Eye on Security: Microsoft Windows Emergency Patch, Botnets Grab Data, Malware Scam Analysis
- Dr. Roy Schestowitz
- 2010-08-06 12:12:28 UTC
- Modified: 2010-08-06 12:12:28 UTC
Summary: An update on problems Windows users may be experiencing
●
Microsoft rushes out emergency fix for critical Windows bug (
more about this emergency)
Microsoft on Monday rushed out an emergency patch for a critical vulnerability that criminals are exploiting to install malware on all supported versions of the Windows operating system.
●
Botnet with 60GB of stolen data cracked wide open
Most botnet command-and-control channels run on compromised webservers or web-hosting services designed for criminals, making it possible to dismantle the network by taking down the central server. Mumba, by contrast, makes use of fast-flux technology, in which the operations are carried out on thousands of compromised PCs. That allows the IP address and host machine to change every few minutes, a measure that frequently foils takedown attempts by researchers and law enforcement.
●
Anatomy Of An Attempted Malware Scam
The display media segment is the newest target of malvertising, the latest trend in online criminal methodology. The problem has escalated in recent months and despite many suppliers' best efforts, it continues to grow. The culprits behind many of these attacks are based in foreign states leaving little course to take action. While the best defense against malvertising is to prevent it from happening in the first place, this has proven to be a challenge for even the most astute publishers, networks and the like.
We were recently the targets of one such attempt, and while it certainly wasn't the first "fake agency" we've been besieged by (and that we've successfully stopped), it is one of the most organized efforts we've encountered so far. Below we've outlined the approach that was used and the findings of our investigation as an FYI to others who may be on the target list.
Recent Techrights' Posts
- Who Asked Software in the Public Interest (SPI) for a Refund? ($100,000, Resulting in Losses of $267,201 in 12 Months, Highest-Ever Losses)
- The IRS does not reveal who or what's tied to this refund (or the cause/reason)
- "Cloud Computing" Was Always a Joke, But This Week Was the Punchline
- Maybe stop following tech trends and fashions
-
- When "AI Layoffs" Mean Layoffs Due to the "AI" Bubble Popping
- many people that are laid off by Microsoft claim to be specialists in "AI"
- Mysterious grant forfeited, $100,000 from Software in the Public Interest accounts 2023
- Reprinted with permission from Daniel Pocock
- Evidence: bullying, student union behaviour: Armijn Hemel's FSFE resignation
- Reprinted with permission from Daniel Pocock
- Evidence: psychological abuse, stalking, Galia Mancheva, Susanne Eiswirt ignored by FSFE judgment for Matthias Kirschner
- Reprinted with permission from Daniel Pocock
- Helping FSFE scam victims and conference organisers
- Reprinted with permission from Daniel Pocock
- Nigerian fraud in FSFE constitution
- Reprinted with permission from Daniel Pocock
- Worrying and Amusing Stories of "Clown Computing" Gone Awry
- Many of these disasters could be avoided
- Some Large German Media Covers Richard Stallman's Talks in Germany Earlier This Week
- LLM-based chatbots are just "bullshit generators" (as he has long called them)
- Links 22/10/2025: Amazon Plans to Replace Workers With Robotics, AWS and Clown Computing in General Ridiculed
- Links for the day
- Gemini Links 22/10/2025: Niri Completely Changes Multitasking and Overview of Diff-ers
- Links for the day
- Links 22/10/2025: Study on Misinformation by Slop and Heavily Debt-Sabbled Microsoft OpenAI (ClosedSlop) Uses "Browser" as Gimmick/Distraction
- Links for the day
- They've Already Spent Close to a Million Dollars on Lawyers and Sent Us About 50 KG of Legal Papers (Sponsored by Mysterious Third Party) to Try to Censor Techrights, Without Success
- They try to overcompensate with sheer volume for a lack of solid, clear arguments (we are the victims here)
- Trouble in Red Hat/IBM and a Retreat to Ponzi Economics in Search of Wall Street Market Heist
- Would you invest your life savings in this kind of crap?
- 12 Months Ago the 'Hulk Hogan of UEFI' Officially Went 'Tag-Team'
- We're actually sort of flattered or proud that such despicable people are so desperate to censor us
- "Cloud Computing" Does Not Mean Safety
- Fault tolerance is related to the notion of software freedom
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Tuesday, October 21, 2025
- IRC logs for Tuesday, October 21, 2025
- The Fall of Windows: From Something to Nothing
- Of course Microsoft will pretend everything is fine and "just trust the hey hi" (AI)
- Sounds Like Fedora is Ready to Become Less of a Slave of Microsoft (GitHub)
- This seems like a belated move in a positive direction
- XBox is a Dead Microsoft Product in a Dying Industry
- It's probable that another wave of XBox layoffs is just over the horizon (maybe even before month's end)
- Progress on Techrights Site Search
- Fun times
- IBM's Bluewashing of Red Hat Means the Layoffs Are Silent, Barely Reported
- Don't wait to hear about "Red Hat layoffs"
- Gemini Links 21/10/2025: Happy Disconnection, AWS Falling Apart, Closing of Gemlog Blue
- Links for the day
- Full Audio of Today's Richard Stallman Talk in the Technical University of Munich
- Free/Libre software and freedom in the digital society
- Microsoft XBox is Just Vapourware (Promises of Hardware That Doesn't Exist), Real Products Perish
- just as developers lose interest in developing for XBox Microsoft is increasing the costs imposed upon them
- Slopwatch: Fake Articles (Slop) in "Linux" Clothing in Google News (Noise)
- all about what Google does
- Links 21/10/2025: Even "Inventor of Vibe Coding" Rejects Vibe Coding, USPTO Experiments With Slop in Examination
- Links for the day
- Richard Stallman Talk Now Available for Viewing (Archived Copy, Not Live-streamed)
- This recording is over 2 hours old
- Links 21/10/2025: AWS-Induced Chaos and Social Control Media Curbs
- Links for the day
- Gemini Links 21/10/2025: Programming, StarGrid, Brand-New Palm OS Strategy Game in 2025, and Chatbot as Addiction Mechanisms
- Links for the day
- The African Lion and the American Cowards
- Safaris exist for people to watch and enjoy animals
- Amazon Web Shenanigans Perfectly Timed for Today's Talk by Richard Stallman
- Maybe listen to him instead of looking for excuses to ridicule the messenger
- Mission:Libre Has Taken Off (Project by Carmen Maris)
- there will be a lot more to report on next month (after the event)
- Techrights to Publish More EPO Leaks Next Week
- We're meanwhile also doing lots of work on search, whose interface now looks better
- Links 21/10/2025: 'The Lost Art' of Neon Signs and Twitter (X) to Enable Identity Theft (or Handle Theft) as a Service
- Links for the day
- Plagiarism With LLM Slop: Hindustan Times (HT Digital Streams Limited) Has Become a Slop Factory/Hub
- What a disgrace
- A radical proposal to keep your personal data safe, by Richard Stallman
- "The surveillance imposed on us today is worse than in the Soviet Union. We need laws to stop this data being collected in the first place"
- Next Week We Launch Search at Techrights
- We're planning to launch it some time next week. Maybe Tuesday, maybe Thursday.
- Talk by Richard Stallman Will be Live-streamed in Less Than 10 Hours
- Happy hacking
- "No Kings" in the Software World (GAFAM Should Not Exist, Either)
- "No Kings" is a good slogan. Let's start by ridding ourselves of masters, not only those who reside in DC or visit DC
- Every Morning
- Bugs/edge cases combined with automation can spell disaster
- Insane, Deliberately Dishonest, or Just Another Bigot?
- very intellectually-dishonest human being
- A Lot of Techrights is Built on Perl
- Perl also runs the sister site
- The Register MS Selling Slop for Microsoft (Vapourware, Ponzi Scheme, False Claims)
- What will be left of The Register MS if it keeps repeating falsehoods and looking to profit from Ponzi schemes?
- analytics.usa.gov Says Less Than 14% of Web Requests (to Government Sites) Come From Vista 11
- Vista 11 was released more than 4 years ago!
