“Tens of Thousands of [Microsoft IIS] Sites” Are Being Compromised

Dr. Roy Schestowitz

2010-06-15 07:29:12 UTC
Modified: 2010-06-15 07:29:12 UTC

Summary: Another live example of Microsoft 'security' at work; debunking the latest Linux lies from Ed Bott

"SECURITY through obscurity" sounds like a good idea in theory. As we recently found out (and had confirmed by Microsoft), part of this obscurity is lack of disclosure. Microsoft is silently patching flaws that it never discloses, which is dishonest if not fraudulent when Microsoft issues security reports based on such oversight.

According to this new article, "tens of thousands of sites" running Microsoft's software are paying the price for having 'secret' vulnerabilities:

There's a large-scale attack underway that is targeting Web servers running Microsoft's IIS software, injecting the sites with a specific malicious script. The attack has compromised tens of thousands of sites already, experts say, and there's no clear indication of who's behind the campaign right now.

The attack, which researchers first noticed earlier this week, already has affected a few high-profile sites, including those belonging to The Wall Street Journal and The Jerusalem Post. Some analyses of the IIS attack suggest that it is directed at a third-party ad management script found on these sites.

This must be the latest example of why nobody gets fired for avoiding Microsoft.

Speaking of Windows security, "Juniper Networks Protects Customers From New Microsoft Vulnerabilities" after Juniper became filled with Microsoft managers [1, 2, 3]. It's just something to bear in mind.

There is some bad FUD about Linux security at the moment (coming primarily from Ed Bott). SJVN has already responded to this FUD:

Here's what really happened. UnrealIRCd, a rather obscure open-source IRC (Internet Relay Chat) server, wasn't so much hacked as the program it was letting people download has been replaced by one with a built-in security hole. Or, as they explained on their site,

Microsoft boosters like Bott have been desperate to show that GNU/Linux is not more secure than Windows. As companies like Google dump Windows for security reasons, Microsoft will carry on with this FUD campaign but rely on peripherals/extensions (like Bott) to do the attacks]. That's just how Microsoft operates when it needs FUD. See the "smoking gun" below. ⬆

"As discussed in our PR meeting this morning. David & I have spoken with Maureen O'Gara (based on go ahead from BrianV) and planted the story. She has agreed to not attribute the story to us....

"[...] Inform Maureen O' Gara (Senior Editor Client Server News/LinuxGram) or John Markoff (NYT) of announcement on Aug 28, 2000. Owner dougmil (Approval received from BrianV to proceed)

"Contact Eric Raymond, Tim O'Reilly or Bruce Perrins to solicit support for this going against the objectives of the Open Source movement. Owner: dougmil [Doug Miller]. Note that I will not be doing this. Maureen O'Gara said she was going to call them so it looks better coming from her."

