Eye on Microsoft: Windows Security News

Dr. Roy Schestowitz

2009-08-25 23:58:08 UTC
Modified: 2009-08-25 23:58:08 UTC

Summary: Another day, another expected problem

● Why Windows security is awful

A friend of mine suggested that I should include as boilerplate in my security stories, a line like: "Of course, if you were running desktop Linux or using a Mac, you wouldn't have this problem." She's got a point. Windows is now, always has been, and always will be insecure. Here's why.

First, desktop Windows stands firmly on a foundation as a stand-alone PC operating system. It was never, ever meant to work in a networked world. So, security holes that existed back in the day of Windows for Workgroups, 1991, are still with us today in 2009 and Windows 7.

[...]

It also doesn't help any that Microsoft's data formats can be used to hold active programming code. Microsoft Office formats are commonly used to transmit malware. Microsoft's latest Office 2010 tries to deal with this by blocking all but read access to documents or 'sandboxing' them.. Since you can't edit a sandboxed document, I'm sure that's going to go over really well. Of course, what will actually happen is that users won't use the sandbox utility, and they'll just spread malware instead.

● 55,000 Web sites hacked to serve up malware cocktail

Security researchers are raising an alarm for a potent malware cocktail — backdoor Trojans and password stealers — being pushed to Windows users from about 55,000 hacked Web sites.

What Matters More Than "Market Share": The goal is freedom, not "market share"
Credit Suisse collapse obfuscated Parreaux, Thiébaud & Partners scandal: Reprinted with permission from Daniel Pocock
UK Media Under Threat: Cannot Report on Data Breach, Cannot Report on Microsoft Staff Strangling Women: The story of super injunction (in the British media this week, years late)
Under the Guise of "MIT Technology Review Insights" the Site MIT Technology Review Posts Corporate Spam as 'Articles': Some of the articles aren't even articles but 'hit pieces' against Free software and some are paid advertisements
Brett Wilson LLP Has Track Record in Scam Coin Cases (e.g. Craig Wright and More), Now It Works for 'Crypto' Scam Purveyors: But wait, it gets worse
Will Brett Wilson LLP Handle Its Own Winding Up Petition or be Struck Off for Overt Abuse of Process?: Today we sue not only the first Microsofter
Ubuntu Becomes Microsoft GitHub, Based on Decision Made by British Army Officer: You're hopeless, Canonical
Sharing Code and Recipes: It helps explain the triviality of software freedom
Why I Believe Brett Wilson LLP and Its Microsoft Clients Are All Toast: So far our legal strategy has worked perfectly
EPO Jobs Are Very Toxic and Bad for One's Health: Health first, not monopolies
Response to Ryo Suwito Regarding the Four Freedoms: the point of life isn't to make more money
Microsoft's Morale Circling Down the Drain: Or gutter, toilet etc.
Tech Used to be Fun. To Many of Us It's Still Fun.: You can just watch it from afar and make fun of it all
Links 17/07/2025: "Blog Identity Crisis" and Openwashing by Nvidia: Links for the day
Greffiers and the US Attorney of the Serial Strangler From Microsoft: The lawsuit can help expose extensive corruption in the American court system as well
The People Who Promoted systemd in Debian Also Promote Wayland: This is not politics
Victims of the Serial Strangler From Microsoft, Alex Balabhadra Graveley, Wanted to Sue Him But Lacked the Funds (He Attacked Their Finances): Having spoken to victims of the Serial Strangler From Microsoft
Links 17/07/2025: Science, Hardware, and Censorship: Links for the day
Gemini Links 17/07/2025: Staying in the "Small Web" and Back on ICQ: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, July 16, 2025: IRC logs for Wednesday, July 16, 2025
Exclusive: corruption in Tribunals, Greffiers, from protection rackets to cat whisperers: Reprinted with permission from Daniel Pocock
Links 16/07/2025: Chip Bans and Microsoft’s “Digital Escort” Program: Links for the day
Revolving Doors: One Day You're a Judge, the Next Day You're an Attorney Paying Public Officials and Working for Violent and Dangerous Microsoft Employees: how the US justice system works
Slopwatch: Noise, Plagiarism and Even Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation: What are we meant to do to prevent a false association or misleading connotations? Game the LLMs? No. Boycott slopfarms.
How Many Women Has Microsoft's Alex Balabhadra Graveley Already Strangled and Where Does That End?: If you too are a victim of this man and wish to share information, contact us
Gemini Links 16/07/2025: BaseLibre Numerical System and Simple Web Browsing with TLS: Links for the day
Links 16/07/2025: Fascist Slop Takes "Intelligence" Clothing, New Criminal Case Against MElon: Links for the day
"We Might Save Somebody's Life": I follow the example of my father
Why I am Suing the Serial Strangler From Microsoft, Alex Balabhadra Graveley, in the UK High Court This Week: Out of respect to the process and to the Court, I shall not share any pertinent details about the case
Links 16/07/2025: China’s Economy Grows Steadily, France Takes Action Regarding Harm to Children by GAFAM and Fentanylware (TikTok): Links for the day
It is Not About Politics: Beware the people who try to make this about politics
Good Journalism Saves Lives: a shocking number of women die or get seriously hurt every day due to violence from a partner
Recognition of Women's Contributions to Free Software: Being passive is not an option when bad things are happening
Slopfarms Are Going to Perish Because Public Opinion is Changing: Many slopfarms will simply go offline
19 Years of Standing Up for Justice, Equality, and Truth: This week we shall take it up a notch
Gemini Links 16/07/2025: Tmux and OCC25 Working TLS: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, July 15, 2025: IRC logs for Tuesday, July 15, 2025
Links 15/07/2025: LLM Pollution and Pushback in Ukraine: Links for the day
Gemini Links 15/07/2025: xkcd, New Cert, and Alhena Gemlog: Links for the day
Links 15/07/2025: Press Freedom at Risk and New Facebook Blunders: Links for the day
Reboots Should Never be Necessary: "BUT WHAT ABOUT SECURITY!!"
There's Still Hope for the World Wide Web: Let's hope that the trajectory of the Web won't be leading us to over-reliance on Google, nor will it reward worthless slopfarms
Gemini Links 15/07/2025: Smolweb and Alhena 5.1.7: Links for the day
The Danes Want GNU/Linux: David Heinemeier Hansson recently moved to GNU/Linux
Cory Doctorow Explains Why Software Freedom Matters, Whereas "Open Source" Misses the Point and Helps Monopolies: It's a very long article
BillPR (EpsteinGate-Bribed NPR) is Turning Into a Partial Slopfarm that Promotes Slop: "I went on a date with a chatbot!"
Two Weeks Passed Since Latest Large Wave of Microsoft Layoffs, More Expected Next Month: Blaming the debt on "AI" is just self-serving storytelling
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, July 14, 2025: IRC logs for Monday, July 14, 2025
Gemini Links 15/07/2025: Gemini "Style Sheets" and Switching From Microsoft GitHub to Codeberg: Links for the day

Eye on Microsoft: Windows Security News

Recent Techrights' Posts