06.18.14
Gemini version available ♊︎Dan Goodin/Condé Nasty Cannot Recognise Real Security Threats, Preferring to Focus Only on Bugs in FOSS
Condé Nasty’s building, located near Wall Street
Summary: Articles about security issues at Condé Nasty (owner of Ars Technica) fail to focus on inherent flaws in software that is secret (and has back doors baked in), instead amplifying alarms over FOSS bugs
We recently saw some reports about Android vulnerabilities which actually count for something, e.g. privilege escalation put in proper context (user needs to actually install the software). But some people, and especially Goodin , would rather hype up non-issues and post them under “Risk Assessment / Security & Hacktivism” (an anti-Linux and now anti-Android section at Condé Nasty). They ignore the real security issues such as back doors, instead focusing on this kind of nonsense, saying that a designed change could heighten security risks for users. This is a continuation of very incomplete, one-side coverage, where only FOSS is ever characterised as insecure. It is propaganda by omission and Goodin is exaggerating the severity of flaws while adding provocative images to further increase the magnitude of fear. There is an agenda there; Irresponsible to say the least, as we recently showed. Maybe Goodin should highlight automatic updates of whole operating systems such as Windows. Why is he only picking on Android/Linux? Based on some reports, the FBI is listening to Android devices remotely. Maybe this is the kind of thing Goodin should cover, but he never does. Spooks may be hijacking automatic updates (such as Windows automatic updates) using back doors and collusion like PRISM, but Goodin is not interested in these matters. He would rather overlook the big issues like proprietary software which declines to obey settings that block automatic updates (Windows does this). Windows is the Swiss army knife of spooks, some of whom went on from agencies like the FBI to top positions inside Microsoft (and later to the firm which created hype/FUD about ‘Heartbleed’ [1, 2, 3]). People who only cover issues in FOSS instead of back doors in Windows cannot be taken seriously. It’s just so Condé Nasty (owner of Ars Technica since a few years ago). When Microsoft employees who reveal secrets of Windows get jailed and deported we should clearly divert scrutiny in that direction, but it is not happening. This site should be capable of better journalism on software issues, such as this very detailed new article about Android. Only balanced journalism will make this site look like real journalism. █
ᶃ Gemini Space
This post is also available in 
Content is available under CC-BY-SA
Michael said,
June 18, 2014 at 12:29 pm
I love the double standard!
1) Microsoft doing so well on the desktop, still, is not that important because the desktop is not that important. Mobile is where it is at!
2) The fact Android (based on Linux) has about 99% of the mobile malware market is not important because, um, WINDOWS on the desktop!
The reality is, in the mobile world, Android is the one and only option where users are at significant risk of malware, just as Windows is the one and only option on the desktop where there is a significant risk. In both cases this is a problem for users.