Microsoft uses reporters as attackers

A Lot Less GAFAM in Scandinavia: Are they reacting to geopolitics and risks from the US?
IBM Kills Companies It Bought (Neudesic Seems Like Latest Casualty): Why isn't even a single publisher investigating those things?
Fake "Linux" Articles: Just because some platform has "Linux" in the domain name and/or site name does not imply that it is a news/Linux site
Gemini Links 31/01/2026: "Proof Without Content" and "Technology Connections": Links for the day
Links 31/01/2026: Microsoft "OpenAI Representatives Are Going to Critics’ Houses With Threats and Demands", Its Proprietary Chaffbot Faces More Lawsuits: Links for the day
Links 31/01/2026: "Introducing Encrypt It Already" and "Huge Cache of Epstein": Links for the day
A Can of WORMS - Part I - Trying to Throw RMS Under the Bus at MIT and Everywhere Else: This series won't give air to online 'trolls'
Mobbing at the European Patent Office (EPO) - Part I - An Introduction: When the series ends, some time around the second or third EPO strike of this year, we'll contact the relevant authorities and plead for intervention
The Solicitors Regulation Authority (SRA) Delusion - Part I - Who Regulates This Regulator? (Only Itself!): We won't self-censor or prematurely terminate this series
Norway Almost Trusts Russia More Than the Bill Gates (Sleeping With Young Russian Girls) Company, Microsoft: Microsoft represents crime
Riddle Us This... (Jim Zemlin and Bill Gates): Do these people even understand the literal meaning of "safe space"?
Is "Nobel Prize for Peace" a Sick Person's 'Code Word' for Gangbanging Now? Ask Bill Gates.: Watch all the Gates apologists getting all silenced/silent
BBC Gaslights Women Sexually Exploited (Many Under Legal Age) for Its Rich Sponsor, Bill Epsteingate (Gates): Is this a national broadcaster or a propaganda tool "For Rent"?
Microsoft 'Open' 'AI' Reportedly About to Become Bankrupt, Seeking Emergency Cash Infusion (Loans): the money promised to Microsoft 'Open' 'AI' failed to arrive
Gemini Links 31/01/2026: Deep Ice and Slide Rules: Links for the day
Writing About Abuse: Never ever allow misogynists to get their way if you strive to live in a decent society
MIT DEDP MicroMasters online learner's blog post about cover-up linked to resignation of Swiss financial regulator: Reprinted with permission from Daniel Pocock
Salary Erosion Procedure (SAP) as the Primary Reason for EPO Strikes: They focus on financials, as the corruption aspects are un-sayable or unspeakable, except in private
IBM Bluewashing: Feels Like IBM is Scuttling Neudesic (and Some of Red Hat): We recently saw some Red Hat staff joining a Microsoft proxy
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, January 30, 2026: IRC logs for Friday, January 30, 2026
Microsoft Stock Collapsing Due to the Slop Bubble and Microsoft is Hiding Budget 'Black Holes': Microsoft does not perform like it tells "the media" and "the market"
Gemini Links 30/01/2026: Love and Cultivation, Gemtext Anchors: Links for the day
Will Jim Zemlin Also Sell His Daughter or Only the "Linux" Brand (and Linux Foundation) to Bill Epsteingate?: Torvalds "ate a bug"
The Epstein Files Don't Say the Ages of Those "Russian Girls" Bill Epsteingate Exploited: This E-mail was sent around the time an arrest was made for pedophilia
Only One in 33 EPO Staff Voting on the Strike Opposed It: Kudos to all those who participated in the strike
Still Hoping for "Slop Zero" in 2026: We've also noticed that linuxiac.com shows a glimmer of hope this week
Links 30/01/2026: Waymo Crashing Into 'Small People' (Children), Microsoft at Risk Due to Slop Debt: Links for the day
Amutable’s Management and Founders Are 100% Microsoft!: It'll be focused on promoting Microsoft's agenda in everything it does
IBM Tries to Get Rid of Workers Without Paying Them (and It Appears to be Working): be sure to speak to people who actually work there
He Has No Money, But He Has Power, He Has a Voice: That's why they envy and attack him
Free Software in Swiss Media This Week: RMS is still going places with his Migros bag (Swiss retail giant)
TV Programs Disseminate False Numbers of Microsoft Layoffs (About 31,000 Laid Off Last Year, Not Including PIPs, Contractors and so on): large-scale layoffs are inevitable, no matter how long Microsoft delays or procrastinates
