Eye on Microsoft: BitLocker Offers No Protection, Webcams and Windows Compromise

Dr. Roy Schestowitz

2009-12-06 16:45:53 UTC
Modified: 2009-12-06 16:45:53 UTC

Summary: Security failures in the news

● Germans devise attacks on Windows BitLocker (also see [1, 2])

German researchers have devised five methods that determined attackers can use to bypass hard-drive encryption in recent versions of Microsoft operating systems.

● Man loses fight against firm that suffered data breach

A Missouri man has lost his legal battle against an online prescription processor that suffered a security breach that exposed highly sensitive subscriber information.

John Amburgy alleged that Express Scripts was negligent because it failed to adequately safeguard customer data, including names, dates of birth, social security numbers, and prescription drug histories. He argued that the breach in October 2008 that exposed an unknown number of subscribers' details put him at risk of identity theft for which he was entitled to compensation.

● Thanksgiving Webcam Promo Leads to Malware

The US$10 webcam that Anna Giesman bought her daughter at Office Depot over the Thanksgiving weekend sounds like one of those deals that's too good to be true. And for her, it was.

A week later, she's worried and upset because a CD that came with the camera contained a Web link that apparently infected her PC with fake antivirus software.

● Clientless SSL VPN Products Open Web Browser Security Hole

US-CERT has issued a warning about impacting dozens of clientless SSL VPN products it says can be exploited to break Web browser security.

Hiring for Tech Roles Based on Perceived Loyalty is No Better Than Hiring to Meet Diversity Quotas: What we're seeing right now is a national security disaster and it is almost purely about technology
S.E.O. SPAM by Serial Sloppers With L.L.M. Garbage is Hurting Linux: We continue to run Slopwatch
IBM Says That Half of Its "Assets" is Basically Pure Fiction ("Goodwill"): It times get tough, IBM can sell "Goodwill" at the local pawn shop and pay back the lenders, right?
Slopwatch: BetaNews and linuxsecurity.com Have Just Published More Fake 'Articles' About "Linux": There's probably more "Linux" slop out there, but we do our best to identify it on a daily basis
Richard Stallman Has Another Talk in India Tomorrow, at Least Fourth India Talks in Recent Days: In the past month he has given at least half a dozen talks
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, February 01, 2025: IRC logs for Saturday, February 01, 2025
Links 01/02/2025: Chinese and American Censorship, Cloud-[sic]Native Targeted by Software Patents: Links for the day
Links 01/02/2025: Belated Happy New Year 2025 and Gabbro 0.1.2: Links for the day
Links 01/02/2025: Administrative Chaos and Aviation Disasters Persist: Links for the day
Arrested: Albanian Outreachy whistleblowers, Sonny Piers GNOME & Debian connections: Reprinted with permission from Daniel Pocock
Links 1/2/2025: LLM Hype Revisited, Linuxwashing by Oumi: Links for the day
Growing Evidence That the Patent Industry Has Become a Major Scam: Seeing that the patent "industry" has turned to serious crimes (sometimes to cover up corruption) and seeing that the net negative is clearer for all to see, people who argue for abolition of all patents will have a field day
Planet Ubuntu Overrun by LLM Slop? Faizul "Piju" 9M2PJU Seems to be Publishing Fake Articles About "Linux"...: Maybe it is "assisted" by LLM slop, but slop is slop and it introduces many problems
Gemini Links 01/02/2025: LLMs, Analog Computer, and BorgBackup: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, January 31, 2025: IRC logs for Friday, January 31, 2025
Links 31/01/2025: Mass Layoffs at Amazon and Microsoft, Sweden Again Fails to Protect Critics of Violence: Links for the day
Slopwatch: Fake Articles About "Linux" and More (Latest Roundup Featuring BetaNews, Janus Atienza, and Brittany Day From Guardian Digital, Inc): LLM slop season
Microsoft Staff Explains How Microsoft Swindled Employees and Avoided Paying Out Severance Pay (Microsoft Hasn't Much Money Left in the Bank): This is a classic way to avoid paying workers
"Not one of us" by Dr. Andy Farnell: Elon Musk has brought embarrassment to nerds and technologists
Gemini Links 31/01/2025: "Bulletin Buble" and "Why Blog?": Links for the day
Static Site Generators (SSGs) Pay Off: Vastly Faster Sites, Much Smaller Hosting Bills: success story for SSGs
Of Note: Linux Foundation Has Already Let Linux.com Rot for About 4 Months (No Activity): there's no campaign aside from marketing spam there
Techrights Should be Even Faster Now: We're now better off
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, January 30, 2025: IRC logs for Thursday, January 30, 2025
Richard Stallman (RMS) Gave 3 Talks in India in Less Than a Week: In India this month we've not seen a single negative comment about RMS
Indian Data Biases statCounter For or Against "Linux": In statCounter, the GNU/Linux increases and decreases are deeply tied to what it does with data collected in India
The Corporate Media Pretends That Facebook ("Meta") Has Performed Well, But Its Debt Doubles Every 2 Years Despite Mass Layoffs: That same media also helps parrot misleading financial claims
Microsoft's Debt Surged by More Than 6,000,000,000 Dollars in Just 3 Months: numbers released hours ago
The Sheer Irony of Microsoft Proxy Accusing Others of 'Stealing': Wherever DeepSick's data came from, Microsoft (or its proxy) is in no position to issue criticism.
The Difference a Decade (and GAFAM Money) Makes: Credibility cannot be purchased
[Meme] The Free Software Foundation (FSF) Has Critics Because Its Message is Effective: Applying to others the same standards one is willing to violate?

Eye on Microsoft: BitLocker Offers No Protection, Webcams and Windows Compromise

Recent Techrights' Posts