Bonum Certa Men Certa

Microsoft Attempting to Destroy the Careers of Its Critics, Including Free Software Proponents

Cult-like tactics. Or doxing to secure bug doors. Is this what "business intelligence" was all along for?

Microsoft bullying



Summary: Microsoft isn't changing and has not changed; the tactics described above are still being used, even by its "Open Source" (or "Open at Microsoft") people, who did this to me

IT IS a small world after all. Someone in the Fediverse pointed out to me this new tweet about Microsoft bullying, which reminded me of these cult-like tactics Microsoft used against myself and others. From the original thread (there are also many comments in there):



I think you must be talking about CVE-2010-0232, it wasn't 90 days, it was more like 180. This was at a time when Microsoft refused to release kernel patches outside of service packs. I begged Microsoft at multiple in-person meetings at Redmond to reconsider and patch, they simply refused and said there were would be repercussions if I disobeyed. After four months of negotiations, I told that I'm going to publish it whether a patch was available or not. This didn't have the effect I had hoped, they started threatening me instead. They called me and told me my career would be destroyed. In one particularly memorable call they told me that their PR and legal department only had two settings, "off and destroy" and (in a rather menacing tone) that they would "air my dirty laundry in public". I still don't know what that means.

I was shaken, but told them I'm still going ahead. They responded by calling everyone they knew at my employer demanding I was terminated.

There was a trivial mitigation, just disabling a very rarely used feature (vdm support for 16 bit applications). I made detailed documentation explaining how to enable the mitigation for every supported platform, and even made tutorial videos for Administrators on how to apply and deploy group policy settings.

Here are the instructions I wrote:

https://seclists.org/fulldisclosure/2010/Jan/341

And here's a video I made showing how to apply the policy to a Windows Server 2003 machine like yours:

http://www.youtube.com/watch?v=XRVI4iQ2Nug

I sent these detailed instructions to all the usual places that advisories are published. I included a test case so you could verify if the bug affected you and verify the mitigation was correctly deployed. As you can imagine, Microsoft were furious.

I know it's little comfort, but through some hard fought battles over the last decade we have reached the point that Microsoft can reluctantly patch critical kernel security bugs if given around three months notice. They still pull some dirty tricks to this day, you wouldn't believe some of the stories I could tell you, but those are war stories for sharing over beers :)

It sounds like your attackers compromised you with an outdated wordpress installation, then gained privileges with this vulnerability. I'm not sure I agree the blame here lies solely with me, but regardless, I would recommend subscribing to the announce lists for the software you're deploying. You could also monitor the major security lists for advisories related to the software you use. It's high volume and varies in quality, but you can usually identify the advisories that apply to you easily.


We've documented many examples like it for over a decade (we've lost count!) and we have some wiki indexes for these. Incidentally, we've just added the "Librethreat Database", contributed by an anonymous reader who is also a software developer working on GNU/Linux.

It's very important to understand what Microsoft is up to; it's not a friend, it's just getting closer for the purpose of causing damage (from the inside). Earlier this month Dina Bass wrote a widely-syndicated (dozes of news sites) piece pretending that Microsoft was reaching peace and had already appeased its biggest critics. It's a lie, but if the media keeps repeating this lie, then more and more people will believe it. To appease the Linux Foundation and OSI Microsoft just had to dump some money of them; that's not about trust, it's about corrupting people using money -- not the same thing!

"Dina is on one," Mitchel Lewis told us about this new tweet from Dina Bass. "She’s like their top 5 shill right now."

"It's very important to understand what Microsoft is up to; it's not a friend, it's just getting closer for the purpose of causing damage (from the inside)."Notice Mitchel Lewis responding to her Microsoft revisionism and white-washing. She has long worked as Microsoft's de facto PR person, as we noted here before. She's a "media insider", just like Microsoft Peter. Several of our readers and active members theorised that Microsoft had long known about his pedophilia (he raped children) and used that to control him; we lack evidence to show/prove this, so we never entertained that angle. Some people urged us to explore that angle, but we never did. Someone told us a story to that effect involving a relative who had worked at Microsoft (and Microsoft used sexual means to manipulate him). Mr. Lewis said so himself and his claim is supported by what people told us over E-mail and IRC. This seems to be an unreported or grossly underreported issue that may or may not relate to manipulation of people through Code of Conduct, NDAs and so on. Mr. Lewis has meanwhile just published "Digital Oxy", comparing Microsoft's tactics to those of "legalised" drug dealing. It's part of his ongoing series of articles exposing the true nature of the Microsoft monopoly -- a subject he understands as a former insider:

Despite maintaining a portfolio of aging products that have never been as complex, buggy, vulnerable, or costly to manage as they are today, IT professionals around the world maintain that Microsoft products remain the best in their class. To their credit, Microsoft is the largest company in the world when measured by market cap, the prevalence of their products is undeniable, and Windows is still the de facto gaming platform, so it’s easy to see why so many are under this impression. But market cap, prevalence, and gaming are not the measures of all things and a different narrative immediately becomes apparent when relying on metrics that actually take consumer and business welfare into account to determine which is the best.

Case in point and despite their prevalence or market cap, one would have to scrape the proverbial barrel in order to find a metric that favors Microsoft mainstays relative to their competition when evaluating them based on metrics emphasizing on business welfare that prioritize quality, productivity, simplicity, security, supportability, etc. This is so much the case that, IBM, the inventor of PCs, noticed a reduction in ownership costs to 1/3 that of Windows PC users by migrating users to the Apple ecosystem; which is significant amount of disparity in an industry where even a 1% savings will make executives randy.

[...]

Although many interpret the present complex, buggy, vulnerable, and costly state of Microsoft solutions as the product of ignorance and apathy, these aren’t the actions of a firm ignorant to software engineering best practices. It actually requires a high-level understanding of software to engineer it for entrenchment, dependence, and lock-in, let alone build an extensive partner network to distribute it through and Microsoft’s market performance is a testament to this, not an exception.

No differently than Purdue Pharmaceutical being dependent on a network of profiteering drug dealers masquerading as doctors, it seems as if Microsoft is dependent on a conflicted network of maladapted experts entrenching their own products throughout industry just the same. When combining such a conflict of interest with products streamlined for entrenchment in a woefully under-regulated industry, Microsoft’s success, the prevalence of Windows, and their staying power throughout industry instantly becomes much more palpable and markedly less ethical.


We can warmheartedly recommend his other writings, which we sometimes cite.

Don't believe that because Microsoft changed (yet again) its logo and CEO it means different tactics and intents. Bill Gates is still in charge of Nadella and can fire him at any time (through the Board). The same people are in charge and they're still ruthless and manipulative. The software and services are technically shoddy, but we prefer focusing on ethics.

Recent Techrights' Posts

Gemini Links 16/07/2025: Tmux and OCC25 Working TLS
Links for the day
Reboots Should Never be Necessary
"BUT WHAT ABOUT SECURITY!!"
There's Still Hope for the World Wide Web
Let's hope that the trajectory of the Web won't be leading us to over-reliance on Google, nor will it reward worthless slopfarms
 
Why I am Suing the Serial Strangler From Microsoft, Alex Balabhadra Graveley, in the UK High Court This Week
Out of respect to the process and to the Court, I shall not share any pertinent details about the case
Links 16/07/2025: China’s Economy Grows Steadily, France Takes Action Regarding Harm to Children by GAFAM and Fentanylware (TikTok)
Links for the day
It is Not About Politics
Beware the people who try to make this about politics
Good Journalism Saves Lives
a shocking number of women die or get seriously hurt every day due to violence from a partner
Recognition of Women's Contributions to Free Software
Being passive is not an option when bad things are happening
Slopfarms Are Going to Perish Because Public Opinion is Changing
Many slopfarms will simply go offline
19 Years of Standing Up for Justice, Equality, and Truth
This week we shall take it up a notch
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, July 15, 2025
IRC logs for Tuesday, July 15, 2025
Links 15/07/2025: LLM Pollution and Pushback in Ukraine
Links for the day
Gemini Links 15/07/2025: xkcd, New Cert, and Alhena Gemlog
Links for the day
Links 15/07/2025: Press Freedom at Risk and New Facebook Blunders
Links for the day
Gemini Links 15/07/2025: Smolweb and Alhena 5.1.7
Links for the day
The Danes Want GNU/Linux
David Heinemeier Hansson recently moved to GNU/Linux
Cory Doctorow Explains Why Software Freedom Matters, Whereas "Open Source" Misses the Point and Helps Monopolies
It's a very long article
BillPR (EpsteinGate-Bribed NPR) is Turning Into a Partial Slopfarm that Promotes Slop
"I went on a date with a chatbot!"
Two Weeks Passed Since Latest Large Wave of Microsoft Layoffs, More Expected Next Month
Blaming the debt on "AI" is just self-serving storytelling
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, July 14, 2025
IRC logs for Monday, July 14, 2025
Gemini Links 15/07/2025: Gemini "Style Sheets" and Switching From Microsoft GitHub to Codeberg
Links for the day
Coming Soon: Another OSI Scandal, This One Implicating Molly de Blanc
OSI has been fairly quiet lately
Outreachy & Debian pregnancy cluster, Meike Reichle evidence
Reprinted with permission from Daniel Pocock
Again, "Lunduke is Actually Sending His Audience to Attack People"
Microsoft Lunduke is not trying to "protect" Linux
XBox is Rapidly Turned Into a Slopfarm by Microsoft
Slop isn't about efficiency and saving money
One of the Most Hilarious Things About the Microsoft SLAPPs
It's so ridiculous
Financial Support for the Free Software Foundation or the GNU Project
The FSF has extended until Friday its fund-raising campaign
Illegally Hiding (or Demanding Secrecy Around) Illegal Requests or Attempts at Extortion
unlawful communications like threats
Microsoft's Halloween Documents and systemd, Wayland, Etc.
Maybe one day Wayland will be widespread. Or maybe not.
Gemini Links 14/07/2025: BOFH Archive, Updating Old Palm PDAS, and Nginx vs Slop Bots
Links for the day
Ubuntu is Becoming GAFAM-Like
What does that say about Canonical and Ubuntu?
Slopfarms Which Take Real Articles About GNU/Linux and Turn Them Into Copycats Which Are False
Even before the LLM hype those were quite common
The Firm That Picks on Techrights is Accustomed to Working With Criminals
Techrights never did anything illegal. So why is it being picked on by people who work with criminals?
Microsoft Said the Mass Layoffs Were for "Investment" in "AI", But It's Also Laying Off the "AI" and "Copilot" Staff
Months ago we showed many so-called "AI" people were getting the boot and this time it's the same
DryDeadFish is Dead, Long Live DryDeadFish
We kept checking, hoping it can recover from some temporary technical issue
For Quite Some Time Already Microsoft Attracts Crackpots, Scams, and More
Occasionally we talk about the situation at IBM as there are many parallels
Links 14/07/2025: Chatbots Broken Again, McHire LLM Shows Limits of the Hype
Links for the day
Changing One's Name Won't Change One's Past
People who have earned a bad reputation are not magically "entitled" to reset
People Who Assault Women Are Not Victims of "Distress"
It seems like an American tradition. In a country with almost 50 presidents, not even one was a female.
Slashdot Media Turned Linux Journal Into a Slopfarm and Now Slashdot Actively Promotes Anti-Linux Slopfarms
Yes, "no-nonsense" apparently means actual nonsense
Adoption of Gemini Protocol Still Growing
Gemini Protocol is being obscured by the media - it doesn't help that Google 'hijacked' the word "Gemini" - but people still manage to find out about it, download a client, and use it
Links 14/07/2025: Arresting Photographers, Threats to Revoke US Citizenship Over Criticism
Links for the day
More EPO Leaks on the Way
We hope that Mr. Rowan will actually try to refute what we say and show, not merely point the finger at the messengers
Decommodification is a Corporate Strategy Against Communities
systemd is led by Microsoft and hosted by Microsoft
copyleft.org 'Hijacked' by the People Who Attack the Person Who Created Copyleft
So far there's nothing "tasteless" in copyleft.org, but that can change at any time in the future
Asking People to Take Down Articles and Videos Only Makes These More Popular and "Viral"
If you do something bad, one of the worst things you can possibly do it try to silence those who speak about it
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, July 13, 2025
IRC logs for Sunday, July 13, 2025
Two-Thirds Towards FSF Goal, Richard Stallman to Give Talks in Europe
There are 67 left before reaching the target
Brett Wilson LLP "Takes it Personal" (Character Assassination, Not Professionalism). Everybody Can See That.
On behalf of violent men
Gemini Links 14/07/2025: Politicised Tech and "Leaving GitHub"
Links for the day