues to Promote Illegal Agenda and Exploit Ukraine for PR Stunts That Help Unaccountable Crooks

    epo.org has been turned into a non-stop propaganda machine of Benoît Battistelli and António Campinos because the EPO routinely breaks the law; it’s rather tasteless that while Ukrainians are dying the EPO’s mob exploits Ukraine for PR purposes



  12. [Meme] EPO Applicants Unwittingly Fund the War on Ukraine

    As we’ve just shown, António Campinos is desperately trying to hide a massive EPO scandal



  13. EPO Virtue-Signalling on the Ukrainian Front

    António Campinos persists in attention-shifting dross and photo ops; none of that can change the verifiable facts about the EPO’s connections to Lukashenko’s 'science park' in Minsk



  14. Links 19/05/2022: PostgreSQL 15 Beta 1 and Plasma 5.25 Beta

    Links for the day



  15. A Libera.Chat Anniversary and Happy Birthday (Maybe the Last) to 'Leenode'

    What became known as the so-called ‘Leenode’ is a cautionary tale, but maybe it is also a blessing in disguise because IRC as a whole seem to have become a lot more decentralised (as everything should be)



  16. Links 19/05/2022: The Gradual Fall of Netflix/DRM

    Links for the day



  17. IRC Proceedings: Wednesday, May 18, 2022

    IRC logs for Wednesday, May 18, 2022



  18. Links 18/05/2022: Qt Company Loses Chief; OpenSUSE Leap Micro 5.2 and RHEL 9 Final

    Links for the day



  19. Jim Zemlin's Wife is Funded by Puppies (Microsoft)

    Jim Zemlin — like his wife — is bagging millions from Microsoft, but that’s clearly a conflict of interest for the Linux Foundation



  20. Links 18/05/2022: More Defections From WordPress to Gemini

    Links for the day



  21. Links 18/05/2022: PikaScript and cURL's Annual User Survey

    Links for the day



  22. IRC Proceedings: Tuesday, May 17, 2022

    IRC logs for Tuesday, May 17, 2022



  23. Phoronix: Microsoft and Phoronix Sponsor (and Close Microsoft Partner) AMD All Over the Place

    When you’re taking massive 'gifts' from AMD (and also some from Microsoft) maybe it’s not surprising that editorial decisions change somewhat…



  24. EPO Has No F-ing Oversight

    Earlier today SUEPO mentioned this new article demonstrating that EPO President António Campinos can very obviously and blatantly violate the Code of Conduct of the Office without facing any consequences; there are translations too, so the report is now available in four languages



  25. [Meme] Linux-Rejecting Foundation

    The Linux Foundation never really leads by example; by default, it uses proprietary software



  26. Linux Foundation Almost Never Uses Open Source

    The Linux Foundation uses proprietary software (look where they hire and take money from) and be sure they're probably not even aware of it



  27. Links 17/05/2022: Many More Games on GNU/Linux, YaST Development Report

    Links for the day



  28. Links 17/05/2022: Rocky Linux 8.6 and Budgie Desktop in Fedora

    Links for the day



  29. Patent Examiners Rising Up Against EPO Abuse

    Unhappy with the law-breaking autocracy (the EPO‘s management breaks the law as a matter of routine), fast-deteriorating working conditions and rapidly-decreasing quality of work (or lack of compliance with the law), workers have escalated further, topping off strikes and industrial actions with a large-scale petition



  30. [Meme] What Managers (Really) Mean by Acting Professionally

    The myth of 'professionalism' needs to die along with the façade of conformity as prerequisite for employment (Linus Torvalds can work just fine in a bathrobe in his own home)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts