Bonum Certa Men Certa

Eye on Microsoft: Foggy Clouds, Counterfeiting, and Security Problems

Moon and clouds
Lights out for the Microsoft cloud?



MANY of the posts so far today have been about Microsoft (e.g. [1, 2, 3]), but before we come to Novell -- as there's plenty to cover there too -- it's important to show just how troubled and confused Microsoft has become. PDC let it be shown out in the open, provided the observer looks deep enough beneath the surface (or Surface, which is another failing product).

Heads in the Cloud



Whatever "the cloud" actually means (mostly Web services), Microsoft has been in this market for a good while and it was never successful. In PDC, Microsoft threw all sorts of names and made announcements of non-existent products. It also tried to give the illusion that Mr. Softee has not yet entered this market, as if to say, "get ready! Microsoft is coming soon."

“In PDC, Microsoft threw all sorts of names and made announcements of non-existent products.”Remember Office Live? It's not a new product (or service). Not at all! Microsoft pretended to have 'unveiled' it in order to generate some hype and receive coverage, just like Sun Microsystems 'announced' the 'release' of OpenSolaris about half a dozen times in order to earn media attention and grab some testers or early adopters. It was the same with Live/MSN search, which was reopened/overhauled/relaunch/ renamed/ reinvented/relocated/ rebranded/redesigned/whatever so many times to beg for attention and attract new dabblers. Mojave, Longhorn and Vista 7 [sic] are another nice example of shuffling names and identities.

It was over a year ago that a Microsoft executive confessed there was not much interest in the product called "Office Live". Many people did not even know it existed. Perhaps Microsoft just didn't market it properly, for fear it would cannibalise sales of Microsoft Office. Could it be an experiment and a placeholder? At the time, as means of damage limitation, Microsoft required that Office Live users also obtain a copy of the desktop version (Microsoft Office). Platform and browser support was limited and it sure stays the same way now, if not made worse by the introduction of Silverlight (XAML), which hardly works in two platforms (proprietary ones). Moonlight is not Silverlight.

So how is it coming along? Well, a manager involved with the program left the company quite recently and now its co-founder too (mind the highlight in red).

GMI Appoints Luis Salazar as Chief Marketing Officer



[...]

Salazar joins GMI's executive team after a successful 11-year career at Microsoft Corporation, bringing over 20 years of experience in international sales, marketing and general management to the company, and a proven track record launching new ventures in the software and services industries. Most recently, as General Manager for Marketing, he co-founded Microsoft Office Live, leading worldwide marketing and engineering teams through several successful product launches, reaching millions of customers with one of the first business-focused services from Microsoft that is monetized through advertising revenue.


With this in mind, what is Microsoft's latest "cloud" hype all about? According to Dana Gardner, it's possibly a case of "too little too late," and on purpose.

Microsoft needs to decide whether it really wants to be in the software or services business. Trying to have it both ways, for an indeterminate amount of precocious time, to in effect delay the advancement of serious productivity, seems a terrible waste and a terrible way to affect its community.


Over at InformationWeek, another question comes up in the headline: "Is The Cloud The End Of Microsoft?"

Microsoft's failure to explain any aspect of its cloud business model renders the rest of its good words about as intelligible as Charlie Brown's teacher. Its competition can tell you exactly how you'll pay for services, and for a developer looking to field their own SaaS product, that makes all the difference. More than anything, Microsoft is describing what's come to be known as platform as a service. The platform is for developers, and developers have to understand how (or whether) they'll make money.


Bob X. Cringely was not particularly impressed, either.

[B]ased on the Microsoft announcement this week, all Windows Azure looks like to me is Microsoft's effort to sell web services or maybe cut the sticker shock for smaller businesses adopting SQL Server. But more properly, it likely means Microsoft's acceptance that computing clients may eventually be free or nearly so. In short, Windows Azure is an insurance policy against the possible Vista-like failure of Windows 7.


Dave Rosenberg, whose whole career involves a specialty in this area, still fails to grasp what Microsoft is on about.

I'm still trying to figure out if Microsoft's Azure announcements are meaningful beyond just providing a bit of color for the newly revealed Cloud services.

Mary Jo Foley provides some good insight in her "Microsoft's Azure cloud platform: A guide for the perplexed" though the fact that she even had to write such a thing speaks to the lack of clear message coming from Microsoft.


One of our readers wrote to ask: "Why does Microsoft Jack think it a bad idea for Google to store all your data but has no complaint about the Microsoft cloud?"

Well, that's just typical Jack Schofield [1, 2], who loves to accuse everyone else of hypocrisy. He refuses to know what Microsoft has done to deserve negative treatment.

Counterfeiting



Going back a couple of days, we accumulate some background reading. Among the links posted the other day there was also the following chunk:



There is some more of the same pattern in China following Microsoft's muscling.

