Bonum Certa Men Certa

Windows Security: More of the Same

Same mess, different day

VISTA 7 was claimed even less secure [1, 2] than the already-insecure Windows Vista. Microsoft insisted that this was not true and it vigorously denied the problem, as usual. The criticism did not go away though, so Microsoft is finally admits that it was lying and the security problems in Vista 7 are real.



Microsoft admits it messed up Windows 7 security



Following a week where no less than two security flaws were reported in Windows 7 which were officially dismissed and not constituting a vulnerability, it seems there has now been a rather huge change of mind at Microsoft and a frankly astonishing confession.

Microsoft has been at the sharp end of the flawed security stick this week, and the funny thing is it seems that they both made the stick and have been responsible for the continued prodding with it.


Mary Jo Foley came up with an eye-catching headline, namely "Windows 7 chiefs: We messed up."

We've only just mentioned the Pinch Trojan and here is another news report about it.

Variants of the Pinch Trojan are infecting users more than a year after the arrest of its original authors.

More than 4,000 PCs a day were getting infected by just one variant of the information-pilfering malware, according to net security firm PrevX, which bases this estimate on logs from a malware control website left open by cybercriminals.


This very old Trojan is simply not going away and speaking of Trojans, Nato is becoming a victim of them too.

Mr Anil reveals that there has been more than one incidence of Nato officials being socially profiled, and then subjected to "targeted trojans".

He explains how their unseen adversaries gather as much information as possible about the individual then send them an email purporting to come from a friend or a relative.

Trojan horse

If they open the attachment then a sophisticated "worm" or "trojan" can, in theory, take over their computer, scan its files, send them on, delete them, or perhaps most damagingly, alter them without the user knowing.


The British NHS (National Health Service) worked closely with Microsoft and it turned out to be a disaster that keeps getting worse.

FOR THOSE OF YOU who had little faith in the NHS already, prepare for your blood to boil further as figures show that the number of severe faults in NHS computer systems has almost doubled in the last three years.


This article does not even mention hospitals that became botnets because Windows was required by the NHS [1, 2]. This translates into 'theft' (copying) of medical data, which will reach the wrong hands, not to mention the life toll. According to a research firm, there is an ever-increasing number of data breaches reported (many of which never get reported).

My official title may be "analyst," but market research is the part of my job that appeals to the geek in me. Good thing I work at ESG, where we do market research around information assurance all the time.


We have already seen Windows disasters in bank ATMs and now it's the Royal Bank of Scotland which becomes a victim, though it's not entirely obvious which software -- if any - was to blame because the article does not say. When will this end?

Crowbar

Recent Techrights' Posts

The Ongoing Evolutionary Process of News-Reading (or News-Finding) on the World Wide Web
it gets worse
"It's Obvious There's No Future For Any of Us from Blizzard at Microsoft"
The rumours suggest that more Microsoft layoffs are on the way
[Meme] Who's the Boss?
"I thought EPC governed the Office"
Salary Adjustment Procedure (SAP) at the EPO and Why Workers' Salary is Actually Decreasing Each Year (Currency Loses Its Purchasing Power)
outline and update on a years-old blunder
Ongoing Media Campaign, Sponsored by Bill Gates, to Portray Critics of Gates Crimes as "Conspiracy" Cranks
In prior years we wrote about this PR tactic of Gates
 
End of an Era
The Web isn't just filled with marketing spam but actual disinformation
[Meme] Onboarding New EPO Staff
You read the patent application and grant within hours
The Legacy Prolific Writers Leave Behind Them
"Free Software Credibility Index" after more than 15 years
Phoronix in Google News
congratulating or welcoming Embrace, Extend, Extinguish (E.E.E.)
Google Fired Many Employees Working on Google News (Which Had Deteriorated and Became Gulag Noise, Littered and Gamed by Blogspam, Plagiarism, and Chatbot/Translator-Generated Spew), Now Comes the Likely 'Phase-out'
No wonder many yearn for the days of DMOZ and Web directories in general
IRC Proceedings: Monday, February 26, 2024
IRC logs for Monday, February 26, 2024
Over at Tux Machines...
GNU/Linux news for the past day
Exposed: FSFE, Legal & Licensing Workshop (LLW), Legal Network & Modern Slavery
Reprinted with permission from Daniel Pocock
Gemini Links 26/02/2024: Mastodon Trouble, RSS, and Zombie-scrolling
Links for the day
Links 26/02/2024: Suicide Crisis and Doctor Walkouts in South Korea
Links for the day
Why Do People Who Attack GNU/Linux Hate Women So Much?
My wife is being viciously targeted again
[Meme] Follow the Law, Not Corrupt Bosses
pressuring staff to break the rules to make more money
The EPO Uses Appraisals to Force Staff to Illegally Grant European Patents or Lose the Job. The Matter is Being Escalated en Masse to ILO-AT, Requesting a Review of Appraisal Reports.
it is only getting worse over time
Debian History Harassment & Abuse culture evolution
Reprinted with permission from Daniel Pocock
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, February 25, 2024
IRC logs for Sunday, February 25, 2024IRC logs for Sunday, February 25, 2024
Gemini Links 25/02/2024: Chronic Pain and a Hall of the Broken Things
Links for the day
Links 25/02/2024: New Rants About 'Hey Hi' Hype and JavaScript Bloat
Links for the day
Going Static Helped the Planet, Too
As we've been saying since last year
Chris Rutter, Winchester College, Clare College choir, Arm Ltd, underage workers & Debian accidental deaths
Reprinted with permission from Daniel Pocock
Gemini Links 25/02/2024: Blocking Crawlers and Moving to gemserv
Links for the day
IRC Proceedings: Saturday, February 24, 2024
IRC logs for Saturday, February 24, 2024
Over at Tux Machines...
GNU/Linux news for the past day