- People Who Attempt to Take Down Correct Information Need a Doctor a Day
- “Journalism is printing something that someone does not want printed. Everything else is public relations.” ― George Orwell
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Monday, October 20, 2025
- IRC logs for Monday, October 20, 2025
- Vista 11 is Sinking While Microsoft is PIPing (Mass Layoffs But Silent Layoffs)
- We're witnessing a shift in platform dominance
- Richard Stallman is Having a Good Week Already (Stallman Was Right About 'Clown Computing')
- That alone is worth bringing up in his talk
- An Update About Soylent News, With Jan Rinok "Back in the Saddle"
- Burnout or "near burnout" a possibility when having to curate abuse
- When Prominent GNU/Linux Distros Are Run by Spies
- What has Microsoft Canonical become?
- More Publishers and Companies Nowadays Say "GNU/Linux", Not "Linux"
- It's not to see InstallAware saying GNU/Linux this week
- Google News is Now Promoting a Parasitic Slopfarm Called "findarticles.com", Where Plagiarism of "Linux" Articles is Rampant
- Does Google even care about the slop epidemic? Google itself is a vendor of slop now (and it calls it "Gemini")
- Gemini Links 20/10/2025: Pumpkin Carving, "Hey Hi", and Other Buzzwords
- Links for the day
- Slopwatch: Google News Promoting Fear, Uncertainty, Doubt (FUD)
- What is the value of Google News if so many results in it are fake 'articles?
- Rejecting 'Snoop-Phones' and Turning "Old" Phones (or Tablets) Into Freedom-Respecting Appliances
- Paul Fernhout (pdfernhout.net) wrote back to Akira Urushibatathis this past weekend
- Our Uptime This Year Was Better Than AWS (Also a Lot Cheaper)
- We never used "the cloud"
- Amazon Web Shenanigans
- An ongoing, experimental endeavour
- Death of Elias Diem: FSFE mailing list archives hidden
- Reprinted with permission from Daniel Pocock
- Links 20/10/2025: Louvre Museum Reveals Weakness, About 7 Million Protest US Turning Into Oligarchy/Monarchy
- Links for the day
- They Should Have Listened to Techrights Over a Month Earlier (Xubuntu Site Compromised)
- we reported this issue about 40 days earlier and nobody did anything about it
- Richard Stallman to Give Another Talk Today in Bavaria (Bavarian Academy of Science)
- Tomorrow at 6 PM he speaks in Munich
- Apple is the Company of Dictators and Worse
- Apple is just another greedy corporation in search of sweatshops and even pedophiles (especially the high-profile ones)
- Counting Unhatched Eggs Is Not Counting Chickens
- Everything here will persist as normal
- Barry Kauler Explains That Puppy Linux and EasyOS Exclude Systemd to Keep Things Simple
- Barry Kauler's Puppy Linux is in the community's hands. He now focuses on EasyOS and more.
- The "Infinite Bread"
- The biblical story of Jesus feeding the 5,000 has software parallels
- Half a Year After Brian Fagioli Got Kicked Out of BetaNews for Slop He's Still Doing LLM Slop and Slop Images Targeting 'Linux' (Plagiarising Original Works)
- If the Web gets polluted or flooded by slopfarms such as these, and Slashdot then sends traffic so these slopfarms (Slashdot probably doesn't do this intentionally), then real writers with real knowledge of GNU/Linux will lose the spark for publishing
- In Many Cases and in Many Different Ways, Technology Became Less Durable and Less Reliable Over Time
- The "modern" things are more complex. And complexity is a foe or reliability and repair-ability.
- Microsoft's LinkedIn is Losing Money, Traffic, and Hope; Now It Wants to Sell Its Users' Lifeblood (and Data)
- Let this be a reminder of what social control media really is about
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Sunday, October 19, 2025
- IRC logs for Sunday, October 19, 2025
- Campaign of FUD Against Framework Laptops and GNU/Linux (Using Microsoft's Attack on Linux, 'Secure Boot')
- Ritual Defamation Cult has turned its attention over to Framework
- Microsoft Lunduke: Freedom of Speech Means Spreading What I Have to Say and Banning People I Disagree With
- 4Chan is one he aims for and he is siccing 4Chan trolls at people he doesn't like
- Liberation From 'The Feed'
- They rank things based on the editor's choice/ideology (he or she knows the sponsors, hence the masters)
- Microsoft's Killing of Vista 10 Seems to Have Resulted in More Articles About GNU/Linux (But Also FUD)
- We not only saw a rise in traffic, we also saw a remarkable rise in the number of articles