When Microsoft noticed 'misunderstandings' among the Chinese public over its 'black screen' move to crack down on piracy, the country's domestic software industry saw opportunity and couldn't wait to embrace it.


Earlier this month we covered the situation in China using groupings of reports (e.g. [1, 2, 3, 4]). Some newer reports about this saga are very encouraging. Here are a few:

Wired: Chinese Strike Back at Microsoft for Anti-Piracy Measures

"Microsoft has no right to judge whether the installed software is pirated or not. It has no right to penalize users by intruding on their computers," Liu, a man one man who is suing Microsoft, told the Xinhua News Agency.


China View: Lawsuit ramps up pressure over Microsoft's 'black screen' anti-piracy move

Public pressure on Microsoft over its controversial anti-piracy campaign in China has been stepped up with news that a Beijing man is taking the software giant to court to uphold the principle of the integrity of his computer.


Reuters: Microsoft anti-piracy move irks Chinese official

A top Chinese copyright official chided Microsoft for launching an anti-piracy tool that nags users of counterfeit software with a black computer screen and said the company's prices were too high.


Forbes: Microsoft Tests Chinese Law On Piracy

But scrutiny centered on how Microsoft folded the anti-piracy program into an automatic update that was sent to users who opt to receive updates through Windows or Microsoft Update. Microsoft can "get into trouble for bundling," Dickinson said. Dong told the English-language China Daily that "Microsoft uses its monopoly to bundle its updates with the validation programs." This bundling issue is also the subject of a pending U.S. lawsuit, brought in 2006 when Microsoft packaged a similar anti-piracy program with a security update for U.S. users. A public relations officer for Microsoft stressed Wednesday that users can reject an automatic update before it is installed on their computers.


Zero-cost Windows is not a sustainable strategy. Until now, however, it has been a long-term investment.

Security



Almost every single version of Windows is under attack now. Machines that are not fully patched can be compromised without any user intervention at all. The latest reports about it include:

1. Update: New Trojan Exploits Microsoft Bug

Tuesday, Microsoft Corporation released an emergency security update more than two weeks ahead of the company’s regular time of the month when update patches are issued, notifying of a vulnerability that could allow worms and trojans to run malicious codes on affected by the security hole machines.

The first patch released outside Microsoft’s mainstay update cycle in eighteen months revealed the bug was apt to render attackers to remotely take full control of an infected system.


2. Trojan targets Microsoft's emergency fix

There are reports emerging Friday morning of a new Trojan exploiting the MS08-067 RPC vulnerability in Windows that Microsoft patched with an emergency fix yesterday. Known as Gimmiv.A, the Trojan propagates automatically through networks, and also installs a number of small programs on compromised machines. But its most worrisome capability is a feature that enables Gimmiv.A to find cached passwords in a number of locations and then send them off to a remote server. Before sending the data, the Trojan encrypts the passwords with AES encryption.


Those who are frightened by the thought of 320 million zombie PCs, which are quite are a lot (accounting for almost half), should brace themselves for more. Technology companies join forces in desperate attempts to combat this serious issue that jeopardises the entire Web and even banking institutes.

Several ISPs and Internet companies will meet in San Francisco early next year to adopt a common strategy for combating botnets, the remotely controlled networks that are used to carry out distributed denial-of-service attacks and massive spam campaigns.


The other day, the BBC reported on bank fraud, indicating that about half a million people are affected. Even the World Bank is suffering. And even the French president is a victim, but he is not a liked figure [1, 2].

But never mind money. Never mind the Internet. National security too is in jeopardy because of these zombie botnets. Even the US Army is reacting to them now.

The US Army has set up a new task force for the protection against cyber attacks. The Defense Industrial Base Cyber Security Task Force (DIB CSTF) will combat the apparently widespread theft of controlled but unclassified information from computer systems. The group will have an annual budget of $1.2m. According to a report issued by the US Army last August, such incidents can "potentially undermine and even neutralise the technological advantage and combat effectiveness of the future force".


When the military needs to step in because of software issues, shouldn't a sanity check be required?

"The Internet? We are not interested in it."

--Bill Gates, 1993

Comments

Recent Techrights' Posts

UEFI 9/11 Aftermath - Part III: Mr. 'Secure Boot' (Shim) and His Fake 'Holiday' (Sending My Wife and I Threatening E-mails on 9/11)
despite being on holiday, according to him, he finds time to instruct lawyers to contact my wife
Ron Wyden: Microsoft Should be Held Accountable for Security Breaches (He Has Said This for Years Already, It Never Happens)
Negative media coverage isn't a fine and it does nothing to compensate Microsoft's billions of victims
Disable 'Secure Boot' (If It Lets You)
it doesn't put you in control
Longtime Red Hat Staff: Maybe Just Disable 'Secure Boot'
A refreshing take from Adam Williamson
A Dozen Observations About "UEFI 9/11" Deflections
What we are expected to see, tentatively
The World's Richest Ponzi Scheme (Faking Value Using Net Waste)
The higher they go the harder they fall
We Could Dual-Boot Back in the 1990s, Why Has This Become So Difficult?
And prone to breakage
Slopwatch: Google News is Still Promoting Many Fake Articles About "Linux", in Effect Rewarding Misinformation and Plagiarism
things continue to deteriorate
 
Microsoft Admits the Workers Have Lost Trust (Endless Layoffs, 12-13 Rounds of Layoffs This Year), So Now It's Trotting out Its Peter Bright-Like Media Prop Jordan Novet
What they don't want people to pay attention to right now
Links 11/09/2025: Windows TCO and Russian Drones Invading Poland (EU/NATO)
Links for the day
Gemini Links 11/09/2025: xkcd, misfin, and Alhena 5.3.2
Links for the day
Repetition of Last Summer (Microsoft Breaking Dual-Boot Systems)
UEFI 9/11 is about to kick in
UEFI 'Secure Boot' Boiling Frogs (Cannot Turn Off 'Secure Boot')
"MSI laptop is locked on Secure Boot and doesn't allow me to turn it off"
UEFI 9/11 Aftermath - Part IV: The 'Hulk Hogan of UEFI' and His 'Hideout' Holiday (Retreat From Reality)
Let's keep an eye on what matters
UEFI 9/11 Aftermath - Part II: "The SecureBoot Thing Got Out of Hand."
The next few weeks might be... interesting
UEFI 9/11 Aftermath - Part I: "I Believe This Affects Thousands of Devices... Because Multiple Devices I Checked, Whether Client or Server [...] Affected."
Most people aren't even aware that this is happening or about to happen
The UEFI 9/11 - Part X - An Outline of the Series About Microsoft Sabotaging GNU/Linux (With Ramifications to Unfold Online in Coming Weeks as People Reboot)
Today is UEFI 9/11 (9/11/2025)
Culture of silence: Ubisoft harassment convictions, Mozilla, Sylvestre Ledru & Debian make no comment
Reprinted with permission from Daniel Pocock
Links 11/09/2025: "Hey Hi" Ponzi Schemes at Oracle (Unpaid Contracts) and Cindy Cohn is Leaving the EFF
Links for the day
Gemini Links 11/09/2025: Playdate Console, Dichotomy between the Real and the Digital
Links for the day
The Microsoft AstroTurfing and Microsoft-Led Blame-Shifting Tactics Are Ahead of Us
Of course it has nothing to do with security, it's about control, i.e. them controlling everything
Celebrating Assassination is Bad Because It Legitimises Assassination of the People You Like, Too
Condoning or even celebrating political assassinations is bad optics (and taste)
Being Conditioned to Accept Unreliable Computer Systems That Fail With Black Screen of Death (BSoD)
Welcome to 2025
New Series: The Coup Against GNU/Linux Has Begun
today, this year in particular, we shall also focus on Secure Boot, which is sold based on a lie and tortures many computer user
New Paper on "BYOVD, but in firmware. Signed UEFI shells, vulnerable modules offer new paths for Secure Boot bypasses."
One might say digital "security theatre"
Links 11/09/2025: Oracle Layoffs, Drunk Pilots in Japan Airlines, US-Korea Tensions Grow
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, September 10, 2025
IRC logs for Wednesday, September 10, 2025
Xubuntu Site Compromised
Let's hope it is not a security breach
Links 10/09/2025: Retaliation at Facebook and Microsoft Reveals Almost 100 Security Holes
Links for the day
Gemini Links 10/09/2025: Annihilation of Self, The Future Eaters, and Leaving Academia
Links for the day
They Say That People Are Afraid of or Worried About "Hey Hi", But the Worriers Should be the Fools Who Invested in It
At the end of the day nobody should worry more than those who invested their money in this bubble
Harassment evidence: franceinfo's Clara Lainé report on Ubisoft prosecution
Reprinted with permission from Daniel Pocock
Links 10/09/2025: Microsoft Layoffs in "RTO" Clothing and Windows TCO, GitHub TCO
Links for the day
Blaming Everything on China
TikTok works for China. GAFAM works for fascists.
People Get Tired of "Hey Hi" (AI), Unlike the Subservient Money-Obsessed Media That Gets Paid to Pretend This Bubble Still Matters