Links 30/01/2026: Microsoft's "OpenAI Is Headed For Bankruptcy" and Bitcoin Crashes: Links for the day
Why Would Anybody be Afraid of Talking to Richard Stallman?: We need to get rid of the baseless stigma
Amutable is a Microsoft Proxy Like Xamarin, With Some IBM/Red Hat Staff Added for Good Measure: Amutable chasing money and trying to impose TPM etc. on everybody
The Letter Sent to the Ringleader of the Alicante Mafia This Week: Call for industrial actions to stop the salary erosion of EPO staff
EPO on Strike: organisation operating outside the Rule of Law
Oracle's Debt Exploded by 22 Billion Dollars in 6 Months, the Ponzi Scheme With Scam Altman Was Classic 'Pump and Dump': The founder of Oracle now uses his wealth for right-wing ideological reasons, nothing else
Facebook ('Meta') is Dead Meat, This GAFAM Company's Debt Exploded by Almost 33 Billion Dollars in Just 3 Months (11 Billion Per Month): we can expect many sales/contracts to get canceled
Australia's top nurse takes on Musk, Zuckerberg & rogue health influencers, birthkeepers: Reprinted with permission from Daniel Pocock
Affirming What We Already Know: Solicitors Regulation Authority (SRA) is Profoundly Incompetent: "SRA ordered to pay solicitor £50k in costs after failed prosecution"
The "Alicante Mafia" - Part XVI - The Associates of Mr. Cocainegate Don't Want to Talk About Cocainegate (Right of Reply): Nobody wanted to talk about cocaine at the EPO
The "Open Source" (Corporate Openwashing) Fake Community Rejects Democracy, Open Source Initiative is in Effect Dead: This is basically the end of the OSI
Cracks and Holes in Microsoft's Slop Bubble (Also, Windows is Declining): "More Bad News For Xbox As Microsoft Blames Gaming For An Annual Decline In Its PC Business"
Microsoft's Debt Exploded by More Than 20 Billion Dollars This Past Year, Says Microsoft: Expect more mass layoffs
Strike at the EPO Today: Next month we'll start a new EPO series
State of the Slop and The Register MS Runs Ads as 'Articles': Yesterday we could not find much slop about "Linux"
Gemini Links 30/01/2026: Announcing Crossyword and SYN Attack: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, January 29, 2026: IRC logs for Thursday, January 29, 2026
Gemini Links 29/01/2026: Naps, Letting Go, and Terribly Cold Weather: Links for the day
Links 29/01/2026: Kennedy Center Officials Resigning and Amazon to Cut 16,000 Jobs: Links for the day
Goodbyes to Red Hat and IBM: PIPs let them do the same with less "wasted" on severance or with obscene narrative-shaping
RMS Was Right 35 Years Ago: Stallman’s viewpoints have remained the same
The Need to Understand the Projection Tactics Against RMS: There's an old and common saying (or "wisdom") about who's guilty when there's a fart in elevators (lifts)
Links 29/01/2026: Neocities Is Blocked by Microsoft, “Intellectual Freedom Centers” as the New "Intelligent Design": Links for the day
Microsoft XBox Dying Not Only as a Console, Reveals Microsoft: Microsoft is trying to rebrand or repurpose the brand
Don't be Mistaken, Microsoft Boasts About Money That Does Not Exist and Revenue (Buying From Oneself!) Is Not Income: the company's debt grew
Fedora is IBM and There's Hardly Any Community Left: It's more like an onboarding mechanism for unpaid labour at (and for) IBM
IBM's Financial Performance in IBM's Own Words: Money Down, Debt Up Sharply: IBM isn't a healthy company
In Dominica, GNU/Linux Has Risen to All-Time High in 2026: a lot of America is moving to Free software this year
The "Alicante Mafia" - Part XV - EPO is on Strike Tomorrow, Lots to be Angry About (Except Money): We'll soon finish the series
Gemini Links 29/01/2026: "Lady Audley's Secret" and "The Value Of Our Fear" (Carney's Speech): Links for the day
Emmanuel Macron on Europe's GAFAM Addiction/Dependence: "There is No Such Thing as Happy Vassalage": Microsoft has long worked to prevent commodification
It's Official, Mass Layoffs at IBM Again (2026): In a matter of days we'll just see how much IBM's debt has grown
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, January 28, 2026: IRC logs for Wednesday, January 28, 2026

“Tens of Thousands of [Microsoft IIS] Sites” Are Being Compromised

Recent Techrights' Posts