"crash will be way bigger than dot.com burst in 90s. and that was Internet, actually transformative technology, not this expensive AI toy with direct dependency on the energy input which is not scalable"
Brett Wilson LLP Accepts That the Serial Strangler From Microsoft Filed a Case That Also Implicates My Wife (Everything is Connected)
They used to pretend that there were two separate cases
10 Reasons to Disable (or Enable) UEFI Secure Boot
Tomorrow the "trusted corporation" Microsoft will see a certificate expire
Gemini Links 10/09/2025: Hospital and Large Feeds
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, September 09, 2025
IRC logs for Tuesday, September 09, 2025
The Bluewashing of Red Hat is Being Completed, Many Staff Understand They'll be Made Redundant
Jim AllowHurst (Whitehurst) is meanwhile promoting Microsoft's agenda from within other companies
Throwing Away "Old" Computers (Mozilla and Other Climate Deniers)
Mozilla is not leftist
statCounter Sees GNU/Linux Exceeding 10% in Bulgaria This Month
What can Microsoft still do to stop GNU/Linux?
Dark Patterns
Microsoft saying "security" is like a Convicted Felon in the White House saying "law and order".
It's Almost Fall (Autumn)
To "Facebook prison" you are bound
Bruce Schneier About "Secure Boot"
Bruce Schneier isn't a fan of "Secure Boot"
Links 09/09/2025: Microsoft Mass Layoffs Again and "RTO" (Timed Like It Serves as a Distraction From the Mass Layoffs)
Links for the day
RMS Told Microsoft to Stop 'Secure Boot' (He Even Went There to Say That), But They Didn't Listen
Dr. Stallman (RMS) assumed that speaking to sociopaths would work
What Richard Stallman Told Me About 'Secure' Boot in 2012
"if the user doesn't control the keys, then it's a kind of shackle"
Those Who Helped Microsoft Weaponise "Secure Boot" Against GNU/Linux and BSDs Are Fleeing
Microsofters doing what they do best: they evade accountability
Simple is Better, Simplicity is Power
That is "the advantage of having commodity GNU/Linux systems," an associate notes
Much Ado About Nonsense
Microsoft Lunduke is still all dramatisation and sensationalism
Current Events in France
It needs to dump Microsoft and other GAFAM (US) giants, move to Free software
Further Media Cut-downs
media reporting about the media being cut
Links 09/09/2025: US-Korea Tensions and Meta Whistleblowers
Links for the day
Gemini Links 09/09/2025: Moon Eclipse and ROOPHLOCH Reports
Links for the day
Links 09/09/2025: “Torrents of Hate” and Political Crisis in France
Links for the day
Gemini Links 09/09/2025: "Dedigitizing" and Forgejo on FreeBSD
Links for the day
Google News (Not Just Google Search) Lets Itself by Gamed by One Slopfarm - to the Point Almost Half of "Linux" News is Bot-Produced Plagiarism (LLM Slop With Slop Images)
That says a lot about what Google thinks of quality, even in Google News
Bill Gates-Funded Media Inadvertently Refutes the Microsoft Lie That in 2025 Microsoft Had Just Two Waves of Layoffs
There were about 12 rounds of layoffs so far in 2025
Official SUSE Blog Still Uses LLM Slop (Bots) to Make Fake Articles (Marketing)
The company is all about sound bites
Companies Realise That Slop Doesn't Work as Advertised, Accordingly Dump It
"Hype dims as a country-wide survey of US corporations shows a sudden drop-off in AI use among firms with more than 250 employees."
Microsoft-Funded Lawsuits Against Critics of UEFI 'Secure Boot'
Remember that no company (or law firm) ever survives collaborations with Microsoft
From theregister.co.uk to theregister.com (US) to The Register MS (Run by Microsoft Operatives) and theregister.ai
The best way to break this racket (or cycle of hype and harm) is to break the chains of funding
Open Source Initiative (OSI) Culture of Censorship Necessitates More Speech
The OSI bans dissent or people who merely point out that the OSI is abusive
How to Reach Us Discreetly (Other Than Encrypted E-mail)
We're still managing to maintain a 100% source protection record. We soon turn 19.
LLMs Are Vastly Worse Than a Waste of Energy and the Externalities Are Huge
Worse than just higher power bills for everybody
LLMs Versus Search (Not Replacing Search But Engaging in DDoS Attacks Against Web Sites That Permit Searching)
The state of the Web isn't just bad; it's utterly terrible
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, September 08, 2025
IRC logs for Monday, September 08, 2025
It's Only the Second Week of September and Already Two Waves of Layoffs at Microsoft, Slopfarms and Microsoft-Funded Sites Spin It as "AI Investments" Rather Than Commercial Failure
A very large third one expected next week
The UEFI 9/11 - Part IX - Shunning Old Computers (in 2023 the Certificate Was Updated/Overridden, Underlying Aim May Be Herding/Forcing People to Get TPM and Other 'Novel' Restrictions)
the "upgrade treadmill"